Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03 Exécuté par erwan (14-11-2017 18:02:25) Exécuté depuis C:\Users\erwan\Downloads Windows 10 Home Version 1703 15063.674 (X64) (2017-04-27 11:10:26) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1104394044-2155642796-2404995124-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1104394044-2155642796-2404995124-503 - Limited - Disabled) erwan (S-1-5-21-1104394044-2155642796-2404995124-1001 - Administrator - Enabled) => C:\Users\erwan Invité (S-1-5-21-1104394044-2155642796-2404995124-501 - Limited - Disabled) Wan 2 (S-1-5-21-1104394044-2155642796-2404995124-1003 - Limited - Enabled) => C:\Users\Wan 2 ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.) 4400K410 (HKLM-x32\...\{92ACD82C-E61D-4CC4-88E1-0A43CA16DF4A}) (Version: 140.0.353.000 - Hewlett-Packard) Hidden 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.2.0.211 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.7.197 - Adobe Systems, Inc.) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.12 - Michael Tippach) Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17387 - Microsoft Corporation) Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software) Avast SecureLine (HKLM\...\{2CD3C92F-EDC5-4B02-9B0A-9C1D37C58EF5}_is1) (Version: 1.0.275.2 - AVAST Software) Blue Coat K9 Web Protection (HKLM\...\Blue Coat K9 Web Protection) (Version: 4.5.1001 - Blue Coat Systems, Inc.) Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: - Broadcom Corporation) Broadcom Bluetooth Drivers (HKLM\...\{0A1B4690-E176-4533-8058-939480AEE1D0}) (Version: 12.0.1.921 - Broadcom Corporation) BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform) Copy (HKLM-x32\...\{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.R.L.) CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.7428 - CyberLink Corp.) CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - Nom de votre société) Hidden CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - CyberLink Corp.) Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.0.3 - IObit) Dropbox 25 GB (HKLM-x32\...\{0867A88D-764F-366E-9E21-130DA8B472C3}) (Version: 3.1.18.0 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden HP 3D DriveGuard (HKLM-x32\...\{E8D0E2B8-B64B-44BC-8E01-00DDACBDF78A}) (Version: 6.0.28.1 - Hewlett-Packard Company) HP CoolSense (HKLM-x32\...\{0C723C74-62DF-4B35-9490-A207546D866D}) (Version: 2.21.4 - HP Inc.) HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP) HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP) HP Officejet 4400 K410 All-in-One Driver Software 14.0 Rel. 7 (HKLM\...\{A1CD82D5-3758-4214-93D1-4C8B55D9998F}) (Version: 14.0 - HP) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.2024 - HP Photo Creations Powered by RocketLife) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8318.5320 - Hewlett-Packard) HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP) HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.5.37.19 - HP) HP Support Solutions Framework (HKLM-x32\...\{C255181E-049B-4B54-A39C-61A94E32C374}) (Version: 12.8.37.11 - HP) HP Sure Connect (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 1.0.0.31 - HP Inc.) HP System Event Utility (HKLM-x32\...\{ABE95EB9-5EA1-42A3-8009-BA7602127ED6}) (Version: 1.4.25 - HP Inc.) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.) HP Wireless Button Driver (HKLM-x32\...\{F5852AA8-30EA-495B-84B4-C2403C935D6F}) (Version: 1.1.19.1 - HP) HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10608.329 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.11.1193 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.7.1051 - Intel Corporation) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes) MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden Mass Effect™ 3 (HKLM-x32\...\{534A31BD-20F4-46b0-85CE-09778379663C}) (Version: 1.05.0.0 - Electronic Arts) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.8625.2121 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mises à jour NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Mozilla Firefox 56.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 56.0.2 (x64 fr)) (Version: 56.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.2.6506 - Mozilla) NVIDIA GeForce Experience 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.1 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Pilote graphique 385.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 385.69 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2121 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden OJ_AIO_07_K410_SW_Min (HKLM-x32\...\{4304C576-C397-42F3-B660-57A1919DCB51}) (Version: 140.0.353.000 - Hewlett-Packard) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.2.49155 - Electronic Arts, Inc.) Pale Moon 27.1.2 (x86 en-US) (HKLM-x32\...