Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 09-12-2017 Exécuté par alexi (09-12-2017 15:12:31) Exécuté depuis C:\Users\alexi\Downloads Windows 10 Home Version 1511 10586.1176 (X64) (2016-12-24 23:22:47) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-584049696-1809619210-2097892934-500 - Administrator - Disabled) alexi (S-1-5-21-584049696-1809619210-2097892934-1001 - Administrator - Enabled) => C:\Users\alexi DefaultAccount (S-1-5-21-584049696-1809619210-2097892934-503 - Limited - Disabled) Invité (S-1-5-21-584049696-1809619210-2097892934-501 - Limited - Disabled) Vlaad (S-1-5-21-584049696-1809619210-2097892934-1002 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.8 - Adobe Systems Incorporated) Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.8.2318 - AVAST Software) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BitTorrent (HKLM-x32\...\BitTorrent) (Version: - BitTorrent, Inc) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.7428 - CyberLink Corp.) CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - Nom de votre société) Hidden CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.6.4925 - CyberLink Corp.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd) DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden Discord (HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\Discord) (Version: 0.0.298 - Discord Inc.) Dropbox 25 GB (HKLM-x32\...\{0867A88D-764F-366E-9E21-130DA8B472C3}) (Version: 3.1.18.0 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) EPSON XP-202 203 206 Series Printer Uninstall (HKLM\...\EPSON XP-202 203 206 Series) (Version: - SEIKO EPSON Corporation) GlassWire 1.2 (remove only) (HKLM-x32\...\GlassWire 1.2) (Version: 1.2.109 - SecureMix LLC) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HP 3D DriveGuard (HKLM-x32\...\{8F183B2E-D21D-4070-8132-DD39C3CBFA5C}) (Version: 6.0.41.1 - HP) HP CoolSense (HKLM-x32\...\{0C723C74-62DF-4B35-9490-A207546D866D}) (Version: 2.21.4 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ePrint SW (HKLM-x32\...\{88970959-baf7-4864-a39a-69a58e8ae5cf}) (Version: 5.0.18701 - HP) HP OMEN Mouse X9000 (HKLM-x32\...\{939B7ABC-3664-49B3-BCA9-C87EAB085227}) (Version: 1.0.0.30 - HP) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8318.5320 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{78E2C850-ADA6-420D-BA35-2F4A9BE733CC}) (Version: 8.5.37.19 - HP) HP Support Solutions Framework (HKLM-x32\...\{C255181E-049B-4B54-A39C-61A94E32C374}) (Version: 12.8.47.1 - HP) HP Sure Connect (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 1.0.31.0 - HP Inc.) HP System Event Utility (HKLM-x32\...\{ABE95EB9-5EA1-42A3-8009-BA7602127ED6}) (Version: 1.4.25 - HP Inc.) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - HP Inc.) HP Wireless Button Driver (HKLM-x32\...\{F5852AA8-30EA-495B-84B4-C2403C935D6F}) (Version: 1.1.19.1 - HP) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1035 - Intel Corporation) Intel(R) PRO/Wireless Driver (HKLM\...\{edcc2d98-dba0-4914-ba46-6dae7352cea9}) (Version: 19.20.0000.5007 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4627 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation) Intel(R) WiDi (HKLM\...\{6B15F1EF-F3A8-4C29-BF9E-18EB3683A83D}) (Version: 6.0.60.0 - Intel Corporation) Intel(R) WiDi Software Asset Manager (HKLM-x32\...\{AC8973AF-7F4C-40F4-BFE1-C02FE95ED2C2}) (Version: 3.2.1184 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{A581AD94-8F81-4081-9310-B7AFF6E9AFD5}) (Version: 18.1.1611.3223 - Intel Corporation) Krosmaga (HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\5FF85AF0-CE53-4D51-815F-52DA47E3FF9A-2) (Version: - Ankama) League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) Life Is Strange Episode 1-5 (HKLM-x32\...\{59B6CAE2-7D66-4571-B938-6A5713937221}_is1) (Version: 1.0.8623.0 - Square Enix) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{12415e07-c869-4438-9d99-b55261706671}) (Version: 19.1.0 - Intel Corporation) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{226be6c3-8e08-4d52-bd3a-d361008448c5}) (Version: 10.1.1.37 - Intel(R) Corporation) Hidden ma Livebox (HKLM-x32\...\ma Livebox) (Version: 3.4.8.0 - Orange) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\OneDriveSetup.exe) (Version: 17.3.6998.0830 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mises à jour NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Pilote graphique 388.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.43 - NVIDIA Corporation) OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation) Orange Update (HKLM-x32\...