Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 03-08-2016 Exécuté par Guillaume (2016-08-06 19:28:27) Exécuté depuis E:\ Windows 10 Home Version 1607 (X64) (2016-08-04 18:32:23) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-705485495-3255767464-2431366727-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-705485495-3255767464-2431366727-503 - Limited - Disabled) Guillaume (S-1-5-21-705485495-3255767464-2431366727-1001 - Administrator - Enabled) => C:\Users\Guillaume HomeGroupUser$ (S-1-5-21-705485495-3255767464-2431366727-1003 - Limited - Enabled) Invité (S-1-5-21-705485495-3255767464-2431366727-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Kaspersky Internet Security (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Internet Security (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Disabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Add or Remove Adobe Premiere Pro CS5 (HKLM-x32\...\{96F9B265-1367-4E1A-B8B9-F8530EF3AA62}) (Version: 5.0 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated) Alien: Isolation (HKLM-x32\...\Steam App 214490) (Version: - Creative Assembly) Application de bureau Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 6.0.108.150 - Autodesk) Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.10.0 - Asmedia Technology) Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 2.0.8.0000 - Asmedia Technology) ASUS Xonar DX Audio (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392008788}) (Version: - ) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) AutoCAD LT 2017 - Français (French) (Version: 21.0.52.0 - Autodesk) Hidden AutoCAD LT 2017 Language Pack - Français (French) (Version: 21.0.52.0 - Autodesk) Hidden Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk) Autodesk AutoCAD LT 2017 - Français (French) (HKLM\...\AutoCAD LT 2017 - Français (French)) (Version: 21.0.52.0 - Autodesk) Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk) Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk) Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) bl (x32 Version: 1.0.0 - Your Company Name) Hidden Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Call of Juarez Gunslinger (HKLM-x32\...\Steam App 204450) (Version: - Techland) CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform) Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CPUID ROG CPU-Z 1.62 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.62 - CPUID, Inc.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DARK SOULS III (HKLM\...\Steam App 374320) (Version: - FromSoftware, Inc.) Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment) DiRT Rally (HKLM\...\Steam App 310560) (Version: - Codemasters Racing Studio) Divinity: Original Sin Enhanced Edition (HKLM-x32\...\Steam App 373420) (Version: - Larian Studios) Dokan Library 0.6.0 (HKLM-x32\...\DokanLibrary) (Version: - ) DOOM (HKLM\...\Steam App 379720) (Version: - id Software) FileZilla Client 3.10.3 (HKLM-x32\...\FileZilla Client) (Version: 3.10.3 - Tim Kosse) FlacSquisher 1.3.5 (HKLM-x32\...\FlacSquisher) (Version: 1.3.5 - FlacSquisher) FlashGet3.7 (HKLM-x32\...\FlashGet3.7) (Version: 3.7.0.1220 - hxxp://www.FlashGet.com) foobar2000 v1.3.6 (HKLM-x32\...\foobar2000) (Version: 1.3.6 - Peter Pawlowski) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) French App Name (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated) French App Name (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North) HWiNFO32 Version 5.04 (HKLM-x32\...\HWiNFO32_is1) (Version: 5.04 - Martin Malík - REALiX) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.10.1300 - Intel Corporation) Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel) Intel(R) Rapid Storage Technology enterprise (HKLM-x32\...\{8B313BF5-9BD5-42a3-94C1-A28AF3AA51CC}) (Version: 3.6.0.1090 - Intel Corporation) Java 7 Update 79 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217079FF}) (Version: 7.0.790 - Oracle) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Java SE Development Kit 7 Update 79 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle) Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version: - ) Magic Bullet Looks (HKLM-x32\...\InstallShield_{AEC9311A-90AC-4083-B3CD-428C3BB3891C}) (Version: 1.4.0 - Red Giant Software) Magic Bullet Looks (Version: 1.4.0 - Red Giant Software) Hidden Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft) Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation) mIRC (HKLM-x32\...\mIRC) (Version: 7.36 - mIRC Co. Ltd.) Moo0 Système Moniteur 1.76 (HKLM-x32\...