Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 28.02.2018 Exécuté par eliot (02-03-2018 12:47:25) Exécuté depuis C:\Users\eliot\Downloads Windows 10 Home Version 1709 16299.248 (X64) (2018-01-04 15:23:24) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2859240256-1174380967-1921194399-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2859240256-1174380967-1921194399-503 - Limited - Disabled) eliot (S-1-5-21-2859240256-1174380967-1921194399-1001 - Administrator - Enabled) => C:\Users\eliot Invité (S-1-5-21-2859240256-1174380967-1921194399-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2859240256-1174380967-1921194399-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 16.00 (HKLM-x32\...\7-Zip) (Version: 16.00 - Igor Pavlov) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.215 - Adobe Systems Incorporated) Adobe Animate CC 2017 (HKLM-x32\...\FLPR_16_5_1) (Version: 16.5.1 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.2.0.211 - Adobe Systems Incorporated) Adobe Flash Player 28 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated) Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_1_2) (Version: 11.1.2 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{B2A2E8AF-BC48-4191-B2C4-3846A19835CA}) (Version: 6.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{AA7D90D2-2387-4FA5-A3AF-96811BE49BFD}) (Version: 11.0.5.14 - Apple Inc.) Apple Software Update (HKLM-x32\...\{19589375-5C58-4AFA-842F-8B34744CCEAD}) (Version: 2.5.0.1 - Apple Inc.) Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment) AROKH X3 (HKLM-x32\...\{20EA9935-B493-4678-A6FB-58BEB7BF3F3E}) (Version: 1.00.0000 - AROKH) ArtRage 5 Demo (HKLM\...\{3C7775F4-636F-40BB-A302-19EA6031ECDE}) (Version: 5.0.6 - Ambient Design) Hidden ArtRage 5 Demo (HKLM-x32\...\ArtRage 5 Demo 5.0.6) (Version: 5.0.6 - Ambient Design) ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.5.24 - ASUSTek Computer Inc) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.3 - ASUS) Asus Sonic Suite Plugins (HKLM-x32\...\{538766d1-8795-4e62-b3d3-cf65517bae51}) (Version: 2.0.7 - ASUSTeKcomputer.Inc) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS) Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.7.307.8213 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Camtasia Studio 8 (HKLM-x32\...\{AF33D0D2-2627-4AC8-8473-FDBB7892129C}) (Version: 8.6.0.2079 - TechSmith Corporation) CheckDevicesConfigurator (HKLM\...\{C3B3D79A-7BFB-48AF-9C41-B0FE3D5D071C}) (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH) Dark Souls III (HKLM-x32\...\Dark Souls III_is1) (Version: - ) Destiny 2 (HKLM-x32\...\Destiny 2) (Version: - Blizzard Entertainment) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Discord (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\Discord) (Version: 0.0.300 - Discord Inc.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.01 - NVIDIA Corporation) Hidden Dofus (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\2744A393-554C-4E35-A24F-DEF0392B4484-2) (Version: - Ankama) Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.) Epic Games Launcher (HKLM-x32\...\{210AFD22-5ABF-48FD-AB9F-91B36E102CD8}) (Version: 1.1.135.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden GameFirst IV (HKLM-x32\...\{2B5BE4E7-3E40-4BC4-A534-5342E3078F89}) (Version: 1.5.12 - ASUS) Hidden GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.12) (Version: 1.5.12 - ASUS) Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.5.0.6.1001 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.) Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) Chipset Device Software (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{9A287643-10C5-4463-B9D1-B2404CE18CCF}) (Version: 17.1.1529.1620 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version: - Intel Corporation) Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version: - Intel Corporation) iTunes (HKLM\...\{79C10DB4-5B09-43B7-BE48-4CF93A30FAA6}) (Version: 12.7.3.46 - Apple Inc.) Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation) Krita (x64) 3.2.0.6 (HKLM\...\Krita_x64) (Version: 3.2.0.6 - Krita Foundation) Krosmaga (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\5FF85AF0-CE53-4D51-815F-52DA47E3FF9A-2) (Version: - Ankama) Krosmaga Beta (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\3B5206E3-6033-4E27-B7AA-418B369AAE36-2) (Version: - Ankama) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LauncherSetup (HKLM\...\{FAF92126-24C9-4241-A922-FA6F2C896B4A}) (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation) MAGIX Contenu et Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH) MAGIX Soundpool Music Maker - Feel good (HKLM\...\{DFEE4333-B802-4E27-9521-2D9E970B7813}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.690.1 - McAfee, Inc.) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\OneDriveSetup.exe) (Version: 17.005.0107.0008 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816 (HKLM-x32\...\{e2495eb6-cca8-47aa-91ea-3410ca44d7b7}) (Version: 14.0.22816.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Minion (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\{Minion}}_is1) (Version: 3.0 - Good Game Mods LLC) Mises à jour NVIDIA 31.0.11.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.11.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Montage Photo 2017 6.2 (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\Montage Photo 2017_is1) (Version: - logiciel-montage-photo) Mozilla Firefox 56.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 56.0 (x86 fr)) (Version: 56.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 54.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Music Maker (HKLM\...\{D5FF45D3-3AE3-4490-85DE-04D059606382}) (Version: 25.0.2.44 - MAGIX Software GmbH) Hidden Music Maker (HKLM-x32\...\MX.{D5FF45D3-3AE3-4490-85DE-04D059606382}) (Version: 25.0.2.44 - MAGIX Software GmbH) MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels) NahimicSettingsConfigurator (HKLM\...\{B1FF19B8-BC5F-49AC-B679-0A5DA36E8A43}) (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden NVIDIA GeForce Experience 3.12.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.12.0.84 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.01 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation) NVIDIA Pilote graphique 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.01 - NVIDIA Corporation) osu! (HKLM-x32\...\{0ef87eaf-d98d-4c03-84fa-1eb801fa39c0}) (Version: latest - ppy Pty Ltd) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment) Package de pilotes Windows - ASUS (AsusSGDrv) Mouse (06/18/2015 8.0.0.16) (HKLM\...\545B999BD5E2E239335F95C2AF9BED5D511CEC95) (Version: 06/18/2015 8.0.0.16 - ASUS) Package de pilotes Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\142118DF51345EA02D2B1583E102C8FB95FD6D52) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet) paint.net (HKLM\...\{A1D05314-DC32-4668-A97E-51060EC8BCCE}) (Version: 4.0.12 - dotPDN LLC) Panneau de configuration NVIDIA 391.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.01 - NVIDIA Corporation) Hidden PhotoFiltre 7 (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\PhotoFiltre 7) (Version: - ) ProductDaemonSetup (HKLM\...\{0F5183BD-29DA-48CC-93DB-3924DA7EA212}) (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.) Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.10.6 - Razer Inc.) Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1104 - Razer Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7647 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.) ROG Gaming Center (HKLM-x32\...\{CC182DBF-FC67-4F79-9930-6A2682E60BDD}) (Version: 1.0.1 - ASUS) ROG MacroKey (HKLM-x32\...\{1101D2B9-7E8C-4361-88D5-AB0A2EB705EC}) (Version: 1.0.4 - ASUS) Secunia PSI (3.0.0.11005) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.11005 - Secunia) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.) SonicRadarSetup (HKLM\...