\Orange Update) (Version: 3.3.0.3 - Orange) Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Panneau de configuration NVIDIA 388.43 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.43 - NVIDIA Corporation) Hidden Process Hacker 2.39 (r124) (HKLM\...\Process_Hacker2_is1) (Version: 2.39.0.124 - wj32) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.31222 - Realtek Semiconduct Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.13.1223.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.) RogueKiller version 12.11.9.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.9.0 - Adlice Software) SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\Spotify) (Version: 1.0.69.336.g7edcc575 - Spotify AB) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SWF Opener (HKLM-x32\...\{01386D1F-ADE7-43B4-A4E9-312FC5BC726F}_is1) (Version: 1.3 - UnH Solutions) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.3 - TeamSpeak Systems GmbH) This Is the Police (HKLM-x32\...\This Is the Police_is1) (Version: - ) Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{DE083343-D24D-4495-919E-18C65EC0F289}) (Version: 2.8.0.0 - Microsoft Corporation) UpdateAssistant (HKLM-x32\...\{B7AFAF92-D1C8-49A0-B34A-B5DAF9C9D5C6}) (Version: 1.9.0.0 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden wifi d'Orange (HKLM-x32\...\{EC45CDF6-2664-4222-9A75-5FB6AD1B8E35}) (Version: 2.0.5 - Orange) Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-12] (AVAST Software) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-12] (AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-12] (AVAST Software) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-12] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\windows\system32\igfxDTCM.dll [2017-07-10] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\windows\system32\nvshext.dll [2017-11-28] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-11-12] (AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll [2016-03-10] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {07E8E1D2-003E-4C0A-B56A-E424754273E8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-11-16] (NVIDIA Corporation) Task: {1C6090D2-A097-49DA-9DF9-0B14EF16ED34} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-07-26] (Intel(R) Corporation) Task: {25AD7915-46FA-4D5A-A6BC-ACD893978526} - System32\Tasks\HP\HP CoolSense\HP CoolSense Start at Logon => C:\Program Files (x86)\HP\HP CoolSense\CoolSense.exe [2016-01-21] (HP Development Company, L.P.) Task: {2C98717D-2003-45F9-AA17-6C4207A61311} - C:\Windows\System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(1): Net -> stop "Orange Update Core Service" Task: {2C98717D-2003-45F9-AA17-6C4207A61311} - C:\Windows\System32\Tasks\Microsoft\Windows\OrangeUpdate_Launch => Command(2): Net -> start "Orange Update Core Service" Task: {30034FE9-E9F6-491E-A378-C54F7953D834} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {386F49E4-DB1E-44CB-A671-C5EC4D2ABFFC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-11-16] (NVIDIA Corporation) Task: {3927CFEF-3B50-4F55-A9F9-80C8A5DB0A7B} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {4836C7C6-8BEC-455B-899A-5430706751EE} - System32\Tasks\HPDAS => C:\Program [Argument = Files\HP\HP ePrint\HP.DeliveryAndStatus.Desktop.App.exe /CheckJobs] Task: {51EEAC08-7F01-4260-BC8A-BCFC857EEB2B} - System32\Tasks\Microsoft\Windows\OrangeUpdate_Install => C:\Program Files (x86)\Orange Update\install.bat [2017-11-13] () <==== ATTENTION Task: {5EC71A44-6760-45A3-A77D-E1196B5A19A5} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec-Logon => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-09-17] (Intel Corporation) Task: {61C8CDA6-E12B-42F1-8D10-8DFF44515131} - System32\Tasks\Intel\Intel Telemetry 2 => C:\Program Files\Intel\Telemetry 2.0\lrio.exe [2015-06-05] (Intel Corporation) Task: {747E711C-79E6-4AA9-9372-0757E2393809} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-11-16] (NVIDIA Corporation) Task: {759E9D7D-D37F-4C68-AEEE-6598446B84F5} - System32\Tasks\HPCeeScheduleForalexi => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-01-22] (Hewlett-Packard) Task: {78225107-B813-46A5-8D46-85D6EDCC7FE6} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2017-11-20] () Task: {80EA52E4-C669-49D8-BA8A-540E752D9AE6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2017-12-06] (AVAST Software) Task: {8231AE91-8854-4590-8759-E4B112F1C884} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2017-09-20] (HP Inc.) Task: {899584C6-0073-461E-BB02-44EE2A8C47A6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {9C09AEB3-2145-4307-A2D4-EDCC2C7E3516} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-11-16] (NVIDIA Corporation) Task: {9C25713D-8069-41DC-9808-51124B4F6DD5} - System32\Tasks\Nvbackend => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe Task: {9D31ACE8-C3E9-4FAC-B705-5C7FB6A47118} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-11-12] (AVAST Software) Task: {9D8FDC4C-036A-4F89-818E-449249B66A36} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {ACEB4D09-8335-4845-8B54-A6137F4CE3E1} - System32\Tasks\IntelWiDi-Upgrade-91ba0caa-28a7-4f47-8d08-f71b4b10fbec => C:\Program Files (x86)\Intel Corporation\Intel WiDi\Intel(R) Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [2015-09-17] (Intel Corporation) Task: {AD8E8932-8684-4C98-8D17-E79FE0DC1307} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-09-27] (HP Inc.) Task: {AE9A7E93-629B-4E84-A5D5-E6A82A81AD16} - System32\Tasks\SafeZone scheduled Autoupdate 1482626385 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software) Task: {B2E462A7-2CDD-4C5E-8F1B-727F09C2C428} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-11-16] (NVIDIA Corporation) Task: {B4F09C08-A802-45A4-AB38-634EC22C7647} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-25] (Google Inc.) Task: {B980418F-2236-455D-AE1B-4553C0460B6F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2017-06-22] (HP Inc.) Task: {C120CDC4-EE21-4170-816B-3EC1E95EEABF} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-12-25] (Dropbox, Inc.) Task: {C1CE38A5-847F-4CB6-911B-B86414D500BF} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-09-21] () Task: {C4246271-6041-4E71-8FD0-7A79A0DDF670} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-10-11] (HP Inc.) Task: {CD14B6F1-E1B8-47D7-AFF1-C2DEBC29842B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {D4C5A280-8EC4-480B-9828-B91AD67F8E85} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {D7B567D9-B5B4-4B35-9288-160EE987AB75} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-11-16] (NVIDIA Corporation) Task: {F11D3457-9527-46BB-992A-7DDBE3FCF096} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-25] (Google Inc.) Task: {FB726DCB-097C-4275-8ECA-6FF290B6BD4B} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-12-25] (Dropbox, Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\windows\Tasks\HPCeeScheduleForalexi.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2017-09-21 12:52 - 2017-03-04 06:31 - 000185856 _____ () C:\windows\SYSTEM32\ism32k.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 001970544 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe 2016-12-28 20:55 - 2017-11-16 02:41 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-09-19 01:06 - 2014-04-14 17:59 - 000389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2017-09-21 12:51 - 2017-09-05 10:31 - 002656960 _____ () C:\windows\system32\CoreUIComponents.dll 2016-05-03 16:57 - 2016-05-03 16:57 - 000093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2017-09-21 12:54 - 2016-07-01 04:48 - 000472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2017-01-31 20:40 - 2017-01-31 22:33 - 000144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe 2016-05-03 07:27 - 2016-02-04 03:42 - 000429056 _____ () C:\Program Files (x86)\HP\HP OMEN Mouse X9000\hid.exe 2017-11-12 23:05 - 2017-11-12 23:05 - 000067408 _____ () C:\Program Files\AVAST Software\Avast\x64\module_lifetime.dll 2017-12-04 19:02 - 2017-11-16 02:40 - 000018880 _____ () c:\program files\nvidia corporation\nvstreamsrv\detoured.dll 2017-11-15 23:30 - 2017-11-10 10:57 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libglesv2.dll 2017-11-15 23:30 - 2017-11-10 10:57 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.94\libegl.dll 2017-12-09 14:44 - 2017-12-09 14:44 - 002943360 _____ () C:\Users\alexi\AppData\Roaming\ZHP\ZHPDiag3.exe 2017-07-12 08:11 - 2017-07-12 08:11 - 000178128 _____ () C:\Program Files (x86)\GlassWire\EasyHook32.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 000549888 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\netsnmp.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 000182784 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\ProxyDetection.dll 2014-09-15 10:01 - 2014-09-15 10:01 - 000157184 _____ () C:\Program Files (x86)\Orange\ma Livebox\dedicarz\pupnp.dll 2016-12-28 20:55 - 2017-11-16 02:41 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-01-31 20:40 - 2017-01-31 22:33 - 000141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll 2017-01-31 20:40 - 2017-01-31 22:33 - 022284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll 2017-11-12 23:05 - 2017-11-12 23:05 - 000167096 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-11-12 23:05 - 2017-11-12 23:05 - 000059040 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll 2017-07-10 15:53 - 2017-07-10 15:53 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-11-12 23:05 - 2017-11-12 23:05 - 000237808 