Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 23-11-2016 Exécuté par Chloé (27-11-2016 16:50:12) Exécuté depuis C:\Users\Chloé\Desktop Windows 10 Home Version 1607 (X64) (2016-09-24 10:06:33) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2056168776-1197474402-4223976749-500 - Administrator - Disabled) Chloé (S-1-5-21-2056168776-1197474402-4223976749-1002 - Administrator - Enabled) => C:\Users\Chloé DefaultAccount (S-1-5-21-2056168776-1197474402-4223976749-503 - Limited - Disabled) Invité (S-1-5-21-2056168776-1197474402-4223976749-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\uTorrent) (Version: 3.4.9.42973 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (Version: 13.2.1 - Hewlett-Packard) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated) Ansel (Version: 368.81 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{F2871C89-C8A5-42EE-8D45-0F02506385A6}) (Version: 5.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{9BC93467-75D1-4AA4-BD58-D9C51D88DFAB}) (Version: 5.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.9 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.12 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0039 - ASUS) AVG (Version: 16.51.7497 - AVG Technologies) Hidden AVG 2016 (Version: 16.0.4545 - AVG Technologies) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.47.1.0337 - Disc Soft Ltd) Dropbox (HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\Dropbox) (Version: 14.4.19 - Dropbox, Inc.) EPSON SX235 Series Printer Uninstall (HKLM\...\EPSON SX235 Series) (Version: - SEIKO EPSON Corporation) FMW 1 (Version: 1.62.2 - AVG Technologies) Hidden Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden GanttProject (HKLM-x32\...\GanttProject) (Version: - ) hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden hpbM401DSService (x32 Version: 001.001.05874 - Hewlett-Packard) Hidden HPDXP (x32 Version: 3.0.26.1 - HP) Hidden HPLJDXPHelper (x32 Version: 020.021.004 - HP) Hidden HPLJUTCore (x32 Version: 004.005.0001 - HP) Hidden HPLJUTM401 (x32 Version: 3.00.0003 - HP) Hidden hppLaserJetService (x32 Version: 009.027.00856 - Hewlett-Packard) Hidden hppM401LaserJetService (x32 Version: 001.019.00639 - Hewlett-Packard) Hidden hpStatusAlerts (x32 Version: 050.037.00142 - Hewlett Packard) Hidden hpStatusAlertsM401 (x32 Version: 050.034.00131 - Hewlett-Packard) Hidden iCloud (HKLM\...\{29AAC3D3-23FC-496D-8266-0E3833686758}) (Version: 6.0.2.10 - Apple Inc.) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) iTunes (HKLM\...\{F11677B7-0D8E-4F34-BEBB-6869FE861CDF}) (Version: 12.5.2.36 - Apple Inc.) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation) LJDXPHelperUI (x32 Version: 020.021.004 - HP) Hidden McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.427.2 - McAfee, Inc.) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Mozilla Firefox 47.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 fr)) (Version: 47.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.0.6174 - Mozilla) Mozilla Thunderbird 38.1.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 38.1.0 (x86 fr)) (Version: 38.1.0 - Mozilla) Nightly 53.0a1 (x86 en-US) (HKLM-x32\...\Nightly 53.0a1 (x86 en-US)) (Version: 53.0a1 - Mozilla) NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.18.0 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote graphique 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.81 - NVIDIA Corporation) Outils de vérification linguistique 2013 de Microsoft Office - Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Package de pilotes Windows - ASUS (ATP) Mouse (11/11/2015 1.0.0.262) (HKLM\...\A044C5901003C24E6891688653ABA1068D04A1A0) (Version: 11/11/2015 1.0.0.262 - ASUS) Panneau de configuration NVIDIA 368.81 (Version: 368.81 - NVIDIA Corporation) Hidden PDF Architect 3 (HKLM-x32\...\PDF Architect 3) (Version: 3.0.45.22485 - pdfforge GmbH) PDF Architect 3 Create Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden PDF Architect 3 Edit Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden PDF Architect 3 View Module (x32 Version: 3.0.8.22528 - pdfforge GmbH) Hidden Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.) Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.9200.27030 - Realtek Semiconductor Corp.) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Update for Skype for Business 2015 (KB3039776) 32-Bit Edition (HKLM-x32\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{8D97B9A2-D73D-4CB6-9D1F-D25178AC4EDE}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3127934) 32-Bit Edition (HKLM-x32\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{561D6567-A41D-407F-957C-39EEA3AB2D73}) (Version: - Microsoft) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.1.0 (HKLM\...