Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 23-07-2017 Exécuté par Hana (24-07-2017 11:12:07) Exécuté depuis C:\Users\Hana\Desktop Windows 10 Home Version 1703 (X64) (2017-04-18 16:03:34) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2680812969-3846653718-2022396312-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2680812969-3846653718-2022396312-503 - Limited - Disabled) Hana (S-1-5-21-2680812969-3846653718-2022396312-1001 - Administrator - Enabled) => C:\Users\Hana Invité (S-1-5-21-2680812969-3846653718-2022396312-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Action Replay PowerSaves 3DS version 1.51 (HKLM-x32\...\{CD24B06F-0A4D-410A-AEF2-DFE6A28AB4C0}_is1) (Version: 1.51 - Datel Design & Development) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.009.20058 - Adobe Systems Incorporated) Adobe Photoshop CS3 (HKLM-x32\...\Adobe_32e9033392a51340b32fdc6ad893ab7) (Version: 10.0 - Adobe Systems Incorporated) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.76 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17384 - Microsoft Corporation) Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.5.2303 - AVAST Software) Bandizip (HKLM\...\Bandizip) (Version: 6.08 - Bandisoft.com) Block'hood (HKLM\...\Steam App 416210) (Version: - Plethora-Project LLC) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.32 - Piriform) Driver Booster 4.4 (HKLM-x32\...\Driver Booster_is1) (Version: 4.4.0 - IObit) Easy Poster Printer (HKLM-x32\...\{BA0F9074-80B4-43D6-BADD-4EEEEE536F2A}) (Version: 6.6.0 - GD Software) Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.50.00 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 2.00.0000 - SEIKO EPSON Corp.) EPSON Scan PDF Extensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.0001 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{7BAC3F7A-B963-468E-982E-B5608A87408D}) (Version: 4.4.4 - SEIKO EPSON CORPORATION) EPSON Universal Print Driver Printer Uninstall (HKLM\...\EPSON Universal Print Driver) (Version: - SEIKO EPSON Corporation) EPSON WF-7620 Series Printer Uninstall (HKLM\...\EPSON WF-7620 Series) (Version: - SEIKO EPSON Corporation) Fraps (HKLM-x32\...\Fraps) (Version: - ) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.) Les Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.67.2 - Electronic Arts) Les Sims™ 3 70's, 80's, 90's Kit (HKLM-x32\...\{E1868CAE-E3B9-4099-8C18-AA8944D336FD}) (Version: 17.0.77 - Electronic Arts) Les Sims™ 3 Accès VIP (HKLM-x32\...\{45057FCE-5784-48BE-8176-D9D00AF56C3C}) (Version: 6.5.1 - Electronic Arts) Les Sims™ 3 Ambitions (HKLM-x32\...\{910F4A29-1134-49E0-AD8B-56E4A3152BD1}) (Version: 4.10.1 - Electronic Arts) Les Sims™ 3 Cinéma Kit d'objets (HKLM-x32\...\{D0087539-3C57-44E0-BEE7-D779D546CBE1}) (Version: 20.0.53 - Electronic Arts) Les Sims™ 3 Diesel Kit (HKLM-x32\...\{1C9B6173-6DC9-4EEE-9EFC-6BA115CFBE43}) (Version: 14.0.48 - Electronic Arts) Les Sims™ 3 Inspiration Loft Kit (HKLM-x32\...\{71828142-5A24-4BD0-97E7-976DA08CE6CF}) (Version: 3.13.1 - Electronic Arts) Les Sims™ 3 Saisons (HKLM-x32\...\{3DE92282-CB49-434F-81BF-94E5B380E889}) (Version: 16.0.136 - Electronic Arts) Les Sims™ 3 Showtime (HKLM-x32\...\{3BBFD444-5FAB-49F6-98B1-A1954E831399}) (Version: 12.0.273 - Electronic Arts) Les Sims™ 3 Suites de Luxe Kit (HKLM-x32\...\{08A25478-C5DD-4EA7-B168-3D687CA987FF}) (Version: 11.0.84 - Electronic Arts) Les Sims™ 3 Vitesse ultime ! Kit (HKLM-x32\...\{ED436EA8-4145-4703-AE5D-4D09DD24AF5A}) (Version: 5.8.1 - Electronic Arts) Les Sims™ 3 Générations (HKLM-x32\...\{E6B88BD6-E4B2-4701-A648-B6DAC6E491CC}) (Version: 8.0.152 - Electronic Arts) Les Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.31.37.1020 - Electronic Arts Inc.) Les Sims™ 3 Destination Aventure (HKLM-x32\...\{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}) (Version: 2.17.2 - Electronic Arts) Les Sims™ 3 Animaux & Cie (HKLM-x32\...\{C12631C6-804D-4B32-B0DD-8A496462F106}) (Version: 10.0.96 - Electronic Arts) Les Sims™ 3 En route vers le Futur (HKLM-x32\...\{A0BBD6C7-B546-4048-B33A-F21F5C9F5B09}) (Version: 21.0.150 - Electronic Arts) Les Sims™ 3 Île de Rêve (HKLM-x32\...\{DB21639E-FE55-432C-BCA2-0C5249E3F79E}) (Version: 19.0.101 - Electronic Arts) Les Sims™ 3 Jardin de Style Kit (HKLM-x32\...\{117B6BF6-82C3-420C-B284-9247C8568E53}) (Version: 7.3.2 - Electronic Arts) Les Sims™ 3 Katy Perry Délices Sucrés (HKLM-x32\...