\Pale Moon 27.1.2 (x86 en-US)) (Version: 27.1.2 - Moonchild Productions) Panneau de configuration NVIDIA 385.69 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 385.69 - NVIDIA Corporation) Hidden PhotoFiltre 7 (HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\PhotoFiltre 7) (Version: - ) PlayMemories Home (HKLM-x32\...\{E03CD71A-F595-49DF-9ADC-0CFC93B1B211}) (Version: 6.0.02.14151 - Sony Corporation) PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21300 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8198 - Realtek Semiconductor Corp.) SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden ScummVM (HKLM-x32\...\ScummVM_is1) (Version: - The ScummVM Team) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.) SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform) Spotify (HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\Spotify) (Version: 1.0.66.478.g1296534d - Spotify AB) Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.342.000 - Hewlett-Packard) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated) TAL-Chorus-LX (64bit) (HKLM\...\{AD82F5D9-5FF3-497E-94E1-752DBB38E5D4}) (Version: 1.3.7 - TAL - Togu Audio Line) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) The Curse of Monkey Island - Old School Edition v0.0.1.0 (HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\The Curse of Monkey Island - Old School Edition v0.0.1.0) (Version: - ) Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes) Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1104394044-2155642796-2404995124-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-07-18] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-07-18] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-07-18] () ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-07-18] () ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki124164.inf_amd64_85b60d2b8c3af983\igfxDTCM.dll [2017-09-01] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-09-16] (NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-07-18] () ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-11] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {05D9EF5C-3C2D-41EA-8F65-CEEF83B7AA4B} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-11-06] (Microsoft Corporation) Task: {0CEF0EB0-3098-41A2-AE4D-73A84FC0B1A0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {1C8B4BBC-3043-4FED-837A-CCA1C5DA305C} - System32\Tasks\avast! SL Update => C:\Program Files\AVAST Software\SecureLine\SLUpdate.exe [2017-01-16] (AVAST Software) Task: {2C03D6D5-994A-4253-BB4E-E19ED502BC70} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-07] (Piriform Ltd) Task: {3C7C4A80-A440-43F7-94B7-0629A2ECA355} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-10-11] (HP Inc.) Task: {449C1AD8-589C-46AE-99A1-0C9BF0E0A0A6} - System32\Tasks\HPCeeScheduleForerwan => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-01-22] (Hewlett-Packard) Task: {4F3E51F3-FCDB-45D2-981A-42AB6FFFCF96} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation) Task: {51B379A1-4AF2-4DDA-85A2-CD886CAB8C17} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-31] (Microsoft Corporation) Task: {534A6A06-1AB9-4BE0-9893-5B3633930043} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-10-31] (Microsoft Corporation) Task: {54667A7A-417A-46E6-93F6-2EE6F2D6AD3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-09-25] (HP Inc.) Task: {567310AA-87C6-420C-B19C-A40360EC108D} - System32\Tasks\SafeZone scheduled Autoupdate 1484567978 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {57AEC897-5942-4932-9540-521BE1FB4D10} - System32\Tasks\S-1-5-21-1104394044-2155642796-2404995124-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-03-18] (Microsoft Corporation) Task: {59C493D2-B804-49F6-8296-7EE43FA5BFF6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {621EA04E-000B-4BC2-A22D-B2908A41E4FE} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs] Task: {6E239534-037B-463C-A07A-51ED48FDD395} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [2016-01-21] (HP Development Company, L.P.) Task: {973BCF4E-AFCD-4360-96AC-8FC60B6F1C6C} - System32\Tasks\Driver Booster SkipUAC (erwan) => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe [2017-10-11] (IObit) Task: {98AC81FF-735F-4C50-B0A4-4F086E4FD78B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {9F1F4C14-F4CB-4BA8-8014-EB4DFB271A0E} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-28] () Task: {A4CE5CC6-3EF5-499E-AAFA-EA190723EEFA} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {AA1B8EE5-708A-4F87-B15F-ED99EB9B6F7D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant printer driver