\VLC media player) (Version: 2.1.0 - VideoLAN) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation) WinRAR 5.11 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Chloé\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll (Dropbox, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {11303EA1-D2ED-4E11-94C4-5BFA3FA52046} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.) Task: {1A3A747C-ED6B-4AA5-A5E9-E245CC2CF3B5} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {237C0231-910E-4218-A95C-528EAFD9D848} - \Microsoft\Windows\Setup\GWXTriggers\Logon-URT -> Pas de fichier <==== ATTENTION Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {3D4DDFE8-D98D-4FB3-94A0-6BF3FC191FC7} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {41925098-DAC9-448C-8667-83DF8A85B691} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {45774F68-19EA-484D-8346-23706ED0BA92} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {49D4CA3B-84D3-4053-80CB-1FB2E5B86A10} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated) Task: {4B6039CC-169A-49A0-BB15-6EAA91E8FF90} - System32\Tasks\{974A3027-B983-4C8E-A087-26068B2A8294} => pcalua.exe -a "C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcLauncher.exe" -d C:\Users\Chloé\Desktop Task: {4D4BD8CA-B482-4F10-8F56-A117674CE7F2} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {5332C689-CBEB-444E-971B-00F50198D5C2} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {68DF9215-121D-4105-97DF-983F988FD750} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated) Task: {6F905BEB-0C5B-4B6E-8C44-F65213EE1304} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2056168776-1197474402-4223976749-1002Core1d2376d87efc54a => C:\Users\Chloé\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.) Task: {724D505F-A38E-4EC1-BE25-A4C5CFA30B3B} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {733F5267-CA4E-4536-B451-980CC365DEB1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {781E6F15-6FAE-4F3D-B132-1F602ED9F808} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION Task: {79A1DE1E-B70D-49FB-BBAB-6A657B3B3885} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {7B645900-0A17-42AE-AD40-68C5549885EA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {89E5A5FD-3CEA-4262-98CE-482F792BC638} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {9930E24A-DF3F-462E-A67F-A4A98F1BA454} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2056168776-1197474402-4223976749-1002UA1d2376d8813e6e0 => C:\Users\Chloé\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.) Task: {9B7657BB-4AA9-4C33-9DF7-5E000BA44ACC} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor) Task: {AA875A86-189B-4FD8-B90D-B3BE92676A40} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {AADBDCAD-C70F-4067-9D6A-69B003DA925C} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-12-14] (AsusTek) Task: {AEE91DA7-DAF7-487E-9B42-5CD0A173ACAB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {AF426CED-8D6F-4CC6-9D25-198B9AB1D7FD} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-10] (Realtek Semiconductor) Task: {B0166BA1-8E00-4EA8-9E23-C8BE06B86D1C} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {BF7812C6-7656-4295-A998-AC6670A7D63C} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2012-06-15] (Hewlett Packard) Task: {C213FFB5-E889-45BD-9F4E-0035EDE882E6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe Task: {CC214978-AD18-4AD7-867D-C9325CCD647C} - System32\Tasks\{66BC5FBA-A941-48F8-A19A-4DD2D02F29DF} => pcalua.exe -a "C:\Program Files (x86)\sweetpacks bundle uninstaller\uninstaller.exe" -c "/appName=FileParade bundle uninstaller" "/linkurl=hxxp://lp.sweetim.com/SweetPacksBundleUninstaller/" "/searchProviderApp=FileParade" "/searchProvider=a different" Task: {D267BD86-9B89-4A08-9011-0DC8371B8882} - System32\Tasks\AutoKMS => C:\WINDOWS\AutoKMS\AutoKMS.exe Task: {D2EDDAE1-EB81-46FB-A238-CC07AB05C8CD} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe Task: {D367DD1C-1B4A-4AE0-BD31-DCDE2697350E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-11-10] (Realtek Semiconductor) Task: {D493E0D2-66D1-49C1-AA66-D4F70A4B643B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {D4E36FF3-3F39-4B7A-9A10-9D0AA1DB5939} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {DE38CC0D-6015-46C4-9530-6904FC8148AB} - System32\Tasks\{2DD483E5-66F4-4F1D-BBAB-1DC1F5C1F4DD} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=frFR --uid=battle.net --displayname="Battle.net" Task: {EA062DCF-78FD-4D14-A5EE-E17FC76010A5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {F6E800F5-CD7B-4862-B05D-FB645235564B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\AutoKMS.job => C:\WINDOWS\AutoKMS\AutoKMS.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2056168776-1197474402-4223976749-1002Core1d2376d87efc54a.job => C:\Users\Chloé\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2056168776-1197474402-4223976749-1002UA1d2376d8813e6e0.job => C:\Users\Chloé\AppData\Local\Dropbox\Update\DropboxUpdate.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-10-05 18:17 - 2016-10-05 18:17 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-10-02 12:14 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-09-24 10:29 - 2016-07-10 23:58 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-10-02 12:14 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-10-02 12:14 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-09-24 12:32 - 2016-09-24 12:32 - 00959168 _____ () C:\Users\Chloé\AppData\Local\Microsoft\OneDrive\17.3.6390.0509_1\amd64\ClientTelemetry.dll 2016-09-24 19:12 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-11-09 14:34 - 2016-11-02 11:30 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-11-17 18:09 - 2016-11-17 18:10 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-11-17 18:09 - 2016-11-17 18:10 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-11-17 18:09 - 2016-11-17 18:10 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-07-18 13:33 - 2016-06-14 21:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-11-09 14:34 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-11-09 14:34 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-11-09 14:34 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-11-09 14:34 - 2016-11-02 11:15 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2016-11-09 14:34 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-11-09 14:34 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-11-09 14:34 - 2016-11-02 11:13 - 00114176 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Dss.BackgroundTask.dll 2013-06-06 21:50 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll 2016-07-18 13:32 - 2016-06-14 21:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\ma-config.com -> hxxp://ma-config.com IE trusted site: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\ma-config.com -> hxxps://ma-config.com IE trusted site: HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\touslesdrivers.com -> hxxp://touslesdrivers.