\{9B2506E3-9A3F-45B5-96BF-509CAD584650}) (Version: 13.0.62 - Electronic Arts) Les Sims™ 3 Super-pouvoirs (HKLM-x32\...\{B37DAFA5-717D-41F8-BDFB-3A4B68C0B3A1}) (Version: 15.0.135 - Electronic Arts) Les Sims™ 3 University (HKLM-x32\...\{F26DE8EF-F2CF-40DC-8CDA-CC0D82D11B36}) (Version: 18.0.126 - Electronic Arts) Les Sims™ 3 Vie Citadine Kit (HKLM-x32\...\{7B11296A-F894-449C-8DF6-6AAAA7D4D118}) (Version: 9.0.73 - Electronic Arts) Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) Manager (HKLM-x32\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.41.0.0 - SEIKO EPSON CORPORATION) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Mises à jour NVIDIA 25.6.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.6.0.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) MSN Messenger 7.5 (HKLM-x32\...\{BAFD3C1E-03EC-11DA-BFBD-00065BBDC0B5}) (Version: 7.5.0324.0 - Microsoft Corporation) MSN Switcher (HKLM-x32\...\{C73E6560-0B5C-4EDC-AE35-BDDACA3EB4EF}) (Version: 1.1.0 - Escargot) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming) NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 384.76 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Pilote graphique 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 384.76 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.4.13.6637 - Electronic Arts, Inc.) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 384.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 384.76 - NVIDIA Corporation) Hidden PDF Settings (HKLM-x32\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden PhotoFiltre 7 (HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\PhotoFiltre 7) (Version: - ) Prison Architect (HKLM\...\Steam App 233450) (Version: - Introversion Software) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.) SafeZone Stable 3.55.2393.609 (HKLM-x32\...\SafeZone 3.55.2393.609) (Version: 3.55.2393.609 - Avast Software) Hidden Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Tablette Wacom (HKLM\...\Wacom Tablet Driver) (Version: 6.3.23-1 - Wacom Technology Corp.) The Long Dark (HKLM\...\Steam App 305620) (Version: - Hinterland Studio Inc.) The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.31.0.0 - GOG.com) The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.24.0.0 - GOG.com) The Witcher 3: Wild Hunt - Hearts of Stone (HKLM-x32\...\Hearts of Stone_is1) (Version: 1.24.0.0 - GOG.com) Update for Skype for Business 2015 (KB3213574) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8C2A4D8F-3020-403E-94D4-E8EC03F9E723}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3213574) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8C2A4D8F-3020-403E-94D4-E8EC03F9E723}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3213574) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{8C2A4D8F-3020-403E-94D4-E8EC03F9E723}) (Version: - Microsoft) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2680812969-3846653718-2022396312-1001_Classes\CLSID\{5B69A6B4-393B-459C-8EBB-214237A9E7AC}\InprocServer32 -> C:\Program Files\Bandizip\bdzshl64.dll (Bandisoft.com) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-19] (AVAST Software) ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {72A6D8EA-06E5-49C5-BECE-53701B369D59} => C:\WINDOWS\system32\cbfsMntNtf6.dll [2016-09-21] (/n software, Inc.) ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {72A6D8EA-06E5-49C5-BECE-53701B369D59} => C:\WINDOWS\SysWOW64\cbfsMntNtf6.dll [2016-09-21] (/n software, Inc.) ContextMenuHandlers01: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers01: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-19] (AVAST Software) ContextMenuHandlers01: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> Pas de fichier ContextMenuHandlers02: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers03: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-19] (AVAST Software) ContextMenuHandlers03: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers04: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers05: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers05: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers05: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation) ContextMenuHandlers05: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-06-27] (NVIDIA