Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-06-2017 01 Exécuté par PC (18-06-2017 16:35:19) Exécuté depuis C:\Users\PC\Desktop Windows 10 Pro Version 1607 (X64) (2017-01-10 08:48:01) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2103366419-1330197616-351240959-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2103366419-1330197616-351240959-503 - Limited - Disabled) Invité (S-1-5-21-2103366419-1330197616-351240959-501 - Limited - Disabled) PC (S-1-5-21-2103366419-1330197616-351240959-1001 - Administrator - Enabled) => C:\Users\PC ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) . . . (Version: 2.1.28.3 - Intel) Hidden . . . (x32 Version: 2.6.2.4 - Intel) Hidden µTorrent (HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.) Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.126 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Ansel (Version: 382.05 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Application Blizzard (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Archeage (HKLM-x32\...\Glyph Archeage) (Version: - Trion Worlds, Inc.) Assassin's Creed IV Black Flag version 1.07 (HKLM-x32\...\{0616F772-5099-41A0-A20F-339C74FDAE95}_is1) (Version: 1.07 - Ubisoft) Assassin's Creed Unity (HKLM-x32\...\{66FC1D56-D6C7-4404-8660-023C40A80C49}_is1) (Version: - ) AuraKingdom-FR (HKLM-x32\...\AuraKingdom-FR) (Version: - ) BioShock Infinite (HKLM-x32\...\BioShock Infinite_is1) (Version: - ) Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.6 - Kakao Games Europe B.V.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform) Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine) CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.0824.0 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd) Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1408.2901 - Micro-Star International Co., Ltd.) Dragon Gaming Center (x32 Version: 1.0.1408.2901 - Micro-Star International Co., Ltd.) Hidden EdenEternal-FR (HKLM-x32\...\EdenEternal-FR) (Version: - ) Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Fable III version 1.1.1.3 (HKLM-x32\...\Fable III_is1) (Version: 1.1.1.3 - Microsoft) Far Cry 4 version 1.9.0 (HKLM-x32\...\{62727D50-FA74-4A53-B57F-0DCBD9D8C1BB}_is1) (Version: 1.9.0 - UBISoft) Far Cry Primal (HKLM-x32\...\{451039ED-7E83-4A60-BE97-92E05EA819C5}_is1) (Version: 1.3.3.0 - Ubisoft) FINAL FANTASY XIV - A Realm Reborn (HKLM-x32\...\{2B41E132-07DF-4925-A3D3-F2D1765CCDFE}) (Version: 1.0.0000 - SQUARE ENIX CO., LTD.) Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.) Google Chrome (HKLM-x32\...\{D856B6FE-B796-3FE8-A6B4-B3F293FAFB3E}) (Version: 59.0.3071.104 - Google, Inc.) Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 1.0.1610.3101 - Micro-Star International Co., Ltd.) Help Desk (x32 Version: 1.0.1610.3101 - Micro-Star International Co., Ltd.) Hidden Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment) iCloud (HKLM\...\{5B1A59DA-D1EC-4C3A-A996-DF011A0A9668}) (Version: 6.2.2.39 - Apple Inc.) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.2.1000 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.0.1016 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{C800791E-9A08-42A2-8890-9D9667786538}) (Version: 19.30.1649.0949 - Intel Corporation) Intel® Driver Update Utility (HKLM-x32\...\{66e8e99a-eb6f-4403-9fc2-0ddd4d6f353e}) (Version: 2.6.2.4 - Intel) iTunes (HKLM\...\{6C01A0A7-7440-4D48-93C6-2927A1E93FE6}) (Version: 12.6.0.100 - Apple Inc.) Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) KB9X Radio Switch Driver (HKLM\...\5AADE1068CF70DD983F763B20CF2CAAB72883915) (Version: 1.1.0.0 - ENE TECHNOLOGY INC.) Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) League of Legends (x32 Version: 4.2.1 - Riot Games) Hidden Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation) Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.38 - Intel(R) Corporation) Hidden Lords of the Fallen (HKLM-x32\...\{F3DFAE55-83E3-4BD4-9311-B5AB0C16EFD9}_is1) (Version: - CI Games) Malwarebytes version 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes) Mass Effect™ : Andromeda (HKLM-x32\...\{72BBCA87-9350-48BC-9E2F-6DBC1E80C993}) (Version: 1.0.0.4 - Electronic Arts) MegaTrainer Ultimate version 1.4.8.1 (HKLM-x32\...\{68A5CFDB-E05C-46BC-B2EB-988D1E2C2444}_is1) (Version: 1.4.8.1 - MegaDev) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mises à jour NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1607.0401 - Micro-Star International Co., Ltd.) MSI Remind Manager (x32 Version: 1.0.1607.0401 - Micro-Star International Co., Ltd.) Hidden My.com Game Center (HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\MyComGames) (Version: 3.201 - My.com B.V.) