Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 09-12-2017 Exécuté par Stef (10-12-2017 11:52:15) Exécuté depuis C:\Users\Stef\Desktop Windows 10 Home Version 1709 16299.98 (X64) (2017-12-09 16:47:39) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2478868918-3327026561-2023730197-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2478868918-3327026561-2023730197-503 - Limited - Disabled) Invité (S-1-5-21-2478868918-3327026561-2023730197-501 - Limited - Disabled) Stef (S-1-5-21-2478868918-3327026561-2023730197-1000 - Administrator - Enabled) => C:\Users\Stef WDAGUtilityAccount (S-1-5-21-2478868918-3327026561-2023730197-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) @BIOS (HKLM-x32\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.28 - GIGABYTE) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASUS GPU Tweak (HKLM-x32\...\{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.7.5.0 - ASUSTek COMPUTER INC.) Hidden ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.7.5.0 - ASUSTek COMPUTER INC.) ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.) Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) AutoGreen B12.0206.1 (HKLM-x32\...\{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Hidden AutoGreen B12.0206.1 (HKLM-x32\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) calibre (HKLM-x32\...\{CF0D492B-12F2-40B0-AF33-0F1BAA0BEF37}) (Version: 2.28.0 - Kovid Goyal) Capture One 9.1 (HKLM\...\CaptureOne9_is1) (Version: 9.1.2.15 - Phase One A/S) Casto 3D Rangement (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\SquareClock_Production_Castorama_Dressing_Internet) (Version: - SquareClock SAS) Check Point SSL Network Extender Service (HKLM-x32\...\{d439df51-ee34-48d0-8429-9d9524512fba}) (Version: 7.01.0000 - CheckPoint) Corsair Utility Engine (HKLM-x32\...\{0D4767AD-326F-4859-AB34-8B9613769E17}) (Version: 1.2.77 - Corsair) Dexpot (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\Dexpot) (Version: 1.6.14 - Dexpot GbR) Easy Tune 6 B12.1121.1 (HKLM-x32\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden Easy Tune 6 B12.1121.1 (HKLM-x32\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Evernote v. 5.4 (HKLM-x32\...\{59071464-DAEE-11E3-9080-00163E98E7D0}) (Version: 5.4.0.3698 - Evernote Corp.) FileZilla Client 3.22.1 (HKLM-x32\...\FileZilla Client) (Version: 3.22.1 - Tim Kosse) Flash Player Pro V5.4 (HKLM-x32\...\Flash Player Pro_is1) (Version: - FlashPlayerPro.com) Free PDF to Word Doc Converter v1.1 (HKLM-x32\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com) GeoGebra 4.2 (HKLM-x32\...\GeoGebra 4.2) (Version: 4.2.60.0 - International GeoGebra Institute) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.) Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden GoPro Studio 2.5.4 (HKLM-x32\...\GoPro Studio) (Version: 2.5.4 - GoPro, Inc.) GPUTweakStreaming (HKLM-x32\...\{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS) Hidden GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard) HP Officejet Pro 8600 Aide (HKLM-x32\...\{20033B23-1270-4E9C-92DC-2E167A367C73}) (Version: 28.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) Infinit (remove only) (HKLM-x32\...\Infinit) (Version: - ) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2843 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation) Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl) Logiciel de base du périphérique HP Officejet Pro 8600 (HKLM\...\{E588CA1D-AD74-4E04-8C53-AD9735C4CA54}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) LogiOptionsExcelAddin (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\5B9DBC017A73395321F758581D1CBC19EA9DF4FF) (Version: 1.0.3015.0 - Logitech) LogiOptionsPowerPointAddin (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\2C15990041C0A40782166403A24D0F52DFC41095) (Version: 1.0.3015.0 - Logitech) LogiOptionsWordAddin (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\77F95DB8F75F35C40BD868B4D39ADCCB966A0FD1) (Version: 1.0.3015.0 - Logitech) Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech) Logitech Options (HKLM\...\LogiOptions) (Version: - Logitech) Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) marvell 91xx driver (HKLM-x32\...\MagniDriver) (Version: 1.2.0.1020 - Marvell) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 32.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 32.0.1 (x86 fr)) (Version: 32.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) Mumble 1.2.17 (HKLM-x32\...\{39B43BDF-F32A-4C18-894C-B642A8B53585}) (Version: 1.2.17 - Thorvald Natvig) MyHarmony (HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\036a0e4fc6a247ec) (Version: 1.0.1.218 - Logitech) NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Package de pilotes Windows - Leaf Imaging Ltd. Image (12/03/2014 1.2.0.0) (HKLM\...\B758007C752D28F7C3542875CEEBDADCAE5941AE) (Version: 12/03/2014 1.2.0.0 - Leaf Imaging Ltd.) Package de pilotes Windows - Phase One / Mamiya V-Grip USB Driver (12/03/2014 1.2.0.0) (HKLM\...\3F504CC0B024052107934E093CC26DA720256A7A) (Version: 12/03/2014 1.2.0.0 - Phase One / Mamiya) Package de pilotes Windows - Phase One A/S (WinUSB) USBDevice (12/03/2014 1.13.0.0) (HKLM\...\7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8) (Version: 12/03/2014 1.13.0.0 - Phase One A/S) Panneau de configuration NVIDIA 388.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.31 - NVIDIA Corporation) Hidden Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden Plex Media Server (HKLM-x32\...\{24b54b72-161a-4094-93b3-ea284140290c}) (Version: 1.8.1.4139 - Plex, Inc.) Plex Media Server (HKLM-x32\...\{952070F2-452A-48FF-A5B2-4586407F9536}) (Version: 1.8.4139 - Plex, Inc.) Hidden Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - ) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games) Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.1.0.1120 - Samsung Electronics) SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association) SES Driver (HKLM\...\{D8CC254C-C671-4664-9A38-FA368D1E2C97}) (Version: 1.0.0 - Western Digital) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.) Smart View (HKLM-x32\...