Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 12-11-2017 Exécuté par Antoine (12-11-2017 14:37:23) Exécuté depuis C:\Users\Antoine\Desktop Windows 10 Pro N Version 1703 15063.674 (X64) (2017-04-26 17:19:01) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3541609464-672976988-1563198395-500 - Administrator - Disabled) Antoine (S-1-5-21-3541609464-672976988-1563198395-1000 - Administrator - Enabled) => C:\Users\Antoine DefaultAccount (S-1-5-21-3541609464-672976988-1563198395-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3541609464-672976988-1563198395-1003 - Limited - Enabled) Invité (S-1-5-21-3541609464-672976988-1563198395-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 1Clipboard (HKU\S-1-5-21-3541609464-672976988-1563198395-1000\...\1Clipboard) (Version: 0.1.8 - NGWIN) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated) Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.1 - Adobe Systems Incorporated) Adobe Photoshop Elements 13 (HKLM-x32\...\{609818B9-23EB-4196-B466-EFE05E92A32F}) (Version: 13.0 - Adobe Systems Incorporated) AIDA64 Extreme v4.50 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 4.50 - FinalWire Ltd.) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.05 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{E92BB800-BCC5-4C25-8102-AC2C3B7C7C1E}) (Version: 5.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{9C912B1E-06DD-43EF-BB2B-45CB2C88BAAE}) (Version: 5.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Assassins Creed IV Black Flag Freedom Cry (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRJVkJsYWNrRmxhZw==_is1) (Version: 1 - ) Autodesk Pixlr (HKLM-x32\...\{B0547B43-3AEE-453C-9945-800DDF92052D}) (Version: 1.1.1.0 - Autodesk) Hidden Autodesk Pixlr (HKLM-x32\...\Autodesk Pixlr) (Version: 1.1.1.0 - Autodesk) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software) AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - ) Banished 1.0.4 (HKLM-x32\...\Banished_is1) (Version: - ) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.26 - Piriform) Combined Community Codec Pack 64bit 2015-10-18 (HKLM\...\Combined Community Codec Pack 64bit_is1) (Version: 2015.10.19.0 - CCCP Project) CPUID CPU-Z 1.76 (HKLM\...\CPUID CPU-Z_is1) (Version: - ) CPUID CPU-Z MSI 1.76 (HKLM\...\CPUID CPU-Z MSI_is1) (Version: 1.76 - CPUID, Inc.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Dragon Age Inquisition (HKLM-x32\...\{D909C58E-4B46-4B60-B553-96CDF432E868}_is1) (Version: 1.0.0.0 - Electronic Arts) Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - ) ELAN Touchpad 15.13.8.2_X64_WHQL (HKLM\...\Elantech) (Version: 15.13.8.2 - ELAN Microelectronic Corp.) Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version: - ) f.lux (HKU\S-1-5-21-3541609464-672976988-1563198395-1000\...\Flux) (Version: - ) ffdshow v1.3.4530 [2014-02-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4530.0 - ) FormatFactory 3.5.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.5.0.0 - Format Factory) Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Hearthstone Deck Tracker (HKU\S-1-5-21-3541609464-672976988-1563198395-1000\...\HearthstoneDeckTracker) (Version: 1.5.5 - HearthSim) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd) iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.38.1036 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1405.3) (HKLM\...\{302600C1-6BDF-4FD1-1312-148929CC1385}) (Version: 17.0.1312.0414 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.4.65 - Intel Corporation) InterActual Player (HKLM-x32\...\InterActual Player) (Version: - ) iTunes (HKLM\...\{F0C7385A-9D20-45F3-8101-05D383885180}) (Version: 12.6.1.25 - Apple Inc.) Java 7 Update 76 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417076FF}) (Version: 7.0.760 - Oracle) Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation) Killer Bandwidth Control Filter Driver (HKLM\...\{6A7B3213-F5AE-4C0D-87DD-CFA61B439ABB}) (Version: 1.1.50.1414 - Rivet Networks) Hidden Killer E220x Drivers (HKLM\...\{FBD1BE98-DA7C-403A-A504-7F1748689331}) (Version: 1.1.50.1414 - Rivet Networks) Hidden Killer Network Manager (HKLM\...\{2F785742-7788-48E9-8698-DC4FB138A017}) (Version: 1.1.50.1414 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{B9DDCA83-7B2C-474E-BACB-87DE05EF5DF4}) (Version: 1.1.50.1414 - Qualcomm Atheros) League of Legends (HKLM-x32\...\{3E75652D-99B1-417E-B163-BEF33CAD3F16}) (Version: 3.0.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) Les Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.0.732.20 - Electronic Arts Inc.) Lexmark 2400 Series (HKLM-x32\...\Lexmark 2400 Series) (Version: - Lexmark International, Inc.) LibreOffice 4.3.0.4 (HKLM-x32\...\{5C005E2A-AEAE-4DF7-B7CA-1E6DCDD2AEA4}) (Version: 4.3.0.4 - The Document Foundation) Lingoes 2.9.2 (HKLM\...\Lingoes Translator (x64)_is1) (Version: 2.9.2 - Lingoes Project) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{66614300-cd9b-4a62-8b18-c97e9562dc3e}) (Version: 19.50.0 - Intel Corporation) Logitech - Assistant pour jeux vidéo 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.) Ma-Config.com (64 bits) (HKLM\...\{7713B2C6-A0E1-47EA-BD3B-B22F22F7C010}) (Version: 7.1.6.1 - Cybelsoft) Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProplusRetail - de-de) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProplusRetail - fr-fr) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3541609464-672976988-1563198395-1000\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation) Microsoft Project Professional 2016 - de-de (HKLM\...\ProjectProRetail - de-de) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Project Professional 2016 - en-us (HKLM\...