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 14:25 - 2016-11-06 16:12 - 00000863 ____A C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.1 mssplus.mcafee.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Chloé\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{6939221f-80db-48ac-810a-11cb867beb37}.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "Persistence" HKLM\...\StartupApproved\Run: => "HotKeysCmds" HKLM\...\StartupApproved\Run: => "IgfxTray" HKLM\...\StartupApproved\Run: => "BCSSync" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "ASUSPRP" HKLM\...\StartupApproved\Run32: => "mcui_exe" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "StatusAlerts" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\StartupFolder: => "OneNote 2010 - Capture d’écran et lancement.lnk" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "RESTART_STICKY_NOTES" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "EPSON2D9EAA (Epson Stylus SX235)" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_2D50FB258B2669F0F8C33AFC6245A2FC" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "iCloudDrive" HKU\S-1-5-21-2056168776-1197474402-4223976749-1002\...\StartupApproved\Run: => "iCloudPhotos" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{4551A881-AC30-4ACB-A45A-E600A90D4D1F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{7EE96C18-720E-44B9-95BA-9627E24A9541}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{9C88BB75-5FBC-4BA8-A510-E0DE132D9B84}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe FirewallRules: [{01D82AD1-5671-47F1-A9E3-7C8733A9B37F}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe FirewallRules: [{ACE50B54-C0AD-4FE7-B914-2CFDD05AF0F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{CB7864A0-1284-4E9E-B25A-06C7E5FA22D1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{231F0123-683F-4936-A772-129A1FA2160A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{BF866327-38E3-4350-8A7D-9461B5F95402}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{B82181DB-19CC-4236-9C52-78FF701A4471}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{5A74568A-F8A4-42E1-BF5B-49989E6448D8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{61403616-00E9-4EEF-B8D2-F3EE53CF4558}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{753CE85E-0C46-45F0-A34D-BE74BF7CF112}] => (Allow) C:\Program Files (x86)\Nightly\firefox.exe FirewallRules: [{0683699C-3634-43C4-B18C-39EBA60BD752}] => (Allow) C:\Program Files (x86)\Nightly\firefox.exe FirewallRules: [{FFDC9C43-36F1-4149-9463-5A58D0B2D9A7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B5DD9D71-F719-4537-80EA-864AA40B0ABD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{839D74B1-7409-4183-9EE9-9076FE8A5934}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{258955D2-1A69-4201-8DDE-BBF71196F5C4}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{DE57B634-6DF1-4C48-B512-7BB94215689F}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{74CA3EEF-E6E8-455D-956C-84D86CA305F8}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A75A04D0-4622-4369-B121-FBD4CEFC314E}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0DB379D1-6222-421C-BB68-749EE39BEB04}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D36F9893-A461-4F97-9469-B187F0434FC3}] => (Allow) C:\Users\Chloé\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{B8A5F1C0-6115-4C39-A9AE-D6420E30E311}] => (Allow) C:\Users\Chloé\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{B1BA499D-34D7-4542-BC63-2EA7AB4F38B7}] => (Allow) LPort=1900 FirewallRules: [{9F3908B9-AF84-4AE4-AE0F-A3CA352764A1}] => (Allow) LPort=2869 FirewallRules: [{77FA44A0-0288-479D-A668-7DB1122CB865}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{16544777-5190-40F5-B582-FCE55EDAC765}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{62352553-FFE2-42F0-A89F-0BBFCDEFC823}] => (Allow) C:\Users\Chloé\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C75335CC-3660-4E02-8BAF-F91C554F21F9}] => (Allow) LPort=48113 FirewallRules: [{87160B78-5593-4E6F-9EAA-475CE2CB7D69}] => (Allow) LPort=48114 FirewallRules: [{069144C6-A425-4E73-90CD-0DA3FD9B9267}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{3C7C6916-1E8D-4029-8359-FEC5947B95D1}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [TCP Query