\{D9E784FC-3C9A-44E9-A48A-9DCBBF11CA90}) (Version: 1.0.0.0 - Samsung ) Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) SteelSeries Engine 3.11.4 (HKLM\...\SteelSeries Engine 3) (Version: 3.11.4 - SteelSeries ApS) Steep (HKLM-x32\...\Uplay Install 3279) (Version: - Ubisoft) Stopping Plex (HKLM-x32\...\{EAAC5F93-0A1F-4218-BA03-CAC93C9D3388}) (Version: 1.8.4139 - Plex, Inc.) Hidden Supercopier 4.0.1.13 (HKLM-x32\...\Supercopier) (Version: 4.0.1.13 - Supercopier) Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - ) Synology Cloud Station Drive (remove only) (HKLM\...\Synology Cloud Station Drive) (Version: 4.1.4224 - Synology, Inc.) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.41110 - TeamViewer) Tom Clancy's Ghost Recon Wildlands (HKLM-x32\...\Uplay Install 1771) (Version: - Ubisoft) Update for Skype for Business 2015 (KB4011284) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0CFCD910-8950-4626-80EB-AA0B64A186E8}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4011284) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{0CFCD910-8950-4626-80EB-AA0B64A186E8}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4011284) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{0CFCD910-8950-4626-80EB-AA0B64A186E8}) (Version: - Microsoft) Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft) VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.8.0 - Elaborate Bytes) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WD SmartWare (HKLM\...\{6F482C75-174D-42EB-A2CF-B00A1F354F7B}) (Version: 1.4.1.1 - Western Digital) Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers) Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro) Windows Driver Package - Western Digital Technologies (WDC_SAM) WDC_SAM (01/19/2011 1.0.0009.0) (HKLM\...\4CA7CFBB29889F25ACB3DF6E3A42BAE29EB43B20) (Version: 01/19/2011 1.0.0009.0 - Western Digital Technologies) Windows Live installer (HKLM-x32\...\{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}) (Version: 12.0.1471.1025 - Microsoft Corporation) WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH) Wolfenstein: The New Order (HKLM-x32\...\V29sZmVuc3RlaW5UaGVOZXdPcmRlcg==_is1) (Version: 1 - ) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll () CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{8A791F0C-C63C-4EC5-B97F-FBCE74EDBC54}\InprocServer32 -> C:\Program Files (x86)\TextPad 7\System\shellext64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: ) CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Stef\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll => Pas de fichier ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-11-06] (TODO: ) ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-11-06] (TODO: ) ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-11-06] (TODO: ) ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-11-06] (TODO: ) ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-11-06] (TODO: ) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG) ContextMenuHandlers3: [Infinit] -> {256EF94C-697D-4986-B99B-9D3B15D79B49} => C:\Program Files (x86)\Infinit.io\Infinit\lib\libcontextual.dll [2015-05-19] () ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Pas de fichier ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-11-14] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal) ContextMenuHandlers1_S-1-5-21-2478868918-3327026561-2023730197-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-11-06] () ContextMenuHandlers1_S-1-5-21-2478868918-3327026561-2023730197-1000: [TextPad] -> {8A791F0C-C63C-4EC5-B97F-FBCE74EDBC54} => C:\Program Files (x86)\TextPad 7\System\shellext64.dll -> Pas de fichier ContextMenuHandlers6_S-1-5-21-2478868918-3327026561-2023730197-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-11-06] () ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0C312DBC-D737-471A-9830-FA5688A28871} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {0F1E0AFA-19B6-4DD0-BC8F-9BC37BA559BF} - \CCleanerSkipUAC -> Pas de fichier <==== ATTENTION Task: {0F9B05A9-4FAB-434F-B171-7D7851A16A6A} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation) Task: {15D1C4F5-C9D8-4C68-A78E-7F0D94FC9C36} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2478868918-3327026561-2023730197-1000UA => C:\Users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe Task: {1E0E173D-5C91-4536-BB1C-00EAA6E7B788} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {1EB0D14E-94EB-48BB-8C78-C978DF4886DD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {1F8196AC-63B0-4582-A42B-0E651EDA699D} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {25F30102-08AF-4325-BB0E-25B103004EDD} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {2DD4ACE5-0E7B-4ADB-8841-BB8DDD2E93FF} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {2E1AD097-AC58-4EBD-82DC-6A48E2E4A805} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-10] (Google Inc.) Task: {2FFFDA8B-5062-44AB-8C81-F176710926D1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation) Task: {30069293-6BC3-4897-8E3D-C5787886641F} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-03-25] (ASUSTek Computer Inc.) Task: {3236A777-20D3-401F-B537-580C537B1E25} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {367A04FB-9200-487D-898A-41815FF004C1} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3BC13A4D-FCAC-454D-8D5D-0BB82C1EE280} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {4544505D-BDF0-4CBE-AFDC-2776AACF6AB2} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {45D32754-8A03-4A25-9AA0-CD766FB1C099} - \Safer-Networking\Spybot - Search and Destroy\Scan the system -> Pas de fichier <==== ATTENTION Task: {4A830F19-A66A-40FC-973E-E2BB91D45B30} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {4C7C5DE9-F27D-4D95-A075-D9872F6696ED} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {503BAE08-F72C-4885-8F75-C209EC8B4A83} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2017-05-19] (Samsung Electronics Co. Ltd.) Task: {54EF39A2-72CE-4AC8-8C62-BB0735572BF1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {55B4A430-DAC0-4F1B-890A-FEFF7B279BFD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {566D8914-7CF8-4E85-8764-A388E4AD6688} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {597D7E0D-6EE2-44FA-B3A6-644CDD674414} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {620B47C2-5E9F-4727-A8F1-2149F2C93575} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {624F6475-2491-4C28-84DC-8BFEDD7B3922} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {625344E3-54F3-40CC-A3D5-F123D4A25749} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {64BE134B-F19E-47B5-9270-963DBE1B1FF8} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {67DF1EF9-4D7E-454B-8D6B-F2366ACDA31C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {68BC5685-AA4E-4BD1-8316-3F5D83F8376E} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {6B41CAAB-178C-429B-94C1-DEEFB5DDCB44} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {6E5A9A3F-EC29-430C-81D6-2A681CAFED37} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe Task: {7B43D905-8051-453D-8782-5B61915FFE6A} - System32\Tasks\{65B2D7AA-F688-483B-8816-5F0C6082FE62} => C:\Windows\system32\pcalua.exe -a C:\Users\Stef\Downloads\SVP200S3Toolboxv1.exe -d C:\Users\Stef\Downloads Task: {8A273EEE-9667-44EB-BDEF-D8CAEE09C015} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-11-21] (Microsoft Corporation) Task: {8E9EF83A-AB10-4275-AD63-979AA4E843B0} - \Safer-Networking\Spybot - Search and Destroy\Refresh immunization -> Pas de fichier <==== ATTENTION Task: {9513BB9A-A26B-4AED-8544-C26A67722988} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9A09C091-C140-48E7-A28D-5CAEC4EA1257} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation) Task: {9B3918F9-87F6-46AD-9F17-629034B76453} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {9BC088C0-EC05-4132-9A5C-82F0C4D8ECB8} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation) Task: {A48B48D5-94A1-4C9C-A773-71388E298672} - \Safer-Networking\Spybot - Search and Destroy\Check for updates -> Pas de fichier <==== ATTENTION Task: {A620EC7A-B9F8-4D8C-87D9-95CE72140978} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {A7DFF58E-4BB6-417A-AEFA-F9F035D07E9B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {AC4FDCA0-74E1-4FEA-8D6B-9CDC07C27BE5} - System32\Tasks\NCH Software\VideoPadDowngrade => C:\Program Files (x86)\NCH Software\VideoPad\videopad.exe Task: {AE22332A-ED7C-4385-BA8B-168A07425E5F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation) Task: {B24496B4-7AC0-4D6B-8856-BEB24B0F9B1E} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation) Task: {B2600CEB-2F1E-47AB-A47F-11B5D25FFA93} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {B3C474B5-4D27-487F-A3C5-6A9B8297A121} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2478868918-3327026561-2023730197-1000Core => C:\Users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe Task: {B470CBB1-89B6-4F96-8206-4783F763AFB6} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B6A0C99B-CF89-4120-8F6E-28EABE03B158} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B8FE5D2F-27DE-40F8-BB07-F51EAB3286FD} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation) Task: {CC2500EE-85B3-4D1D-AA45-A6250236CBE4} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {D2B65764-B118-48D4-BFA9-D57E1F283C1B} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D3B31B4C-319C-41F3-A152-82F278C8E7A5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-12-10] (Google Inc.) Task: {D9FB1695-4129-41FC-93BE-1C4AE5962C20} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {DD5F0D48-069C-4EA2-BAB3-C88637D00D05} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2478868918-3327026561-2023730197-1000UA1d257eac248f08d => C:\Users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe Task: {EB1A0D9F-8E7F-452A-A586-237252FAEDE9} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {EC189026-1507-4809-A6C9-9A1E5B056473} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {EE422C2C-88F7-4EBE-A015-9423839F0634} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {F33CFF4F-EEB1-4A9E-9F9E-E1D5FF62CDBE} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {F3D46681-2EF5-4402-BAA0-BACC67002089} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F40F242A-3E6B-4F70-B3BC-A94970097A20} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-15] (Adobe Systems Incorporated) Task: {F4609357-B51E-4635-9CA3-2231C3C03DEB} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {F923E78C-5124-465B-82EC-DD24D3CB1D29} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2478868918-3327026561-2023730197-1000Core1d257eac241d63f => C:\Users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe Task: {F98DBCC9-8400-4E06-88B3-72BBA8ADBA38} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {FC231F91-B127-49FE-B829-B594FA8726FC} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2478868918-3327026561-2023730197-1000Core.job => C:\Users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2478868918-3327026561-2023730197-1000UA.job => C:\Users\Stef\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Stef\Favorites\Site de téléchargement NCH Software.lnk -> hxxp://www.nchsoftware.com/fr/index.htm ==================== Modules chargés (Avec liste blanche) ============== 2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 001346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2012-01-17 10:24 - 2012-01-17 10:24 - 000055296 _____ () C:\Windows\SysWOW64\ASGT.exe 2017-12-09 10:58 - 2017-12-09 19:53 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2017-12-09 10:58 - 2017-12-09 19:53 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2016-07-04 03:16 - 2016-07-04 03:16 - 000287256 _____ () C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe 2014-02-25 02:28 - 2014-02-25 02:28 - 000248736 _____ () C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe 2017-11-18 14:42 - 2017-10-11 02:01 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2010-09-08 10:44 - 2010-09-08 10:44 - 000485376 _____ () C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDSC.exe 2010-09-08 10:45 - 2010-09-08 10:45 - 001034752 _____ () C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\WDFME.exe 2015-05-19 14:39 - 2015-05-19 14:39 - 000966656 _____ () C:\Program Files (x86)\Infinit.io\Infinit\lib\libcontextual.