Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-03-2017 Exécuté par corentin pc (18-03-2017 18:15:49) Exécuté depuis C:\Users\corentin pc\Desktop Windows 10 Home Version 1607 (X64) (2016-11-22 08:12:55) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3091123387-1739985617-3006187706-500 - Administrator - Disabled) corentin pc (S-1-5-21-3091123387-1739985617-3006187706-1001 - Administrator - Enabled) => C:\Users\corentin pc DefaultAccount (S-1-5-21-3091123387-1739985617-3006187706-503 - Limited - Disabled) defaultuser0 (S-1-5-21-3091123387-1739985617-3006187706-1000 - Limited - Disabled) => C:\Users\defaultuser0 Invité (S-1-5-21-3091123387-1739985617-3006187706-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated) Ansel (Version: 378.78 - NVIDIA Corporation) Hidden Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation) Azure AD Authentication Connected Service (x32 Version: 14.0.25420 - Microsoft Corporation) Hidden AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform) Discord (HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) Dotfuscator and Analytics Community Edition 5.22.0 (x32 Version: 5.22.0.3788 - PreEmptive Solutions) Hidden Exécution du SDK Intel® RealSense™ (HKLM-x32\...\ARP_for_prd_rs_sdk_runtime_10.0.26.0396) (Version: 10.0.26.0396 - Intel Corporation) f.lux (HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\Flux) (Version: - ) Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - ) Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.4.1186 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1603.5 - Intel Corporation) Intel® RealSense™ SDK Runtime Gold (x86): Core (x32 Version: 10.0.26.396 - Intel Corporation) Hidden Intel® RealSense™ SDK Runtime Gold (x86): Core: Calibration (x32 Version: 10.0.26.396 - Intel Corporation) Hidden Intel® RealSense™ SDK Runtime Gold (x86): Hand Tracking (x32 Version: 10.0.26.396 - Intel Corporation) Hidden Intel® RealSense™ SDK Runtime Gold (x86): Hand Tracking: Models (x32 Version: 10.0.26.396 - Intel Corporation) Hidden Intel® Security Assist (HKLM-x32\...\{8B08DDA1-FDE7-4897-8EB6-E0B048A6D88B}) (Version: 1.0.1.618 - Intel Corporation) Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Kit de développement logiciel (SDK) Microsoft .NET Framework 4.6.1 (Français) (HKLM-x32\...\{9369E1F2-44C9-4864-843E-159725E660CB}) (Version: 4.6.01055 - Microsoft Corporation) Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.32 - Intel(R) Corporation) Hidden Manager (x32 Version: 4.1.4.27792 - 2015 pdfforge GmbH. All rights reserved) Hidden Manager (x32 Version: 5.0.15.31893 - 2017 pdfforge GmbH. All rights reserved) Hidden Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (Français) (HKLM-x32\...\{AD054CB0-F527-48AD-832B-E65D46237C88}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation) Mises à jour NVIDIA 23.23.30.0 (Version: 23.23.30.0 - NVIDIA Corporation) Hidden Mozilla Firefox 51.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 fr)) (Version: 51.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla) Mozilla Thunderbird 45.6.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 45.6.0 (x86 fr)) (Version: 45.6.0 - Mozilla) MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25420 - Microsoft Corporation) Hidden Multi-Device Hybrid Apps using C# - Templates - ENU (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden NVIDIA GeForce Experience 3.4.0.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.4.0.70 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 378.78 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.23 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Pilote graphique 378.78 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 378.78 - NVIDIA Corporation) NvNodejs (Version: 3.4.0.70 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.3.16.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation) Panneau de configuration NVIDIA 378.78 (Version: 378.78 - NVIDIA Corporation) Hidden PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH) PDF Architect 4 Create Module (Version: 4.1.5.29097 - pdfforge GmbH) Hidden PDF Architect 4 Edit Module (Version: 4.1.5.29097 - pdfforge GmbH) Hidden PDF Architect 4 View Module (Version: 4.1.5.29097 - pdfforge GmbH) Hidden PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.21.32007 - pdfforge GmbH) PDF Architect 5 Create Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden PDF Architect 5 Edit Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden PDF Architect 5 View Module (Version: 5.0.22.32126 - pdfforge GmbH) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.1 - pdfforge GmbH) PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.12.1007.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7960 - Realtek Semiconductor Corp.) Roslyn Language Services - x86 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (x32 Version: 14.0.25431 - Microsoft Corporation) Hidden SHIELD Streaming (Version: 7.1.0351 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.4.0.70 - NVIDIA Corporation) Hidden Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) Team Explorer for Microsoft Visual Studio 2015 Update 3.1 (x32 Version: 14.102.25619 - Microsoft) Hidden TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.9.19 - Tweaking.com) TypeScript Power Tool (x32 Version: 1.8.34.