Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 21-10-2017 Exécuté par Hannah (21-10-2017 22:01:33) Exécuté depuis C:\Users\Hannah\Desktop Windows 10 Home Version 1703 15063.674 (X64) (2017-07-12 11:10:24) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3089962045-2931434321-2304703141-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3089962045-2931434321-2304703141-503 - Limited - Disabled) Hannah (S-1-5-21-3089962045-2931434321-2304703141-1000 - Administrator - Enabled) => C:\Users\Hannah HomeGroupUser$ (S-1-5-21-3089962045-2931434321-2304703141-1002 - Limited - Enabled) Invité (S-1-5-21-3089962045-2931434321-2304703141-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.) Adobe After (HKLM\...\{6A915992-D887-4897-82F5-950EDD12DEB1}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_0_0) (Version: 14.0.0 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.1.335 - Adobe Systems Incorporated) Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated) Adobe CS6 Master Collection Patch 32bit (HKLM-x32\...\Adobe CS6 Master Collection Patch 32bit) (Version: - ) Adobe CS6 Master Collection Patch 64bit (HKLM-x32\...\Adobe CS6 Master Collection Patch 64bit) (Version: - ) Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.170 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Reader XI (11.0.22) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.22 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.) Agatha Christie - Peril at End House (HKLM-x32\...\WTA-7a0e8160-9a02-4770-a04a-d132ba719120) (Version: 2.2.0.95 - WildTangent) Hidden Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 385.46 - NVIDIA Corporation) Hidden Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) ARAYA (HKLM-x32\...\ARAYA_is1) (Version: - ) Assistant de téléchargement (HKLM-x32\...\{92154A3C-9BB7-49D7-A571-4EB6373FA5AD}) (Version: 6.65.13 - Druide informatique inc.) AuthenTec TrueAPI (HKLM\...\{054EF02F-95D8-48F4-9EEB-2F9CE3072ED8}) (Version: 1.3.0.116 - AuthenTec, Inc.) Hidden Bejeweled 3 (HKLM-x32\...\WTA-56d0528c-6527-47a0-b2ee-1a362c252190) (Version: 2.2.0.97 - WildTangent) Hidden BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC) bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden Blasterball 3 (HKLM-x32\...\WTA-af4eaa09-cbf5-4a4a-86d0-578b5ba8a41f) (Version: 2.2.0.97 - WildTangent) Hidden Bounce Symphony (HKLM-x32\...\WTA-fbfb0921-f183-4a5d-b4b4-be0007caede5) (Version: 2.2.0.97 - WildTangent) Hidden Cake Mania (HKLM-x32\...\WTA-e495fa89-3a6d-4316-9960-f127565ddc47) (Version: 2.2.0.95 - WildTangent) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform) Chronicles of Albian (HKLM-x32\...\WTA-2e67ead2-b0a3-4275-8179-97a8375e831a) (Version: 2.2.0.95 - WildTangent) Hidden Chuzzle Deluxe (HKLM-x32\...\WTA-83e87fe0-55f1-40b3-bf12-5de16197b4ea) (Version: 2.2.0.95 - WildTangent) Hidden Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Cradle of Rome 2 (HKLM-x32\...\WTA-b71a0dee-1cec-4953-bdd4-503ca5540119) (Version: 2.2.0.95 - WildTangent) Hidden D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 5.0.1.0406 - Disc Soft Ltd) Discord (HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) Farm Frenzy (HKLM-x32\...\WTA-8bc73b7d-8015-4579-aed4-af906bafa7d4) (Version: 2.2.0.95 - WildTangent) Hidden FATE (HKLM-x32\...\WTA-64c553ca-692e-4a59-b106-63a01f65a392) (Version: 2.2.0.97 - WildTangent) Hidden Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Governor of Poker 2 Premium Edition (HKLM-x32\...\WTA-ed72b22f-b631-4144-a409-bf71ce8927ef) (Version: 2.2.0.95 - WildTangent) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden HHD Software Hex Editor Neo 6.31 (HKLM\...\{8EB85C0E-DE7D-4A53-BD66-708B8F2C80B0}) (Version: 6.31.0.5980 - HHD Software, Ltd.) HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent) HP LinkUp (HKLM-x32\...\{DB3147AB-4024-4773-8EC0-A1FE5B44933D}) (Version: 2.01.028 - Hewlett-Packard) HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard) HP Setup (HKLM-x32\...