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 001249792 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll 2017-12-09 14:33 - 2017-12-09 14:33 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-12-09 14:33 - 2017-12-09 14:33 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-11-16 21:38 - 2017-11-16 21:38 - 000077824 _____ () C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\zlib.dll 2017-11-16 21:38 - 2017-11-16 21:38 - 000144896 _____ () C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\libssh2.dll 2017-11-30 03:59 - 2017-11-30 04:00 - 000087040 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-11-30 03:59 - 2017-11-30 04:00 - 000202752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-11-30 03:59 - 2017-11-30 04:00 - 025600000 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-11-30 03:59 - 2017-11-30 04:00 - 002546176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\skypert.dll 2017-11-30 03:59 - 2017-11-30 04:00 - 000672256 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.9.604.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2017-09-29 14:41 - 2017-09-29 14:41 - 000047616 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUITelemetry.dll 2017-09-29 14:41 - 2017-09-29 14:41 - 004173824 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll 2017-09-29 14:41 - 2017-09-29 14:41 - 003634176 _____ () C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIViewModels.dll 2010-03-05 10:24 - 2010-03-05 10:24 - 000886272 _____ () C:\Program Files (x86)\Western Digital\WD Smartware\Front Parlor\WDFME\System.Data.SQLite.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000083432 _____ () C:\Program Files (x86)\Plex\Plex Media Server\zlib.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000203240 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libidn.dll 2017-11-18 14:42 - 2017-10-11 02:01 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2014-02-19 17:52 - 2014-02-19 17:52 - 000052224 _____ () C:\Program Files (x86)\Supercopier\libgcc_s_sjlj-1.dll 2014-02-19 17:52 - 2014-02-19 17:52 - 000377856 _____ () C:\Program Files (x86)\Supercopier\libstdc++-6.dll 2014-02-19 17:52 - 2014-02-19 17:52 - 001026560 _____ () C:\Program Files (x86)\Supercopier\qt-plugins\platforms\qwindows.dll 2017-11-18 14:42 - 2017-10-11 02:00 - 070806136 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2017-12-07 21:59 - 2017-12-07 21:59 - 000102088 _____ () C:\Users\Stef\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000115688 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_core-vc80-3_0.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000059880 _____ () C:\Program Files (x86)\Plex\Plex Media Server\soci_sqlite3-vc80-3_0.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 001083368 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxml2.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000772072 _____ () C:\Program Files (x86)\Plex\Plex Media Server\tag.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 001741288 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_imgproc2411.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 001962984 _____ () C:\Program Files (x86)\Plex\Plex Media Server\opencv_core2411.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000025576 _____ () C:\Program Files (x86)\Plex\Plex Media Server\lyric_lite.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 001549104 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libstdc++-6.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000127136 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libgcc_s_dw2-1.dll 2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000050152 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_socket.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000071656 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ssl.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000024552 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_hashlib.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000041448 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\simplejson\_speedups.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000930280 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\etree.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000074728 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libexslt.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000190952 _____ () C:\Program Files (x86)\Plex\Plex Media Server\libxslt.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000218088 _____ () C:\Program Files (x86)\Plex\Plex Media Server\Exts\lxml\objectify.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000018920 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\select.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000095720 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\_ctypes.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000143336 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\pyexpat.pyd 2017-08-08 05:55 - 2017-08-08 05:55 - 000694248 _____ () C:\Program Files (x86)\Plex\Plex Media Server\DLLs\unicodedata.pyd 2014-10-31 16:36 - 2014-10-31 16:36 - 000226816 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\quazip.dll 2014-10-31 16:34 - 2014-10-31 16:34 - 000093696 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\LuaQtWrapperLibrary.dll 2014-10-31 16:32 - 2014-10-31 16:32 - 000196608 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\lua52.dll 2014-02-01 23:28 - 2014-02-01 23:28 - 000705024 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libGLESv2.dll 2014-02-01 23:33 - 2014-02-01 23:33 - 000866816 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\platforms\qwindows.dll 2014-02-01 23:28 - 2014-02-01 23:28 - 000043008 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\libEGL.dll 2014-02-01 23:33 - 2014-02-01 23:33 - 000242176 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\imageformats\qjpeg.dll 2014-02-01 23:34 - 2014-02-01 23:34 - 000220672 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\imageformats\qmng.dll 2014-02-01 23:49 - 2014-02-01 23:49 - 000168448 _____ () C:\Program Files (x86)\Corsair\Corsair Utility Engine\qtplugins\mediaservice\wmfengine.dll 2014-05-13 15:22 - 2014-05-13 15:22 - 000318304 _____ () C:\Program Files (x86)\Evernote\Evernote\libtidy.dll 2014-05-13 15:22 - 2014-05-13 15:22 - 000436576 _____ () C:\Program Files (x86)\Evernote\Evernote\libxml2.