\ProjectProRetail - en-us) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Project Professionnel 2016 - fr-fr (HKLM\...\ProjectProRetail - fr-fr) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visio Professional 2016 - de-de (HKLM\...\VisioProRetail - de-de) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Visio Professional 2016 - en-us (HKLM\...\VisioProRetail - en-us) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Visio Professionnel 2016 - fr-fr (HKLM\...\VisioProRetail - fr-fr) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mindjet MindManager 2017 (HKLM\...\{FE271AFC-22D4-4E92-BAE1-71DE26AF8E99}) (Version: 17.1.178 - Mindjet) Mises à jour NVIDIA 17.12.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 17.12.8 - NVIDIA Corporation) Hidden Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 43.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 43.0.1 (x86 fr)) (Version: 43.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla) MTP Porting Kit (HKLM-x32\...\{353B1E6D-7073-4450-8C80-699BD8FCFB49}) (Version: 12.0.0 - Microsoft Corp) NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Pilote graphique 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.8326.2076 - Microsoft Corporation) Hidden paint.net (HKLM\...\{02D89175-E08F-401B-BA30-8B7512B57724}) (Version: 4.0.17 - dotPDN LLC) PakkISO 0.4 (HKLM-x32\...\PakkISO_is1) (Version: PakkISO 0.4 by zorted, installer by BitLooter - ) Panneau de configuration NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden PAYDAY 2 (HKLM-x32\...\PAYDAY 2_is1) (Version: - 505 Games) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Portal 2 (HKLM-x32\...\Postal 2_is1) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.71 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7373 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden ScummVM 1.7.0 (HKLM-x32\...\ScummVM_is1) (Version: - The ScummVM Team) ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 11.5.0 - ShareX Team) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 4.0.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 17.12.8 - NVIDIA Corporation) Hidden Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.) SmoothVideo Project version 3.1.6 (HKLM-x32\...\SmoothVideo Project_is1) (Version: 3.1.6 - SVP) Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform) SteelSeries Engine (HKLM\...\SteelSeries Engine) (Version: 2.8.419.40251 - SteelSeries) SteelSeries Engine 3.3.5 (HKLM\...\SteelSeries Engine 3) (Version: 3.3.5 - SteelSeries ApS) Switcher 2.0.0 (HKLM-x32\...\{F7DB6677-661D-4835-AAD8-1B7F4C98D7CE}) (Version: 2.0.0 - Bao Nguyen) TSEV Skyrim LE (HKLM-x32\...\TSEV Skyrim LE_is1) (Version: 2.0.0.0 - ) Uplay (HKLM-x32\...\Uplay) (Version: 4.0 - Ubisoft) Vegas Pro 13.0 (64-bit) (HKLM\...\{CE20A68F-BFBC-11E3-AA73-F04DA23A5C58}) (Version: 13.0.290 - Sony) VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.5.1 - VideoLAN) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) War Thunder Launcher 1.0.1.643 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment) Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) XMind 7 (Update 1) (v3.6.1) (HKLM-x32\...\XMind_is1) (Version: 3.6.1.201512240104 - XMind Ltd.) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => -> Pas de fichier ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> Pas de fichier ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2014-11-21] (Apple Inc.) ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> Pas de fichier ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation) ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-11-01] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => -> Pas de fichier ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {05B9720C-BBF4-4ED3-948D-B2C743DF6F54} - System32\Tasks\{15404497-2542-4972-8A66-F40327F2BCF0} => C:\Windows\system32\pcalua.exe -a "C:\Users\Antoine\Downloads\QuickTimeInstaller (2).exe" -d C:\Users\Antoine\Downloads Task: {0A522D2B-E1C1-4FB6-9747-8DC62F30E54A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {0CD01100-8FC5-468F-99E0-2FA2EBB2AE86} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {22CFE37B-C0BE-44FE-A26E-15BB1B7F0076} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {292482F4-ABFD-40D2-9220-BAFAA2B3FD17} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.) Task: {2F46A070-7BFA-4C20-AF72-CDB7930B7D15} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {3A32F52B-5773-45C2-8A30-D68EAB7BD05C} - System32\Tasks\SafeZone scheduled Autoupdate 1489935501 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {42B44357-EDDC-4F8E-85BE-0ED5C9C0B678} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-31] (Microsoft Corporation) Task: {48A0669F-F345-40D0-9574-B618D6BDAE02} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {4BE5D142-CB65-4922-8B8F-C810F94225B5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-11-11] () Task: {4C0EC3EA-EEB5-4AAE-8E8C-8256CCB97A55} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION Task: {4E615EC2-66F6-4333-9EE1-055077C38CC2} - System32\Tasks\{3BA3A341-12BB-4E58-862F-1C615EABC937} => C:\Windows\system32\pcalua.exe -a E:\Autorun.exe -d E:\ Task: {4F98B347-F7B2-4CF6-969B-03834DEFC8AC} - System32\Tasks\{259B27FD-FF79-467E-8FD9-ABC6AD65C89B} => C:\Windows\system32\pcalua.exe -a E:\REDIST\DXINSTAL.EXE -d E:\REDIST Task: {5752C3DE-B7AF-447A-89FB-A7232820DD17} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION Task: {58A07002-7C42-41DB-8DE6-3135DA40927E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {5D266583-1594-4146-B76F-11FCB9DA52A0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-11-11] (Microsoft