\{D35B72B6-F0E4-462B-BDEB-E08032B3B681}) (Version: 8.7.4747.3786 - Hewlett-Packard Company) HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13880.3792 - Hewlett-Packard Company) HP Support Assistant (HKLM-x32\...\{E959FD01-BD01-4CC4-9BB8-4EBE8309BF37}) (Version: 8.4.19.3 - HP) HP Support Information (HKLM-x32\...\{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}) (Version: 10.1.1000 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C18278AC-049A-4F02-A97F-4FD7294CC4F5}) (Version: 12.7.27.15 - HP) HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard) HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.9.0.0 - Hewlett-Packard) HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz) Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Jewel Quest Solitaire (HKLM-x32\...\WTA-e539c3a0-5017-49ac-8338-3e549d446907) (Version: 2.2.0.95 - WildTangent) Hidden Jewel Quest: The Sleepless Star - Collector's Edition (HKLM-x32\...\WTA-d5655b78-e913-406c-8076-789df52d856e) (Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden League of Legends (HKLM-x32\...\{B2777235-FDF0-4371-9D1E-0CD24DFE3579}) (Version: 4.2.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) Les Sims Medieval (HKLM-x32\...\{83BEEFB4-8C28-4F4F-8A9D-E0D1ADCE335B}) (Version: 1.0.0 - Electronic Arts) Little Nightmares (HKLM-x32\...\Little Nightmares_is1) (Version: - ) Little Nightmares Secrets of The Maw Chapter 1 (HKLM-x32\...\Little Nightmares Secrets of The Maw Chapter 1_is1) (Version: - ) Mah Jong Medley (HKLM-x32\...\WTA-e0e0c31d-1dc2-4c1f-8c02-7683cbf4bf8d) (Version: 2.2.0.95 - WildTangent) Hidden Malwarebytes version 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office XP Professional avec FrontPage (HKLM-x32\...\{9028040C-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.6626.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP1 English (HKLM-x32\...\{E59113EB-0285-4BFD-A37A-B79EAC6B8F4B}) (Version: 3.5.5692.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP1 x64 English (HKLM\...\{F83779DF-E1F5-43A2-A7BE-732F856FADB7}) (Version: 3.5.5692.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft) MIND - Path to Thalamus Enhanced Edition (HKLM-x32\...\1207665583_is1) (Version: 2.4.0.9 - GOG.com) Mises à jour NVIDIA 2.9.1.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.9.1.35 - NVIDIA Corporation) Hidden MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Mystery of Mortlake Mansion (HKLM-x32\...\WTA-7ba03fbc-2e9c-41ec-9c7c-cd55363ce89d) (Version: 2.2.0.97 - WildTangent) Hidden Namco All-Stars: PAC-MAN (HKLM-x32\...\WTA-8bcc59c3-17a6-4636-b63e-95b06d3cba86) (Version: 2.2.0.95 - WildTangent) Hidden Never Alone - Foxtales (HKLM-x32\...\Never Alone - Foxtales_is1) (Version: - ) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.2 - Black Tree Gaming) NVIDIA GeForce Experience 2.9.1.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.35 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 385.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 385.46 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation) NVIDIA Pilote graphique 385.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 385.46 - NVIDIA Corporation) OpenOffice 4.0.1 (HKLM-x32\...\{8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}) (Version: 4.01.9714 - Apache Software Foundation) Oxenfree (HKLM-x32\...\Oxenfree_is1) (Version: - ) Panneau de configuration NVIDIA 385.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 385.46 - NVIDIA Corporation) Hidden PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden Penguins! (HKLM-x32\...\WTA-fb2ad452-c574-4681-9c87-da6ed9527da9) (Version: 2.2.0.95 - WildTangent) Hidden ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-1aca4588-fdfd-41f9-b6c8-0a0125143540) (Version: 2.2.0.95 - WildTangent) Hidden Polar Bowler (HKLM-x32\...\WTA-68ef4df8-4ef1-4849-b522-843e2a68eaa6) (Version: 2.2.0.97 - WildTangent) Hidden QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.) Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.4320 - CyberLink Corp.) Hidden Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.) ScpToolkit (HKLM\...