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000123918 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\libgcc_s_dw2-1.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000524460 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\libcurl-4.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 001026062 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\libstdc++-6.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 003036430 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\libsqlite3-0.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000115214 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\zlib1.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 003095505 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\icuin53.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 001798570 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\icuuc53.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 021565192 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\icudt53.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000712704 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\platforms\qwindows.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000031744 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qgif.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000046080 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qicns.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000032768 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qico.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000516608 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qjp2.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000243200 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qjpeg.dll 2016-11-06 00:45 - 2016-11-06 00:45 - 000431616 _____ () C:\Users\Stef\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qtiff.dll 2017-08-08 05:55 - 2017-08-08 05:55 - 000064488 _____ () C:\Program Files (x86)\Plex\Plex Media Server\TeVii.dll 2013-08-20 21:22 - 2012-06-25 09:41 - 001198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\clonewarsadventures.com -> clonewarsadventures.com IE trusted site: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\freerealms.com -> freerealms.com IE trusted site: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\soe.com -> soe.com IE trusted site: HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\...\sony.com -> sony.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2017-12-10 11:04 - 000001124 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2478868918-3327026561-2023730197-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Stef\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hintergrund.jpg HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper -> DNS Servers: 8.8.8.8 - 8.8.4.4 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupreg: AirDroid 3 => C:\Program Files (x86)\AirDroid\AirDroid.exe /start MSCONFIG\startupreg: Infinit => C:\Program Files (x86)\Infinit.io\Infinit\Infinit.exe HKLM\...\StartupApproved\StartupFolder: => "GoPro Importer.lnk" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "APSDaemon" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{1A8D6E7C-B520-4EFA-8EBA-78502E0F8274}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{CB7DCFC5-FFD7-466C-AC64-93929C8208ED}] => (Allow) E:\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{83EBF431-2B9C-4623-92C8-48EF35C08794}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE FirewallRules: [{7D0167D9-C5A0-4132-9CD4-EFC77958805B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D50ECB0C-977F-4652-8D8D-E61E87C9B7C6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F1D2EC88-C84E-4EFB-89FF-7D40FECF75B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{22002B04-EC59-4E7F-BBC6-2D08B87C4D64}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{BF56A3DC-4754-497B-A161-38909A5D48A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{8779A1B0-81DF-4D51-9277-DC55AF490ED1}] => (Allow) H:\SteamLibrary\steamapps\common\Wolfenstein.II.The.New.Colossus\NewColossus_x64vk.exe FirewallRules: [{8769ECA7-4449-4059-8918-AB783A36A3C2}] => (Allow) H:\SteamLibrary\steamapps\common\Wolfenstein.II.The.New.Colossus\NewColossus_x64vk.exe FirewallRules: [{76BD3F92-5196-4703-A286-2A7D3EF7581D}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe FirewallRules: [{CA446785-ED39-4FC5-926A-E7D436AC52CF}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe FirewallRules: [{24EB8C4A-6C2C-4B6B-BB06-72A4F4BC32F4}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe FirewallRules: [{5DC0FC1F-1AD5-4EC1-8127-DDD5C70A1F49}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe FirewallRules: [{DDAD0F0D-BE74-48DB-A65B-E8700FA48FA1}] => (Allow) E:\GameZ\Tom Clancy's Ghost Recon Wildlands\GRW.exe FirewallRules: [UDP Query User{4B79BF36-B68C-437D-A109-909D0206FC13}E:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe FirewallRules: [TCP Query User{816B7975-647F-49DE-A319-AF94E9B19AE7}E:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe FirewallRules: [{EED58908-29DF-416B-B388-05BA89BC25AC}] => (Allow) E:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe FirewallRules: [{AB339398-88B0-41A9-BAB5-A0EF41F6990B}] => (Allow) E:\SteamLibrary\steamapps\common\Dead by Daylight\DeadByDaylight.exe FirewallRules: [UDP Query User{7E16743D-A204-4240-808A-E05DECB9064B}E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe FirewallRules: [TCP Query User{909F81F6-1F1A-4331-9622-1C3050191CA6}E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe FirewallRules: [UDP Query User{8EF91CE3-11E4-42E5-9145-A6CD697B3763}E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe FirewallRules: [TCP Query User{07314645-BA8B-4B3C-B5D2-DB77A200D5F0}E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe] => (Allow) E:\steamlibrary\steamapps\common\obliteracers\obliteracers\binaries\win64\obliteracers-win64-shipping.exe FirewallRules: [{5217418B-6027-48F4-B9A4-13C4C4B41274}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{710D4E63-4C65-4FD4-8728-62946AA3082E}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\FaxApplications.exe FirewallRules: [{50937983-0F44-4AC8-B123-82A6CD2CFEF8}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\DigitalWizards.exe FirewallRules: [{7894C223-1E35-4F1C-AED7-01EA50D8DBFC}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\bin\SendAFax.exe FirewallRules: [{646BBBEF-8403-42C8-BCCB-B756F09237B5}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe FirewallRules: [{68732435-D21C-40DF-A1BF-5FB4696028E9}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe FirewallRules: [{098A0511-716F-4E2B-9527-69655AA44DC0}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [TCP Query User{39C01D5E-59AB-41B2-BB6A-A0DE4D4BCEC6}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{E1FA9827-0DD3-4FE5-BF3A-A5CA7BBFDB47}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{CCFF07C4-0F64-48E6-8CA7-92EB06D91CD3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C635DE1D-D014-4C4C-99FE-50661FB3263E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{62986A38-570E-4EAC-91C5-A6B297656165}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{004F03E8-4E26-41E4-B048-0FF7F4EB8BB9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{81EA050F-5860-4891-99D0-177B3E4A7ABB}] => (Allow) D:\Games\steam\Steam.exe FirewallRules: [{1DBB509E-1DC1-4535-AC5A-7BB11086F354}] => (Allow) D:\Games\steam\Steam.exe FirewallRules: [{D88755B4-5814-49E8-89FB-5E4744A36CD6}] => (Allow) D:\Games\Hearthstone\Battle.net\Battle.net.exe FirewallRules: [{5CE7FE38-9573-46EE-B306-DB42697EA8E3}] => (Allow) D:\Games\Hearthstone\Battle.net\Battle.net.exe FirewallRules: [{F61FB34B-1747-411A-9BE8-A94082C3CA36}] => (Allow) D:\Games\Hearthstone\Hearthstone\Hearthstone.exe FirewallRules: [{D180CC61-E56E-42DB-8709-353EF9BB30DE}] => (Allow) D:\Games\Hearthstone\Hearthstone\Hearthstone.exe FirewallRules: [{69F3EE2E-246E-4B77-A8B4-7928652B5769}] => (Allow) D:\Games\Hearthstone\StarCraft II\StarCraft II.exe FirewallRules: [{E4DF1A58-5927-4573-93DF-EE429A0B45B5}] => (Allow) D:\Games\Hearthstone\StarCraft II\StarCraft II.exe FirewallRules: [TCP Query User{EE73E4A3-2D79-4E2B-BFDD-3DFD7648E395}D:\games\hearthstone\starcraft ii\versions\base28667\sc2.exe] => (Allow) D:\games\hearthstone\starcraft ii\versions\base28667\sc2.exe FirewallRules: [UDP Query User{EA49AF69-5F34-4A41-861E-3038883F7A86}D:\games\hearthstone\starcraft ii\versions\base28667\sc2.exe] => (Allow) D:\games\hearthstone\starcraft ii\versions\base28667\sc2.exe FirewallRules: [{16965BAE-F014-4EF5-ACCE-0F6DB96EEC42}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{D21BC835-1331-46FE-B1DB-D7E5E3CC77DF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{1619519B-1F8D-44B0-B69B-97BE5D048627}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C474D7FB-D6C7-495B-87F5-EEF4ADC0551D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{6E453686-14B6-4A3D-93BD-B25544FE419B}D:\games\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{57298F14-23FE-46A0-BEBA-722EADCD3184}D:\games\hearthstone\hearthstone\hearthstone.exe] => (Allow) D:\games\hearthstone\hearthstone\hearthstone.exe FirewallRules: [{BD2221FA-3F3F-49B1-AF20-098B26FE933C}] => (Allow) D:\Games\steam\bin\steamwebhelper.exe FirewallRules: [{A49E9DAB-3F82-4CD3-B4BD-0F05BE93AEDF}] => (Allow) D:\Games\steam\bin\steamwebhelper.exe FirewallRules: [TCP Query User{B433D900-F368-4E8F-9363-05F6B37C0BFE}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe FirewallRules: [UDP Query User{A85F52B7-F2CD-477C-AB6C-04D94E94CF93}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe FirewallRules: [{328EC8AE-6A38-4D8E-986D-DD5A952B278E}] => (Allow) LPort=5000 FirewallRules: [{6EA4D7DC-6757-4C69-91D9-C7295DD81051}] => (Allow) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{932058BC-5D1C-455F-A459-1C0741FBB305}] => (Allow) C:\Program Files (x86)\Edimax\11n USB Wireless LAN Utility\RtWLan.exe FirewallRules: [{4789BCEB-934A-4084-8F73-8D524B3D4883}] => (Allow) LPort=1542 FirewallRules: [{E6EDBCA3-8930-45ED-88FD-C462744A0954}] => (Allow) LPort=1542 FirewallRules: [{9AC3CC25-F951-43AB-B75C-2A7BABA74078}] => (Allow) LPort=53 FirewallRules: [{08FA5742-B82C-41E7-9A81-EA9F45891E01}] => (Allow) C:\Program Files (x86)\CheckPoint\SSL Network Extender\slimsvc.exe FirewallRules: [TCP Query User{46F2359F-55F8-419F-AEA6-34DDA7656847}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe FirewallRules: [UDP Query User{0C23BEB7-951D-458C-8AA6-0BDC41149C37}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe FirewallRules: [{3A2B4D57-1985-4584-B418-6659E0E036F0}] => (Allow) C:\GameZ\FarCry 4\bin\FarCry4.exe FirewallRules: [{3144566A-5110-4184-9C14-31733F8BF8F2}] => (Allow) C:\GameZ\FarCry 4\bin\FarCry4.exe FirewallRules: [{6B350D23-EC0F-4BF5-8BD7-FD3E55D0DC93}] => (Allow) C:\GameZ\FarCry 4\bin\IGE_WPF64.exe FirewallRules: [{83C9477C-E5AF-4B47-839C-76DA5A07DDC0}] => (Allow) C:\GameZ\FarCry 4\bin\IGE_WPF64.exe FirewallRules: [{D6EA3882-DC9D-4080-90F1-F6134DEA97E1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe FirewallRules: [{B5EA0F11-34AE-49AD-BF29-D72AA704713B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3689\Agent.exe FirewallRules: [{FB71941A-70C2-4380-83F9-1BB124011E97}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe FirewallRules: [{1B5D1CA6-675B-4077-B2C5-8C76C51C90D2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe FirewallRules: [{3836F5F5-0B17-4EBB-B12A-0931843DF4EC}] => (Allow) D:\Games\steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe FirewallRules: [{3FD22B0B-42BE-4AF6-B77D-99821C711B82}] => (Allow) D:\Games\steam\SteamApps\common\Divinity - Original Sin\Shipping\EoCApp.exe FirewallRules: [TCP Query User{35E47521-2287-458B-BB55-7B1F07E462FC}D:\games\hearthstone\hots\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) D:\games\hearthstone\hots\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{5B10D629-DE4B-49B1-B6CF-6187820DB9E4}D:\games\hearthstone\hots\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe] => (Allow) D:\games\hearthstone\hots\heroes of the storm\versions\base34190\heroesofthestorm_x64.exe FirewallRules: [TCP Query User{37B2ABB3-03FB-4815-87C0-38A1096ECBE8}D:\games\hearthstone\hots\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) D:\games\hearthstone\hots\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe FirewallRules: [UDP Query User{C0C9EFF7-EBD6-4339-9A26-4EC5222E8735}D:\games\hearthstone\hots\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe] => (Allow) D:\games\hearthstone\hots\heroes of the storm\versions\base34659\heroesofthestorm_x64.exe FirewallRules: [{951AA66A-7F14-4F41-BF56-EF61013C7C02}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{5C1301A8-69B4-44BE-B2CE-84A472A223C8}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{698585CD-F30A-48ED-A4A8-A6CE33065A62}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{88DFA9A4-FCF4-4889-8046-ED3391B994AF}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [TCP Query User{904F61CE-93B7-45EC-AF82-F2A806160F69}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{D3787524-35C6-4409-AE70-1D66086EC580}E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe] => (Allow) E:\steamlibrary\steamapps\common\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{12811857-2A9C-406B-8850-E064F4BF0EF4}C:\program files (x86)\infinit.io\infinit\infinit.exe] => (Allow) C:\program files (x86)\infinit.io\infinit\infinit.exe FirewallRules: [UDP Query User{C21B2091-7DB0-40FF-9C3B-22AB32541E7E}C:\program files (x86)\infinit.io\infinit\infinit.exe] => (Allow) C:\program files (x86)\infinit.io\infinit\infinit.exe FirewallRules: [TCP Query User{22A515C2-2BB5-4457-8CCA-20C9C8B9410A}E:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\steamlibrary\steamapps\common\h1z1\h1z1.exe FirewallRules: [UDP Query User{DDBF6194-4FE6-44C9-A165-F3B7A270B120}E:\steamlibrary\steamapps\common\h1z1\h1z1.exe] => (Allow) E:\steamlibrary\steamapps\common\h1z1\h1z1.exe FirewallRules: [{975A71F0-EBB2-4C5B-98C8-A0553F03B7F5}] => (Allow) E:\SteamLibrary\steamapps\common\MGS_TPP\mgsvtpp.exe FirewallRules: [{396C5F83-1290-4818-BF94-18BA52C90889}] => (Allow) E:\SteamLibrary\steamapps\common\MGS_TPP\mgsvtpp.exe FirewallRules: [{701FE8B1-D42A-44DC-81A2-3F72D4E0CB7F}] => (Allow) D:\Games\steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{D766EE63-E2C0-4A9E-AD69-A1E6089C1BFE}] => (Allow) D:\Games\steam\SteamApps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [TCP Query User{1140AE37-175E-4A7A-91F8-F0AA2C3506E7}E:\gamez\wolfenstein the new order\wolfneworder_x64.exe] => (Allow) E:\gamez\wolfenstein the new order\wolfneworder_x64.exe FirewallRules: [UDP Query User{749EED94-EB5F-42EE-9D14-7250739D12A4}E:\gamez\wolfenstein the new order\wolfneworder_x64.exe] => (Allow) E:\gamez\wolfenstein the new order\wolfneworder_x64.exe FirewallRules: [TCP Query User{825CA694-D5EF-4D0C-96F5-5A8B4F4A6237}E:\steamlibrary\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) E:\steamlibrary\steamapps\common\h1z1 king of the kill\h1z1.exe FirewallRules: [UDP Query User{9E342BA4-08D8-41A5-AC59-5CF3DB946756}E:\steamlibrary\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) E:\steamlibrary\steamapps\common\h1z1 king of the kill\h1z1.exe FirewallRules: [TCP Query User{5EBE2BEA-F907-46D3-A19B-752E3C0E01E6}C:\users\stef\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\stef\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe FirewallRules: [UDP Query User{0038C9C3-9442-4FCF-864C-F082321AE42C}C:\users\stef\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\stef\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe FirewallRules: [{CF8681D8-CF36-4C2F-BFF7-C186CCED8AE5}] => (Allow) E:\GameZ\Steep\steep.exe FirewallRules: [{874C4338-2BC3-4744-A9A9-3D3086BE042F}] => (Allow) C:\Users\Stef\AppData\Local\Temp\7zS601D\HPDiagnosticCoreUI.exe FirewallRules: [{895B37FB-45FB-4450-93EC-58DE42486694}] => (Allow) C:\Users\Stef\AppData\Local\Temp\7zS601D\HPDiagnosticCoreUI.exe FirewallRules: [TCP Query User{9153538E-8DEA-4C76-9361-44ADF3C0E922}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe FirewallRules: [UDP Query User{68F13655-148C-4289-B09F-AB020AA7DFE8}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe FirewallRules: [{3C497F91-A7BC-4BF3-A395-30AF93CF49E3}] => (Allow) D:\Games\steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{87DDB2A6-1D49-44EE-A572-BBA973ABF923}] => (Allow) D:\Games\steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{FACCB439-EEBF-4342-B66F-3A0FF09E9D30}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe FirewallRules: [UDP Query User{E910E943-0485-4D54-84BA-25C59B696D27}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe FirewallRules: [{04414CE8-102F-4C1D-93D3-EBA32C8D20E1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7 StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7 StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= 09-12-2017 18:57:04 Removed TomTom HOME. ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (12/10/2017 11:51:15 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST64.exe version 9.12.2017.