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-11-12 23:05 - 2017-11-12 23:05 - 000244584 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-11-12 23:05 - 2017-11-12 23:05 - 000235816 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2016-12-25 02:11 - 2017-12-08 13:36 - 068214160 _____ () C:\Users\alexi\AppData\Roaming\Spotify\libcef.dll 2016-12-28 20:55 - 2017-11-16 02:40 - 066906560 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2016-12-25 02:11 - 2017-12-08 13:36 - 003112848 _____ () C:\Users\alexi\AppData\Roaming\Spotify\libglesv2.dll 2016-12-25 02:11 - 2017-12-08 13:36 - 000089488 _____ () C:\Users\alexi\AppData\Roaming\Spotify\libegl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-10-30 08:24 - 2015-10-30 08:21 - 000000824 _____ C:\windows\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-584049696-1809619210-2097892934-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\alexi\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{75bbb2c0-dabf-413a-ac3a-23f9f42ed8c0}.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run32: => "Start_Update_{9d78a505-6248-4d1b-81b6-df69655beccf}" HKLM\...\StartupApproved\Run32: => "Start_OrangeWifi_{9d78a505-6248-4d1b-81b6-df69655beccf}" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "LoLReplay2" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-584049696-1809619210-2097892934-1001\...\StartupApproved\Run: => "GlassWire" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{0F4A3CED-BB78-45EE-A12E-E5F548FC6535}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{36730C34-7B8C-43EA-8BB3-4565AA141E57}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{1B4BBE71-3744-430B-B5E4-0912B437B03D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{599DC76B-64D8-4002-8DBB-07B32B1271FF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{955E9E13-D15E-4DC4-86B2-6DF54FCC41D3}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE FirewallRules: [{3C58C937-F724-486A-80D3-40F612B57B5C}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiApp.exe FirewallRules: [{2A5A9B70-AC81-48FB-85CA-AF350D451A6B}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\WiDiAppOld.exe FirewallRules: [{7973D1BE-077D-451B-9BC3-B4A7C10A4F8F}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\Next\WirelessDisplay.exe FirewallRules: [{93D20AA6-9CEA-446F-954E-2323BCE2A37E}] => (Allow) C:\Program Files\Intel Corporation\Intel WiDi\SmartAgentTest.exe FirewallRules: [TCP Query User{A159DE5B-C5C7-4A28-96EB-463E714DE7CC}C:\users\alexi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alexi\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{BFF43041-3BD8-42DC-977E-DAC77F0993F2}C:\users\alexi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alexi\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{C62E9BBE-EBD4-4642-B866-49A669555337}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{68CE8A2E-088A-4079-BCD2-E8609E010A10}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{EB953A75-5DFF-4010-9DA4-CA6034901D65}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{169C34F5-CEA8-44B8-9CC7-8C633BEB33E4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{8EA95E06-8844-4102-AED7-4CEB0D391ECC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{B9ADD7DA-8230-4E2B-9BEE-BE9C0F7C2E5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{3A5322DE-EB37-4BE6-A5F5-E8551FBBA264}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{F73CDCA8-1764-41E9-B52C-1C085A30379B}C:\users\alexi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alexi\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{369F5791-2BA5-449B-9D89-69ACD30F2173}C:\users\alexi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alexi\appdata\roaming\spotify\spotify.exe FirewallRules: [{BB3B9E46-D562-4ECE-8CD2-6D9F2519D24C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe FirewallRules: [{28F3B4FE-722C-411D-9674-35F6C04D6264}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{7FFF10EB-82E6-4A18-8DFC-8CA6E8619A68}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{40A158A1-FC85-4369-9A7A-A9190D5087C1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{BB2557DD-BEE4-4DF1-9077-CB8AD601981A}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{B7D8C88C-8499-4105-BE5A-6F6BA208C873}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{E4FED809-52FD-41F9-9E62-C327AB272A7A}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{68836C9E-A50D-4DA8-BAB9-07B1BA7BF3EC}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{84C440D4-CDDC-4C33-8937-32AF8F7050C2}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginDmControlPoint.exe FirewallRules: [{A0347C78-7E82-40FA-AED9-ECD493B49C1F}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginDmControlPoint.exe