User{9F461A72-A6DF-4792-80E4-8BB8E6005C8D}C:\users\chloé\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\chloé\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{8908A614-288C-4476-8677-727871684ECB}C:\users\chloé\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\chloé\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{8F4D2558-26C5-44C6-A8C6-F429BBCFE476}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{BF188AEA-546E-40D7-B238-7608987066FE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{6D4D0FD1-A095-4426-B80B-F5422AC290A9}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C7306B1D-AED1-42BB-936A-B53BA6930E71}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{F97CFB68-9924-4715-B9AE-D0E8E5A3AB2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{A9074FC0-A22B-4DF1-A621-7838164FE555}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F344E79E-2E72-41D1-A91E-4D09C012AEF6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6C82A0CE-DCD3-4DD7-AA61-F8FADA1A10AE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{596D17FE-C5B5-4466-A61F-4B9C4C356747}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B896F446-655C-48E7-9526-04DB95CC1706}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 400 M401\Bin\HPNetworkCommunicator.exe FirewallRules: [{A0BF8F48-0D05-4667-A0E7-C2EC6957D570}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 400 M401\bin\EWSProxy.exe FirewallRules: [{0FED06FB-0003-4CAD-A9EB-AD9057CC4A98}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{92CE92C0-67F9-4690-BAB0-4259347390C2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{19310921-05FF-42B0-8F00-C9CB30A0E911}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{463BCC10-308D-4370-9B8B-BE4EFB228ADE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{821DB2CD-E80A-4362-B612-FE5363A43F37}C:\users\chloé\appdata\local\programs\lnv\stremio\stremio.exe] => (Allow) C:\users\chloé\appdata\local\programs\lnv\stremio\stremio.exe FirewallRules: [UDP Query User{CD478A70-3CB3-4104-A660-2D93CD037026}C:\users\chloé\appdata\local\programs\lnv\stremio\stremio.exe] => (Allow) C:\users\chloé\appdata\local\programs\lnv\stremio\stremio.exe FirewallRules: [{F8E015F7-796B-42E5-BA2A-11EDF8B77029}] => (Allow) C:\Users\Chloé\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{070C5DF5-3673-4F18-A078-82667178CDF1}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{A75BB9F4-2C87-4154-BA03-883007798142}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{32C5EDE2-81F9-49CF-B3A3-2DCA15A1B223}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{523AABB3-8311-4507-811D-A2AE03CC5554}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{36D39A2D-1BDB-486E-AAE7-3888B6BFB941}] => (Allow) C:\Program Files\iTunes\iTunes.exe ==================== Points de restauration ========================= 09-11-2016 14:38:22 Windows Update 18-11-2016 12:53:06 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/27/2016 03:44:18 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 236797 Error: (11/27/2016 03:44:18 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 236797 Error: (11/27/2016 03:44:18 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/27/2016 03:40:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8453 Error: (11/27/2016 03:40:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8453 Error: (11/27/2016 03:40:30 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/27/2016 03:40:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7250 Error: (11/27/2016 03:40:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 7250 Error: (11/27/2016 03:40:29 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/27/2016 03:40:28 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 6047 Erreurs système: ============= Error: (11/27/2016 03:45:57 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 03:40:06 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/27/2016 02:26:04 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 02:23:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service CDPUserSvc_364d86a s’est arrêté avec l’erreur : Erreur non spécifiée Error: (11/27/2016 02:20:58 PM) (Source: DCOM) (EventID: 10010) (User: DOUDINETTE) Description: Le serveur {0002DF02-0000-0000-C000-000000000046} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 02:13:12 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {F3B4E234-7A68-4E43-B813-E4BA55A065F6} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 11:43:24 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 11:38:59 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/26/2016 02:35:58 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/26/2016 11:16:40 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. CodeIntegrity: =================================== Date: 2016-11-25 11:35:14.852 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-25 11:35:14.001 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-20 12:15:24.384 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-20 12:15:23.545 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-18 11:10:35.083 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-18 11:10:34.066 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-11 11:13:39.549 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-11 11:13:39.332 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-10 13:39:11.074 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-10 13:39:09.440 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz Pourcentage de mémoire utilisée: 58% Mémoire physique - RAM - totale: 3981.54 MB Mémoire physique - RAM - disponible: 1670.87 MB Mémoire virtuelle totale: 7749.77 MB Mémoire virtuelle disponible: 4554.95 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:372.17 GB) (Free:163.23 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (DATA) (Fixed) (Total:537.6 GB) (Free:520.89 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 337AEAFE) Partition: GPT. ==================== Fin de Addition.txt ============================