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.36.0 - Microsoft Corporation) Hidden Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) VS Update core components (x32 Version: 14.0.25431 - Microsoft Corporation) Hidden vs_update3notification (x32 Version: 14.0.25431 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3091123387-1739985617-3006187706-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3091123387-1739985617-3006187706-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3091123387-1739985617-3006187706-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3091123387-1739985617-3006187706-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3091123387-1739985617-3006187706-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3091123387-1739985617-3006187706-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1C578F85-4CD3-44C0-8048-3EBBC703811E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-02-23] (NVIDIA Corporation) Task: {22D3DF77-5511-418C-8130-43F835C5296D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd) Task: {2873813B-595B-4A38-B503-340A91B32025} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-16] (Adobe Systems Incorporated) Task: {2915E84B-E8A7-498F-B040-DAA9CE99945F} - System32\Tasks\Tweaking.com - Windows Repair Tray Icon => D:\Window repair\WR_Tray_Icon.exe [2015-03-12] (Tweaking.com) Task: {39338134-E2F7-46CA-BB99-FE757C077250} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK Task: {3B5D4A02-9A46-4851-9478-1FEB1617DD63} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-02-23] (NVIDIA Corporation) Task: {49DB7B08-971F-4B62-897C-B87B6815D80D} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation) Task: {5809D8A1-11B3-4D54-A8B8-ABAAB6589F06} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation) Task: {7ED873EC-33E2-4582-983A-4A856F4BC62B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-02-23] (NVIDIA Corporation) Task: {A5EF8497-C4A7-45D8-95BB-F56F35FB25D7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation) Task: {BA074AEE-5707-4660-AE57-C1A5E36168BA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-02-23] (NVIDIA Corporation) Task: {BB60FF28-7F29-4D37-9F01-42C6A0A4D889} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-02-23] (NVIDIA Corporation) Task: {DC14D131-CB56-49F9-BA7D-56A6A1789B0F} - \OneDrive Standalone Update Task -> Pas de fichier <==== ATTENTION Task: {DDF9DCBB-2DC1-4326-B944-59D11C051799} - \Intel PTT EK Recertification -> Pas de fichier <==== ATTENTION Task: {E39477C1-994A-4915-8E17-F62D7F7329B9} - System32\Tasks\CAM => C:\Program Files (x86)\NZXT\CAM\CAM_V3.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll 2016-12-15 08:10 - 2016-12-09 11:29 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll 2016-11-22 08:49 - 2017-02-23 19:35 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll 2016-11-22 08:49 - 2017-02-23 19:35 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-11 19:33 - 2016-12-11 19:33 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe 2016-12-09 19:52 - 2017-02-23 09:28 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-12-15 08:10 - 2016-12-09 11:29 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll 2016-12-09 20:04 - 2016-12-09 20:04 - 00959168 _____ () C:\Users\corentin pc\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\amd64\ClientTelemetry.dll 2016-11-10 10:03 - 2016-11-10 10:03 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-01-11 09:23 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-01-11 09:23 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-01-11 09:23 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-01-11 09:23 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-01-11 09:23 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-01-11 09:23 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-01-11 09:23 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-03-14 14:00 - 2017-03-14 14:15 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-03-14 14:00 - 2017-03-14 14:15 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-03-14 14:00 - 2017-03-14 14:15 - 41048064 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-03-14 14:00 - 2017-03-14 14:15 - 02236896 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\roottools.dll 2016-11-22 08:49 - 2017-02-23 19:35 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2016-11-22 08:49 - 2017-02-23 19:35 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll 2016-11-22 08:49 - 2017-02-23 19:35 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-12-09 20:04 - 2016-12-09 20:04 - 00679624 _____ () C:\Users\corentin pc\AppData\Local\Microsoft\OneDrive\17.3.6381.0405\ClientTelemetry.dll 2016-03-16 01:54 - 2016-03-16 01:54 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2016-11-22 08:49 - 2017-02-23 15:30 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node 2016-11-22 08:49 - 2017-02-23 15:30 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node 2016-11-22 08:49 - 2017-02-23 15:30 - 02443320 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node 2016-11-22 08:49 - 2017-02-23 15:30 - 00385592 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node 2016-11-22 08:49 - 2017-02-23 15:30 - 00543288 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node 2016-11-22 08:49 - 2017-02-23 15:30 - 00468536 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-07-16 12:47 - 2017-03-14 14:26 - 00000855 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\StartupFolder: => "Roccat Talk.lnk" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "CAM" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "GUDelayStartup" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-3091123387-1739985617-3006187706-1001\...