Corporation) ContextMenuHandlers06: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-07-19] (AVAST Software) ContextMenuHandlers06: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes) ContextMenuHandlers1_S-1-5-21-2680812969-3846653718-2022396312-1001: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers2_S-1-5-21-2680812969-3846653718-2022396312-1001: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers4_S-1-5-21-2680812969-3846653718-2022396312-1001: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ContextMenuHandlers5_S-1-5-21-2680812969-3846653718-2022396312-1001: [AABdzCtx] -> {5B69A6B4-393B-459C-8EBB-214237A9E7AC} => C:\Program Files\Bandizip\bdzshl64.dll [2017-06-29] (Bandisoft.com) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02648DBC-945F-4CF0-9674-0C9D9D5F8843} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation) Task: {06A5D519-F366-4F8E-A910-982FF2CDA8B1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation) Task: {1501F782-4335-4962-9C93-815E610FBFAF} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation) Task: {17F526B8-84C7-4B12-A340-04472A934381} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-30] (Piriform Ltd) Task: {1DA1C4C4-3A89-464A-86DE-52D2E289C94E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation) Task: {1F3B59A3-724B-4A54-840B-F60E73513586} - System32\Tasks\EPSON WF-7620 Series Invitation {701A17C6-6496-4A40-842C-444870C84EB5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION) Task: {25D650DE-1FD4-41FE-95B0-155922DE86D6} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation) Task: {27B8F82D-9EBD-4A09-BD00-48375332AA63} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe Task: {45F9161D-05FF-4F7E-939B-BBBCFB85E61E} - System32\Tasks\Driver Booster SkipUAC (Hana) => C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe [2017-05-03] (IObit) Task: {7DB617F9-B577-4A51-950D-7FDE27F55BFF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {90F234B6-B3D2-4A60-8E65-F7789D218C37} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-07-12] (AVAST Software) Task: {A9D1B337-9924-4CBD-A852-3BE30C72A05E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation) Task: {AF354987-8B8F-4B87-A069-ECF08EA5872E} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation) Task: {CA7AC126-38AA-4975-8404-2EC87B7C83D7} - System32\Tasks\EPSON WF-7620 Series Invitation {FFA74C37-8F7C-46AC-9D2E-2AD16AABF1EB} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION) Task: {D2A96C6B-06A9-48F5-AA9E-D0FFC9282776} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation) Task: {D3AD9D3F-1512-4B4C-8838-B21D1494805F} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {D60CD636-E653-420B-BE74-923126F6EA03} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {D7C6CC95-E0F0-4D37-A41F-22E78B3E5EB3} - System32\Tasks\EPSON WF-7620 Series Update {FFA74C37-8F7C-46AC-9D2E-2AD16AABF1EB} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION) Task: {E2FB7A67-712F-43CB-A04C-2F28EFA05F41} - System32\Tasks\EPSON WF-7620 Series Update {701A17C6-6496-4A40-842C-444870C84EB5} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE [2013-02-27] (SEIKO EPSON CORPORATION) Task: {E66FA5B6-7F1A-493B-85C5-758BCDC09AA3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe Task: {ED3C48DC-04EC-45C8-9AC4-6992D45195DE} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-07-19] (AVAST Software) Task: {EDC4AE16-9F4E-4862-9BA8-7ADD40021AA7} - System32\Tasks\SafeZone scheduled Autoupdate 1492941650 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-06-13] (Avast Software) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {701A17C6-6496-4A40-842C-444870C84EB5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Invitation {FFA74C37-8F7C-46AC-9D2E-2AD16AABF1EB}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {701A17C6-6496-4A40-842C-444870C84EB5}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{701A17C6-6496-4A40-842C-444870C84EB5} /F:UpdateWORKGROUP\DESKTOP-FHU8ODF$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi Task: C:\WINDOWS\Tasks\EPSON WF-7620 Series Update {FFA74C37-8F7C-46AC-9D2E-2AD16AABF1EB}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSKAE.EXE:/EXE:{FFA74C37-8F7C-46AC-9D2E-2AD16AABF1EB} /F:UpdateWORKGROUP\DESKTOP-FHU8ODF$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2017-03-16 16:08 - 2017-03-16 16:08 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-05-09 