\Moo0 SystemMonitor) (Version: - ) Moo0 YouTube Downloader 1.07 (HKLM-x32\...\Moo0 Utube-DL) (Version: - ) Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Mozilla Firefox 47.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0 (x86 fr)) (Version: 47.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla) Mumble 1.2.8 (HKLM-x32\...\{5D198290-6E7D-426C-9AF0-8DA34CC7E596}) (Version: 1.2.8 - Thorvald Natvig) NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Pilote graphique 365.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 365.19 - NVIDIA Corporation) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Ori and the Blind Forest (HKLM-x32\...\Steam App 261570) (Version: - Moon Studios GmbH) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Panneau de configuration NVIDIA 365.19 (Version: 365.19 - NVIDIA Corporation) Hidden ph (x32 Version: 1.0.0 - Your Company Name) Hidden Pillars of Eternity (HKLM-x32\...\Steam App 291650) (Version: - Obsidian Entertainment) PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden Quake Live (HKLM-x32\...\Steam App 282440) (Version: - id Software) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.7.8 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.707 - Razer Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7836 - Realtek Semiconductor Corp.) RivaTuner Statistics Server 6.2.0 (HKLM-x32\...\RTSS) (Version: 6.2.0 - Unwinder) Rocksmith (HKLM-x32\...\Steam App 205190) (Version: - Ubisoft - San Francisco) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.1 - Rockstar Games) Seedboxes.cc VPN 1.4.0 (HKLM-x32\...\{ED1F032A-91FC-472D-B439-63FDD1C31AB5}_is1) (Version: 1.4.0 - Seedboxes.cc) Sennheiser 3D G4ME1 (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392DDDFB6}) (Version: 1.00.0001 - ) Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform) SrcDemo² (HKLM-x32\...\SrcDemo2) (Version: 1.0 - ) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) The Witcher 3: Wild Hunt (HKLM-x32\...\Steam App 292030) (Version: - CD PROJEKT RED) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation) WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-705485495-3255767464-2431366727-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Guillaume\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-705485495-3255767464-2431366727-1001_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD LT 2017\acadlt.exe (Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-705485495-3255767464-2431366727-1001_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2017\fr-FR\acadltficn.dll (Autodesk, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {03896D04-23AB-4F74-A27D-B1B71EE41E2C} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2016-07-16] (Microsoft Corporation) Task: {0C0F863F-CAF6-4622-B215-3D77BF714AAB} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {16DEA092-FB0C-40D0-AE20-0536BECC21D9} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task Task: {184784E2-6ACB-4154-BD0F-A955BE13F177} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange Task: {1B65DD58-D16B-45E8-BEB4-94D7E4D64DF7} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe Task: {36EAB073-497A-45FA-A202-7EED88C3CC06} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {3A5F0310-C4A7-4919-8378-C70579E3A857} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-07-13] (Microsoft Corporation) Task: {3AFB7BDA-C252-4C8F-8106-D1BBF8BE6FA2} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-12] (Adobe Systems Incorporated) Task: {4D8EF9AD-DC91-44DC-A6D9-834E348890B6} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {5BE91AA6-4313-4E4B-9C09-33DBE53D8152} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2016-07-16] (Microsoft Corporation) Task: {6232090F-3BD0-4E1F-960B-78CBA797F685} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand Task: {6B1AE720-1359-4B9E-9C0F-60167361EF01} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask Task: {6C305704-53D8-45DF-8974-5B8171FF31FF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {6E8AE752-C5D2-4B34-B351-338B4370A342} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand Task: {77D7F2EA-E5B7-4359-BD2B-77E1D75014DC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {7AC5E1E2-2FD3-40CD-8842-88CE53A3609C} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense Task: {80507A38-59D6-4BDE-902C-A3B4528FD594} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {837C846C-BD10-4967-B86E-DD1BE36115BC} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-che.gui@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated) Task: {9851188E-AC07-4F36-BA28-6D00BB2C9C46} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2016-07-16] (Microsoft Corporation) Task: {9EB9CFEE-7DB3-4BFC-9EC3-6B758298EEE0} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {AED48BC7-5C7B-4579-B76C-F671C15A6323} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {B6EE76B2-4F82-4E15-9345-C867A29CBAD0} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2016-07-16] (Microsoft Corporation) Task: {BEEEE741-4A53-42B6-B262-406324FBE956} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {CC636E49-0109-402B-A40B-A37C29069A95} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession Task: {CD19BC8A-E9FE-49ED-92A5-0E1194F69F00} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon => C:\Windows\System32\XblGameSaveTask.exe [2016-07-16] (Microsoft Corporation) Task: {D394BE25-2E16-45D4-AAB2-3E8861A09351} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask Task: {D3C18FB4-D528-4B14-AA0E-544D774D43E0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd) Task: {D3C4106A-D511-42C6-9716-465644534C87} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2016-07-16] (Microsoft Corporation) Task: {D8AE3132-E218-47CE-9D6C-17A515FBFE20} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {D941F53F-7907-4FBE-B1E7-69EBD5B3A5D8} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange Task: {D9851519-BAA6-47F6-93B5-DF82CE340706} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-02] (Google Inc.) Task: {E44D6B45-4914-4922-B4FC-B03E9D472015} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {EA9BAA00-6604-4A27-8A73-AFA65F0EE1B3} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance Task: {ECEDC57D-8965-4EB1-BD6F-84791D928E23} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2016-07-16] (Microsoft Corporation) Task: {FE39B783-32C2-4377-97EA-30A610FE7344} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-02] (Google Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-08-06 15:42 - 2016-05-10 01:35 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2011-01-10 14:49 - 2011-01-10 14:49 - 00014848 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe 2015-11-05 01:11 - 2015-11-05 01:12 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2015-03-29 12:29 - 2015-03-29 12:29 - 00043480 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll 2016-08-04 20:46 - 2016-08-04 20:46 - 00959168 _____ () C:\Users\Guillaume\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-07-16 13:43 - 2016-07-16 13:43 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-08-04 21:19 - 2016-08-04 21:19 - 09761280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-08-04 21:19 - 2016-08-04 21:19 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-08-04 21:19 - 2016-08-04 21:19 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-08-04 21:19 - 2016-08-04 21:19 - 01033728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2016-08-04 21:19 - 2016-08-04 21:19 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-08-04 21:19 - 2016-08-04 21:19 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-04-30 19:14 - 2013-05-28 18:56 - 00151552 _____ () C:\Windows\System\3DG4me.exe 2016-05-22 11:26 - 2016-03-23 12:02 - 00110608 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\qjson0.dll 2016-05-22 11:26 - 2016-03-23 12:02 - 00061968 _____ () C:\Program Files (x86)\Autodesk\Autodesk Desktop App\QtSolutions_Service-head.dll 2015-04-30 19:14 - 2012-06-06 11:56 - 00143360 _____ () C:\Windows\System\3DG4me.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PAexec => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PAexec => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-705485495-3255767464-2431366727-1001\Software\Classes\.scr: AutoCADLTScriptFile => <===== ATTENTION ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2014-08-11 01:11 - 2016-08-05 22:56 - 00001947 ____A C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 adobe.activate.com 127.0.0.1 adobeereg.com 127.0.0.1 www.adobeereg.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 hl2rcv.adobe.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-705485495-3255767464-2431366727-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Guillaume\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\...\StartupApproved\StartupFolder: => "NewShortcut2.lnk" HKLM\...\StartupApproved\StartupFolder: => "Agent Serveur Média.lnk" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "XboxStat" HKLM\...