installation => C:\WINDOWS\TEMP\sp80439.exe <==== ATTENTION Task: {ABB48780-E21D-43FA-82AF-D613292B4E42} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-09-21] () Task: {ACCD653E-2D89-4706-80F2-EE51684EB7C4} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-28] () Task: {C51F4F54-5138-4DC4-AFBC-1B4EAF474F88} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-16] (Dropbox, Inc.) Task: {C5C7D0B0-43CD-4E07-8D53-5EC58BFB81B0} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.0.3\Scheduler.exe [2017-08-30] (IObit) Task: {CC7246C3-6D53-43E9-A4B8-F786FB17A41F} - System32\Tasks\Avast SecureLine => C:\Program Files\AVAST Software\SecureLine\SecureLine.exe [2017-01-16] (AVAST Software) Task: {D1D379CE-0C27-40ED-B45C-C529487705D9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-09-25] (HP Inc.) Task: {D2A96371-3246-434F-BCFD-C531981B5A1E} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-11] (AVAST Software) Task: {D4A268A8-CE6B-4863-B71F-D57E3EB4FC7A} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-erwan_dagan@hotmail.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated) Task: {D6DCE7EF-2B57-45D0-A21A-146DBAE9E357} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {E0C63A33-ACD4-4662-8D84-AA9F25FA37DF} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-30] (Adobe Systems Incorporated) Task: {EDD53F8F-AEC0-4CE9-A898-5AD82CD947B7} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2016-06-14] (NVIDIA Corporation) Task: {F1156925-4C5B-4A77-A06E-2F9BE7B3BADE} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.) Task: {F6A33DBC-A50F-4E82-AB6F-2053D6AAFE8D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-01-16] (Dropbox, Inc.) Task: {F9CE936C-9EB0-40CE-A493-00309B371AFA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {FB56ADD6-D5B6-4423-961E-989DD7A42F66} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForerwan.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2017-01-16 08:29 - 2017-01-16 08:33 - 000592392 _____ () C:\Program Files\AVAST Software\SecureLine\VpnSvc.exe 2016-07-06 00:39 - 2014-04-14 13:59 - 000389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2017-11-10 17:37 - 2017-11-10 18:13 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-11-10 17:37 - 2017-11-10 18:13 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-03-18 17:58 - 2017-03-18 17:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-07-18 00:50 - 2017-07-18 00:50 - 000492112 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll 2017-03-18 17:59 - 2017-03-20 02:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-11-11 13:37 - 2017-11-11 13:54 - 035058176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\Music.UI.exe 2017-11-11 13:37 - 2017-11-11 13:51 - 009217024 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\EntCommon.dll 2017-08-23 12:20 - 2017-08-23 12:20 - 000957952 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll 2017-09-26 19:03 - 2017-09-26 19:06 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-11-11 13:37 - 2017-11-11 13:54 - 013225472 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17084.21621.0_x64__8wekyb3d8bbwe\Music.Visuals.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 000022016 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2017-11-11 13:37 - 2017-11-11 14:23 - 055109120 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-10-05 00:32 - 2017-10-05 00:48 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2017-11-11 13:37 - 2017-11-11 14:24 - 000164864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\VideoPlugin.dll 2017-10-05 00:32 - 2017-10-05 00:47 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 003740160 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2017-11-11 13:37 - 2017-11-11 14:24 - 002051584 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2017-11-11 13:37 - 2017-11-11 14:24 - 020759040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 003607040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2017-11-11 13:37 - 2017-11-11 13:44 - 003150848 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2017-08-29 10:45 - 2017-08-29 10:45 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 002493440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.People.AutoSuggest.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 000919040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.People.PeoplePicker.