\{AC052048-9828-45E3-872B-04CE30A3B58B}) (Version: 1.6.238.16010 - Nefarius Software Solutions) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.1.0260 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.9.1.35 - NVIDIA Corporation) Hidden SIW version 2011.10.29 (HKLM-x32\...\{AB67580-257C-45FF-B8F4-C8C30682091A}_is1) (Version: 2011.10.29 - Topala Software Solutions) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype Web Plugin (HKLM-x32\...\{E8A70371-2C4D-4B12-831D-6A4BB9AC7AEF}) (Version: 7.29.0.73 - Skype Technologies S.A.) Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.) Slingo Deluxe (HKLM-x32\...\WTA-968e70d8-41c6-499d-8b3e-a5b6f85fb027) (Version: 2.2.0.95 - WildTangent) Hidden Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden The Cave (c) SEGA version 1 (HKLM-x32\...\The Cave (c) SEGA_is1) (Version: 1 - ) The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - ) Trine 2 - Complete Story (HKLM-x32\...\Trine 2 - Complete Story_is1) (Version: - ) Trine Enchanted Edition (HKLM-x32\...\Trine Enchanted Edition_is1) (Version: - ) Unravel (HKLM\...\Unravel_is1) (Version: 1.0.0.0 - ) Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden UsbFix (HKLM-x32\...\Usbfix) (Version: 9.001 - www.SOSVirus.Net) Vacation Quest - The Hawaiian Islands (HKLM-x32\...\WTA-8dfd0ac6-7f69-4832-8769-3b41d413de9b) (Version: 2.2.0.97 - WildTangent) Hidden Virtual Villagers - The Secret City (HKLM-x32\...\WTA-0be8e3c8-e13d-456f-b370-b6af81eeb595) (Version: 2.2.0.95 - WildTangent) Hidden VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN) Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.) WildTangent Games App pour HP (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.11.14 - WildTangent) Hidden WildTangent ShortcutProvider (HKLM-x32\...\{80831F60-19D7-43B3-A60C-5CAF8C478DF6}) (Version: 1.0.0.28 - WildTangent) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) Zoo Tycoon 2 (HKLM-x32\...\Zoo Tycoon 2) (Version: - ) Zuma Deluxe (HKLM-x32\...\WTA-886c3fed-9a08-4caa-95c1-114a8fc4670c) (Version: 2.2.0.95 - WildTangent) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000_Classes\CLSID\{A03A51A2-5B59-4ECE-96D1-037F7F2A0D8F}\localserver32 -> C:\Users\Hannah\AppData\Local\SkypePlugin\7.29.0.73\GatewayVersion-x64.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Hannah\AppData\Local\SkypePlugin\7.29.0.73\EdgeCalling.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000_Classes\CLSID\{FE0A3EA9-4DDA-4B0A-9981-5ABE8F0186CD}\InprocServer32 -> C:\Users\Hannah\AppData\Local\SkypePlugin\7.29.0.73\GatewayActiveX-x64.dll (Skype Technologies S.A.) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ContextMenuHandlers1: [MagicISO] -> [CC]{DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Pas de fichier ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers3: [LinkUpMenuExt] -> {B793E5EA-5344-488E-B98D-A18E2E5938AB} => C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\LinkUpExt64.dll [2011-05-06] (Hewlett-Packard) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => -> Pas de fichier ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hannah\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers5: [DreamScene] -> {BE800AEB-A440-4B63-94CD-AA6B43647DF9} => C:\WINDOWS\System32\DreamScene.dll [2013-06-21] (Microsoft Corporation) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-08-26] (NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] () ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {011A9B5C-CF39-46E1-A89D-C86417232D31} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {042937CB-5476-4C2A-8480-C5E036578E2B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {0C187424-7FCF-49E8-B086-7974EC4B8ABA} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {11CFBC32-6721-4A95-A9DB-428DD2A50AA3} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {1388E9EB-9D82-4E17-AB6F-AB5200F5B99F} - System32\Tasks\AdobeFlashPlayerUpdate 2 => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe Task: {1683C3ED-CC4B-4361-AEE3-7C43D70F29C2} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {16F1AA2C-D7FF-4D8C-B1F9-C42DBBE5D1E3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {184A191E-A504-4031-948F-FFAC66FF5638} - System32\Tasks\Skype => C:\Users\Hannah\AppData\Roaming\chronopost-colis-suivi.js Task: {200FDF99-15B3-4FC3-BC73-E4A84CB418C4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {27AC42DF-8654-4B75-8038-7D2ED456D789} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {29359C59-65E8-4DBC-80E4-448DF7E7610A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-09-25] (HP Inc.) Task: {2D0D345E-5EF6-4729-A6DF-8750DDB1A844} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-26] (Google Inc.) Task: {2E8C2472-96F6-49E5-9CE6-FD3BB05C8FC3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {35A742C1-2971-4943-A2E3-29AD462FFAAC} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3637878E-CCE8-4DCB-84A7-C7552FF08EBF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {3ACF76E4-F5DF-431C-BEA2-BE70CF85AE6D} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {4435220C-CC34-4B55-9DBE-97C383127FD0} - System32\Tasks\AdobeFlashPlayerUpdate => C:\Windows\SysWOW64\FlashPlayerUpdateService.exe Task: {448270B0-5154-498D-B24D-AE71E7DB5927} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4A11D0AC-A600-4949-BE9F-3065E01B300C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {4BBD8B20-A0EA-4883-BC6C-A54D5400FDA7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {4EF9C94A-BEB8-4886-8EFB-6F8DC72DE967} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {50BED25E-DB12-4313-B552-7115268D0247} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3089962045-2931434321-2304703141-1000Core => C:\Users\Hannah\AppData\Local\Google\Update\GoogleUpdate.exe Task: {52307D2E-DFF7-4E6C-B56F-5B7A6863513D} - System32\Tasks\Norton Security Scan for Hannah => C:\PROGRA~2\NORTON~2\Engine\372~1.5\Nss.exe Task: {53ABC437-1B0B-41C8-BFA8-0949927B2CAE} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {55FDF64B-3C5A-49F4-9EC4-597B575CA285} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {58076525-A596-4E4B-A8F3-5E34DCD1EFC3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-09-15] (HP Inc.) Task: {587F13BD-41C3-4DFA-8364-E6577FA2A0E8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-26] (Google Inc.) Task: {60C6872D-D8C5-4B88-8980-45D08F81447E} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {611AB061-49DA-4B72-81AB-3B7A9FB6F07A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-16] (Adobe Systems Incorporated) Task: {62FC12CA-7F6E-4D04-B0DD-35AF69FDC5AF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.) Task: {66373DB8-4A8D-49A8-88A9-7AC45A9257AE} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {70BC9B51-262B-4695-B38E-08FF486F5B29} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-10-11] (Microsoft Corporation) Task: {71BD3998-9605-4424-9B96-402EB1777584} - System32\Tasks\updater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-01-10] (Nefarius Software Solutions) Task: {76028AB5-AC97-4F06-8327-7D5A47A19935} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {77D73D8F-5453-4C65-985A-0D10DB2403DA} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {7C5AFFD1-4363-4738-8E06-EA4D755A78B9} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {8019363D-BCAD-4773-B90D-F17D42075CBA} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {83E772E0-2D2E-419A-BC94-4FAC8A7656FE} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {8D77A25D-FD6A-481A-B0D6-9678902CB9A5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {943BBF1F-1BBD-4AFD-9A68-992048E910E1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {97D57FBC-B035-440C-88E7-9E676CD64057} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9B9E2EC7-9C75-4683-9099-4490386F7447} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.) Task: {9EE88514-786B-4C6B-B761-AD00A3815399} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {ABE81196-0AAC-419A-993A-CA0F9FA7E738} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {B0783751-AFAE-4BFF-B02A-3C74BBADC98E} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {BB891099-3F04-45DA-8DFA-066AB33B0F7D} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C0F395F2-9715-4314-A840-2E6C417F6A32} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C6429797-F491-4F5C-BD36-6AC08CF60D18} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D06BE2CE-B47D-41C0-AC9D-F9557E54ACC6} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_170_pepper.exe [2017-10-16] (Adobe Systems Incorporated) Task: {D250AF4A-65A2-40F6-A484-405CDF4066B1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd) Task: {DFE70691-337F-411F-9096-2BC9F2131076} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {EE2604F3-66D0-4AEC-A2DF-C8F73D8B5944} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {EE33DB72-F8D2-4FB3-8C2E-E59A632B16D1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3089962045-2931434321-2304703141-1000UA => C:\Users\Hannah\AppData\Local\Google\Update\GoogleUpdate.exe Task: {EE44F1BC-3A65-4249-BBAC-F4DEB17CDF61} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {F0C78331-F394-40B3-BB39-D1DC226885A0} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {F137412A-4A98-42D4-91BB-FEDBAFACDD4B} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {F2511BEE-366D-49C8-BB06-D1D74AAAE162} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FAABEB26-01D8-42C9-8F44-DF10924CCF5B} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3089962045-2931434321-2304703141-1000Core.job => C:\Users\Hannah\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3089962045-2931434321-2304703141-1000Core1d1ab9dde4f29a3.job => C:\Users\Hannah\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3089962045-2931434321-2304703141-1000UA.job => C:\Users\Hannah\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForHannah.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\WINDOWS\Tasks\Norton Security Scan for Hannah.job => C:\PROGRA~2\NORTON~2\Engine\372~1.5\Nss.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Hannah\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Mes sites Web sur MSN\target.lnk -> hxxp://fr.msnusers.co ShortcutWithArgument: C:\Users\Hannah\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 3" ==================== Modules chargés (Avec liste blanche) ============== 2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2016-10-25 09:57 - 2016-10-25 09:57 - 000491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll 2017-09-27 17:56 - 2017-09-21 09:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll 2017-09-27 17:56 - 2017-09-21 09:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll 2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-12-25 17:16 - 2017-04-18 20:44 - 002271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll 2017-10-16 19:33 - 2017-10-16 19:33 - 031229440 _____ () C:\WINDOWS\system32\Macromed\Flash\pepflashplayer64_27_0_0_170.dll 2016-02-08 21:05 - 2016-01-23 04:55 - 000018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:98181191 [124] AlternateDataStreams: C:\ProgramData\Temp:D1B5B4F1 [112] AlternateDataStreams: C:\Users\Public\DRM:احتضان [48] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\aeriagames.com -> hxxps://aeriagames.com IE trusted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\aeriagames.com -> hxxp://aeriagames.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\123simsen.com -> www.123simsen.com Il y a 7922 plus de sites. ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hannah\Desktop\Félix\ada1a252040053.59022d5096b6e.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\Services: hocehuvyzbt => 2 MSCONFIG\Services: IJPLMSVC => 2 MSCONFIG\Services: tor => 2 MSCONFIG\Services: wucotusy => 2 MSCONFIG\Services: zutuzuni => 2 HKLM\...\StartupApproved\StartupFolder: => "Microsoft Office.lnk" HKLM\...\StartupApproved\Run: => "hpsysdrv" HKLM\...\StartupApproved\Run: => "AgentAntidote32" HKLM\...\StartupApproved\Run: => "AgentAntidote64" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "Magic Desktop for HP notification" HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "SwitchBoard" HKLM\...\StartupApproved\Run32: => "ZAM" HKLM\...\StartupApproved\Run32: => "SDTray" HKLM\...