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.12 - Black Tree Gaming) NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation) NVIDIA Pilote graphique 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation) NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Package de pilotes Windows - Intel (NETwNb64) net (04/23/2014 17.0.3.2) (HKLM\...\EC26829FF514D70178509FB1D5BF40D602A19F37) (Version: 04/23/2014 17.0.3.2 - Intel) Package de pilotes Windows - Intel (NETwNe64) net (02/25/2014 15.12.0.6) (HKLM\...\46240EC5F276DF6FA1B9F7BC2885C6440ED2E373) (Version: 02/25/2014 15.12.0.6 - Intel) Package de pilotes Windows - Intel (NETwNs64) net (01/26/2014 15.11.0.7) (HKLM\...\0A77B5F4BCE56373CD229ADC3772182DBC27DE42) (Version: 01/26/2014 15.11.0.7 - Intel) Package de pilotes Windows - Intel net (01/26/2014 15.11.0.7) (HKLM\...\0D68766EA8DBD8616AA9879F472971834608DD78) (Version: 01/26/2014 15.11.0.7 - Intel) Package de pilotes Windows - Intel net (02/25/2014 15.12.0.6) (HKLM\...\E69467F426D98027D54DDC50D7740B00D29F2ED0) (Version: 02/25/2014 15.12.0.6 - Intel) Package de pilotes Windows - Intel net (04/23/2014 17.0.3.2) (HKLM\...\3C619C3A69DC5FE7FABA7CFB67ABECFCD35A2E83) (Version: 04/23/2014 17.0.3.2 - Intel) Panneau de configuration NVIDIA 382.05 (Version: 382.05 - NVIDIA Corporation) Hidden PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Portrait Professional Studio 9.0 (HKLM-x32\...\Portrait Professional Studio 9_is1) (Version: 9.0 - Anthropics Technology Ltd.) Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.46.1056 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer E220x Drivers (Version: 1.1.46.1056 - Qualcomm Atheros) Hidden Qualcomm Atheros Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.46.1056 - Qualcomm Atheros) Qualcomm Atheros Network Manager (Version: 1.1.46.1056 - Qualcomm Atheros) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21258 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.) RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.) Rise of the Tomb Raider (HKLM-x32\...\{45F08513-973A-4C18-93FD-8E12B1908390}_is1) (Version: - Square Enix) SCM (HKLM\...\{F5D84549-523F-438F-8ACC-0944E30EF78C}) (Version: 13.014.09014 - Application) Shadow Warrior 2 (HKLM-x32\...\1434021265_is1) (Version: 2.0.0.4 - GOG.com) Shadow Warrior 2 Pre-order Exclusive (HKLM-x32\...\1267008497_is1) (Version: 2.0.0.1 - GOG.com) SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden Skyforge MyCom (HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\Skyforge MyCom) (Version: 1.146 - My.com B.V.) Skype™ 7.37 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.37.103 - Skype Technologies S.A.) SteelSeries Engine (HKLM\...\SteelSeries Engine) (Version: 2.9.2015.1 - SteelSeries) SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.184 - Synaptics Incorporated) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH) TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: - Gameforge 4D GmbH) The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.4 - Zenimax Online Studios) The Elder Scrolls V Skyrim - Legendary Edition (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition_is1) (Version: - ) The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\The Witcher 2 - Assassins of Kings Enhanced Edition_is1) (Version: - GOG.com) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.10.0.0 - GOG.com) The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.21.0.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.20.0.0 - GOG.com) The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.21.0.0 - GOG.com) TwinSaga-FR version 1 (HKLM-x32\...\TwinSaga-FR_is1) (Version: 1 - Aeria Games) VLC media player (HKLM\...\VLC media player) (Version: 2.2.6 - VideoLAN) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) XSplit Gamecaster (HKLM-x32\...\{2B6B16D9-0FBF-4B72-9E66-E4B9155E4F0B}) (Version: 2.9.1701.1617 - SplitmediaLabs) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {2A4F91C8-4902-417D-B8C6-E3FEB612C142} - System32\Tasks\{C2FBE49F-D973-2B09-9EA5-993B50CDB570} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\9fdf707c\ab65095f.dll" <==== ATTENTION Task: {6E5FDB48-DE90-47A4-BB00-8B473F68280B} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation) Task: {6EE7342A-625D-4C3A-9696-9C0F55D04EA1} - System32\Tasks\b1d8ee90bfb1c509d7748cd2981aa83f => sc start b1d8ee90bfb1c509d7748cd2981aa83f <==== ATTENTION Task: {909062C7-CC42-4CA6-9524-04C2E18B37F0} - System32\Tasks\Undelete Digitizer => Rundll32.exe "C:\Program Files\Undelete Digitizer\Undelete Digitizer.dll",VZFwUXsuW <==== ATTENTION Task: {9C2DE4A0-03C4-4B61-B282-45CDAFC817B1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {BEF8D3FF-739A-4ADA-82ED-44F059404D27} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-18] (Google Inc.) Task: {BFDF7808-B017-4815-8D7D-1CE298CCDBEB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-18] (Google Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION Shortcut: C:\Users\PC\Desktop\nettoyage\Аvast SаfеZonе Вrоwsеr.lnk -> C:\Users\PC\AppData\Roaming\Browsers\exe.rehcnual.bat (Pas de fichier) <===== Cyrillic ShortcutWithArgument: C:\Users\PC\Desktop\rep\Nouveau dossier (3)\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\PC\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/ ShortcutWithArgument: C:\Users\PC\Desktop\nettoyage\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic ShortcutWithArgument: C:\Users\PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Chromium.lnk -> C:\Users\PC\AppData\Local\chromium\Application\chrome.exe (The Chromium Authors) -> --load-extension="C:\Users\PC\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/ ShortcutWithArgument: C:\Users\PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\PC\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/ ShortcutWithArgument: C:\Users\PC\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\PC\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/ ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\PC\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/ ==================== Modules chargés (Avec liste blanche) ============== 2017-06-16 21:40 - 2017-06-18 16:11 - 00624640 _____ () C:\Windows\System32\NetUtils2016.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-06-14 18:32 - 2017-06-03 12:01 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2017-02-13 21:06 - 2016-11-17 23:16 - 00805632 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\esrv_svc.exe 2017-02-13 21:06 - 2016-11-17 23:18 - 01981184 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_modeler.dll 2017-02-13 21:06 - 2016-11-17 23:11 - 00247552 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\acpi_battery_input.dll 2017-02-13 21:06 - 2016-11-17 23:10 - 00212736 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\wifi_input.dll 2017-02-13 21:06 - 2016-11-17 23:11 - 00174848 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\devices_use_input.dll 2017-02-13 21:06 - 2016-11-17 23:10 - 00203520 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_system_power_state_input.dll 2017-02-13 21:06 - 2016-11-17 23:09 - 00206592 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_disktrace_input.dll 2017-02-13 21:06 - 2016-11-17 23:09 - 00336640 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_process_input.dll 2017-02-13 21:06 - 2016-11-17 23:06 - 00147712 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_winstat_input.dll 2017-02-13 21:06 - 2016-11-17 23:11 - 00213248 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\sema_thermal_input.dll 2017-02-13 21:06 - 2016-11-17 23:07 - 00229120 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_quality_and_reliability_input.dll 2017-02-13 21:06 - 2016-11-17 23:08 - 00224000 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_sampler_input.dll 2017-02-13 21:06 - 2016-11-17 23:06 - 00211712 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_stress_odometer_input.dll 2017-02-13 21:06 - 2016-11-17 23:08 - 00219904 _____ () C:\Program Files\Intel\SUR\QUEENCREEK\intel_turbo_input.dll 2017-01-13 14:56 - 2017-01-13 14:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-05-09 00:44 - 2017-05-09 00:44 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-01-09 16:20 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-06-16 18:31 - 2016-12-14 12:55 - 02259232 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2017-06-16 18:31 - 2016-12-14 12:55 - 02813904 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll 2016-11-17 23:05 - 2016-11-17 23:05 - 00156928 _____ () C:\Program Files\Intel Driver Update Utility\SUR\SurSvc.exe 2017-01-10 10:39 - 2017-01-10 10:39 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-14 20:31 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-14 20:31 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-14 20:31 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-14 20:31 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-06-14 18:25 - 2017-06-03 10:47 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2017-06-14 18:25 - 2017-06-03 10:47 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-06-14 18:25 - 2017-06-03 10:51 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-01-09 16:20 - 2017-05-03 22:21 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2014-04-29 17:23 - 2014-04-29 17:23 - 01241560 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-06-18 12:55 - 2017-06-15 08:30 - 02877272 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.104\libglesv2.dll 2017-06-18 12:55 - 2017-06-15 08:30 - 00086360 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.104\libegl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com Il y a 7924 plus de sites. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2103366419-1330197616-351240959-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "SDTray" HKLM\...\StartupApproved\Run32: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "ZHPCleaner_Folder2" HKLM\...\StartupApproved\Run32: => "ZHPCleaner_Folder1" HKLM\...\StartupApproved\Run32: => "ZHPCleaner" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "YouCam Service7" HKLM\...\StartupApproved\Run32: => "Sutimenitogi" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "SteelSeries Engine" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "AdobeBridge" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_0B8CDF9298F7A85954CFC148EDF1CBD3" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_73B90D4D0D4A45E4E1249D0D8EDB5EB0" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "RXE5BB5YHSHYCEE" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "N6SD9O4Z84UUT6X" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "8EF4D72AWZRJ2DH" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "4C0DNDONBOHWI8B" HKU\S-1-5-21-2103366419-1330197616-351240959-1001\...\StartupApproved\Run: => "NT10NEVLV0B411V" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{5322BA6A-2D60-4AC3-BF52-B0EE6F93581C}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{B0913D7A-F707-49FB-9DD9-92DDE448519F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7F43F3B4-FE27-41F3-B173-A31F4934DF96}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{419DC984-9FEE-4F22-AF4C-79730797AEB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{E428D85A-2BDB-4421-9841-32719C1C4FE6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{7A8603A7-9511-453E-9D93-05AD8348B217}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{038B14CB-479F-40BA-B3B9-89DED4893922}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe FirewallRules: [{E9F84171-DC2D-4DD1-98D5-2695B919C040}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe FirewallRules: [{4C043D57-861C-4309-A221-E1B9A83C5353}] => (Allow) LPort=7575 FirewallRules: [{C2056FFC-1251-4E3A-B1F3-327B301B766C}] => (Allow) C:\WINDOWS\explorer.exe FirewallRules: [{07CE8501-03E2-425D-B63B-E184855CBC0C}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{31288D29-59E8-4C56-A5BB-8F8D363853E5}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{814FE271-7AE4-4569-AB40-74DE2E16FBCC}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9F623182-2A80-464B-B2C2-8FBC360A5262}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{4EADB0E8-9F92-484A-B4BF-50C237378AE2}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{9F573B17-A008-4B4B-9A48-55CE75AA8B5F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{68E328CA-3CA7-445E-83B1-8D41D2E7B5BD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{096551DB-3F6C-466E-99EF-7ED846848548}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{B4C5F6D9-96C5-47C9-8580-FFF70E6790F0}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EEEE835C-A648-43A9-91BE-8015196986F5}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{12C75D17-1825-4E55-8DD1-F678E0BC3B84}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{232ECEE4-0CCD-4EEF-8023-9E5A382417C0}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{BDCE9EA9-E436-4566-A312-9C260FF2E1D7}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{97155F68-F8BF-4071-8F33-61647C45804E}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0B5D85BC-0AFC-4D4B-B355-246AC319EA94}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe FirewallRules: [{F4BBFEC8-59AD-4E1D-A39D-73D01D1AD8C6}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe FirewallRules: [{AF6D4E9D-314D-4B69-A825-74F368260DD2}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe FirewallRules: [{4A41F5B5-755B-42C4-A8A6-15290AEF29F1}] => (Allow) C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.cam.exe FirewallRules: [TCP Query User{1C0ED9EA-71ED-441E-A027-5E705E8D2CBA}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{96EF406B-E293-4253-9354-84BFB1BBBD6A}D:\far cry 4\bin\farcry4.exe] => (Allow) D:\far cry 4\bin\farcry4.exe FirewallRules: [{75EFB47C-C67B-48A6-A199-F08CC6D28019}] => (Block) D:\far cry 4\bin\farcry4.exe FirewallRules: [{C51ADC9C-4028-4C34-894F-C96A4CC6A1A9}] => (Block) D:\far cry 4\bin\farcry4.exe FirewallRules: [TCP Query