Corporation) Task: {60946B32-7187-4F49-89D8-B4832CC0D89B} - System32\Tasks\Driver Booster SkipUAC (Antoine) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {63DEC1A9-DFDC-4555-860C-3483688E62C4} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-11] (AVAST Software) Task: {67E75F17-FFEA-47FB-ADE2-0E2B20100095} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-26] (Adobe Systems Incorporated) Task: {6A60F0B2-6C1C-4C87-A133-731D9680E4EB} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {6D8A469C-F318-452E-A78D-198F0121EBDC} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {77428925-CE22-475F-8155-81C970036EFE} - System32\Tasks\{9F3B4D6C-F18A-4B25-A116-A8AAF7FBB8AD} => C:\Windows\system32\pcalua.exe -a "C:\Users\Antoine\Downloads\Portal - (Www.ApunKaGames.Net)\Portal - (Www.ApunKaGames.Net)\Setup.exe" -d "C:\Users\Antoine\Downloads\Portal - (Www.ApunKaGames.Net)\Portal - (Www.ApunKaGames.Net)" Task: {796585BD-48D7-4B02-9031-71D1C5239493} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {86E4297F-5E6D-4908-843F-65BC87765143} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {8802A865-1390-4008-9F09-BBD22F19876F} - System32\Tasks\AdobeAAMUpdater-1.0-Antoine-PC-Antoine => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-08-27] (Adobe Systems Incorporated) Task: {8AA1B0DD-9680-4CBD-B086-562D5DB3A7C8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {9193FAF3-DAC2-4892-82B4-A4A867EC6C16} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe Task: {984A65BC-5EBA-479C-9E8B-F0FA91F001DB} - System32\Tasks\Installation App Launcher => C:\Program Files (x86)\Lexmark Z2400 Series\ezprint.exe Task: {BDF5622D-EDB0-4541-A4A0-EA831B7E2264} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe Task: {C369C12B-EA63-4E2C-9B3E-942100BF8867} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-31] (Microsoft Corporation) Task: {CEA5870D-F4CD-4D6D-992E-7AA8F09DFAF1} - System32\Tasks\SafeZone scheduled Autoupdate 1458147226 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {CEE53D8C-A80F-4359-8139-8C0816836AEA} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {D3E58A20-F0B2-414C-A9BF-5D9F926C35BA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-11-11] (Microsoft Corporation) Task: {D5D1E6AF-EA56-43B3-86A6-CE77F185E53A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.) Task: {D8F2D59F-72FD-42CD-874F-CFA76B43EA6B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {D99C0EBD-258F-4F02-A8AF-D462F2997E71} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2014-12-01] (Apple Inc.) Task: {DB23586B-4DF5-46BD-A23A-6D7C9692FE5E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(1): schtasks.exe -> /Change /TN "\Adobe Acrobat Update Task" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(2): schtasks.exe -> /Change /TN "\Adobe Flash Player Updater" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(3): schtasks.exe -> /Change /TN "\AdobeAAMUpdater-1.0-Antoine-PC-Antoine" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(4): schtasks.exe -> /Change /TN "\Apple Diagnostics" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(5): schtasks.exe -> /Change /TN "\CCleanerSkipUAC" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(6): schtasks.exe -> /Change /TN "\Driver Booster SkipUAC (Antoine)" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(7): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineCore" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(8): schtasks.exe -> /Change /TN "\GoogleUpdateTaskMachineUA" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(9): schtasks.exe -> /Change /TN "\Installation App Launcher" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(10): schtasks.exe -> /Change /TN "\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(11): schtasks.exe -> /Change /TN "\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(12): schtasks.exe -> /Change /TN "\OneDrive Standalone Update Task-S-1-5-21-3541609464-672976988-1563198395-1000" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(13): schtasks.exe -> /Change /TN "\SafeZone scheduled Autoupdate 1458147226" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(14): schtasks.exe -> /Change /TN "\SafeZone scheduled Autoupdate 1489935501" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(15): schtasks.exe -> /Change /TN "\{15404497-2542-4972-8A66-F40327F2BCF0}" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(16): schtasks.exe -> /Change /TN "\{259B27FD-FF79-467E-8FD9-ABC6AD65C89B}" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(17): schtasks.exe -> /Change /TN "\{3BA3A341-12BB-4E58-862F-1C615EABC937}" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(18): schtasks.exe -> /Change /TN "\{9F3B4D6C-F18A-4B25-A116-A8AAF7FBB8AD}" /ENABLE Task: {E67E2721-8506-4E0B-9326-9BEB5420C2FD} - C:\Windows\System32\Tasks\AVAST Software\Gaming mode Task Scheduler recovery => Command(19): schtasks.exe -> /Change /TN "\AVAST Software\Gaming mode Task Scheduler recovery" /DISABLE Task: {F81AAB5A-9942-4B53-A44D-7CB75AD8CF74} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-21] (Piriform Ltd) Task: {F9A3BB37-DE43-4A84-B573-F6DAE3A77C2B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-11-11] () (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Antoine\Desktop\Lanceur d'applications Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Antoine\AppData\Local\Google\Chrome\User Data\Lanceur d'applications Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Antoine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Lanceur d'applications Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\Users\Antoine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Lanceur