\StartupApproved\Run: => "MinerGateGui" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{589B166F-8CA7-4B9B-8A5A-222C0F081B66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8AB0396C-6044-417D-AF29-287AFD7C905A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9E816626-2EB6-43D7-AE0D-888A4555048F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{0482F314-B540-4160-9927-50E115235B5D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{AB936CAF-59D7-4693-8210-6505AC380FEF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe FirewallRules: [{66752100-91A9-436A-BEA5-BE734D43EFB2}] => (Allow) C:\Windows\syswow64\PnkBstrA.exe FirewallRules: [{1800798D-33C9-443A-AE23-3BE21C0E24B1}] => (Allow) C:\Windows\syswow64\PnkBstrA.exe FirewallRules: [{272C659F-A8FB-4012-97C8-A0A5EDA9051B}] => (Allow) C:\Windows\syswow64\PnkBstrB.exe FirewallRules: [{B0083084-013A-4F41-A483-10C4B04FC180}] => (Allow) C:\Windows\syswow64\PnkBstrB.exe FirewallRules: [{E9477333-D856-49D2-8829-31EDAFE6EA57}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B33F162C-7857-4798-AB17-0E08D6B5F96D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5E03C60D-665C-4163-8B4F-FA2A35A9821F}] => (Allow) LPort=9143 FirewallRules: [{DF59F2DA-7F3F-458B-BF64-4C0B981378F0}] => (Allow) LPort=2333 FirewallRules: [{EB23496A-C2D9-4BC0-BDD8-633E3CB892C5}] => (Allow) C:\Users\corentin pc\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D16D395F-06F5-4471-9B9A-C41AFABA063D}] => (Allow) C:\Users\corentin pc\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D2DCBD66-2C5C-4CDF-8351-2F096420141F}] => (Allow) C:\Users\corentin pc\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1A330C6B-53E8-42E9-A037-1DBA86C54F33}] => (Allow) C:\Users\corentin pc\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{92EE2CED-D9A8-4B30-8E49-FDA2EFA2BEB6}] => (Allow) C:\Users\corentin pc\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D4E8C1A7-26BB-4BE1-BA9C-BDA5E53A81D0}] => (Allow) C:\Users\corentin pc\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{05A84EFA-74BF-41A2-871E-64B2A37655CE}] => (Allow) D:\Nox\bin\Nox.exe FirewallRules: [{468B7E9B-F295-4471-82B1-D5AAC17154D8}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe FirewallRules: [TCP Query User{258614A4-916C-498C-B1DC-ABA473A7FFA2}C:\users\corentin pc\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\corentin pc\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [UDP Query User{72785DD7-1DF9-498C-977F-10728A511DCE}C:\users\corentin pc\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\corentin pc\appdata\roaming\cacaoweb\cacaoweb.exe FirewallRules: [{99C50547-0F7A-4535-B296-F14CA4680866}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [TCP Query User{69BCE291-B39C-4458-A835-77870BA0FB37}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe FirewallRules: [UDP Query User{6E31C4CE-0E7F-4EE3-A789-D8D72A7CFA12}C:\program files\unity\editor\unity.exe] => (Allow) C:\program files\unity\editor\unity.exe ==================== Points de restauration ========================= 11-03-2017 11:27:00 Programme d’installation pour les modules Windows 18-03-2017 17:32:37 Removed Skype™ 7.33 ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/18/2017 06:06:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante plugin-container.exe, version : 51.0.1.6234, horodatage : 0x5888f707 Nom du module défaillant : mozglue.dll, version : 51.0.1.6234, horodatage : 0x5888f27e Code d’exception : 0x80000003 Décalage d’erreur : 0x0000ec83 ID du processus défaillant : 0xdf8 Heure de début de l’application défaillante : 0x01d2a009c6a9e89d Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\Mozilla Firefox\mozglue.dll ID de rapport : de35f1b0-3b89-42e9-962f-da35b0b06a57 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/18/2017 05:33:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Nox_unload.exe, version : 3.8.0.0, horodatage : 0x00000040 Nom du module défaillant : dataexchange.dll, version : 10.0.14393.206, horodatage : 0x57dad2ca Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000831f ID du processus défaillant : 0x534 Heure de début de l’application défaillante : 0x01d2a0055ba5386f Chemin d’accès de l’application défaillante : D:\Nox\bin\Nox_unload.exe Chemin d’accès du module défaillant: C:\Windows\system32\dataexchange.dll ID de rapport : a22e827d-1a49-4966-8a0f-81140406b381 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/18/2017 05:32:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (03/14/2017 02:38:06 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour de l’état Windows Defender vers SECURITY_PRODUCT_STATE_ON (erreur %3). Error: (03/14/2017 02:38:06 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour de l’état Windows Defender vers SECURITY_PRODUCT_STATE_ON (erreur %3). Error: (03/14/2017 02:26:04 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: AUTORITE NT) Description: Le fournisseur d’événements wsp_sr a tenté d’inscrire dans l’espace de noms //./root/Microsoft/Windows/Storage/Providers_v2 la requête « select * from