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 001363968 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2017-11-11 13:37 - 2017-11-11 14:23 - 000027648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\Lumia.ViewerPluginProxy.dll 2017-11-11 13:37 - 2017-11-11 13:42 - 000315904 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39091.16340.0_x64__8wekyb3d8bbwe\AnimatedGIF.dll 2017-11-07 17:46 - 2017-11-07 17:46 - 000015872 _____ () C:\Program Files\WindowsApps\Microsoft.Office.Sway_18.1711.50601.0_x64__8wekyb3d8bbwe\Microsoft.Office.Sway.LightweightClient.UWP.exe 2017-11-07 17:46 - 2017-11-07 17:46 - 006290944 _____ () C:\Program Files\WindowsApps\Microsoft.Office.Sway_18.1711.50601.0_x64__8wekyb3d8bbwe\Microsoft.Office.Sway.LightweightClient.UWP.dll 2017-10-30 17:06 - 2017-10-30 17:07 - 002361528 _____ () C:\Program Files\WindowsApps\Microsoft.Office.Sway_18.1711.50601.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2016-07-06 00:23 - 2016-06-14 22:14 - 000020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2017-11-11 13:05 - 2017-11-11 13:05 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-11-11 13:05 - 2017-11-11 13:05 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-10-19 18:17 - 2017-10-19 18:17 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-11-11 13:05 - 2017-11-11 13:05 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-11-11 13:05 - 2017-11-11 13:05 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-11-11 13:05 - 2017-11-11 13:05 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-01-16 08:29 - 2017-01-16 08:37 - 038907672 _____ () C:\Program Files\AVAST Software\SecureLine\libcef.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-10-30 04:24 - 2015-10-30 04:21 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\erwan\Desktop\Life is strange.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "AccelerometerSysTrayApplet" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1104394044-2155642796-2404995124-1001\...\StartupApproved\Run: => "DAEMON Tools Pro Agent" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{32F466F1-D765-4E23-A27B-77BDD39BA73E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe FirewallRules: [{ABC19B00-001C-4042-8FCD-524E5C15D6C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect 2\MassEffect2Launcher.exe FirewallRules: [{2F4D6789-1FD6-431D-9151-2CB3F0B4D603}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe FirewallRules: [{A579FE7A-69B5-4BFE-A6BF-6528E3D6BD96}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect 2\Binaries\MassEffect2.exe FirewallRules: [{5B885888-36A5-4795-B7C8-C33E419A3053}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{9A161F28-A6CA-415E-8DDD-CA8AEE899694}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mass Effect\Binaries\MassEffect.exe FirewallRules: [{6E308B21-C3E4-4E7C-A4F8-47757D0818B0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eve Online\eve.exe FirewallRules: [{0BF62596-9C0B-41A0-AF70-DB0D6414B29B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Eve Online\eve.exe FirewallRules: [{F000CCC4-880E-481A-B6C8-018308543D9F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{9BE7B6E8-B841-417B-8EFF-CD263AA95512}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{8BA7F941-496A-4168-A5BD-5E035E13BED0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2016\fm.exe FirewallRules: [{F4596E4F-3E37-4502-B6A2-40BAF77E42CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Football Manager 2016\fm.exe FirewallRules: [{550BFBE7-503C-47F6-B1CD-2769389420BD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe FirewallRules: [{1A7B8B99-2B10-4ADA-96BD-7C6FAAFE4DB1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe FirewallRules: [{A211806E-369F-4E60-B7B9-1086FF7A9AF7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{296229B4-6EAA-426C-8D97-72CA8E328BAB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{52C8ABD3-7297-424B-B588-4DB3FFEB8F44}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{DECDB600-564E-4D10-950F-B7E03780DCFF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{86E2A0B6-E436-47C1-92C5-23AAC4A41F65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F6FDA7EB-975C-4071-BF8E-9161BB032B2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{263C3F01-FBC6-436C-A13C-081B147F9521}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C7DFAAE5-EC63-413B-9F58-47F384AB83D3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{95E72FCE-FCC1-4F84-9462-AFE6E9F6A1EE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{0FBD5179-C98D-43C4-BBA9-5FFF31E97711}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{A1047B1D-0CE5-40AD-8FC2-C1FF1F4C5F10}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe FirewallRules: [{925A671E-1159-4269-ACC2-EEB62FF57080}] => (Allow) C:\Program Files (x86)\Origin Games\Mass Effect 3\Binaries\Win32\MassEffect3.exe FirewallRules: [TCP Query User{0662BD2E-5E2B-4EBB-A76A-87D95C344948}C:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) C:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe FirewallRules: [UDP Query User{5B5D0199-7347-46CF-BCB1-D8F20343CDA1}C:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe] => (Block) C:\program files (x86)\origin games\mass effect 3\binaries\win32\masseffect3.exe FirewallRules: [TCP Query User{D159D800-6084-4C44-AFB0-6FD2AE124C1F}C:\users\erwan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\erwan\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{5A076ADB-7D2D-4D31-9820-A30BBE5508CD}C:\users\erwan\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\erwan\appdata\roaming\spotify\spotify.exe FirewallRules: [{F805CC51-2003-462C-B6A0-B018199D40C1}] => (Block) C:\users\erwan\appdata\roaming\spotify\spotify.exe FirewallRules: [{EA56EAF8-9E90-4DF0-A187-7A432F77D738}] => (Block) C:\users\erwan\appdata\roaming\spotify\spotify.exe FirewallRules: [{A2C00E96-5877-4276-A712-336541FD807A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Fandango Remastered\GrimFandango.exe FirewallRules: [{E5B94255-1F08-4FD5-B037-0D89F185F2D0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Grim Fandango Remastered\GrimFandango.exe FirewallRules: [{7CC76486-5F47-4270-AF35-3F106851756E}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe FirewallRules: [{99877742-1BB1-4B50-AB9E-96B1468B72A5}] => (Allow) C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{95DF2EC8-333E-496E-98D8-623AC4493B3E}] => (Allow) C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{81248AAB-B7DC-4C94-B4F4-222374844F4E}] => (Allow) C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A3A8A58E-D164-4A46-A41C-660C55E185B7}] => (Allow) C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{CD9E0CCB-081C-4C39-9848-A0FE65881A8E}] => (Allow) C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{9FAEC140-2FE0-41F2-8DED-E96A6EB4A308}] => (Allow) C:\Users\erwan\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D7CA13C1-9F32-4159-80BE-F76A0C5D1924}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 5\MonkeyIsland105.exe FirewallRules: [{232A6F41-AB8F-4E38-A1A4-CD38AD669A4C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 5\MonkeyIsland105.exe FirewallRules: [{AE2765CB-8CE3-4A11-9904-D81F0CC0AFD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 4\MonkeyIsland104.exe FirewallRules: [{4F10DAA7-886A-41E7-B403-E277A43D3BED}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 4\MonkeyIsland104.exe FirewallRules: [{5D266332-DC5C-416A-8521-1B38161DF7A1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 3\MonkeyIsland103.exe FirewallRules: [{187EF01E-C246-41D0-A4B3-30233C0D0320}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 3\MonkeyIsland103.exe FirewallRules: [{0069184D-4CD1-4F1C-A583-6CC8361C1054}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 2\MonkeyIsland102.exe FirewallRules: [{C0004855-575C-4749-AFA7-BD640B9CF460}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 2\MonkeyIsland102.exe FirewallRules: [{84D27B93-CD9E-4E78-953E-B0C15F9ED23C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 1\MonkeyIsland101.exe FirewallRules: [{A71CC636-DD47-435E-B113-31AD90FBBCA8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Tales of Monkey Island - Chapter 1\MonkeyIsland101.exe FirewallRules: [{A1FCB394-2B97-4B14-A2B1-974B29D9FCBD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe FirewallRules: [{4D44ED2B-A908-4EB1-B9FD-3B85C2A7AF7F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{B4AA9E68-2F62-4B9D-B909-24B194DBC56C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{3CA9E779-5D40-49C8-9632-58D932E80B80}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{6E4905E1-EBCD-4D7E-A20F-D76AC75ED56A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{7769AE42-3669-4AF9-9F3E-471FFF325F52}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{7F7A69A2-9821-4E91-BCBD-860F93ADCD6E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{E377622B-09F2-4CA0-B6AE-A9C372489B59}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{F1E34129-7F30-4016-AF64-5765F2565F31}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{F606CB8C-4179-423D-946C-8458A7FDA2C2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{46D5DA06-B4D8-4456-9324-5F8692FE44D6}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{C181AF47-10E4-4E3A-904C-F07644AD1767}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{8BFEBE3E-F662-4C36-9A7B-96B0B78E7657}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{23CDF5EC-4BD8-44BF-ACB6-28C1824238B5}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe FirewallRules: [{472D82C8-0AC8-4F3E-8CEF-B9281427EEAD}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe FirewallRules: [{A1FDEEE8-2E9F-4115-8A78-2B801D50B2AF}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [TCP Query