\{490C61FF-D5A6-4335-A51E-0FC7DC65F591}) (Version: 1.0.0.0 - ASUSTeKcomputer.Inc) Hidden SonicStudioSetup (HKLM\...\{34BCBD15-E877-4277-A4E1-A8C1E2DE0FE2}) (Version: 2.0.701 - ASUSTeKcomputer.Inc) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH) The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 2.6.3.0 - Zenimax Online Studios) The Ultimatest Battle (HKLM-x32\...\TheUltimatestBattle) (Version: - ) Thunderbolt(TM) Software (HKLM-x32\...\{E265C71F-14DA-462C-A06A-CBA776B695F1}) (Version: 15.2.32.250 - Intel Corporation) TI Connect™ CE (HKLM-x32\...\{30258E3F-5B74-4450-8188-3221682375F4}) (Version: 5.2.0.51 - Texas Instruments Inc.) Toon Boom Harmony 14.0 Premium (HKLM-x32\...\{4F638DCC-7080-43DF-BF56-3089A743EAF1}) (Version: 14.0.0 - Toon Boom Animation) TVPaint Animation 10 Pro (HKLM-x32\...\TVPaint Animation 10 Pro1.0) (Version: 1.0 - TVPaint Animation 10 Pro) TVPaint Animation 11.0 Edition Professionnelle (64bits) (DEMO) (remove only) (HKLM\...\TVP Animation 11 Pro DEMO) (Version: 11.0.6 - TVPaint Développement) TVPaint Animation 11.0 Edition Standard (32bits) (remove only) (HKLM-x32\...\TVP Animation 11) (Version: 11.0.8 - TVPaint Développement) UninstallTabletDeviceDriver (HKLM\...\{39089688-F09E-4DAD-8C80-647D3DF68630}_is1) (Version: v13.14.13.170626 - ) Update for Skype for Business 2015 (KB4011678) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8E63F16F-BC60-413E-8ABA-DAD375D2C356}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4011678) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{8E63F16F-BC60-413E-8ABA-DAD375D2C356}) (Version: - Microsoft) Update for Skype for Business 2015 (KB4011678) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUS_{8E63F16F-BC60-413E-8ABA-DAD375D2C356}) (Version: - Microsoft) Vectorian Giotto 3.0.0 (HKLM-x32\...\Vectorian Giotto_is1) (Version: - Vectorian Inc.) VEGAS Pro 14.0 (64-bit) (HKLM\...\{8C17D521-4FB0-11E7-A6E0-A9EF5249FCEF}) (Version: 14.0.270 - VEGAS) Vita Concert Grand LE (HKLM\...\{BFA88ABE-D175-42C7-B374-92A2D9333CAB}) (Version: 2.4.0.95 - MAGIX Software GmbH) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Wakfu (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama) Wakfu Beta (HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\39FD069E-CF2A-4D9F-B8F9-9784B01E03E7-2) (Version: - Ankama) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.2.524 - ASUS Cloud Corporation) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Wondershare Filmora(Build 8.5.2) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) WPS Office for ASUS (HKLM-x32\...\Kingsoft Office) (Version: 9.1.0.4947 - Kingsoft Corp.) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2859240256-1174380967-1921194399-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-C443E6E09917}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2859240256-1174380967-1921194399-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] () ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov) ContextMenuHandlers1-x32: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] () ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google) ContextMenuHandlers1-x32: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov) ContextMenuHandlers4-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google) ContextMenuHandlers4-x32: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll [2016-10-31] () ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-02-23] (NVIDIA Corporation) ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2016-05-10] (Igor Pavlov) ContextMenuHandlers6-x32: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll [2017-08-14] () ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal) ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {080FB631-6881-47C0-8DAD-6863CAC9AEB3} - System32\Tasks\SS2svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2svc32.exe [2015-08-14] () Task: {0F71139B-44DA-4814-95B3-36544058B19C} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2015-05-29] () Task: {0F7B666A-2A19-4C2F-B0F3-27418544C0FF} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-02] (Realtek Semiconductor) Task: {122BC283-6CEB-463F-88CC-C3591ADA6EF2} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {150929A1-36DA-478D-AEB3-9766C72C7631} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation) Task: {16C0F2CB-05FF-42DC-B079-DCDC8E771142} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {1835108F-A8AF-4DFC-AAE9-8F1F047F755E} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation) Task: {19593260-C9B8-432D-8285-95EEF55C7CC0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-01-10] (NVIDIA Corporation) Task: {2B87FDF9-B9DF-4CD4-9DF1-50FBE78A69CE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2015-05-14] (ASUSTek Computer Inc.) Task: {2C1D3395-13F5-4B7B-BB16-7EE4D9B1B0C5} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {37B54BC5-F97B-4377-9D35-6B203D2DE1A1} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-eliott.nemejanski@gmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05] (Adobe Systems, Incorporated) Task: {3E181B7B-2622-4338-ADE7-CDB6CB2E26EE} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-01-10] (NVIDIA Corporation) Task: {43D4EC5D-48D8-4769-B8CB-5C26653BFEDF} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {44644318-24B7-4943-BC87-783AB22C00AD} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe Task: {47B485D9-1AC5-4DE9-BEE0-A56921B2021A} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe [2015-08-18] (Zhuhai Kingsoft Office Software Co.,Ltd) Task: {48F32AAC-624F-4CA3-B408-A42B8CFCA319} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-10-12] (Apple Inc.) Task: {49956748-A9F7-43C1-AB93-5C59408EE6AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-14] (Google Inc.) Task: {49BC84FB-5CDD-41EA-A8C2-2B9037213F73} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [2010-05-21] () Task: {527A8793-E957-43BE-ADCE-26919F640C6F} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-01-10] (NVIDIA Corporation) Task: {53152108-47F7-49C6-B167-06F799C9A5BC} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe Task: {56180945-B792-4410-9323-3F8AE9CA12D9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {57DF98CE-C6B2-4E79-B691-427BFE10C043} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {62DCEF92-0865-44D4-9DBA-6F1DFDE8F732} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2015-11-02] (Realtek Semiconductor) Task: {68E566A3-82EE-48F4-A409-8765BDC66188} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {6FD894C0-9C2A-4091-BA53-E2E7D1E2B3F8} - System32\Tasks\ROG Gaming Center => C:\Program Files (x86)\ASUS\ROG Gaming Center\ROGGamingKey.exe [2015-08-13] (ASUSTek Computer Inc.) Task: {734D5EAC-BA9B-4BF6-976D-5532D63142A8} - System32\Tasks\SS2UILauncherRun => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\SS2UILauncher.exe [2015-08-14] () Task: {7901F916-04E5-487C-8028-1EADCE44253E} - System32\Tasks\{8E05034C-26D0-4D32-A79F-20B35E4E47D5} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\Hi-Rez Studios\HiRezGamesDiagAndSupport.exe" -c uninstall=all Task: {7DD907E2-B8CD-40F3-A6CE-FE8C26D1B31B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {801FF32F-210D-4D9A-9C83-6D5ACB4FE66D} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_28_0_0_161_pepper.exe [2018-02-11] (Adobe Systems Incorporated) Task: {8146CF05-CA9B-4CBB-8EAE-9A63B37BF009} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe Task: {8DED68A5-9495-4D6F-8859-AB1DF2C48D90} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\SplitmediaLabs\XSplit Gamecaster\XSplit.Gamecaster.exe Task: {938FBDC9-6556-49F6-9184-963A9BA36D6A} - System32\Tasks\ASUS ROG Macro Key Listener => C:\Program Files (x86)\ASUS\ROG MacroKey\AsListen.exe [2015-10-19] (ASUS) Task: {99129A75-C656-4527-AF78-30A04A6B2B90} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.) Task: {9BC62032-0866-432D-B569-97AFCD35AFF3} - System32\Tasks\SS2svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\SS2\UserInterface\x64\SS2svc64.exe [2015-08-14] () Task: {A4EFED10-707C-4A3D-9D4F-43D9B8796B1D} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService Task: {A5FB50F9-E998-4744-A13B-4F14D1923DA1} - System32\Tasks\{16198FD0-3E56-247C-18D2-0C0030561743} => C:\Users\eliot\AppData\Local\Gogas\synctask.exe <==== ATTENTION Task: {AA15355D-A13E-4908-964F-61DF7D623307} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-14] (Google Inc.) Task: {AA8C920E-E386-4E08-B707-B352D3B78003} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-01-10] (NVIDIA Corporation) Task: {B18CBB95-87FD-4E85-BD9F-DA617694569D} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-01-10] (NVIDIA Corporation) Task: {B6A1A5E4-6BB6-4D80-8C42-5943679E11A8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {B7DE2835-BE62-4C7F-A627-7AE82C41A00A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {BBA728DD-1285-4425-A5E6-DBA67D7859B0} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [2017-05-10] (MAGIX Software GmbH) Task: {C61A1E4C-BBF5-4AD7-9CA0-CFB3B0940E1B} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-01-10] (NVIDIA Corporation) Task: {C85AB085-2B2E-418D-A80A-1060C1A389C1} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-05-21] () Task: {CBD01867-E0D4-422A-850F-1C505EAF55ED} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe Task: {CF9B3988-BC60-4798-9055-B72E2403491D} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2016-08-01] () Task: {CFC285D3-648F-4C0F-9F41-3184530EC906} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-11] (Adobe Systems Incorporated) Task: {DB608E23-91DA-4DDC-9C5F-166CC0735BDD} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-eliott.nemejanski@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated) Task: {EC03852F-78A6-499C-AFBD-29E974E22894} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-03-10] (ASUSTek Computer Inc.) Task: {EFFCC3E4-3D56-4F80-B198-F5C6C46A49E1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {F3A1EC45-DC6F-4379-B6A1-336D50BB5F0C} - System32\Tasks\{3F83ABFB-7F48-454F-A28D-9624A72F1043} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}\setup.exe" -c -runfromtemp -l0x0409 -removeonly Task: {F5D88390-E80C-4A5E-B316-558C7E35A38E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2015-08-25] (ASUS) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsnotify.exe Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.4947\wtoolex\wpsupdate.exe Task: C:\WINDOWS\Tasks\{16198FD0-3E56-247C-18D2-0C0030561743}.job => C:\Users\eliot\AppData\Local\Gogas\synctask.exe <==== ATTENTION ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\eliot\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7634a48803fa655b\ASUS GIFTBOX.lnk -> C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe (ASUSTek Computer Inc) -> --user-data-dir="C:\Users\eliot\AppData\Local\ASUS GIFTBOX\User Data" --profile-directory=Default --app-id=gicdkbgeaegfghgkdgaejkfeppmlobel ==================== Modules chargés (Avec liste blanche) ============== 2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-02-26 15:41 - 2018-02-24 05:36 - 000543248 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll 2017-07-10 13:21 - 2018-02-23 20:22 - 000133464 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-02-26 15:27 - 2018-01-10 15:05 - 001269096 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-01-05 00:14 - 2018-01-05 00:14 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2018-01-05 00:13 - 2018-01-05 00:13 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-09-25 00:20 - 2016-09-25 00:21 - 000189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe 2016-10-31 20:45 - 2016-10-31 20:45 - 000592384 _____ () C:\Users\eliot\AppData\Local\MEGAsync\ShellExtX64.dll 2017-08-14 02:48 - 2017-08-14 02:48 - 000491600 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\CoreSyncExtension\CoreSync_x64.dll 2018-02-14 14:02 - 2018-02-10 05:39 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2018-02-14 14:02 - 2018-02-10 05:36 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-03-01 14:47 - 2018-03-01 14:49 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-03-01 14:47 - 2018-03-01 14:49 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-03-01 14:47 - 2018-03-01 14:49 - 021824000 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-03-01 14:47 - 2018-03-01 14:49 - 002529792 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\skypert.dll 2018-03-01 14:47 - 2018-03-01 14:49 - 000649216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1807.264.