WSP_ReplicationGroupStorageModificationEvent » dont la classe cible « WSP_ReplicationGroupStorageModificationEvent » n’existe pas. La requête sera ignorée. Error: (03/14/2017 02:26:04 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: AUTORITE NT) Description: Le fournisseur d’événements wsp_sr a tenté d’inscrire dans l’espace de noms //./root/Microsoft/Windows/Storage/Providers_v2 la requête « select * from WSP_ReplicationGroupStorageDepartureEvent » dont la classe cible « WSP_ReplicationGroupStorageDepartureEvent » n’existe pas. La requête sera ignorée. Error: (03/14/2017 02:26:04 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: AUTORITE NT) Description: Le fournisseur d’événements wsp_sr a tenté d’inscrire dans l’espace de noms //./root/Microsoft/Windows/Storage/Providers_v2 la requête « select * from WSP_ReplicationGroupStorageArrivalEvent » dont la classe cible « WSP_ReplicationGroupStorageArrivalEvent » n’existe pas. La requête sera ignorée. Error: (03/14/2017 02:26:04 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: AUTORITE NT) Description: Le fournisseur d’événements a tenté d’inscrire dans l’espace de noms //./root/Microsoft/Windows/Storage/Providers_v2 la requête « select * from WSP_ReplicationGroupStorageModificationEvent » dont la classe cible « WSP_ReplicationGroupStorageModificationEvent » n’existe pas. La requête sera ignorée. Error: (03/14/2017 02:26:04 PM) (Source: Microsoft-Windows-WMI) (EventID: 24) (User: AUTORITE NT) Description: Le fournisseur d’événements a tenté d’inscrire dans l’espace de noms //./root/Microsoft/Windows/Storage/Providers_v2 la requête « select * from WSP_ReplicationGroupStorageDepartureEvent » dont la classe cible « WSP_ReplicationGroupStorageDepartureEvent » n’existe pas. La requête sera ignorée. Erreurs système: ============= Error: (03/18/2017 06:07:31 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service HvHost s’est arrêté avec l’erreur : Un périphérique attaché au système ne fonctionne pas correctement. Error: (03/18/2017 06:07:31 PM) (Source: NETLOGON) (EventID: 3095) (User: ) Description: Cet ordinateur est configuré en tant que membre d’un groupe de travail, et non en tant que membre d’un domaine. Il n’est pas nécessaire d’exécuter le service Accès réseau dans cette configuration. Error: (03/18/2017 06:07:00 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/18/2017 06:06:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Dynamic Application Loader Host Interface Service s’est terminé de façon inattendue pour la 1ème fois. Error: (03/18/2017 06:06:52 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois. Error: (03/18/2017 06:06:51 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (03/18/2017 06:06:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service PDF Architect 4 Manager s’est terminé de façon inattendue pour la 1ème fois. Error: (03/18/2017 06:06:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service PDF Architect 5 Manager s’est terminé de façon inattendue pour la 1ème fois. Error: (03/18/2017 06:06:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service PnkBstrA s’est terminé de façon inattendue pour la 1ème fois. Error: (03/18/2017 06:06:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service PDF Architect 5 Creator s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2017-03-13 21:08:51.657 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-03-12 19:08:25.337 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\GFX\Logiciel\After Effects CC 2015 TA\After Effects CC 2015 TA\Windows 10 Explorer.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-12 19:08:25.332 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\GFX\Logiciel\After Effects CC 2015 TA\After Effects CC 2015 TA\Windows 10 Explorer.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-12 19:08:25.328 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\GFX\Logiciel\After Effects CC 2015 TA\After Effects CC 2015 TA\Windows 10 Explorer.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-12 19:08:25.299 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\GFX\Logiciel\After Effects CC 2015 TA\After Effects CC 2015 TA\Windows 10 Explorer.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-12 19:08:25.295 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\GFX\Logiciel\After Effects CC 2015 TA\After Effects CC 2015 TA\Windows 10 Explorer.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-03-11 17:23:32.983 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-03-04 08:46:22.642 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-03-03 09:11:05.727 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-03-01 16:52:08.004 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6500 CPU @ 3.20GHz Pourcentage de mémoire utilisée: 14% Mémoire physique - RAM - totale: 16347 MB Mémoire physique - RAM - disponible: 13959.36 MB Mémoire virtuelle totale: 32731 MB Mémoire virtuelle disponible: 30303.5 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:232.13 GB) (Free:156.7 GB) NTFS Drive d: () (Fixed) (Total:931.51 GB) (Free:929.27 GB) NTFS Drive g: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:65.88 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 37AA6733) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 884CA098) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================