User{54CEC8FD-8D0F-4192-ACF7-D327F548C2D2}C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [UDP Query User{4FD9E133-4738-46E9-8CC4-6CCA55D8834A}C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [{998877A0-8ABD-4D09-8967-BBA3CBD5B9BD}] => (Block) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [{5FB0C68F-1638-4E46-BBB8-330FBE250127}] => (Block) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe FirewallRules: [{AA709880-44B7-4484-B772-9576B81FCB5A}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{7C43AD54-2F1F-4D1F-94F6-EDD648956CFD}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivboot.exe FirewallRules: [{9EAAC7B6-776E-4C73-AE03-224F45B2B67B}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe FirewallRules: [{25DE183E-75EE-4318-BB59-2B4717B41052}] => (Allow) D:\SquareEnix\FINAL FANTASY XIV - A Realm Reborn\boot\ffxivlauncher.exe FirewallRules: [{B24996F2-945F-41B7-95FF-D8ED27A24698}] => (Allow) D:\aura\AuraKingdom-FR\game.bin FirewallRules: [{38528816-3638-4DEB-9689-622F2F5EF827}] => (Allow) D:\aura\AuraKingdom-FR\game.bin FirewallRules: [TCP Query User{5DD180AE-E106-406F-94D6-BBB07D176909}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{139B26B3-64E3-4CA3-BC4E-ECFCE9767F48}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{06B24C2E-D9D8-4181-8521-DC6E357910E9}D:\blizzard app\battle.net.8800\battle.net.exe] => (Allow) D:\blizzard app\battle.net.8800\battle.net.exe FirewallRules: [UDP Query User{D6904BAB-A365-4399-BB63-2A6526ABF1C7}D:\blizzard app\battle.net.8800\battle.net.exe] => (Allow) D:\blizzard app\battle.net.8800\battle.net.exe FirewallRules: [{EA49FA5A-26E5-4EFC-9260-FC19AC96E858}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{4B1CBAAD-4193-44BE-B1DD-D41650ABB74B}] => (Allow) D:\TwinSaga-FR\game.bin FirewallRules: [{9375AD12-5E55-4EC5-B127-C227B110C28B}] => (Allow) D:\TwinSaga-FR\game.bin FirewallRules: [TCP Query User{3066BF60-5BE8-4417-B613-B328F071AC0E}C:\users\pc\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\pc\appdata\local\mycomgames\mycomgames.exe FirewallRules: [UDP Query User{79966262-586C-4628-B408-9C75DB90103C}C:\users\pc\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\pc\appdata\local\mycomgames\mycomgames.exe FirewallRules: [{E9C31FD1-3469-4238-9AA3-065FEB7669B6}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{8986454A-38FB-4151-AFAA-56AF4218B0E1}] => (Allow) C:\Users\PC\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C46933E3-1F3D-4FFC-8B15-7C829173170B}] => (Allow) C:\Users\PC\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{B9DFC124-1793-461E-A60D-DD7F85893427}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{C9FA11FB-3EDE-4CAB-A8BE-766287CBEE43}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{1EE8B320-B1F3-4D33-A47A-BEC1E6AC4921}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{87CA0412-6B7D-40D3-9921-B946381DB7B9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F7EF5368-0DB6-4F01-9FA6-2D4F8E42F953}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 16-06-2017 02:14:10 Removed NetAdapterUpdate 16-06-2017 02:52:59 Removed NetAdapterUpdate 18-06-2017 12:50:16 ResetBrowser 18-06-2017 13:10:04 Désinfection 18-06-2017 13:10:37 Fonctione ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (06/18/2017 04:11:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: UDPEndRecv: WSARecvMsg control information error. Error: (06/18/2017 04:11:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante backgroundTaskHost.exe, version : 10.0.14393.0, horodatage : 0x57899bb2 Nom du module défaillant : twinapi.appcore.dll, version : 10.0.14393.1198, horodatage : 0x590280b1 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000006d1b4 ID du processus défaillant : 0x1c9c Heure de début de l’application défaillante : 0x01d2e83cc8df4ccc Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\backgroundTaskHost.exe Chemin d’accès du module défaillant: C:\Windows\System32\twinapi.appcore.dll ID de rapport : 1123192e-e964-4d67-bdb1-aac7eab47c83 Nom complet du package défaillant : Microsoft.People_10.1.3160.0_x64__8wekyb3d8bbwe ID de l’application relative au package défaillant : x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x Error: (06/18/2017 01:41:00 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: UDPEndRecv: WSARecvMsg control information error. Error: (06/18/2017 01:40:27 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante backgroundTaskHost.exe, version : 10.0.14393.0, horodatage : 0x57899bb2 Nom du module défaillant : twinapi.appcore.dll, version : 10.0.14393.1198, horodatage : 0x590280b1 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000006d1b4 ID du processus défaillant : 0x1cfc Heure de début de