User{5FD24B4F-49A4-4916-96FF-DFA27F992AAE}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{55D37677-EF25-44E0-A8B2-7413841C2AA7}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe FirewallRules: [{ACF146DD-7857-4BB0-A7A0-61B2A2FE706B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe FirewallRules: [{90524187-5908-4004-8DDB-4EE5441EC5D4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe FirewallRules: [{CE4867FC-382A-4B20-BAFA-CA4B274F264A}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe FirewallRules: [{44B0D8A0-917F-4E52-BD63-11A2F4765EA5}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DriverBooster.exe FirewallRules: [{2344C0CF-E5E1-473E-9253-42295A51521E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DBDownloader.exe FirewallRules: [{1DB47BA2-6F81-4F07-94D6-7ACAEE5E38DE}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\DBDownloader.exe FirewallRules: [{BFBA14CF-401C-4706-AF3E-B495F4043879}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\AutoUpdate.exe FirewallRules: [{B08FF503-5088-4728-B0AE-272FC066B5EA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.0.3\AutoUpdate.exe ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/14/2017 04:55:03 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.8.7.1051, horodatage : 0x56dedae8 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x05927f4d ID du processus défaillant : 0xab4 Heure de début de l’application défaillante : 0x01d35d826c47b84c Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe Chemin d’accès du module défaillant: unknown ID de rapport : b512bb2e-9d00-4ca4-8236-e7b5346e5468 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/14/2017 04:55:00 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : IAStorDataMgrSvc.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.NullReferenceException à IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges() à IAStorUtil.SystemDataModelListener.LoadSavedSystemState() à IAStorDataMgr.EventRelay.b__0(System.Object) à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() à System.Threading.ThreadPoolWorkQueue.Dispatch() à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (11/14/2017 04:51:49 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 37278 ms DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 1002 Executing Function: PolicyBase::takeControlOfOsc Message: Passive Policy 2: Failed to acquire OSC: Failure during execution of _OSC: DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 472 Executing Function: EsifServices::primitiveExecuteSet Message: Error returned from ESIF services interface function call Participant: NoParticipant Domain: NoDomain ESIF Primitive: SET_OPERATING_SYSTEM_CAPABILITIES [93] ESIF Instance: 255 ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202] Policy: Passive Policy 2 [2] Error: (11/14/2017 04:51:49 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 37245 ms DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 1002 Executing Function: PolicyBase::takeControlOfOsc Message: Critical Policy: Failed to acquire OSC: Failure during execution of _OSC: DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 472 Executing Function: EsifServices::primitiveExecuteSet Message: Error returned from ESIF services interface function call Participant: NoParticipant Domain: NoDomain ESIF Primitive: SET_OPERATING_SYSTEM_CAPABILITIES [93] ESIF Instance: 255 ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202] Policy: Critical Policy [1] Error: (11/14/2017 02:33:04 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.8.7.1051, horodatage : 0x56dedae8 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x061c788d ID du processus défaillant : 0x14a0 Heure de début de l’application défaillante : 0x01d35d6e5976a605 Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe Chemin d’accès du module défaillant: unknown ID de rapport : ad8d1287-74bd-4298-aa4e-5a2e26651e62 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/14/2017 02:32:58 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : IAStorDataMgrSvc.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.NullReferenceException à IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges() à IAStorUtil.SystemDataModelListener.LoadSavedSystemState() à IAStorDataMgr.EventRelay.b__0(System.Object) à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() à System.Threading.ThreadPoolWorkQueue.Dispatch() à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (11/14/2017 02:04:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.8.7.1051, horodatage : 0x56dedae8 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0581788d ID du processus défaillant : 0x2b98 Heure de début de l’application défaillante : 0x01d35d6a891e2bf2 Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe Chemin d’accès du module défaillant: unknown ID de rapport : 2b3bd2b0-0140-4fa0-8261-2b9c314807a8 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/14/2017 02:04:05 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : IAStorDataMgrSvc.