d'applications Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --show-app-list ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic ==================== Modules chargés (Avec liste blanche) ============== 2017-11-11 19:40 - 2017-11-11 19:40 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll 2016-11-25 07:16 - 2016-11-25 07:16 - 000192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe 2016-11-17 01:28 - 2016-11-17 01:28 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-05-08 23:44 - 2017-05-08 23:44 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-02-03 18:40 - 2014-08-06 02:04 - 001441792 _____ () C:\Program Files\Everything\Everything.exe 2015-11-08 20:05 - 2014-08-16 17:57 - 000377344 _____ () C:\Program Files\Lingoes\Translator2\OpenText64.dll 2017-03-18 21:56 - 2017-03-18 21:56 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2014-09-18 08:23 - 2014-09-18 08:23 - 000866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2015-03-12 19:23 - 2015-03-12 19:23 - 001050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2014-09-18 08:23 - 2014-09-18 08:23 - 000059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2015-03-12 19:23 - 2015-03-12 19:23 - 000242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2016-12-20 04:19 - 2016-12-20 04:19 - 000179896 _____ () C:\Program Files\Mindjet\MindManager 17\zlib64.dll 2017-05-09 02:05 - 2017-05-09 02:05 - 000092472 _____ () C:\Program Files\iTunes\zlib1.dll 2017-05-09 02:05 - 2017-05-09 02:05 - 001354040 _____ () C:\Program Files\iTunes\libxml2.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000758784 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineLib.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000175104 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DBUtils.dll 2017-04-26 18:22 - 2017-04-26 18:22 - 000089915 ____N () C:\Users\Antoine\AppData\Local\Temp\d91569c7-2bdb-4137-adcb-b1fa4d53c4de\CliSecureRT64.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000287744 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DriverCommunication.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000140288 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\ISSPlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000148480 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Localization.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000145408 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\Utilities.dll 2013-01-10 06:46 - 2013-01-10 06:46 - 000047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SteelSeriesDrivers\x2api.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 009633280 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SSEngineWinGui.dll 2013-01-10 06:46 - 2013-01-10 06:46 - 001102336 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\System.Data.SQLite.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000209408 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CustomWPFColorPicker.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000349696 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000171008 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\D3MousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000173056 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\KKMousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000171008 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\SRawPlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000307200 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\MLGSenseiPlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000154624 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWGoldPlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000170496 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\GW2MousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000169472 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CSGOMousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000169984 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\DOTA2MousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000157184 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoWWirelessPlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000170496 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\CODMousePlugin.dll 2014-01-24 21:21 - 2014-01-24 21:21 - 000169984 _____ () C:\Program Files\SteelSeries\SteelSeries Engine\WoTMousePlugin.dll 2016-12-21 18:49 - 2016-12-21 18:49 - 000069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2015-03-05 19:04 - 2015-03-05 19:04 - 018305024 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\SteelSeriesEngine3.exe 2015-03-05 17:44 - 2015-03-05 17:44 - 000047616 _____ () C:\Program Files\SteelSeries\SteelSeries Engine 3\x2api.dll 2017-10-10 17:09 - 2017-10-10 17:09 - 004252672 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Calculator.exe 2017-10-06 16:47 - 2017-10-06 16:47 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-03-18 21:58 - 2017-03-20 06:07 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-09-27 13:35 - 2017-09-21 08:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll 2017-09-27 13:35 - 2017-09-21 08:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll 2017-11-12 12:36 - 2017-11-12 12:36 - 002930560 _____ () C:\Users\Antoine\AppData\Local\Microsoft\Windows\INetCache\IE\QXNAWG83\ZHPDiag3.exe 2017-10-26 21:39 - 2017-10-23 11:14 - 031229440 _____ () C:\Users\Antoine\AppData\Local\Google\Chrome\User Data\PepperFlash\27.0.0.183\pepflashplayer.dll 2014-12-30 20:23 - 2016-03-31 17:57 - 000625440 