\StartupApproved\Run32: => "AdobeCS5ServiceManager" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "SwitchBoard" HKLM\...\StartupApproved\Run32: => "ADSKAppManager" HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\StartupApproved\Run: => "FlashGet 3" HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\StartupApproved\Run: => "EADM" HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\StartupApproved\Run: => "WTFast Tray" HKU\S-1-5-21-705485495-3255767464-2431366727-1001\...\StartupApproved\Run: => "Akamai NetSession Interface" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe FirewallRules: [{5A070DB1-36BB-4742-809B-AEB95A2B766A}] => (Allow) C:\Users\Guillaume\AppData\Local\Programs\Seedboxes.cc VPN\app\vpncmd.exe FirewallRules: [{E1E77BF3-4978-43E3-B43E-AAA74D639930}] => (Allow) C:\Users\Guillaume\AppData\Local\Programs\Seedboxes.cc VPN\app\vpnclient.exe FirewallRules: [{05F0E57A-CECC-4471-8A43-3E5CC06DE7F1}] => (Allow) E:\SteamLibrary\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{241A2846-C9C6-4409-AA0C-A73A177A026D}] => (Allow) E:\SteamLibrary\SteamApps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [UDP Query User{0891F118-7E56-4732-888E-4CFC5EF75ED7}E:\program files (x86)\overwatch\overwatch.exe] => (Allow) E:\program files (x86)\overwatch\overwatch.exe FirewallRules: [TCP Query User{2682DF4D-2D4D-44F8-95FA-1F27A7F088A3}E:\program files (x86)\overwatch\overwatch.exe] => (Allow) E:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{3FBE2551-8C1B-4874-A60D-647366D7F941}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{6FB36756-ADAD-4040-92FA-B5B6DA8FD11A}] => (Allow) E:\SteamLibrary\SteamApps\common\DiRT Rally\drt.exe FirewallRules: [{C005E77F-17E0-45F4-9573-2488E8FA6BE3}] => (Allow) E:\SteamLibrary\SteamApps\common\DiRT Rally\drt.exe FirewallRules: [{28E700B2-29B7-461A-8844-8CCD206E11D8}] => (Allow) E:\SteamLibrary\SteamApps\common\DOOM\DOOMx64.exe FirewallRules: [{7FE0B9D5-6655-4C31-BF4B-1E335C35F871}] => (Allow) E:\SteamLibrary\SteamApps\common\DOOM\DOOMx64.exe FirewallRules: [{01F16DB5-8DD2-4AD4-9AEB-7120B1A28473}] => (Allow) E:\SteamLibrary\SteamApps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe FirewallRules: [{EADCB669-8BF0-4A9A-9CA1-58424170CE65}] => (Allow) E:\SteamLibrary\SteamApps\common\Divinity Original Sin Enhanced Edition\Shipping\EoCApp.exe FirewallRules: [{CEB299D4-1E23-4BD5-838C-B1F8F0591D88}] => (Allow) E:\SteamLibrary\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{04B0F996-932A-412C-8B45-E573F7906BC0}] => (Allow) E:\SteamLibrary\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe FirewallRules: [{FE0E3006-39E3-430E-9FA0-6FA101FE8EDA}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{4A4A5F15-C744-4A39-BAF7-377E6C08F21C}] => (Allow) LPort=2869 FirewallRules: [{0DFB6D21-7825-4ED9-B77C-BA8A2090F134}] => (Allow) LPort=1900 FirewallRules: [{4DCD4D28-77FC-4EAC-8623-91E52F283466}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{F03EDE65-36E6-43DA-B510-15F1024C3541}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{182CE04D-6C40-4B5A-A2F8-68AD03CCDF2F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{72C62C97-8B89-4DF4-9C74-5674003943AF}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{B715617B-CA0A-4533-ABBF-267E4DA60EAD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{01B91DCB-CB6E-4144-A942-2FBDE4B85304}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{636F76E5-3A54-4995-8D9B-634079665A79}] => (Allow) E:\Battle.net\Battle.net.exe FirewallRules: [{AF6884F2-76E2-4908-A11C-1428630CF4AD}] => (Allow) E:\Battle.net\Battle.net.exe FirewallRules: [{97230C41-421D-43BE-ABD4-5CCDC31B76F7}] => (Allow) E:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{F902851D-663C-47B2-AAAB-626488A437FB}] => (Allow) E:\Program Files (x86)\Diablo III\Diablo III.exe FirewallRules: [{634CE6A3-7654-47E2-96AD-38AAFD52A346}] => (Allow) E:\SteamLibrary\SteamApps\common\Rocksmith\Rocksmith.exe FirewallRules: [{C987B6DF-B267-466A-A3F5-BF004BE837DB}] => (Allow) E:\SteamLibrary\SteamApps\common\Rocksmith\Rocksmith.exe FirewallRules: [{5D591C1F-CA52-4932-AA7A-E8E3202D96F3}] => (Allow) E:\SteamLibrary\SteamApps\common\Half-Life\hl.exe FirewallRules: [{B8C070F9-E99E-4BAF-9792-064F0A1AA7B0}] => (Allow) E:\SteamLibrary\SteamApps\common\Half-Life\hl.exe FirewallRules: [{FF73F064-AC38-4951-B7B1-9848331A31C3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{59A62543-8468-45C5-98E4-89D76DCAB030}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E3993D39-4869-414D-A1BE-5AE35C5A2C99}] => (Allow) E:\SteamLibrary\SteamApps\common\Ori\ori.exe