\StartupApproved\Run32: => "NvBackend" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "EPSON Stylus DX8400 Series" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "G0K3722HR1" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "T4VQA5SZ04" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "4ZZJ77CSR5" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "N7ZMKTMQTJ" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "LBVD0TCBD0" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "8VLP9FMTBO" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "RVA76GTNN3" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "26WPB7RAZ4" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "LCQ7O25SDV" HKU\S-1-5-21-3089962045-2931434321-2304703141-1000\...\StartupApproved\Run: => "Discord" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{E49C7D85-726B-4718-A6A4-33516F6F02D5}] => (Allow) C:\Users\Hannah\Desktop\Tombraider\Rise of the Tomb Raider\Steam\bin\steamwebhelper.exe FirewallRules: [{0A45E5D8-7C9B-4EF9-8F20-A88310DE9573}] => (Allow) C:\Users\Hannah\Desktop\Tombraider\Rise of the Tomb Raider\Steam\bin\steamwebhelper.exe FirewallRules: [{010148E8-E663-44E0-95E8-AA1A28DA8C2E}] => (Allow) C:\Users\Hannah\Desktop\Tombraider\Rise of the Tomb Raider\Steam\Steam.exe FirewallRules: [{3CEFEDD6-4422-4E62-93E5-486643C7ECAC}] => (Allow) C:\Users\Hannah\Desktop\Tombraider\Rise of the Tomb Raider\Steam\Steam.exe FirewallRules: [UDP Query User{F5739922-94EC-40A9-8A8A-61376F977662}C:\users\hannah\downloads\gang.beasts.v0.5.5\gang.beasts.v0.5.5\gang beasts.exe] => (Allow) C:\users\hannah\downloads\gang.beasts.v0.5.5\gang.beasts.v0.5.5\gang beasts.exe FirewallRules: [TCP Query User{7E6DC9F4-5F46-474F-886E-6D8B294F5595}C:\users\hannah\downloads\gang.beasts.v0.5.5\gang.beasts.v0.5.5\gang beasts.exe] => (Allow) C:\users\hannah\downloads\gang.beasts.v0.5.5\gang.beasts.v0.5.5\gang beasts.exe FirewallRules: [UDP Query User{C15719CB-F3C8-4D42-8321-F42DE93E8D0C}C:\games\gang beasts v0.5.4\gang beasts.exe] => (Allow) C:\games\gang beasts v0.5.4\gang beasts.exe FirewallRules: [TCP Query User{A443B245-8FC7-4EE3-888E-484A7C539FD2}C:\games\gang beasts v0.5.4\gang beasts.exe] => (Allow) C:\games\gang beasts v0.5.4\gang beasts.exe FirewallRules: [UDP Query User{DFB00401-700C-4DDE-B94B-E62794B25ADA}C:\gog games\brothers - a tale of two sons\binaries\win32\brothers.exe] => (Block) C:\gog games\brothers - a tale of two sons\binaries\win32\brothers.exe FirewallRules: [TCP Query User{11212FB9-B57B-419A-8F83-31F6C0F11F2E}C:\gog games\brothers - a tale of two sons\binaries\win32\brothers.exe] => (Block) C:\gog games\brothers - a tale of two sons\binaries\win32\brothers.exe FirewallRules: [UDP Query User{10079564-FC5D-4D06-8F81-B9334469D28C}C:\games\narcosis\narcosis.exe] => (Allow) C:\games\narcosis\narcosis.exe FirewallRules: [TCP Query User{8FB9F675-B1B2-4915-BB38-CDB006A1C356}C:\games\narcosis\narcosis.exe] => (Allow) C:\games\narcosis\narcosis.exe FirewallRules: [UDP Query User{0EEA4473-EE70-4B25-BA89-E97EAB40BC53}C:\users\hannah\videos\séries\michiko to hatchin\we.happy.few.v35033\we.happy.few.v35033\glimpsegame\binaries\win64\glimpsegame.exe] => (Block) C:\users\hannah\videos\séries\michiko to hatchin\we.happy.few.v35033\we.happy.few.v35033\glimpsegame\binaries\win64\glimpsegame.exe FirewallRules: [TCP Query User{D1EAAB5B-DF64-4CFE-826F-455C5D28CEE6}C:\users\hannah\videos\séries\michiko to hatchin\we.happy.few.v35033\we.happy.few.v35033\glimpsegame\binaries\win64\glimpsegame.exe] => (Block) C:\users\hannah\videos\séries\michiko to hatchin\we.happy.few.v35033\we.happy.few.v35033\glimpsegame\binaries\win64\glimpsegame.exe FirewallRules: [UDP Query User{0EA2ED89-7A81-40F8-9451-27CD5892F0A6}C:\games\skyrim\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe] => (Allow) C:\games\skyrim\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe FirewallRules: [TCP Query User{E6E3A305-9938-46E2-85C2-3393EDA74C95}C:\games\skyrim\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe] => (Allow) C:\games\skyrim\steamapps\common\stay close\migrate\binaries\win64\migrate-win64-shipping.exe