00:44 - 2017-05-09 00:44 - 01354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-04-18 21:25 - 2017-06-21 09:07 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-03-18 22:59 - 2017-03-20 07:11 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-04-20 19:49 - 2017-06-29 01:43 - 01658312 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll 2017-04-25 18:41 - 2017-04-25 18:41 - 00025088 _____ () C:\Program Files (x86)\Escargot\MSN Switcher\msn-switcher-exe.exe 2017-06-30 13:22 - 2017-06-30 13:22 - 00077824 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2017-07-05 21:34 - 2017-04-28 20:00 - 02493440 _____ () E:\Program Files (x86)\Origin\libGLESv2.dll 2017-04-18 21:25 - 2017-06-21 09:07 - 01040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-04-25 18:13 - 2017-04-25 18:13 - 00034816 _____ () C:\Program Files (x86)\Escargot\MSN Switcher\msn-switcher-dll.dll 2017-07-19 10:56 - 2017-07-19 10:56 - 00170224 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-07-19 10:56 - 2017-07-19 10:56 - 01065936 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll 2017-07-03 12:24 - 2017-07-03 12:24 - 67109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-07-19 10:56 - 2017-07-19 10:56 - 00192664 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-07-19 10:56 - 2017-07-19 10:56 - 00224256 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-07-19 10:56 - 2017-07-19 10:56 - 00292920 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-07-19 10:56 - 2017-07-19 10:56 - 00689272 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-06-05 23:21 - 2017-06-05 23:21 - 00792576 _____ () C:\Program Files (x86)\MSN Messenger\msidcrl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-10-30 09:24 - 2015-10-30 09:21 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\Control Panel\Desktop\\Wallpaper -> E:\Images\Autres\Autres\74.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run32: => "RzWizard" HKLM\...\StartupApproved\Run32: => "ControlCenter3" HKLM\...\StartupApproved\Run32: => "BrMfcWnd" HKLM\...\StartupApproved\Run32: => "FUFAXRCV" HKLM\...\StartupApproved\Run32: => "FUFAXSTM" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "Uninstall 17.3.6816.0313\amd64" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "Uninstall 17.3.6816.0313" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-2680812969-3846653718-2022396312-1001\...\StartupApproved\Run: => "Lync" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{1C00DFAF-AD4C-42EF-B082-03E88E3E2CD0}] => (Allow) C:\Windows\AutoKMS\AutoKMS.exe FirewallRules: [{8315872E-0D7C-4BED-BA2C-CBAAD71F3378}] => (Allow) C:\Windows\AutoKMS\AutoKMS.exe FirewallRules: [{5A743785-39B8-4944-A921-679DB83CAD0A}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{DEC22B0B-5278-4A40-ADF8-482755326F14}] => (Allow) E:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{3527D3D9-9289-4BEF-9B17-C1C62095305A}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{85F85C10-084D-47A1-B850-8ACCA1CD2DFC}] => (Allow) E:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{CEADB293-79D4-4A4F-8A03-FAA3FB3E3381}] => (Allow) E:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{5AA6F377-EED6-428D-B72E-CB68EDB14687}] => (Allow) E:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{EA725206-C0DD-4410-81BC-39E5A545EEC3}] => (Allow) E:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{44EBDB82-3A18-4972-9814-2EC133FF805F}] => (Allow) E:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{EAA38A0D-76EE-4516-8CD3-1241DA0B5958}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{A6EFF013-0096-48A7-AD0C-3770DCFF8715}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{006ABF37-6817-4CDA-B96B-5306EDDA5D8D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{325C873C-8203-4D48-8149-FC85B4799A2F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{69594372-C0DD-43F6-9356-49A36890F7F0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{464569B7-739C-4A1E-B0C6-189FC25C87C1}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe FirewallRules: [{8BFB46B6-3876-4E0E-AA09-D8E9423644B6}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe FirewallRules: [{81957EA9-09A2-4664-876F-9C9D04D288F8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{9844A322-B609-4CC2-BE83-81B8B911604A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{59D57122-588D-40DC-A00C-A68D9E67E703}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E33863BA-455F-48EE-8875-06FAB6502585}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AFADAFF3-1592-44E3-81BD-C6936E30D34C}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe FirewallRules: [{C154069B-C0A3-420B-93D6-E4C66559A64D}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Subnautica\Subnautica.exe FirewallRules: [{C413A882-4FAA-4AAB-AF55-D90B189E7CCE}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{9AF34168-4BC1-4E13-AEAC-E785EBECD363}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{C2843DAD-A5FF-46ED-94F1-6B07F420377F}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{1E1A1225-920B-4690-9121-2CA1FAA3D247}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{F452C5F0-5249-4B74-BEF4-747FB61D5AEC}] => (Allow) E:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{EB5A26BD-7CB9-4225-9326-AC0AA8EAB711}] => (Allow) E:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{6E2A996F-700F-49F1-8191-2019ECDC77D8}] => (Allow) E:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{EB5B7953-8EF4-4504-B475-7EE94AA029E5}] => (Allow) E:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{0B58D22A-C3E5-4BF6-B2F8-48132CBB4FFC}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe FirewallRules: [{CF95DA51-9F0A-462E-9A34-903EBAB8CD32}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe FirewallRules: [{D33D3434-8987-4BEC-A6E1-23C496549156}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Blockhood\BLOCKHOOD v0_40_08.exe FirewallRules: [{65E592D2-9D4E-40FF-A0FE-E59F0688CB22}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Blockhood\BLOCKHOOD v0_40_08.exe FirewallRules: [{9657D41D-F35F-4F40-AF5C-67139CC3B9EE}] => (Block) LPort=445 FirewallRules: [{965AEF1C-05AA-448D-AD01-DF533EF2D29F}] => (Block) LPort=445 FirewallRules: [{2CF8821C-8E53-40DE-802E-63C6C86FCF8B}] => (Allow) L:\Autres\Microsoft Toolkit.exe FirewallRules: [{928A7F78-8D8B-436D-82D5-4626F45C1C32}] => (Allow) L:\Autres\Microsoft Toolkit.exe FirewallRules: [{C9E79522-91BF-4D1A-8E18-F4FFF999EC26}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\TheLongDark\tld.exe FirewallRules: [{B2D61BDB-2530-4B6B-9529-B3CA4DB653EE}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\TheLongDark\tld.exe FirewallRules: [{00BE06DB-CC32-438A-8C34-07AD9F3AACDF}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Mafia III\launcher.exe FirewallRules: [{8A040993-12C7-45A2-BC35-264B42A0F472}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Mafia III\launcher.exe FirewallRules: [{A43BE379-4DAA-4F25-A1BD-2FBF964E4740}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe FirewallRules: [{607ACD46-8B49-45A1-BE7D-511AAA61C1F0}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe FirewallRules: [{17A1AE82-B078-48A5-A633-6068CB2F3651}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{F78061AC-6AD1-4596-B35E-1C3E852E1DD7}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect.exe FirewallRules: [{FD7E6029-1388-4D45-9978-06F0EDE0F0FA}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{F920EC1E-1B27-4386-B804-DB2EB06BBAC1}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe FirewallRules: [{B9E74A8D-83CE-40D4-87C8-487E80469F6B}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe FirewallRules: [{80A43338-2BEE-4B02-A31D-B16C936E13FD}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe FirewallRules: [{9829F446-8092-424E-A3F7-B5A031793BFF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe FirewallRules: [{471156E1-B4EA-4375-9240-5DFED3E812BE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe FirewallRules: [{67249AD1-5AA9-4030-AB2C-4A6D6D2EBB92}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe FirewallRules: [{49778713-0932-4A41-86E8-7F2A34071D2D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe FirewallRules: [{E65DB460-ACDD-435A-BB1A-C3516F8E4C70}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{6E914E04-7D27-4232-91D1-A9A5F44BC921}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\DARK SOULS III\Game\DarkSoulsIII.exe FirewallRules: [{2707E709-BD85-41BC-93A1-2941263EE01F}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{78E8FE47-6E35-4C60-B0A3-4AC4E9AD5F78}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4.exe FirewallRules: [{C8BEC625-7440-47ED-A1AA-DEB86BB6C683}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{9989DB34-A12B-412E-8077-6180867B9BF6}] => (Allow) E:\Program