l’application défaillante : 0x01d2e827ac270c5b Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\backgroundTaskHost.exe Chemin d’accès du module défaillant: C:\Windows\System32\twinapi.appcore.dll ID de rapport : 01f3925e-062e-4efe-85ab-82ab7b4c701b Nom complet du package défaillant : Microsoft.People_10.1.3160.0_x64__8wekyb3d8bbwe ID de l’application relative au package défaillant : x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x Error: (06/18/2017 01:10:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (06/18/2017 01:10:05 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (06/18/2017 12:50:17 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (06/18/2017 12:16:03 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: UDPEndRecv: WSARecvMsg control information error. Error: (06/18/2017 12:08:47 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante backgroundTaskHost.exe, version : 10.0.14393.0, horodatage : 0x57899bb2 Nom du module défaillant : twinapi.appcore.dll, version : 10.0.14393.1198, horodatage : 0x590280b1 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000006d1b4 ID du processus défaillant : 0x1c64 Heure de début de l’application défaillante : 0x01d2e81ade25764c Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\backgroundTaskHost.exe Chemin d’accès du module défaillant: C:\Windows\System32\twinapi.appcore.dll ID de rapport : 85506803-f0e1-440b-9cbe-43ccb917b1ea Nom complet du package défaillant : Microsoft.People_10.1.3160.0_x64__8wekyb3d8bbwe ID de l’application relative au package défaillant : x4c7a3b7dy2188y46d4ya362y19ac5a5805e5x Error: (06/18/2017 10:08:01 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: UDPEndRecv: WSARecvMsg control information error. Erreurs système: ============= Error: (06/18/2017 04:21:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1EU21S8) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/18/2017 04:19:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service de plateforme des appareils connectés s’est arrêté avec l’erreur : Erreur non spécifiée Error: (06/18/2017 04:19:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1EU21S8) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/18/2017 04:17:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service de plateforme des appareils connectés s’est arrêté avec l’erreur : Erreur non spécifiée Error: (06/18/2017 04:17:29 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-1EU21S8) Description: Le serveur {37998346-3765-45B1-8C66-AA88CA6B20B8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/18/2017 04:15:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service de plateforme des appareils connectés s’est arrêté avec l’erreur : Erreur non spécifiée Error: (06/18/2017 04:13:25 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service de plateforme des appareils connectés s’est arrêté avec l’erreur : Erreur non spécifiée Error: (06/18/2017 04:11:30 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT) Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local. Error: (06/18/2017 04:11:26 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/18/2017 04:11:26 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. CodeIntegrity: =================================== Date: 2017-01-17 13:26:35.724 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-01-17 13:01:46.710 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-01-16 09:55:32.656 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-01-16 09:55:32.652 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-01-16 09:55:32.651 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-01-16 09:55:32.650 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-01-16 09:55:32.650 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-01-16 09:55:32.650 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-01-12 16:32:08.393 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-10 10:07:18.359 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4710MQ CPU @ 2.50GHz Pourcentage de mémoire utilisée: 12% Mémoire physique - RAM - totale: 24495.67 MB Mémoire physique - RAM - disponible: 21477.61 MB Mémoire virtuelle totale: 26031.67 MB Mémoire virtuelle disponible: 22916.05 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:231.59 GB) (Free:7.56 GB) NTFS Drive d: (03-libre) (Fixed) (Total:931.51 GB) (Free:111.62 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: A099948B) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=231.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=822 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 5FF10F29) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================