FirewallRules: [{9FBAC279-4CAF-447F-8D79-AFE13BB422AF}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{681A438A-7620-4424-993E-03CFADF165AF}] => (Allow) C:\Windows\System32\rundll32.exe FirewallRules: [{B0874AA6-9C41-4FAF-B912-F15C94A414FA}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{13CEA277-4631-4BDA-A3BD-E6623EC78F6A}] => (Allow) C:\Games\Skyrim\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{41B91116-56F9-43F7-86D5-DE31577BB6D9}] => (Allow) C:\Games\Skyrim\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{3E0D10AB-029E-4415-B307-C4E0320E38C7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3904E400-1A9D-4C0F-B51B-D8FCA27607A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{822A42DF-6F3A-4B71-BE04-02A9CEAEEC3C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{0847860E-67CB-4F7D-93E8-0572415071BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{BFDC6E3A-3A12-45B0-8DE8-61920D4B206D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{F972214A-E671-4F36-96CD-3ACCA14B675A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{988360CD-9B20-45DC-8889-749F8ABE2BA9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{1375C550-31E8-45A5-8119-F6D6062D7F35}] => (Allow) C:\Games\Skyrim\SteamApps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{7D8DF807-DEF1-4382-85F2-C35BAA6F0BD0}] => (Allow) C:\Games\Skyrim\SteamApps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{12F60532-D4EE-46DA-871A-5DFA2A6EA10F}] => (Allow) C:\Games\Skyrim\Steam.exe FirewallRules: [{1A9ECCF0-58A9-4CD1-AF14-BF4443F903E5}] => (Allow) C:\Games\Skyrim\Steam.exe FirewallRules: [{49B41F4A-D2E6-4BD8-88D1-241B46990F46}] => (Allow) C:\Windows\system32\ezSharedSvcHost.exe FirewallRules: [{0D4D76F7-CDF5-4090-8ADE-F7B6F7DE72A7}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe FirewallRules: [{E2A7594B-D6CD-4D3A-9194-4CCBAFB54682}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe FirewallRules: [{01261A04-73CD-45D0-872B-E9DFD8E9510B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{5E260985-24FC-4E1A-B188-5A4E3B38ECBF}] => (Allow) LPort=2869 FirewallRules: [{7EC5F8BB-439B-4649-9A83-2360D98BCC12}] => (Allow) LPort=1900 FirewallRules: [{3A71F834-EE4A-44AF-A4AE-F2EE12CB071C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{0840FBD6-1575-4154-BD4F-7B34AEF40D7E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{CCA5050D-9BA6-4106-8150-2A76F1F33B9E}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [TCP Query User{45289BA8-9D02-41B7-8026-E6DAEBB88B00}C:\users\hannah\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hannah\appdata\roaming\utorrent\utorrent.exe FirewallRules: [UDP Query User{FE3A1A3B-19DC-46A1-A7F4-4EDCD03DA481}C:\users\hannah\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\hannah\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{0661B449-BEBB-44EA-B22C-45321A4EC89E}] => (Block) C:\users\hannah\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{12299F14-FE35-4C3F-A8C9-367F26EBEAAF}] => (Block) C:\users\hannah\appdata\roaming\utorrent\utorrent.exe FirewallRules: [{AB7086C9-5D02-4EFE-A020-E6C2FE559C2D}] => (Allow) C:\Users\Hannah\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5BDF1AD7-76ED-4E39-9618-3F7A0DC1438E}] => (Allow) C:\Users\Hannah\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{59404C1F-02A2-4324-BF45-804490F91EFA}] => (Allow) C:\Users\Hannah\Downloads\{pokemon_DM_Ex_de_lOmbre.7z}_downloader.exe FirewallRules: [{2827B0A1-72C2-45DE-8458-CCB2B8C97DD7}] => (Allow) C:\Users\Hannah\Downloads\{pokemon_DM_Ex_de_lOmbre.7z}_downloader.exe FirewallRules: [{555E3E59-7255-4015-9813-8EA2615F0F73}] => (Allow) C:\Users\Hannah\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{213FB4E5-53DF-4CD8-A5A7-1A541EE1180A}] => (Allow) C:\Users\Hannah\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{DC56E7E6-1753-4A69-BC0C-E46343926DBE}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [UDP Query User{CC2FA2F6-CD9C-41D8-8BC0-4B979FBA7015}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [TCP Query User{26475BAC-8867-4352-B58F-CF21AF49C299}C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe FirewallRules: [UDP Query User{5FB54315-CB8D-4C58-B602-9DBB486BF7C9}C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe FirewallRules: [TCP Query User{57FE8477-8193-439A-9D3C-5FD14E724D75}C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe] => (Block) C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe FirewallRules: [UDP Query User{551EC051-6DEE-4083-84A3-D2317C4851D9}C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe] => (Block) C:\users\hannah\appdata\local\skypeplugin\pluginhost.exe FirewallRules: [{8A4B642E-DBBC-4A42-8AED-456ABB9AF3C5}] => (Allow) C:\Games\Skyrim\SteamApps\common\TigerKnight_EW\frontend\bin\frontend.exe FirewallRules: [{49A76CE3-1D7A-4277-8223-04C9EE9B7F7B}] => (Allow) C:\Games\Skyrim\SteamApps\common\TigerKnight_EW\frontend\bin\frontend.exe FirewallRules: [{1670129B-84F3-46DE-9B9E-E5841F369BE3}] => (Allow) C:\Games\Skyrim\SteamApps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{EE4EC986-D7E6-4921-97EE-5CBFECBEEB7E}] => (Allow) C:\Games\Skyrim\SteamApps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{959DCD8B-CBCE-42B6-9928-B594B1A1AA20}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 28-09-2017 20:30:05 Point de contrôle planifié 07-10-2017 13:31:38 Point de contrôle planifié 11-10-2017 00:08:46 Windows Update 18-10-2017 20:12:18 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (10/21/2017 08:32:58 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne . Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest. Erreurs système: ============= Error: (10/21/2017 09:05:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Malwarebytes Service s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service. Error: (10/21/2017 09:05:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Message Queuing s’est terminé de façon inattendue pour la 1ème fois. Error: (10/21/2017 09:05:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Intel(R) Management and Security Application Local Management Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (10/21/2017 09:05:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Adaptateur d'écouteur Net.Msmq s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 300000 millisecondes : Redémarrer le service. Error: (10/21/2017 09:05:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Exécuter le programme de récupération configuré. Error: (10/21/2017 09:05:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Adaptateur d'écouteur Net.Pipe s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 300000 millisecondes : Redémarrer le service. Error: (10/21/2017 09:05:21 PM) (Source: WAS) (EventID: 5175) (User: ) Description: L'adaptateur de l'écouteur servant le protocole 'msmq.formatname' a été déconnecté de façon inattendue. Error: (10/21/2017 09:05:21 PM) (Source: WAS) (EventID: 5175) (User: ) Description: L'adaptateur de l'écouteur servant le protocole 'net.msmq' a été déconnecté de façon inattendue. Error: (10/21/2017 09:05:20 PM) (Source: WAS) (EventID: 5175) (User: ) Description: L'adaptateur de l'écouteur servant le protocole 'net.pipe' a été déconnecté de façon inattendue. Error: (10/21/2017 08:22:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 8172.83 MB Mémoire physique - RAM - disponible: 4887.41 MB Mémoire virtuelle totale: 9554.8 MB Mémoire virtuelle disponible: 6079.47 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:917.97 GB) (Free:452.96 GB) NTFS Drive d: (HP_RECOVERY) (Fixed) (Total:13.01 GB) (Free:1.54 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive e: (Skyrim) (CDROM) (Total:6.59 GB) (Free:0 GB) UDF Drive k: (XILEF) (Removable) (Total:3.73 GB) (Free:3.73 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 40D0ABDA) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=918 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) Partition 4: (Not Active) - (Size=13 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: A5CA446F) Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C) ==================== Fin de Addition.txt ============================