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2017-08-14 02:48 - 2017-08-14 02:48 - 034865232 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe 2018-02-28 01:45 - 2018-02-22 04:57 - 004433752 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\libglesv2.dll 2018-02-28 01:45 - 2018-02-22 04:57 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\libegl.dll 2018-02-02 20:00 - 2018-02-02 20:02 - 002250240 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11801.1001.6.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-02-22 18:29 - 2018-02-22 18:30 - 027139072 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.16211.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-02-22 18:29 - 2018-02-22 18:30 - 000306176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.16211.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-02-22 18:29 - 2018-02-22 18:30 - 006687744 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.16211.0_x64__8wekyb3d8bbwe\EntCommon.dll 2017-09-26 06:22 - 2017-09-26 06:22 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17122.16211.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-03-02 10:56 - 2018-03-02 10:57 - 000015872 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1711.10477.0_x64__8wekyb3d8bbwe\Maps.exe 2018-03-02 10:56 - 2018-03-02 10:57 - 016588800 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1711.10477.0_x64__8wekyb3d8bbwe\Maps.dll 2016-05-14 15:56 - 2016-05-14 15:56 - 000258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsMaps_5.1711.10477.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 000027648 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 000124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2018-02-26 15:27 - 2018-01-10 15:05 - 001042280 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-12-25 14:26 - 2017-11-29 06:09 - 000781088 _____ () D:\Steam\SDL2.dll 2017-12-25 14:26 - 2017-12-15 20:59 - 002558752 _____ () D:\Steam\video.dll 2017-10-22 15:23 - 2016-09-01 02:02 - 004969248 _____ () D:\Steam\v8.dll 2017-12-25 14:26 - 2017-11-04 02:54 - 000695584 _____ () D:\Steam\libavformat-57.dll 2017-12-25 14:26 - 2017-11-04 02:54 - 000351520 _____ () D:\Steam\libavresample-3.dll 2017-12-25 14:26 - 2017-11-04 02:54 - 000847136 _____ () D:\Steam\libavutil-55.dll 2017-12-25 14:26 - 2017-11-04 02:54 - 000783648 _____ () D:\Steam\libswscale-4.dll 2017-12-25 14:26 - 2017-11-04 02:54 - 005137696 _____ () D:\Steam\libavcodec-57.dll 2017-10-22 15:23 - 2016-09-01 02:02 - 001195296 _____ () D:\Steam\icuuc.dll 2017-10-22 15:23 - 2016-09-01 02:02 - 001563936 _____ () D:\Steam\icui18n.dll 2017-12-25 14:26 - 2017-12-15 20:59 - 000904992 _____ () D:\Steam\bin\chromehtml.DLL 2017-10-22 15:23 - 2016-07-04 23:17 - 000266560 _____ () D:\Steam\openvr_api.dll 2018-01-09 08:34 - 2018-01-08 17:52 - 001891832 _____ () C:\Users\eliot\AppData\Local\Discord\app-0.0.300\ffmpeg.dll 2018-01-11 20:21 - 2018-02-11 23:17 - 001780216 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_overlay2\discord_overlay2.node 2018-01-09 08:34 - 2018-01-08 17:52 - 001937912 _____ () C:\Users\eliot\AppData\Local\Discord\app-0.0.300\libglesv2.dll 2018-01-09 08:34 - 2018-01-08 17:52 - 000095736 _____ () C:\Users\eliot\AppData\Local\Discord\app-0.0.300\libegl.dll 2018-01-11 20:21 - 2018-01-28 00:41 - 009817080 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_voice\discord_voice.node 2018-01-11 20:21 - 2018-02-08 07:59 - 001508344 