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance. ID de processus : a54 Heure de début : 01d371a4bb936395 Heure de fin : 4294967295 Chemin d'accès de l'application : C:\Users\Stef\Desktop\FRST64.exe ID de rapport : 1fc9880c-2e7c-4fa5-a916-f8946bcb2618 Nom complet du package défaillant : ID de l'application relative au package défaillant : Error: (12/10/2017 11:10:53 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ShellExperienceHost.exe, version : 10.0.16299.15, horodatage : 0x59cda974 Nom du module défaillant : msvcrt.dll, version : 7.0.16299.98, horodatage : 0x20688290 Code d’exception : 0x40000015 Décalage d’erreur : 0x000000000000ad32 ID du processus défaillant : 0x25e8 Heure de début de l’application défaillante : 0x01d3719e823d5991 Chemin d’accès de l’application défaillante : C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\msvcrt.dll ID de rapport : 9890c117-22bd-4420-8bb7-4400b85f7856 Nom complet du package défaillant : Microsoft.Windows.ShellExperienceHost_10.0.16299.15_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : App Error: (12/10/2017 10:11:05 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: PC-STEF) Description: Le package Deezer.62021768415AF_3.3.7.0_x64__q7m17pa7q8kj0+App a été interrompu, car sa suspension a été trop longue. Error: (12/09/2017 06:22:42 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.0 - Échec de l'initialisation de l'infrastructure d'attachement de l'API de profilage. Ce processus ne permet pas l'attachement d'un profileur. HRESULT : 0x80004005. ID de processus (décimal) : 2128. Id de message : [0x2509]. Error: (12/09/2017 06:08:02 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.0 - Échec de l'initialisation de l'infrastructure d'attachement de l'API de profilage. Ce processus ne permet pas l'attachement d'un profileur. HRESULT : 0x80004005. ID de processus (décimal) : 7608. Id de message : [0x2509]. Error: (12/09/2017 05:55:15 PM) (Source: .NET Runtime) (EventID: 1022) (User: ) Description: .NET Runtime version 4.0.30319.0 - Échec de l'initialisation de l'infrastructure d'attachement de l'API de profilage. Ce processus ne permet pas l'attachement d'un profileur. HRESULT : 0x80004005. ID de processus (décimal) : 7320. Id de message : [0x2509]. Error: (12/09/2017 05:41:34 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: ) Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A Error: (12/09/2017 05:39:05 PM) (Source: ESENT) (EventID: 455) (User: ) Description: mighost (5624,R,0) TILEREPOSITORYS-1-0-0: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\Users\Default\AppData\Local\TileDataLayer\Database\EDB.log. Error: (12/09/2017 05:38:49 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: ) Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A Error: (12/09/2017 05:38:49 PM) (Source: MSDTC 2) (EventID: 4104) (User: ) Description: Échec de lecture de l'état du nœud de cluster : . Le code d'erreur retourné est : 0x8007085A Erreurs système: ============= Error: (12/10/2017 11:42:03 AM) (Source: DCOM) (EventID: 10016) (User: PC-STEF) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC-Stef\Stef de l’utilisateur (S-1-5-21-2478868918-3327026561-2023730197-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/10/2017 11:24:30 AM) (Source: DCOM) (EventID: 10016) (User: PC-STEF) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC-Stef\Stef de l’utilisateur (S-1-5-21-2478868918-3327026561-2023730197-1000) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/10/2017 11:13:02 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service WD File Management Engine s’est terminé de façon inattendue pour la 1ème fois. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Check Point SSL Network Extender s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 500 millisecondes : Redémarrer le service. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Management and Security Application User Notification Service s’est terminé de façon inattendue pour la 1ème fois. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service Partage réseau du Lecteur Windows Media s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Plex Update Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Message Queuing s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. Error: (12/10/2017 11:12:55 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service UsbClientService s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 200 millisecondes : Redémarrer le service. CodeIntegrity: =================================== Date: 2017-12-10 11:48:04.531 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-10 11:48:04.530 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-10 11:48:03.995 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x86\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:03.971 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x86\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:03.947 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x86\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:03.912 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x86\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:03.022 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:02.913 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:02.888 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-10 11:48:02.731 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\WindowsApps\Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe\x64\hevcdecoder_store.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-3570K CPU @ 3.40GHz Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 8152.04 MB Mémoire physique - RAM - disponible: 5451.86 MB Mémoire virtuelle totale: 16344.04 MB Mémoire virtuelle disponible: 13006.09 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:237.94 GB) (Free:71.14 GB) NTFS Drive d: (Games&DL) (Fixed) (Total:232.88 GB) (Free:57.81 GB) NTFS Drive e: (Datas) (Fixed) (Total:1862.89 GB) (Free:1542.56 GB) NTFS Drive f: (RETZ_Reussir_en_) (CDROM) (Total:0.03 GB) (Free:0 GB) CDFS Drive h: (EVO960) (Fixed) (Total:465.76 GB) (Free:418.66 GB) NTFS Drive k: (Docs) (Fixed) (Total:232.88 GB) (Free:171.76 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: E3E91BF4) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 232.9 GB) (Disk ID: 49344934) Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 49344933) Partition 1: (Not Active) - (Size=232.9 GB) - (Type=42) ======================================================== Disk: 4 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 4F0747B3) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================