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll 2017-11-11 19:40 - 2017-11-11 19:40 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-11-11 19:40 - 2017-11-11 19:40 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-07-03 21:09 - 2017-07-03 21:09 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-11-11 19:40 - 2017-11-11 19:40 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-11-11 19:40 - 2017-11-11 19:40 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-11-11 19:40 - 2017-11-11 19:40 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-03-19 19:40 - 2016-08-17 13:47 - 000118784 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\ffi\node_modules\ref\build\Release\binding.node 2017-03-19 19:40 - 2016-08-17 13:47 - 000124928 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\ffi\build\Release\ffi_bindings.node 2017-03-19 19:40 - 2016-08-17 13:47 - 000014168 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\xcp_win32.dll 2017-08-17 15:51 - 2017-08-17 15:51 - 001993184 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll 2015-10-27 15:53 - 2006-05-25 16:20 - 000241664 _____ () C:\Program Files (x86) (x86)\Lexmark 2400 Series\iptk.dll 2017-03-19 19:40 - 2016-08-17 13:47 - 001581568 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\libglesv2.dll 2017-03-19 19:40 - 2016-08-17 13:47 - 000012288 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\libegl.dll 2017-03-19 19:40 - 2016-08-17 13:47 - 000897536 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\sqlite3\lib\binding\node-v46-win32-ia32\node_sqlite3.node 2017-03-19 19:40 - 2016-08-17 13:47 - 000148992 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\msgpack.win32\build\Release\msgpackBinding.node 2017-03-19 19:40 - 2016-08-17 13:47 - 000336384 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\lwip.win32\build\Release\lwip_image.node 2017-03-19 19:40 - 2016-08-17 13:47 - 000401408 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\lwip.win32\build\Release\lwip_encoder.node 2017-03-19 19:40 - 2016-08-17 13:47 - 000496640 _____ () C:\Users\Antoine\AppData\Local\1Clipboard\app-0.1.8\resources\app.asar.unpacked\node_modules\lwip.win32\build\Release\lwip_decoder.node 2015-01-06 15:40 - 2015-01-06 15:40 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2016-12-18 20:57 - 000001006 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 down.baidu2016.com 127.0.0.1 123.sogou.com 127.0.0.1 www.czzsyzgm.com 127.0.0.1 www.czzsyzxl.com 127.0.0.1 union.baidu2019.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3541609464-672976988-1563198395-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Antoine\Pictures\Camera Roll\IMG_20161228_232536.jpg DNS Servers: 212.27.40.240 - 212.27.40.241 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Prompt) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKU\S-1-5-21-3541609464-672976988-1563198395-1000\...\StartupApproved\Run: => "ApplePhotoStreams" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{24A01E6A-11D6-4340-9548-7E7AE6BA3D36}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin FirewallRules: [TCP Query User{CDF652B2-8D08-4791-8720-DFE994AF9CD9}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin FirewallRules: [{4B555B7D-7B07-4257-A84D-BABB82FB998F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D712BCEA-FEF4-4238-98F5-9B991F239BF2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{1CC920BA-1C1F-421B-852D-FA41E327FACB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{29E52FD6-4B52-4F04-9931-133ECB723A0B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{6508EDCD-98F1-4662-8646-D144B6C2C108}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{0D9D83A0-26D9-433F-9ACC-2C45F8BD0FD6}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [UDP Query User{35744994-A588-4A31-901E-EF855F5AF7F9}C:\program files (x86)\valve\portal 2\portal2.exe] => (Allow) C:\program files (x86)\valve\portal 2\portal2.exe FirewallRules: [TCP Query User{B5192FAA-BDA2-4DA7-B59D-E0AE50FF7B4E}C:\program files (x86)\valve\portal 2\portal2.exe] => (Allow) C:\program files (x86)\valve\portal 2\portal2.exe FirewallRules: [{247B8525-B8B9-423C-8283-172D8A28C986}] => (Allow) C:\Program Files (x86)\Lexmark 2400 Series\LXCRaiox.exe FirewallRules: [{0E334BDD-6509-473F-A510-EE3A110EE76D}] => (Allow) C:\Program Files (x86)\Lexmark 2400 Series\LXCRaiox.exe FirewallRules: [{30CCCC7F-B0F5-4D95-9636-57C44B1900D1}] => (Allow) C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe FirewallRules: [{2F9356EB-A7A2-4796-8EAA-E61F229C5A61}] => (Allow) C:\Program Files (x86)\Lexmark 2400 Series\lxcrmon.exe FirewallRules: [{13577D06-BF94-4A2A-9920-8342561A9C90}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 2400 Series\LXCRaiox.exe FirewallRules: [{6D9CE870-C5EF-4F94-88E0-D88E747E186B}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 2400 Series\LXCRaiox.exe FirewallRules: [{A4ED3B58-431A-4697-8111-1B7D95FB530E}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 2400 Series\lxcrmon.exe FirewallRules: [{DCF33753-0FB7-43CE-8660-4CE3855421CA}] => (Allow) C:\Program Files (x86) (x86)\Lexmark 2400 Series\lxcrmon.exe FirewallRules: [{A70D80D2-06E9-422E-A5C1-4AC1E4E982E8}] => (Allow) LPort=5020 FirewallRules: [{0F658574-89E9-4592-AFF1-84664EBBECDD}] => (Allow) LPort=5019 FirewallRules: [{67343928-0192-4674-BDB0-4B84CBF6220A}] => (Allow) LPort=5018 FirewallRules: [{BEA3EA9E-2913-4AF0-91FA-52C88001F659}] => (Allow) LPort=5017 FirewallRules: [{43BCFB0C-99CB-4ED6-9CC4-6A6E6048F5EB}] => (Allow) LPort=5016 FirewallRules: [{A3FE410A-5245-4061-A4A4-9713CDF3EE49}] => (Allow) LPort=5015 FirewallRules: [{2B2804D5-1A69-4436-926A-6FB8D9B5DA52}] => (Allow) LPort=5014 FirewallRules: [{18F0E392-F014-4AC4-AF2F-04750E53C22D}] => (Allow) LPort=5013 FirewallRules: [{CD193667-D492-4E3B-BC4E-0EA21FEA099B}] => (Allow) LPort=5012 FirewallRules: [{DF1B5E8C-4233-422B-A863-9D3C7DAF1857}] => (Allow) LPort=5011 FirewallRules: [{AD54839D-26DB-4694-A8B5-5E630FD2A73A}] => (Allow) LPort=5010 FirewallRules: [{80DA0EB2-EEB2-4475-8A9F-631CF76A37BE}] => (Allow) LPort=5009 FirewallRules: [{F9A8D287-0AAD-44CD-9A92-4BE4770E0A96}] => (Allow) LPort=5008 FirewallRules: [{D28B144C-C73C-4866-A31D-75F2E6992CB0}] => (Allow) LPort=5007 FirewallRules: [{0E87092F-1234-4EAE-B21C-628C8D695168}] => (Allow) LPort=5006 FirewallRules: [{0CA92901-7EA1-4153-B9F3-7CFB38EC0BA2}] => (Allow) LPort=5005 FirewallRules: [{A0957148-DEF8-412B-878F-90E66B1DE70A}] => (Allow) LPort=5004 FirewallRules: [{2FC6CFAA-BE01-40B4-B387-08F30E851B42}] => (Allow) LPort=5003 FirewallRules: [{84808AB9-6F7C-44A0-ADB5-EE46F0D2977B}] => (Allow) LPort=5002 FirewallRules: [{D01C5605-63A8-43F7-8D7F-255677E3EBD6}] => (Allow) LPort=5001 FirewallRules: [{3E3E5B2D-740C-46D1-B09B-FEBB25BBB7DA}] => (Allow) LPort=5000 FirewallRules: [{31B20400-5528-4BD0-83FA-E59930976735}] => (Allow) LPort=135 FirewallRules: [{0239C8ED-429D-4C69-9A89-8F656A8F5730}] => (Allow) C:\Windows\System32\lxcrcoms.exe FirewallRules: [{3EEF3F32-CB0D-4659-98A4-65185E445557}] => (Allow) C:\Windows\System32\lxcrcoms.exe FirewallRules: [{1D2F647D-81C1-48B9-B7BC-35AF124F07BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2 Demo\payday2_win32_release.exe FirewallRules: [{08EB0922-6C5E-43A1-BCC5-25A3C3643907}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2 Demo\payday2_win32_release.exe FirewallRules: [UDP Query User{690DCFEB-9404-48C3-B8A9-ACF2C65E2357}F:\programmes\payday 2\payday2_win32_release.exe] => (Allow) F:\programmes\payday 2\payday2_win32_release.exe FirewallRules: [TCP Query User{D1CF59A3-F1CB-48C4-82FA-59F64F5CDCF7}F:\programmes\payday 2\payday2_win32_release.exe] => (Allow) F:\programmes\payday 2\payday2_win32_release.exe FirewallRules: [UDP Query User{E509E380-ED57-4AD6-B906-033F3D3B0F2D}F:\programmes\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) F:\programmes\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{1E16175A-24C7-4024-97E1-7BC9F2F90CD7}F:\programmes\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe] => (Allow) F:\programmes\heroes of the storm\versions\base35360\heroesofthestorm_x64.exe FirewallRules: [{EF739881-143D-4A8E-9F79-401B2D07CE73}] => (Allow) LPort=1900 FirewallRules: [{7A1DDE5E-F876-4450-BDB5-4255DD4F0D43}] => (Allow) LPort=2869 FirewallRules: [{4AE6F461-CFDA-4BF4-8FF0-6FCFBDB018DB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [UDP Query User{1E653052-60B6-47C5-907C-0C5872F90097}C:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe FirewallRules: [TCP Query User{211A7AEF-C38A-4085-B827-980836B6BF94}C:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\magickawizardwars\bitsquid_win32_dev.exe FirewallRules: [{DF64A8B5-BF64-4DF5-9BA7-C959047C824B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MagickaWizardWars\WizardWarsLauncher.exe FirewallRules: [{1D02ED9D-500C-45AE-B27C-FF5DD9EBC61F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\MagickaWizardWars\WizardWarsLauncher.exe FirewallRules: [{B23EE73D-0FE6-45CE-A1DF-3D372936DE14}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{D804A822-5E7E-41A0-85C2-141D21DC5E31}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{2093DC81-3FE4-4180-84F8-6E405CD5408B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{EA3F0EA6-29B3-4A67-A6A7-FB439063D3B0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{63B2721C-9FD2-4CE2-8D11-6FCBE15AC28D}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{6617FFB1-748E-46C0-BA69-F76271AB1F6E}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{F63580AE-43A2-46ED-96E4-7208B9F08453}] => (Allow) C:\Users\Antoine\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{AB7E33BD-ED6F-4EEA-99E7-C2B1DBFDF725}] => (Allow) C:\Users\Antoine\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{4A99C604-BD44-4E5F-8CE6-5E0937E7801F}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe FirewallRules: [{7956ECC5-ADD5-42A1-BC99-468AE19CA37A}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe FirewallRules: [{62DC651F-D7C8-4D92-86B9-D1C68793AB23}] => (Allow) LPort=48114 FirewallRules: [{4C9D6DB6-5448-4BBE-8967-D1D20E377274}] => (Allow) LPort=48113 FirewallRules: [UDP Query User{33493D85-4EF8-4908-92E4-3312CBEC9CE1}F:\programmes\world_of_tanks\worldoftanks.exe] => (Allow) F:\programmes\world_of_tanks\worldoftanks.exe FirewallRules: [TCP Query User{5F4201B1-D21E-4B83-8A87-39C4AED0AFDA}F:\programmes\world_of_tanks\worldoftanks.exe] => (Allow) F:\programmes\world_of_tanks\worldoftanks.exe FirewallRules: [UDP Query User{5EAC555C-8358-4EFE-9E99-B07235E23AA9}F:\programmes\world_of_tanks\wotlauncher.exe] => (Allow) F:\programmes\world_of_tanks\wotlauncher.exe FirewallRules: [TCP Query User{CE6A0ACE-C6B3-43B1-8ECE-CF8C03A0A7EA}F:\programmes\world_of_tanks\wotlauncher.exe] => (Allow) F:\programmes\world_of_tanks\wotlauncher.exe FirewallRules: [UDP Query User{93807371-AA84-4D40-91B0-23C4749BC750}F:\programmes\far cry 4\bin\farcry4.exe] => (Block) F:\programmes\far cry 4\bin\farcry4.exe FirewallRules: [TCP Query User{463D8258-13F3-4F6F-AD2E-79BB4D59ED57}F:\programmes\far cry 