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.NullReferenceException à IAStorUtil.SystemDataModelListener.ProcessSystemDataModelChanges() à IAStorUtil.SystemDataModelListener.LoadSavedSystemState() à IAStorDataMgr.EventRelay.b__0(System.Object) à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object) à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean) à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem() à System.Threading.ThreadPoolWorkQueue.Dispatch() à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback() Error: (11/14/2017 01:57:33 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 33244 ms DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 1002 Executing Function: PolicyBase::takeControlOfOsc Message: Passive Policy 2: Failed to acquire OSC: Failure during execution of _OSC: DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 472 Executing Function: EsifServices::primitiveExecuteSet Message: Error returned from ESIF services interface function call Participant: NoParticipant Domain: NoDomain ESIF Primitive: SET_OPERATING_SYSTEM_CAPABILITIES [93] ESIF Instance: 255 ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202] Policy: Passive Policy 2 [2] Error: (11/14/2017 01:57:33 PM) (Source: DPTF) (EventID: 256) (User: ) Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.2.11002.3418) TYPE: ERROR MODULE: DPTF TIME 33219 ms DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 1002 Executing Function: PolicyBase::takeControlOfOsc Message: Critical Policy: Failed to acquire OSC: Failure during execution of _OSC: DPTF Build Version: 8.2.11002.3418 DPTF Build Date: Nov 18 2016 15:16:47 Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 472 Executing Function: EsifServices::primitiveExecuteSet Message: Error returned from ESIF services interface function call Participant: NoParticipant Domain: NoDomain ESIF Primitive: SET_OPERATING_SYSTEM_CAPABILITIES [93] ESIF Instance: 255 ESIF Return Code: ESIF_E_UNSUPPORTED_ACTION_TYPE [1202] Policy: Critical Policy [1] Erreurs système: ============= Error: (11/14/2017 04:55:06 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois. Error: (11/14/2017 04:53:23 PM) (Source: BugCheck) (EventID: 1001) (User: ) Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000007e (0xffffffffc0000005, 0xfffff8036ede1d7b, 0xffffdf8090e13728, 0xffffdf8090e12f70). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 4d655e21-d99c-48b8-892c-b10b80a5e512. Error: (11/14/2017 04:52:33 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CG6Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (11/14/2017 04:52:33 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service CG6Service. Error: (11/14/2017 04:52:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Origin Web Helper Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (11/14/2017 04:52:29 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Origin Web Helper Service. Error: (11/14/2017 04:51:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : Cette demande n’est pas prise en charge. Error: (11/14/2017 04:51:49 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 15:02:59 le ‎14/‎11/‎2017 n’était pas prévu. Error: (11/14/2017 02:33:14 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois. Error: (11/14/2017 02:30:27 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Service d’historique des fichiers est en attente de démarrage. CodeIntegrity: =================================== Date: 2017-08-14 12:57:01.074 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvhmwu.inf_amd64_a2527a6474fd95b3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-08 19:57:17.173 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvhmwu.inf_amd64_a2527a6474fd95b3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-06-05 13:38:37.080 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvhmwu.inf_amd64_a2527a6474fd95b3\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6200U CPU @ 2.30GHz Pourcentage de mémoire utilisée: 62% Mémoire physique - RAM - totale: 3985.91 MB Mémoire physique - RAM - disponible: 1497.69 MB Mémoire virtuelle totale: 7825.91 MB Mémoire virtuelle disponible: 5095.59 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:916 GB) (Free:552.7 GB) NTFS Drive d: (RECOVERY) (Fixed) (Total:14.28 GB) (Free:1.69 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F2228C6D) Partition: GPT. ==================== Fin de Addition.txt ============================