FirewallRules: [{F8EF3550-655F-484C-921C-2CE37CBD7F8D}] => (Allow) E:\SteamLibrary\SteamApps\common\Ori\ori.exe FirewallRules: [{6DE9F2BF-0F19-4787-BEAC-E814D288CA85}] => (Allow) E:\SteamLibrary\SteamApps\common\Pillars of Eternity\PillarsOfEternity.exe FirewallRules: [{B80B6B5E-7CB1-46E0-9E55-70300E750D8B}] => (Allow) E:\SteamLibrary\SteamApps\common\Pillars of Eternity\PillarsOfEternity.exe FirewallRules: [{27B983F4-DE0E-4A12-833D-8C920234EEC7}] => (Allow) E:\SteamLibrary\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{C4F928A5-7277-4159-9AC8-E05AB09EA7DD}] => (Allow) E:\SteamLibrary\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe FirewallRules: [{BBE818C4-AE15-44EC-9542-B5852EEC5F49}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{732E4502-9448-4D37-8525-E3F3C638C1D4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{57DDA958-DF98-407D-8ABC-59E0F4CBDBB9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{4D6B2F88-C590-4498-A794-8E954989A0B5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{0B040D05-1ADC-4FCD-98D6-AE3C0FAB9173}] => (Allow) E:\SteamLibrary\SteamApps\common\Quake Live\quakelive_steam.exe FirewallRules: [{B9700757-7BD3-4E57-9985-D6B0FECF5C83}] => (Allow) E:\SteamLibrary\SteamApps\common\Quake Live\quakelive_steam.exe FirewallRules: [{8F5BA3EC-587E-486A-BA7A-480213FA797E}] => (Allow) E:\SteamLibrary\SteamApps\common\Alien Isolation\AI.exe FirewallRules: [{696F1F15-DFA2-4424-A2C7-CEC69500BBE7}] => (Allow) E:\SteamLibrary\SteamApps\common\Alien Isolation\AI.exe FirewallRules: [{577DB5BA-3EB2-4431-9F22-C4ABD53B035D}] => (Allow) E:\SteamLibrary\SteamApps\common\CoJ Gunslinger\CoJGunslinger.exe FirewallRules: [{8E309463-B463-4ED7-AF58-5F8A20382F27}] => (Allow) E:\SteamLibrary\SteamApps\common\CoJ Gunslinger\CoJGunslinger.exe FirewallRules: [TCP Query User{B68D3368-2E2A-4029-9CFF-2C8BB014FC76}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Block) C:\program files (x86)\flashget network\flashget 3\flashget3.exe FirewallRules: [UDP Query User{01ED27B6-B6BA-4DD6-9487-09A57E0EBE9B}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Block) C:\program files (x86)\flashget network\flashget 3\flashget3.exe FirewallRules: [TCP Query User{1C0108BE-4722-4925-B9FE-8D185424194F}E:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) E:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [UDP Query User{E08A99C1-FCDC-45BB-BF19-F753ACBEAFA0}E:\program files (x86)\diablo iii\diablo iii.exe] => (Allow) E:\program files (x86)\diablo iii\diablo iii.exe FirewallRules: [{68311899-5C72-4B72-93E0-96E75FDFC057}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{7B5FA3AE-F892-465D-8C05-0A6F0CECED8C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{66397931-BC22-4853-8323-64E821E8F209}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe FirewallRules: [{63298AFE-EB27-4CBE-BADD-7BF8A8B197E9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Team Fortress 2\hl2.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3 ==================== Points de restauration ========================= 05-08-2016 22:21:25 Fin de désinfection 05-08-2016 22:29:42 JRT Pre-Junkware Removal ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/06/2016 04:29:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.5, horodatage : 0x57916845 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xf0 Heure de début de l’application défaillante : 0xmicrosoftedgecp.exe0 Chemin d’accès de l’application défaillante : microsoftedgecp.exe1 Chemin d’accès du module défaillant: microsoftedgecp.exe2 ID de rapport : microsoftedgecp.exe3 Nom complet du package défaillant : microsoftedgecp.exe4 ID de l’application relative au package défaillant : microsoftedgecp.exe5 Error: (08/06/2016 04:29:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante microsoftedgecp.exe, version : 11.0.14393.5, horodatage : 0x57916845 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000604 Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0xf0 Heure de début de l’application défaillante : 0xmicrosoftedgecp.exe0 Chemin d’accès de l’application défaillante : microsoftedgecp.exe1 Chemin d’accès du module défaillant: microsoftedgecp.exe2 ID de rapport : microsoftedgecp.exe3 Nom complet du package défaillant : microsoftedgecp.exe4 ID de l’application relative au package défaillant : microsoftedgecp.exe5 Error: (08/06/2016 03:45:26 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: La création du contexte d’activation a échoué pour « assemblyIdentity1 ». Erreur dans le fichier de manifeste ou de stratégie « assemblyIdentity2 » à la ligne assemblyIdentity3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR » de l’attribut « version » de l’élément « assemblyIdentity » n’est pas valide. Error: (08/06/2016 03:45:26 PM) (Source: SideBySide) (EventID: 63) (User: ) Description: La création du contexte d’activation a échoué pour « assemblyIdentity1 ». Erreur dans le fichier de manifeste ou de stratégie « assemblyIdentity2 » à la ligne assemblyIdentity3. La valeur « MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR » de l’attribut « version » de l’élément « assemblyIdentity » n’est pas valide. Error: (08/06/2016 03:45:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: GUILLAUMEPC) Description: Le package Microsoft.Windows.ShellExperienceHost_10.0.14393.0_neutral_neutral_cw5n1h2txyewy+App a été interrompu, car sa suspension a été trop longue. Error: (08/06/2016 03:45:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: GUILLAUMEPC) Description: Le package Microsoft.Windows.Cortana_1.7.0.14393_neutral_neutral_cw5n1h2txyewy+CortanaUI a été interrompu, car sa suspension a été trop longue. Error: (08/06/2016 03:45:06 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1 ». Assembly dépendant Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (08/06/2016 03:45:06 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1 ». Assembly dépendant Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (08/06/2016 03:45:06 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1 ». Assembly dépendant Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (08/06/2016 03:45:06 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1"1 ». Assembly dépendant Microsoft.VC90.CRT,processorArchitecture="x86",type="win32",version="9.0.30729.1" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Erreurs système: ============= Error: (08/06/2016 07:20:13 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (08/06/2016 07:19:27 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 17:38:45 le ‎06/‎08/‎2016 n’était pas prévu. Error: (08/06/2016 07:19:11 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 32212255954607709635698160 Error: (08/06/2016 05:38:09 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (08/06/2016 05:37:53 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 17:36:35 le ‎06/‎08/‎2016 n’était pas prévu. Error: (08/06/2016 03:54:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: propres à l’applicationLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}AUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible Error: (08/06/2016 03:53:35 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} Error: (08/06/2016 03:53:35 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} Error: (08/06/2016 03:53:35 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} Error: (08/06/2016 03:53:35 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} CodeIntegrity: =================================== Date: 2016-08-05 23:42:03.451 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.449 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.446 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.444 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.441 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.439 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.416 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.414 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.400 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-08-05 23:42:03.398 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4930K CPU @ 3.40GHz Pourcentage de mémoire utilisée: 15% Mémoire physique - RAM - totale: 16324.69 MB Mémoire physique - RAM - disponible: 13821.42 MB Mémoire virtuelle totale: 18756.69 MB Mémoire virtuelle disponible: 16127.62 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:230.13 GB) (Free:79.15 GB) NTFS Drive e: () (Fixed) (Total:2794.39 GB) (Free:1326.46 GB) NTFS Drive f: (Stockage) (Fixed) (Total:931.51 GB) (Free:743.57 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 741DF3E3) Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=230.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=8 GB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 2794.5 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: DBE55E10) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================