4\bin\farcry4.exe] => (Block) F:\programmes\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{85CDC41A-5379-4601-A978-972777BE3A28}F:\programmes\hearthstone\hearthstone.exe] => (Allow) F:\programmes\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{073C1A9B-EC55-4553-AB5C-DA6832B3F105}F:\programmes\hearthstone\hearthstone.exe] => (Allow) F:\programmes\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{8C446FBC-337F-4147-90DF-F2502DC0F182}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin FirewallRules: [TCP Query User{2A662929-BA59-44E1-B26C-76C44A421138}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin FirewallRules: [UDP Query User{27920AA7-0FC3-4CF5-9644-1F3B1C42F574}F:\programmes\far cry 4\bin\farcry4.exe] => (Allow) F:\programmes\far cry 4\bin\farcry4.exe FirewallRules: [TCP Query User{5CB093BE-9A9C-4695-9AD1-CF084B6B9612}F:\programmes\far cry 4\bin\farcry4.exe] => (Allow) F:\programmes\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{FE711461-899F-4908-ABAB-07B1EBB94ED0}C:\program files\java\jre7\bin\jp2launcher.exe] => (Allow) C:\program files\java\jre7\bin\jp2launcher.exe FirewallRules: [TCP Query User{C32C82EB-E3C2-464D-89AF-5DD9659988D9}C:\program files\java\jre7\bin\jp2launcher.exe] => (Allow) C:\program files\java\jre7\bin\jp2launcher.exe FirewallRules: [UDP Query User{E8D6DC93-0F76-4C01-BA30-2D61D44AA1C6}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe FirewallRules: [TCP Query User{61956827-7052-4134-B284-F13E88EECFB7}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe FirewallRules: [UDP Query User{3E7EAC93-07D4-4480-8618-3AD57B7CB718}C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe] => (Allow) C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe FirewallRules: [TCP Query User{FFBBB90D-1D90-4CBC-8B2A-E6798F956548}C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe] => (Allow) C:\program files (x86)\roccat\power-grid\roccatpowergrid.exe FirewallRules: [{6E4051BB-5D22-436E-9883-937179CF85CA}] => (Allow) C:\Windows\SysWOW64\lxcrcoms.exe FirewallRules: [{DF2DC9D9-C3E2-4F7E-AB4A-623F2943FBE9}] => (Allow) C:\Windows\SysWOW64\lxcrcoms.exe FirewallRules: [UDP Query User{F2E02CCE-4180-405A-BC35-1E85A019D4FE}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{8232F7F9-EDB2-49B0-84BC-E9EF4105C072}C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_25\bin\javaw.exe FirewallRules: [{AFD8BA40-3417-47E0-AACE-8EB968D839E4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{57812438-05F0-49DF-B54E-D100FC6C4724}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{56DD76AE-F28A-4442-9E7F-34A3F105B467}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{FB9BD233-1296-4F65-82B9-81D545D92A0A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FE6CA272-DE4C-49CC-B542-35B78E483DE3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3A452C3C-3693-43BE-86CE-577BAAAC979E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [{749888F1-F49D-4FF2-8B37-E4283617462F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe FirewallRules: [TCP Query User{5EBB704F-10B1-4011-BC02-3A848E6342A0}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe FirewallRules: [UDP Query User{2D326734-2BE6-4D61-A46E-7AD73ABFD949}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe FirewallRules: [TCP Query User{E4B59E7C-F913-4AAE-9D37-12AEB5B04810}C:\users\antoine\appdata\roaming\bittorrent\updates\7.9.6_42095.exe] => (Allow) C:\users\antoine\appdata\roaming\bittorrent\updates\7.9.6_42095.exe FirewallRules: [UDP Query User{3C5C5EDE-97F5-4539-AE19-9A9590CB2BFF}C:\users\antoine\appdata\roaming\bittorrent\updates\7.9.6_42095.exe] => (Allow) C:\users\antoine\appdata\roaming\bittorrent\updates\7.9.6_42095.exe FirewallRules: [{A0963846-37A0-4B35-B315-5A392D306B6C}] => (Allow) C:\WarThunder\launcher.exe FirewallRules: [{236931B2-B69C-410D-85DD-D64903BBC6C1}] => (Allow) C:\WarThunder\launcher.exe FirewallRules: [{2DF4A771-9C22-4148-AF77-0E952DFD6A33}] => (Allow) LPort=80 FirewallRules: [{3733F7BE-699B-4AC7-9B5C-AEEBCEBDCD7E}] => (Allow) LPort=443 FirewallRules: [{61B648B1-20AF-4848-8CD5-CBAB09D88ECA}] => (Allow) LPort=20010 FirewallRules: [{BDAF49F2-CB0D-4888-9619-8EFF970D45EB}] => (Allow) LPort=3478 FirewallRules: [{F1FFDD77-D191-4A38-B8AF-941810DE7CC6}] => (Allow) LPort=7850 FirewallRules: [{F4510C56-FB46-48CC-ABF7-09869B4BE0E5}] => (Allow) LPort=7852 FirewallRules: [{DB036325-688E-44D6-AF2E-4D5DD3090EAA}] => (Allow) LPort=7853 FirewallRules: [{3FFE272A-90C0-405F-9ABC-F64A99F95877}] => (Allow) LPort=27022 FirewallRules: [{2CD6DE48-FA64-4F19-A1C5-16FD81797574}] => (Allow) LPort=6881 FirewallRules: [{9D40D59B-1035-408E-90B0-D22B8D6830A7}] => (Allow) LPort=33333 FirewallRules: [{D17139E5-14B9-4446-8972-8E03824D258B}] => (Allow) LPort=20443 FirewallRules: [{F26B2882-EF9C-4C72-8974-33247DB50C79}] => (Allow) LPort=8090 FirewallRules: [TCP Query User{5228E8C3-E7DC-4883-82E2-D707D4458DB5}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe FirewallRules: [UDP Query User{99801968-1D73-4DA5-B291-A645E9AC82A8}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe FirewallRules: [TCP Query User{9E4743AD-C95E-4493-B4B1-9B3A54A917DA}F:\programmes\rugby challenge 3.macho@zone-telechargement.com\rugbychallenge3.exe] => (Allow) F:\programmes\rugby challenge 3.macho@zone-telechargement.com\rugbychallenge3.exe FirewallRules: [UDP Query User{3CD5CB6E-6596-4828-BC6A-5B177643664D}F:\programmes\rugby challenge 3.macho@zone-telechargement.com\rugbychallenge3.exe] => (Allow) F:\programmes\rugby challenge 3.macho@zone-telechargement.com\rugbychallenge3.exe FirewallRules: [{3C93DE5B-694B-41F6-9D3C-BE3751979D1E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{B510D76B-6492-4E55-A192-0D105995021D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FF9DF1B1-18E1-41B3-ACFC-66B91A82F3A2}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{EC922CC2-4191-4755-81E3-FC9CD7C9B43B}F:\programmes\hearthstone\hearthstone.exe] => (Allow) F:\programmes\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{3AD5D602-C68E-4701-A6C0-269A4D1416CF}F:\programmes\hearthstone\hearthstone.exe] => (Allow) F:\programmes\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{6B6413AE-0422-4016-BBDF-BE8B7EF6DEC4}F:\programmes\battle.net\battle.net.8839\battle.net.exe] => (Allow) F:\programmes\battle.net\battle.net.8839\battle.net.exe FirewallRules: [UDP Query User{291D1C55-9F40-476E-A998-50908E38B594}F:\programmes\battle.net\battle.net.8839\battle.net.exe] => (Allow) F:\programmes\battle.net\battle.net.8839\battle.net.exe FirewallRules: [{92A5BD5B-A472-4BCB-9A6C-F8B9CCEE8D32}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe FirewallRules: [TCP Query User{EA288895-D1C7-423A-88B9-FF28977C88E5}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe FirewallRules: [UDP Query User{B596BFC4-9AB2-4C63-94DB-7E02BA0943D1}C:\program files (x86)\xmind\xmind.exe] => (Allow) C:\program files (x86)\xmind\xmind.exe FirewallRules: [{AC188F9B-0F88-4084-85E0-99E77F09883A}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe FirewallRules: [{BAC1654F-A6CC-436D-8598-58960603781F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 27-10-2017 13:52:20 Point de contrôle planifié 04-11-2017 19:55:07 Windows Update 11-11-2017 21:36:48 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/12/2017 01:48:48 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 2485 Error: (11/12/2017 01:48:48 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 2485 Error: (11/12/2017 01:48:48 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/12/2017 01:48:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 1204 Error: (11/12/2017 01:48:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 1204 Error: (11/12/2017 01:48:47 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (11/12/2017 10:56:10 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: Antoine-PC) Description: Microsoft.MicrosoftOfficeHub_8wekyb3d8bbwe1018 Error: (11/11/2017 11:58:00 PM) (Source: COM) (EventID: 10031) (User: ) Description: Une vérification de stratégie d’unmarshaling a été effectuée lors de l’unmarshaling d’un objet marshalé personnalisé et la classe {95CABCC9-BC57-4C12-B8DF-BA193232AA01} a été refusée Error: (11/11/2017 11:57:44 PM) (Source: COM) (EventID: 10031) (User: ) Description: Une vérification de stratégie d’unmarshaling a été effectuée lors de l’unmarshaling d’un objet marshalé personnalisé et la classe {95CABCC9-BC57-4C12-B8DF-BA193232AA01} a été refusée Error: (11/11/2017 11:57:43 PM) (Source: COM) (EventID: 10031) (User: ) Description: Une vérification de stratégie d’unmarshaling a été effectuée lors de l’unmarshaling d’un objet marshalé personnalisé et la classe {95CABCC9-BC57-4C12-B8DF-BA193232AA01} a été refusée Erreurs système: ============= Error: (11/12/2017 03:14:47 AM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Optimisation de livraison est en attente de démarrage. Error: (11/12/2017 03:10:40 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/12/2017 03:10:40 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/12/2017 03:10:05 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (11/12/2017 03:09:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. Error: (11/12/2017 01:28:49 AM) (Source: DCOM) (EventID: 10010) (User: Antoine-PC) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/12/2017 01:28:49 AM) (Source: DCOM) (EventID: 10010) (User: Antoine-PC) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/11/2017 11:57:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Assistant Connexion avec un compte Microsoft n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (11/11/2017 11:57:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Assistant Connexion avec un compte Microsoft. Error: (11/11/2017 07:44:08 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. CodeIntegrity: =================================== Date: 2017-11-11 20:38:35.458 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_7b11efeca48cd7d3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-24 01:26:53.307 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_7b11efeca48cd7d3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-09-14 17:29:40.730 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_7b11efeca48cd7d3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-17 17:46:54.444 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_7b11efeca48cd7d3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-24 19:32:42.890 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-11 22:17:07.375 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-05-10 17:49:25.414 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-04-28 18:39:06.695 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-4200H CPU @ 2.80GHz Pourcentage de mémoire utilisée: 68% Mémoire physique - RAM - totale: 8112.25 MB Mémoire physique - RAM - disponible: 2523.28 MB Mémoire virtuelle totale: 16304.25 MB Mémoire virtuelle disponible: 9428.64 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:531.55 GB) (Free:264.44 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (DriverCD) (Fixed) (Total:10 GB) (Free:4.94 GB) NTFS Drive f: (jeux et vidéos) (Fixed) (Total:389.16 GB) (Free:44.01 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 223061FD) Partition 1: (Active) - (Size=531.6 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=823 MB) - (Type=27) Partition 3: (Not Active) - (Size=389.2 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=10 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================