Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27.01.2018 Exécuté par Samax (30-01-2018 19:16:19) Exécuté depuis D:\Users\Samax\Bureau Windows 10 Pro Version 1709 16299.192 (X64) (2017-12-06 22:37:18) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-242901377-2819347155-2194994734-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-242901377-2819347155-2194994734-503 - Limited - Disabled) Invité (S-1-5-21-242901377-2819347155-2194994734-501 - Limited - Disabled) Samax (S-1-5-21-242901377-2819347155-2194994734-1001 - Administrator - Enabled) => C:\Users\mathi WDAGUtilityAccount (S-1-5-21-242901377-2819347155-2194994734-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\uTorrent) (Version: 3.5.1.44332 - BitTorrent Inc.) 2C-Audio Aether (HKLM-x32\...\Aether) (Version: - 2C-Audio) Acon Digital Equalize (64 bit) 1.2.2 (HKLM\...\{3A168734-6C76-4B93-B127-6D7182BAC063}_is1) (Version: 1.2.2 - Acon AS) Altiverb 7 Uninstaller (HKLM\...\{367662CA-394A-4095-9549-973FC3807B9B}_is1) (Version: 7.2 - Audio Ease BV) Arturia Software Center 1.2.0 (HKLM-x32\...\Arturia Software Center_is1) (Version: 1.2.0 - Arturia) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.14 - Michael Tippach) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) Blue Cat Audio Master Pack Bundle version 1.0.0 (HKLM-x32\...\{F9370202-37B1-44AF-9B88-7A9BA20113F3}_is1) (Version: 1.0.0 - Blue Cat Audio SARL.) Blue Cat's Chorus VST-x64 (v4.2) (HKLM\...\{09E5B6D8-D3F4-4174-8610-18BF88851BA2}) (Version: 4.2 - Blue Cat Audio) Blue Cat's Flanger VST-x64 (v3.2) (HKLM\...\{2906CD8C-36EC-4EC0-A98F-4D0F40362979}) (Version: 3.2 - Blue Cat Audio) Blue Cat's Freeware Pack VST-x64 (v2.2) (HKLM\...\{2D533028-90B8-4989-BE0E-136D8C3F6439}) (Version: 2.2 - Blue Cat Audio) Blue Cat's FreqAnalyst VST-x64 (v2.2) (HKLM\...\{CB8467BF-72D6-466E-B907-1C725D008DAF}) (Version: 2.2 - Blue Cat Audio) Blue Cat's Gain Suite VST-x64 (v3.2) (HKLM\...\{69B583CE-463B-4B61-AEF6-C0166045A9EA}) (Version: 3.2 - Blue Cat Audio) Blue Cat's Phaser VST-x64 (v3.2) (HKLM\...\{F8498DB3-480D-4047-B479-C9C4038AF63C}) (Version: 3.2 - Blue Cat Audio) Blue Cat's Triple EQ VST-x64 (v4.2) (HKLM\...\{CAD1E444-00B9-4796-A0E6-CB50FB1E63A0}) (Version: 4.2 - Blue Cat Audio) Cinesamples Drums of War 2 (HKLM-x32\...\{D86767A7-95D3-46A6-8744-663802ABFECA}}_is1) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0232 - Disc Soft Ltd) dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 16.2 - Illustrate) dBpoweramp AAC Encoder (HKLM-x32\...\dBpoweramp AAC Encoder) (Version: Release 2.1 - Illustrate) dBpoweramp Dalet Codec (HKLM-x32\...\dBpoweramp Dalet Codec) (Version: Release 7 - Illustrate) dBpoweramp m4a FDK (AAC) Encoder (HKLM-x32\...\dBpoweramp m4a FDK (AAC) Encoder) (Version: Release 4 (FDK v0.1.4 & v0.63) - Illustrate) dBpoweramp Monkeys Audio Codec (HKLM-x32\...\dBpoweramp Monkeys Audio Codec) (Version: Release 12 (Monkeys v4.12) - Illustrate) dBPowerAMP Mp2 and BwfMp2 codec (HKLM-x32\...\dBPowerAMP Mp2 and BwfMp2 codec) (Version: Release 7 - Illustrate) dBpoweramp Musepack Codec (HKLM-x32\...\dBpoweramp Musepack Codec) (Version: Release 9 (SV8 mpcenc 1.30) - Illustrate) dBpoweramp Ogg Vorbis Codec (HKLM-x32\...\dBpoweramp Ogg Vorbis Codec) (Version: Release 25 (Vorbis v1.3.4) - Illustrate) dBpoweramp Opus Codec (HKLM-x32\...\dBpoweramp Opus Codec) (Version: Release 3 (Opus 1.1.1) - Illustrate) dBpoweramp Wave64 Codec (HKLM-x32\...\dBpoweramp Wave64 Codec) (Version: Release 2 - Illustrate) dBpoweramp WavPack Codec (HKLM-x32\...\dBpoweramp WavPack Codec) (Version: Release 11 (using WavPack 4.80) - Illustrate) dBpoweramp Windows Media Audio 10 Codec (HKLM-x32\...\dBpoweramp Windows Media Audio 10 Codec) (Version: Release 9 - Illustrate) Decimort 1.4.0 (64bit) (HKLM\...\{F0A0EB8E-D410-4CFC-A238-B95373198BCD}) (Version: 1.4.0.0 - D16 Group Audio Software) Devastor 1.4.0 (64bit) (HKLM\...\{04B26700-1160-43CE-A42F-85D875A51625}) (Version: 1.4.0.0 - D16 Group Audio Software) Drumazon 1.6.1 (64bit) (HKLM\...