Files (x86)\Origin Games\The Sims 4\Game\Bin\TS4_x64.exe FirewallRules: [{559AE6E1-D5CA-492B-A026-F6A9FEA843AF}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609\SZBrowser.exe FirewallRules: [{FE159770-C4C9-4D53-A8BF-56961C4E17B5}] => (Allow) E:\Program Files\iTunes\iTunes.exe FirewallRules: [{97B227A2-49BB-4D2E-8C0B-7FEB4F0B09D2}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.609_0\SZBrowser.exe ==================== Points de restauration ========================= 18-07-2017 00:38:14 Revo Uninstaller's restore point - MSN Messenger 7.0 18-07-2017 00:40:12 Installé MSN Messenger 7.5 19-07-2017 20:49:46 Installed PDF Architect 5 View Module 19-07-2017 20:50:00 Installed PDF Architect 5 Edit Module 19-07-2017 20:50:30 Installed PDF Architect 5 Create Module 19-07-2017 20:50:43 Installed Manager 19-07-2017 20:58:30 Installed PDF Architect 5 View Module 19-07-2017 20:58:42 Installed PDF Architect 5 Edit Module 19-07-2017 20:59:06 Installed PDF Architect 5 Create Module 19-07-2017 21:08:30 Revo Uninstaller's restore point - Wondershare PDF Password Remover (Build 1.5.3) ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Clavier standard PS/2 Description: Clavier standard PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Claviers standard) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Xbox Wireless Adapter for Windows Description: Xbox Wireless Adapter for Windows Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Corporation Service: mt7612US Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (07/19/2017 09:08:30 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {971647bc-402d-4452-86ee-3fe6420d8294} Error: (07/19/2017 08:53:40 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: DESKTOP-FHU8ODF) Description: Impossible de redémarrer l’application ou le service « PDF Architect 5 ». Error: (07/18/2017 10:10:57 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Wacom_Tablet.exe, version : 6.3.23.1, horodatage : 0x59543de4 Nom du module défaillant : Wacom_Tablet.exe, version : 6.3.23.1, horodatage : 0x59543de4 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000040a7d9 ID du processus défaillant : 0x998 Heure de début de l’application défaillante : 0x01d2ff4e2b62ef91 Chemin d’accès de l’application défaillante : C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe Chemin d’accès du module défaillant: C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe ID de rapport : de339cbf-4dae-4f74-beca-934450af93ae Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/18/2017 12:38:14 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {971647bc-402d-4452-86ee-3fe6420d8294} Error: (07/18/2017 12:33:27 AM) (Source: MsiInstaller) (EventID: 1013) (User: DESKTOP-FHU8ODF) Description: Produit : MSN Messenger 7.0 -- Il existe une version de MSN Messenger plus récente que celle que vous êtes en train d'installer. Pour installer la version précédente, supprimez la version actuelle en cliquant sur Démarrer, Paramètres, Panneau de configuration, Ajouter ou supprimer, MSN Messenger), puis exécuter de nouveau l'installation. Error: (07/18/2017 12:28:32 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante msnmsgr.exe, version : 7.5.324.0, horodatage : 0x43d6818e Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0xdddddddd ID du processus défaillant : 0x2740 Heure de début de l’application défaillante : 0x01d2ff4ba6ee4205 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSN Messenger\msnmsgr.exe Chemin d’accès du module défaillant: unknown ID de rapport : 2e370c82-2c13-444f-ba79-baa3bf313cf8 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/18/2017 12:23:31 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {987e0a36-4b3a-4ab9-bd7c-02e187a0d08a} Error: (07/18/2017 12:22:03 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Wacom_Tablet.exe, version : 6.3.23.1, horodatage : 0x59543de4 Nom du module défaillant : ucrtbase.dll, version : 10.0.15063.413, horodatage : 0x5ba8b66e Code d’exception : 0xc0000409 Décalage d’erreur : 0x00000000000734be ID du processus défaillant : 0x1288 Heure de début de l’application défaillante : 0x01d2ff4b1c7652b1 Chemin d’accès de l’application défaillante : C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll ID de rapport : dbb87cf9-03a4-46dd-81f4-cb7e5c93765a Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/15/2017 09:04:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-FHU8ODF) Description: Le package Microsoft.MicrosoftEdge_40.15063.0.0_neutral__8wekyb3d8bbwe+ContentProcess#{000a1403-0001-0000-2795-210a00000000} a été interrompu, car sa suspension a été trop longue. Error: (07/13/2017 09:38:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante WacomDesktopCenter.exe, version : 6.3.23.1, horodatage : 0x59543b6f Nom du module défaillant : KERNELBASE.dll, version : 10.0.15063.483, horodatage : 0xc3955624 Code d’exception : 0xc0020001 Décalage d’erreur : 0x000eb802 ID du processus défaillant : 0x2938 Heure de début de l’application défaillante : 0x01d2fc0f866719a1 Chemin d’accès de l’application défaillante : C:\Program Files\Tablet\Wacom\32\WacomDesktopCenter.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 2cf74f48-0491-45e6-aa2b-c88e12852734 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (07/23/2017 08:13:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FHU8ODF) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (07/23/2017 08:13:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FHU8ODF) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (07/23/2017 08:13:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FHU8ODF) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (07/23/2017 11:22:03 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service SysMain s’est arrêté avec l’erreur : Cette demande n’est pas prise en charge. Error: (07/23/2017 11:22:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. Error: (07/23/2017 11:21:40 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FHU8ODF) Description: Le serveur {D63B10C5-BB46-4990-A94F-E40B9D520160} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (07/23/2017 11:21:40 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FHU8ODF) Description: Le serveur {D63B10C5-BB46-4990-A94F-E40B9D520160} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (07/23/2017 11:21:40 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-FHU8ODF) Description: Le serveur {D63B10C5-BB46-4990-A94F-E40B9D520160} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (07/23/2017 11:21:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Origin Web Helper Service s’est terminé de façon inattendue pour la 1ème fois. Error: (07/23/2017 11:21:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Razer Wizard Service s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2017-07-05 11:57:09.454 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-05 11:23:50.438 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-05 11:23:09.140 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-05 11:23:09.025 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-04 21:28:25.537 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-04 21:28:19.025 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-04 21:28:18.988 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-04 11:33:36.169 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-04 11:33:30.252 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. Date: 2017-07-04 11:33:30.153 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\nvspcap64.dll that did not meet the Store signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz Pourcentage de mémoire utilisée: 16% Mémoire physique - RAM - totale: 16275.06 MB Mémoire physique - RAM - disponible: 13571.72 MB Mémoire virtuelle totale: 18707.06 MB Mémoire virtuelle disponible: 16065.58 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:237.92 GB) (Free:144.45 GB) NTFS Drive d: (SSD) (Fixed) (Total:465.76 GB) (Free:361.01 GB) NTFS Drive e: (DATADRIVE1) (Fixed) (Total:2794.39 GB) (Free:2219.38 GB) NTFS Drive l: (TOSHIBA EXT) (Fixed) (Total:931.51 GB) (Free:522.24 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 238.5 GB) (Disk ID: 5303B9EE) Partition: GPT. ======================================================== Disk: 1 (Size: 465.8 GB) (Disk ID: 58C66E2B) Partition: GPT. ======================================================== Disk: 2 (Size: 2794.5 GB) (Disk ID: 569AC39E) Partition: GPT. ======================================================== Disk: 3 (Size: 931.5 GB) (Disk ID: 0E0A08BE) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================