FirewallRules: [{DAB387B0-D66F-40FD-A13E-7A6AAAB716C9}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{DFDAD094-DFDC-4A0F-BEDB-57DFF3FDE9AF}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{854F94CC-B9F5-4465-B98F-245FA272395C}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{D50B1A08-DE56-49F6-BABB-1AAC7AE19368}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe FirewallRules: [{97DEAADE-98BF-40FD-BC72-8E0644286298}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [{D8C6BCB2-74CB-4B24-8D16-5BBD54A7BEEC}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe FirewallRules: [TCP Query User{E3A78A08-D2CB-4C30-ADB8-A030440BAB33}C:\program files (x86)\lolreplay2\lolreplay2.exe] => (Allow) C:\program files (x86)\lolreplay2\lolreplay2.exe FirewallRules: [UDP Query User{4A95A51E-28FE-4FDF-B1FD-0A1ECC129EB6}C:\program files (x86)\lolreplay2\lolreplay2.exe] => (Allow) C:\program files (x86)\lolreplay2\lolreplay2.exe FirewallRules: [TCP Query User{90C83BAF-2C9C-43E6-9DD7-92DFC38115EF}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{55043528-2D59-4DBE-94A4-BCD774CFB9AA}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [{734FC6BA-0B02-427B-8EEA-E2ACA22AB709}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F037312D-AB05-435B-8F60-A6E095D9864E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{8D52B243-2AA9-48B4-B3F8-9B17C701FBF0}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{0D85AFE5-6B13-4672-AFD7-BBC4C3D0D7B6}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\DedicarzService.exe FirewallRules: [{ADABBBF5-B7BC-497A-97EC-766F37AD6F19}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{9071607C-3D4F-4C2D-82E2-8B6A653D6B5B}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\LiveboxManager.exe FirewallRules: [{E68D0307-61C4-4831-96E9-18420D9639B7}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginDmControlPoint.exe FirewallRules: [{D5521C75-98B4-4DC5-90BF-9608A814F1E7}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginDmControlPoint.exe FirewallRules: [{A77D988B-7080-45AD-8E69-B1C238978BAD}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [{EEC00616-BA4F-46DB-A93A-3BC0C4403211}] => (Allow) C:\Program Files (x86)\Orange\ma Livebox\dedicarz\PluginLivebox.exe FirewallRules: [TCP Query User{A009402E-3B9C-43A8-AB49-194F514F2C3C}C:\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\program files (x86)\bittorrent\bittorrent.exe FirewallRules: [UDP Query User{2CD0BC04-E159-4391-9A7F-FD98B988820E}C:\program files (x86)\bittorrent\bittorrent.exe] => (Allow) C:\program files (x86)\bittorrent\bittorrent.exe FirewallRules: [{2691E354-32E7-41DA-B97E-A90686F66E54}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe FirewallRules: [{49413469-6B7B-4EC6-AA63-778120420BC3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe FirewallRules: [{5FF096BC-1957-4E8B-8BB2-D3A9D90E205D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe FirewallRules: [{1F03F9C7-B0C2-4B6E-85E0-237C69DAD63F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe FirewallRules: [TCP Query User{A7C0F4D4-1E21-4726-8FF1-FC211BC888BC}D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{2301A257-88CF-48A6-A1E5-1D8126A27254}D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{8ED6299E-819D-4CB2-A76E-A1A739C62AD2}D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{6556E6C0-FC87-41B4-87AF-F415072C23D7}D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe FirewallRules: [{F75C3AFA-E2DB-42F3-BE1F-1B941C21A8A9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{1416D36C-DEDF-42EC-9267-501198498064}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E60BB217-DC33-484C-9D80-2CBA2C8E84F5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{618BE446-4279-4777-8615-44EF5BCD9190}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{C3E78259-A51A-4C55-8D51-2E7DDDD5F601}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [UDP Query User{DCB4C1A3-4AF5-4B5B-8CAB-C7C28168F98A}D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steamlibrary\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [{17978144-4C9C-4EF9-8834-BB3364F1D3C6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{50B1DCA8-3BA5-430E-BBD6-CB4201C9BB77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D446AED5-CE4D-4F1B-8123-53C4915559B8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{AAA6F380-9B15-4FFC-811F-73B0A3526248}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{FCC94809-709E-44C8-8076-586D8987EC0D}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe FirewallRules: [{7C26B19C-2A92-4CF9-BE15-6D0FC30D118A}] => (Allow) C:\Program Files (x86)\GlassWire\GWCtlSrv.exe FirewallRules: [{2CE60D56-460E-4274-9FBC-99AE822BBC0C}] => (Block) c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe FirewallRules: [{8E065EE5-8981-4F8C-B75D-DFCC3E3E5F65}] => (Block) c:\program files\nvidia corporation\nvcontainer\nvcontainer.exe FirewallRules: [{EC1414DC-1445-48B6-81E0-50F5E14793C8}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{35CFEA66-E5C9-4E7E-9A60-CEE367EA08BC}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{35EA640E-83CB-4E3E-8884-D892617209BA}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe FirewallRules: [{11D07D95-9657-4A0D-8572-BBFA9006E03B}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe FirewallRules: [{772CBFC8-D32A-472E-BC91-931B05CAECD6}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe FirewallRules: [{C7AC54A4-4EAF-4BA0-82EE-9166EC3FB6B6}] => (Allow) D:\SteamLibrary\steamapps\common\Life is Strange - Before the Storm\Life is Strange - Before the Storm.exe FirewallRules: [{D6F8632F-0926-4B8D-8693-D330F90AE47B}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{D63432FA-1A0D-4D99-AA88-6B6801B50EC0}] => (Allow) D:\SteamLibrary\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [TCP Query User{ABDBA624-5AB7-4318-AF90-959884D6F1F0}C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe FirewallRules: [UDP Query User{1B7F36C0-081E-4AD9-A24A-D1964098EF03}C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe FirewallRules: [{A54CB48F-B5B9-462D-8F66-B4B171531125}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{9E1352F1-6AC2-479B-88A0-8D17434B2146}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe FirewallRules: [{B5469992-ACC5-46B9-B06D-382901FE3F31}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe FirewallRules: [{CD883D40-CD57-4800-94B2-2617FCB0110F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{D2CC8545-87D7-475A-BFBF-A951F8229B6B}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{A649280B-618F-47AA-8EF1-84B6C0463B18}] => (Allow) D:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{E382816B-8D9C-4D7B-BCD4-19C775C4BDA9}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{A1ADE158-194A-4492-967C-C0853229F39A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe ==================== Points de restauration ========================= 09-12-2017 15:02:54 Test ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (12/09/2017 03:09:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-DE-ALEXIS) Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (12/09/2017 03:09:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SearchUI.exe, version : 10.0.10586.1106, horodatage : 0x59ae258b Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.10586.1007, horodatage : 0x595f2de2 Code d’exception : 0xc000027b Décalage d’erreur : 0x00000000006fd59b ID du processus défaillant : 0x2864 Heure de début de l’application défaillante : 0x01d370f7548b1b7c Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe Chemin d’accès du module défaillant: C:\Windows\System32\Windows.UI.Xaml.dll ID de rapport : 95fdb70d-b853-418e-8ef1-4d3eab2a9b69 Nom complet du package défaillant : Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : CortanaUI Error: (12/09/2017 03:09:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-DE-ALEXIS) Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (12/09/2017 03:09:22 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SearchUI.exe, version : 10.0.10586.1106, horodatage : 0x59ae258b Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.10586.1007, horodatage : 0x595f2de2 Code d’exception : 0xc000027b Décalage d’erreur : 0x00000000006fd59b ID du processus défaillant : 0xf48 Heure de début de l’application défaillante : 0x01d370f74fa00e66 Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe Chemin d’accès du module défaillant: C:\Windows\System32\Windows.UI.Xaml.dll ID de rapport : 260c375f-30b6-4a93-91f3-c41d2cef0e3d Nom complet du package défaillant : Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : CortanaUI Error: (12/09/2017 03:02:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (12/09/2017 03:01:03 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x8007232B Arguments de la ligne de commande : RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=58e97c99-f377-4ef1-81d5-4ad5522b5fd8;NotificationInterval=1440;Trigger=TimerEvent Error: (12/09/2017 03:00:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-DE-ALEXIS) Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2147023170 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Error: (12/09/2017 03:00:46 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SearchUI.exe, version : 10.0.10586.1106, horodatage : 0x59ae258b Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.10586.1007, horodatage : 0x595f2de2 Code d’exception : 0xc000027b Décalage d’erreur : 0x00000000006fd59b ID du processus défaillant : 0x9f4 Heure de début de l’application défaillante : 0x01d370f61c36a50f Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe Chemin d’accès du module défaillant: C:\Windows\System32\Windows.UI.Xaml.dll ID de rapport : 78d53b38-ce55-4b1c-bfaf-51ba23b9cf55 Nom complet du package défaillant : Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : CortanaUI Error: (12/09/2017 03:00:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ZHPDiag3.exe, version : 2017.12.8.213, horodatage : 0x5a2a4477 Nom du module défaillant : ntdll.dll, version : 10.0.10586.1106, horodatage : 0x59ae38a0 Code d’exception : 0xc000000d Décalage d’erreur : 0x000ea24c ID du processus défaillant : 0x4fc Heure de début de l’application défaillante : 0x01d370f3dbff8220 Chemin d’accès de l’application défaillante : C:\Users\alexi\Downloads\ZHPDiag3.exe Chemin d’accès du module défaillant: C:\windows\SYSTEM32\ntdll.dll ID de rapport : ef370d4b-4cf3-47fe-894e-8a06b9a92646 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/09/2017 02:53:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ZHPCleaner.exe, version : 2017.12.8.213, horodatage : 0x5a2a450b Nom du module défaillant : ntdll.dll, version : 10.0.10586.1106, horodatage : 0x59ae38a0 Code d’exception : 0xc000000d Décalage d’erreur : 0x000ea24c ID du processus défaillant : 0x1e24 Heure de début de l’application défaillante : 0x01d370f4f82e24d0 Chemin d’accès de l’application défaillante : C:\Users\alexi\Downloads\ZHPCleaner.exe Chemin d’accès du module défaillant: C:\windows\SYSTEM32\ntdll.dll ID de rapport : 2296f27d-413b-4bca-85dc-34c778e3dd2d Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (12/09/2017 02:20:15 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Wireless PAN DHCP Server s’est terminé de façon inattendue pour la 1ème fois. Error: (12/09/2017 02:20:14 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NcaSvc dépend du service iphlpsvc qui n’a pas pu démarrer en raison de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (12/09/2017 02:20:14 PM) (Source: SNMP) (EventID: 1500) (User: ) Description: Le service SNMP a rencontré une erreur lors de l’accès à la clé de Registre SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration. Error: (12/09/2017 02:19:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_7fc209 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/09/2017 02:19:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_7fc209 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/09/2017 02:19:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Données de contacts_7fc209 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/09/2017 02:19:42 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Hôte de synchronisation_7fc209 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/09/2017 01:35:08 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200d : Mise à jour des fonctionnalités de Windows 10, version 1709. Error: (12/09/2017 01:14:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Accès aux données utilisateur_68aab s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/09/2017 01:14:50 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Stockage des données utilisateur_68aab s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2017-12-09 14:25:18.394 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-22 17:06:00.708 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-14 19:02:54.191 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-13 19:44:09.111 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-13 19:35:39.101 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-13 03:33:41.812 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-11 13:49:15.296 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-11-07 23:26:30.677 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-07 23:25:46.761 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2017-11-07 23:25:09.280 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 12177.91 MB Mémoire physique - RAM - disponible: 7258.72 MB Mémoire virtuelle totale: 14033.91 MB Mémoire virtuelle disponible: 9214.33 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:118.01 GB) (Free:10.19 GB) NTFS Drive d: (DATA) (Fixed) (Total:917.33 GB) (Free:803.76 GB) NTFS Drive e: (RECOVERY) (Fixed) (Total:14.18 GB) (Free:1.65 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: B03BC11E) Partition: GPT. ======================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: D4D789CC) Partition: GPT. ==================== Fin de Addition.txt ============================