\{30FB3999-B09F-4D82-A041-74830F17BA54}) (Version: 1.6.1.0 - D16 Group Audio Software) DTS Audio (HKLM-x32\...\{26440B1D-65D2-4928-AB91-BB7AE3412608}) (Version: 1.00.6800 - DTS, Inc.) DUNE 2 (HKLM-x32\...\DUNE 2_is1) (Version: - Synapse Audio Software) eaReckon ANALOG87 (HKLM\...\ANALOG87_is1) (Version: 1.2.0 - eaReckon) eaReckon EAReverb 2 (HKLM\...\EAReverb 2_is1) (Version: 2.0.1 - eaReckon) FabFilter Total Bundle (64-bit) (HKLM-x32\...\FabFilter Total Bundle (64-bit)) (Version: - ) FL Studio 12 (HKLM-x32\...\FL Studio 12) (Version: - Image-Line) FL Studio ASIO (HKLM-x32\...\FL Studio ASIO) (Version: - Image-Line) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.119 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) IL Harmor (HKLM-x32\...\IL Harmor) (Version: - Image-Line) IL Minihost Modular (HKLM-x32\...\IL Minihost Modular) (Version: - Image-Line) Intel(R) C++ Redistributables on IA-32 (HKLM-x32\...\{317059CB-7642-4F2E-89C0-62E69D4074B7}) (Version: 15.0.148 - Intel Corporation) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{2DD3C090-2986-4970-B3CB-87BB4C8AC4A5}) (Version: 15.0.148 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1035 - Intel Corporation) Intel(R) Network Connections 22.6.6.0 (HKLM\...\PROSetDX) (Version: 22.6.6.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.8.1.1007 - Intel Corporation) Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden IVGI version 1.1.0 (HKLM\...\IVGI_is1) (Version: 1.1.0 - ) iZotope Ozone 7 Advanced (HKLM-x32\...\iZotope Ozone 7 Advanced 7.00) (Version: 7.00 - iZotope, Inc.) iZotope Stutter Edit (HKLM-x32\...\iZotope Stutter Edit_is1) (Version: 1.05 - iZotope, Inc.) Kontakt 5 NO INSTALL (HKLM\...\{4B3E0D95-3270-4B88-9EDE-A065680EF65C}_is1) (Version: 5.6.8 - Native Instruments) KORG Legacy Collection - MS-20 (HKLM\...\{D9163B30-035A-45E8-A7FB-FC3D700DA159}) (Version: 1.3.0 - KORG Inc.) KORG Legacy Collection - Polysix (HKLM\...\{D3AD748F-85C6-423D-B95F-268A0E1460A7}) (Version: 1.3.0 - KORG Inc.) KORG minilogue Sound Librarian (HKLM-x32\...\{FA9E288D-AF76-44BD-B16B-8D2F8DC5CBED}) (Version: 1.0.1.3 - KORG Inc.) KORG USB-MIDI Driver Tools for Windows 10 (HKLM-x32\...\{C7B06DB0-64A6-436E-B473-0E0EECC5E174}) (Version: 1.15.2203 - Korg Inc.) Logitech - Assistant pour jeux vidéo 8.94 (HKLM\...\Logitech Gaming Software) (Version: 8.94.100 - Logitech Inc.) LuSH-101 1.1.3 (64bit) (HKLM\...\{38666E88-8DD7-4223-8DCF-1EB25D53A48B}) (Version: 1.1.3.0 - D16 Group Audio Software) Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes) M-Audio Axiom Driver 1.1.2 (x64) (HKLM\...\{15231FFA-7E2E-4289-9A9D-A87D158FA62E}) (Version: 1.1.2 - M-Audio) Microsoft OneDrive (HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Prerequisites (x64) (HKLM\...\{04BEC103-A388-41EE-BB49-1235FAAF883D}) (Version: 11.0.61030 - Blue Cat Audio) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) MiniFilter V 1.0.0 (HKLM-x32\...\MiniFilter V_is1) (Version: 1.0.0 - Arturia) Mises à jour NVIDIA 25.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.0.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 58.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 58.0.1 (x64 fr)) (Version: 58.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0.1 - Mozilla) Mozilla Thunderbird 52.5.2 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.5.2 (x86 fr)) (Version: 52.5.2 - Mozilla) MusicBee 3.0 (HKLM-x32\...\MusicBee) (Version: 3.0 - Steven Mayall) Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.0.1498 - Native Instruments) Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.0.533 - Native Instruments) Native Instruments Rise and Hit (HKLM-x32\...\Native Instruments Rise and Hit) (Version: 1.0.0.8 - Native Instruments) Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: - Native Instruments) Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: - Native Instruments) Neutron Advanced (HKLM-x32\...\Neutron Advanced 1.0) (Version: 1.0 - iZotope, Inc.) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.4.2 - Notepad++ Team) NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA Pilote graphique 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Ozone 8 Advanced (HKLM-x32\...\Ozone 8) (Version: 8.00 - iZotope, Inc.) Panneau de configuration NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden PCM Native Reverb Bundle (HKLM-x32\...\{294B9A61-B4D6-4EDB-91BF-354619C43FE2}) (Version: 1.1.3 - Lexicon) Hidden PCM Native Reverb Bundle (HKLM-x32\...\PCM Native Reverb Bundle) (Version: - Lexicon) Phoscyon 1.9.5 (64bit) (HKLM\...\{D32B89DD-B8E6-4443-9BB2-97290BA4B8A8}) (Version: 1.9.5.0 - D16 Group Audio Software) PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.5545 - Kakao Corp.) PreSonus Studio One 3 x64 (HKLM\...\PreSonus Studio One 3) (Version: 3.1.0.35191 - PreSonus Audio Electronics) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.18.526.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8199 - Realtek Semiconductor Corp.) reFX Nexus VSTi RTAS v2.2.0 (HKLM-x32\...\reFX Nexus_is1) (Version: - ) Saurus v2.0 (HKLM\...\Tone2 Saurus_is1) (Version: 2.0.0 - Tone2) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden Sonalksis Plug-in Manager 3.01 (HKLM-x32\...\{7A600039-FED6-4C81-AA6E-F151F7FA7EE7}_is1) (Version: - Sienda New Media Technologies GmbH) SoulseekQt version 2017.2.20 (HKLM-x32\...\{8A4E1646-488C-4E5B-AC31-F784400E8D2D}_is1) (Version: 2017.2.20 - Soulseek LLC) Spotify (HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\Spotify) (Version: 1.0.69.336.g7edcc575 - Spotify AB) Supercopier 1.2.3.6 (HKLM-x32\...\Supercopier) (Version: 1.2.3.6 - Supercopier) Sylenth1 version 2.2.1 (HKLM-x32\...\{149CBB8A-19FE-4574-99BE-657926BBE08B}_is1) (Version: 2.2.1 - Lennar Digital) Synthesia (HKLM-x32\...\Synthesia) (Version: 10.3 - Synthesia LLC) TAL-U-NO-LX-V2 (64bit) (HKLM\...\{09F711BE-36CB-4319-BF17-1FCF811E4732}) (Version: 1.3.7 - TAL - Togu Audio Line) TransReckon (HKLM\...\TransReckon_is1) (Version: 1.1.0 - eaReckon & Team V.R) u-he Diva (HKLM-x32\...\u-he Diva) (Version: 1.4.0.3898 - u-he) u-he Presswerk (HKLM-x32\...\u-he Presswerk) (Version: 1.1.1.4596 - u-he) u-he Zebra2 (HKLM-x32\...\u-he Zebra2) (Version: 2.7.2.3898 - u-he) ValhallaRoom 1.1.0 (HKLM-x32\...\ValhallaRoom_is1) (Version: - ) ValhallaShimmer version 1.0.3dot4 (HKLM-x32\...\{6955BA75-52B6-4C6F-BCC4-1014920D587C}_is1) (Version: 1.0.3dot4 - Valhalla DSP, LLC) Voxengo Sound Delay (HKLM\...\Voxengo Sound Delay_is1) (Version: 1.7 - Voxengo) Voxengo SPAN (HKLM\...\Voxengo SPAN_is1) (Version: 3.0 - Voxengo) Voxengo Tempo Delay (HKLM\...\Voxengo Tempo Delay_is1) (Version: 2.1 - Voxengo) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Waves Complete V9r29 (HKLM-x32\...\{93000001-C561-4E32-99EB-3C5AD3683A70}) (Version: 9.3.29 - Waves) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) XLN Audio Addictive Drums 2 (HKLM\...\Addictive Drums 2_is1) (Version: 2.1.5 - XLN Audio) XLN Audio Addictive Keys (HKLM\...\Addictive Keys_is1) (Version: 1.1.4 - XLN Audio) Yamaha Steinberg USB Driver (HKLM\...\{81D09AFD-74A6-4BDB-809F-7587D04614F3}) (Version: 1.9.11 - Yamaha Corporation) Hidden Yamaha Steinberg USB Driver (HKLM-x32\...\yUninstall_{2938B185-2D57-47B0-9FC8-C90A67BA9277}) (Version: 1.9.11 - Yamaha Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-242901377-2819347155-2194994734-1001_Classes\CLSID\{68D44A27-FFB6-4B89-A3E5-7B0E50A7AB33}\InprocServer32 -> C:\Program Files\Supercopier\PluginLoader\catchcopy-v0002\catchcopy32.dll () CustomCLSID: HKU\S-1-5-21-242901377-2819347155-2194994734-1001_Classes\CLSID\{68FF37C4-51BC-4C2A-A992-7E39BC0E706F}\InprocServer32 -> C:\Program Files\Supercopier\PluginLoader\catchcopy-v0002\catchcopy64.dll () ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers: [0TheftProtectionDll] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => -> Pas de fichier ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-06-18] () ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-14] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02A0AB7F-CE0F-4179-8815-A999A88517A1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation) Task: {07D5A7F6-56C2-43CD-99CE-66C9080FAECC} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-21] (Microsoft Corporation) Task: {0E9775D5-7AE0-4D0B-A68B-33E6900AD22B} - System32\Tasks\Open Hardware Monitor\Startup => C:\Program Files\OpenHardwareMonitor\OpenHardwareMonitor.exe [2016-11-06] () Task: {1535DD31-C2F3-4B7C-AD4C-B97D2C402497} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation) Task: {363549F8-3C71-44F2-9C13-B707620EE860} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-29] (Google Inc.) Task: {5CC155A9-0A1C-4B66-9033-A0FCC88DD1EA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-21] (Microsoft Corporation) Task: {5D9BD424-0493-4157-A4E7-121AAB8E2F64} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-08] (NVIDIA Corporation) Task: {7275CFB6-C054-4AD3-91DC-3AF71A61F5D7} - System32\Tasks\WtknU1vcLPZo => wtknu1vclpzo.exe Task: {753FAD3E-7CB7-4010-AD6F-ED8FE24486C7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-21] (Microsoft Corporation) Task: {A8C38529-F5CC-40CA-A8D2-6375D2784D54} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation) Task: {AAA628B4-32EB-4616-B108-CF85705925EE} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-02-24] (Intel(R) Corporation) Task: {C4CC6CDE-8F9C-4D2B-B76F-026068B65C9A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-01-29] (Google Inc.) Task: {C51A3A6B-62A0-4B6D-97CE-64092B1FB847} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation) Task: {D4F7F04C-D1B5-4567-8C87-C103E1070F36} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-21] (Microsoft Corporation) Task: {D76A45C1-4446-49D9-9CF6-13BEFF9253D0} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-08] (NVIDIA Corporation) Task: {E79B622B-4937-408C-B9F7-7631336109AD} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation) Task: {F312D94D-61DD-43C4-B6FF-FA68FCDFC28C} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation) Task: {F59CDB4C-268E-40A1-8693-E78376249A1B} - System32\Tasks\dts_apo_service_task => C:\Program Files (x86)\DTS, Inc\DTS Audio\dts_apo_task.exe [2017-06-21] () (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2017-06-28 21:40 - 2017-06-28 21:40 - 000041984 _____ () C:\Program Files (x86)\ForensiT\AppX Management Service\ForensiTAppxService.exe 2017-06-27 11:47 - 2017-06-08 02:45 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-01-29 20:15 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll 2018-01-29 20:15 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-08-21 10:52 - 2017-08-21 10:52 - 000418304 ____R () C:\Program Files\Intel\Wired Networking\NCS2\Agent\AdapterAgnt.DLL 2017-11-01 16:45 - 2016-11-06 17:15 - 000494592 _____ () C:\Program Files\OpenHardwareMonitor\OpenHardwareMonitor.exe 2017-12-06 23:25 - 2017-12-06 23:25 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-12-06 23:25 - 2017-12-06 23:25 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-01-18 20:41 - 2018-01-18 20:41 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-01-18 20:41 - 2018-01-18 20:41 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-01-18 20:41 - 2018-01-18 20:41 - 024677376 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-01-08 20:36 - 2018-01-08 20:36 - 002550272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\skypert.dll 2018-01-18 20:41 - 2018-01-18 20:41 - 000667648 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll 2017-06-22 00:43 - 2017-06-22 00:43 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll 2015-03-07 01:07 - 2015-03-07 01:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll 2017-06-22 00:43 - 2017-06-22 00:43 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll 2017-06-21 18:24 - 2017-06-21 18:24 - 000026560 _____ () C:\Program Files (x86)\DTS, Inc\DTS Audio\dts_apo_service.exe 2018-01-09 20:28 - 2018-01-09 20:28 - 004698840 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11712.1001.13.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-12-14 18:46 - 2017-12-14 18:46 - 035244544 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\Music.UI.exe 2017-12-14 18:46 - 2017-12-14 18:46 - 009220608 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\EntCommon.dll 2017-08-23 19:59 - 2017-08-23 19:59 - 000957952 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll 2017-09-26 19:51 - 2017-09-26 19:51 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-12-14 18:46 - 2017-12-14 18:46 - 013224960 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17086.24711.0_x64__8wekyb3d8bbwe\Music.Visuals.dll 2017-06-27 11:47 - 2017-06-08 02:45 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-06-26 13:24 - 2017-06-26 13:24 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-242901377-2819347155-2194994734-1001\Software\Classes\regfile: regedit.exe "%1" <==== ATTENTION ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-242901377-2819347155-2194994734-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "experimentationdegrees" HKLM\...\StartupApproved\Run: => "experimentationexperimentation" HKLM\...\StartupApproved\Run: => "experimentation" HKLM\...\StartupApproved\Run32: => "KORG USB-MIDI Driver" HKLM\...\StartupApproved\Run32: => "languishingchickpeas" HKLM\...\StartupApproved\Run32: => "languishinglanguishing" HKLM\...\StartupApproved\Run32: => "languishing" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\StartupFolder: => "esu.lnk" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "degreesexperimentation" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "chickpeaslanguishing" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "bread" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "chatty" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "adults" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "degreesdegrees" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "degrees" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "chickpeaschickpeas" HKU\S-1-5-21-242901377-2819347155-2194994734-1001\...\StartupApproved\Run: => "chickpeas" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{531A7829-8716-4B93-93AC-1CEFCD43B2CA}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll FirewallRules: [{C6CFED0C-2664-424C-A67C-AE76107A43B2}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll FirewallRules: [{693F02D1-9C11-415A-BE24-974FA4B81863}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{8C084199-DF69-46CE-86FB-484A5C5AE91D}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [UDP Query User{CA6359C7-4E4C-4A71-B42E-A8C3B38C2614}C:\program files\mao\presonus\studio one 3\studio one.exe] => (Block) C:\program files\mao\presonus\studio one 3\studio one.exe FirewallRules: [TCP Query User{F88722D7-08D1-45BC-8172-010B16ABFB7A}C:\program files\mao\presonus\studio one 3\studio one.exe] => (Block) C:\program files\mao\presonus\studio one 3\studio one.exe FirewallRules: [UDP Query User{5F813838-4BEA-4912-BA82-D4453604DD97}C:\users\mathi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mathi\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{79709464-82D1-4852-8AB9-3353802BB91F}C:\users\mathi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\mathi\appdata\roaming\spotify\spotify.exe FirewallRules: [{5F20CF62-E53D-4A65-A456-6D898EFC97A5}] => (Block) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [{A9CDE87E-354F-41E3-B0AC-7A2E03D84B14}] => (Block) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [UDP Query User{BE077AD0-C0F2-4FA4-98CB-4B38A77987AD}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [TCP Query User{834F01DD-4A1B-45A3-9B24-C4480F0EB623}C:\program files (x86)\soulseekqt\soulseekqt.exe] => (Allow) C:\program files (x86)\soulseekqt\soulseekqt.exe FirewallRules: [{FFD424EA-2586-463C-8E76-1D9E501135B4}] => (Allow) C:\Users\mathi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FC66B176-EAAD-4F75-BAB2-B30D61D99814}] => (Allow) C:\Users\mathi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{073E93FE-0FC0-4347-B6C6-567246A7CA07}] => (Allow) C:\Users\mathi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0EFEA4F4-FA72-4093-A179-A770BA13F3B4}] => (Allow) C:\Users\mathi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{B2623CD1-70DF-47A3-BAB7-1E277E069487}] => (Allow) C:\Users\mathi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{17E63B36-5818-4B85-958A-593D91CDFD39}] => (Allow) C:\Users\mathi\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{25E3ADEA-6392-46AF-9D04-F72437295CDE}] => (Allow) C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe FirewallRules: [{80E5A682-1117-4D71-933B-27FA91546C5A}] => (Allow) C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe FirewallRules: [{62019657-CE69-45DF-BC04-A1BB89512D0D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{8D165C98-A01B-4E6B-928F-DF0404C367A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{5F4D8494-1F69-4CAD-8692-A70671693DBD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{578A8349-0582-4153-8AD6-CDCF0CB02E61}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{C5014C37-CCD3-49FC-B82D-BC748ECBBDA4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{BA16C7D3-F14D-44CA-808F-57342BCBAF9B}] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{FE9ED9F0-E27C-4BAB-BCDE-8A3F83C617AE}] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{33C58DD4-CDA3-45DC-B2E9-8420A07D7D7F}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [TCP Query User{23D76AB3-8228-426A-8B5B-C6A8CF0173F4}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{726AF85A-EDBF-496C-B669-78DB6D9BD8C9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{D906A0F1-0ACD-4FEB-939D-9A78821FD9B8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{39D9DA1B-42AF-414E-B02A-B1683997B510}] => (Allow) C:\WINDOWS\explorer.exe FirewallRules: [{77C16962-28B2-45D1-958B-1E60AB8EBB3C}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{2E755323-4464-4198-8CB6-163244536CF9}] => (Allow) C:\Program Files (x86)\Arra\committed.exe FirewallRules: [{4D192471-651F-4A82-AC3A-F573FCFCF53E}] => (Allow) C:\Program Files (x86)\Commoner\committed.exe FirewallRules: [{0A864E7A-0AB8-4EE3-8CB2-330D32B6BD1B}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{5B96678E-3D13-4F3E-8ECB-0C03E2E0991B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 27-01-2018 21:52:53 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Contrôleur de bus SM Description: Contrôleur de bus SM Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Contrôleur de mémoire PCI Description: Contrôleur de mémoire PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (01/30/2018 07:16:50 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/30/2018 07:16:47 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/30/2018 07:07:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/30/2018 07:06:43 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/30/2018 07:06:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (01/29/2018 11:24:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/29/2018 11:24:31 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=NetworkAvailable Error: (01/29/2018 11:22:59 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: ) Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant : hr=0x80004005 Arguments de la ligne de commande : RuleId=3482d82e-ca2c-4e1f-8864-da0267b484b2;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=4de7cb65-cdf1-4de9-8ae8-e3cce27b9f2c;NotificationInterval=1440;Trigger=UserLogon;SessionId=1 Error: (01/29/2018 09:34:58 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: La création du contexte d’activation a échoué pour « C:\Program Files\MAO\Waves\Applications\Element App.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files\MAO\Waves\Applications\WavesQtLibs_4.7.3_Win32_Release\WavesQtLibs_4.7.3_Win32_Release.MANIFEST » à la ligne 8. L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé. La référence est WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0". La définition est WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0". Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (01/29/2018 09:34:58 PM) (Source: SideBySide) (EventID: 35) (User: ) Description: La création du contexte d’activation a échoué pour « C:\Program Files\MAO\Waves\Applications\GTR 3.5.exe ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files\MAO\Waves\Applications\WavesQtLibs_4.7.3_Win32_Release\WavesQtLibs_4.7.3_Win32_Release.MANIFEST » à la ligne 8. L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé. La référence est WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="AMD64",type="win32",version="1.0.0.0". La définition est WavesQtLibs_4.7.3_Win32_Release,processorArchitecture="x86",type="win32",version="1.0.0.0". Utilisez sxstrace.exe pour un diagnostic détaillé. Erreurs système: ============= Error: (01/30/2018 07:06:40 PM) (Source: DCOM) (EventID: 10010) (User: SAMAX-MAO) Description: Le serveur 9E2F88E3.Twitter_5.8.1.0_x86__wgeqdkkx372wm!x554f661dyd360y462cy8743yf8a99b7d41dbx.AppXd7yv3gyg9bkzg9pz33y90tg33g3ketmr.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/30/2018 07:06:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/30/2018 07:06:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/30/2018 07:06:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/30/2018 07:06:37 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/30/2018 07:06:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Kipolam n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (01/29/2018 11:24:12 PM) (Source: DCOM) (EventID: 10016) (User: SAMAX-MAO) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID SAMAX-MAO\Samax de l’utilisateur (S-1-5-21-242901377-2819347155-2194994734-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/29/2018 11:22:57 PM) (Source: DCOM) (EventID: 10010) (User: SAMAX-MAO) Description: Le serveur 9E2F88E3.Twitter_5.8.1.0_x86__wgeqdkkx372wm!x554f661dyd360y462cy8743yf8a99b7d41dbx.AppXd7yv3gyg9bkzg9pz33y90tg33g3ketmr.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/29/2018 11:22:54 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (01/29/2018 11:22:54 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. CodeIntegrity: =================================== Date: 2018-01-29 20:31:30.514 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-01-29 20:31:30.284 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-01-29 20:31:17.976 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-01-29 20:31:17.594 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2018-01-29 20:31:17.495 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements. Date: 2017-12-29 22:59:55.110 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\LGSHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-29 20:32:40.924 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\LGSHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-29 17:15:38.016 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\LGSHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-29 13:19:27.620 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\LGSHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2017-12-29 02:44:56.845 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\drivers\LGSHidFilt.Sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-8600K CPU @ 3.60GHz Pourcentage de mémoire utilisée: 17% Mémoire physique - RAM - totale: 16319.87 MB Mémoire physique - RAM - disponible: 13499.59 MB Mémoire virtuelle totale: 40319.87 MB Mémoire virtuelle disponible: 37279.85 MB ==================== Lecteurs ================================ Drive c: (Windows 10 MAO) (Fixed) (Total:223.1 GB) (Free:170.4 GB) NTFS Drive d: (MAO gros DD) (Fixed) (Total:1862.89 GB) (Free:1238.92 GB) NTFS Drive e: (Windows 10 Jeux) (Fixed) (Total:237.69 GB) (Free:31.11 GB) NTFS Drive f: (Jeux gros DD) (Fixed) (Total:825.51 GB) (Free:76.15 GB) NTFS Drive g: (Expansion Drive) (Fixed) (Total:1397.26 GB) (Free:23.98 GB) NTFS Drive l: () (Fixed) (Total:55 GB) (Free:8.53 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] ==================== MBR & Table des partitions ================== ==================== Fin de Addition.txt ============================