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_utils\discord_utils.node 2018-01-11 20:21 - 2018-01-11 20:21 - 000513016 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_erlpack\discord_erlpack.node 2018-01-11 20:21 - 2018-01-11 20:21 - 002662904 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_rpc\discord_rpc.node 2018-01-11 20:21 - 2018-02-08 07:59 - 001518072 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_game_utils\discord_game_utils.node 2018-02-19 13:40 - 2018-02-19 13:40 - 001910264 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node 2018-02-19 13:40 - 2018-02-19 13:40 - 000422392 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node 2018-02-19 13:40 - 2018-02-19 13:40 - 000145400 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node 2018-01-11 20:21 - 2018-01-11 20:21 - 002749944 _____ () \\?\C:\Users\eliot\AppData\Roaming\discord\0.0.300\modules\discord_contact_import\discord_contact_import.node 2017-09-26 21:22 - 2017-09-26 21:22 - 001984000 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll 2017-07-13 08:50 - 2017-07-13 08:50 - 067115616 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll 2017-10-22 15:23 - 2017-09-07 03:04 - 000678400 _____ () D:\Steam\bin\cef\cef.win7\SDL2.dll 2017-12-25 14:26 - 2017-10-31 05:44 - 071471904 _____ () D:\Steam\bin\cef\cef.win7\libcef.dll 2017-10-22 15:23 - 2015-09-25 00:52 - 000119208 _____ () D:\Steam\winh264.dll 2017-06-22 17:56 - 2017-06-22 17:56 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node 2017-06-22 17:56 - 2017-06-22 17:56 - 000214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node 2017-06-22 17:55 - 2017-06-22 17:55 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node 2017-06-22 17:56 - 2017-06-22 17:56 - 000125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node 2017-07-13 09:12 - 2017-07-13 09:12 - 000099424 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll 2017-06-22 17:56 - 2017-06-22 17:56 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node 2015-09-19 00:34 - 2015-09-19 00:34 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2013-04-27 09:24 - 2013-04-27 09:24 - 000071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll 2018-03-02 11:52 - 2018-03-02 11:52 - 000540336 _____ () C:\Program Files (x86)\Battle.net\Battle.net.9877\ortp.dll 2018-03-02 11:51 - 2018-03-02 11:52 - 067966440 _____ () C:\Program Files (x86)\Battle.net\Battle.net.9877\libcef.dll 2018-03-02 11:52 - 2018-03-02 11:52 - 000133632 _____ () C:\Program Files (x86)\Battle.net\Battle.net.9877\libEGL.dll 2018-03-02 11:52 - 2018-03-02 11:52 - 003384832 _____ () C:\Program Files (x86)\Battle.net\Battle.net.9877\libGLESv2.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\eliot\AppData\Local\Temp:$DATA​ [16] AlternateDataStreams: C:\Users\Public\AppData:CSM [478] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\...\amazon.fr -> hxxps://amazon.fr ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-10 12:04 - 2018-02-28 01:16 - 000001134 _____ C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.1 mssplus.mcafee.com# 127.0.0.1 activation.cloud.techsmith.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2859240256-1174380967-1921194399-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\eliot\Desktop\soul_eater_evans-wallpaper-1920x1200.jpg DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\StartupFolder: => "Toon Boom Connection Réseau.lnk" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "SS2UILauncher" HKLM\...\StartupApproved\Run32: => "Razer Synapse" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{DA10A301-CE64-41A8-BF0A-886E7D57D4D1}] => (Allow) C:\Program Files (x86)\MAGIX\Music Maker\25\MusicMaker.exe FirewallRules: [{6AE5F825-5857-4D94-8E8A-7559483798D2}] => (Allow) D:\Steam\steamapps\common\VRChat\VRChat.exe FirewallRules: [{9C71C403-6937-40ED-971A-3D3A79F70368}] => (Allow) D:\Steam\steamapps\common\VRChat\VRChat.exe FirewallRules: [UDP Query User{24ED02D7-3C43-4C66-A205-2CD5A53E883A}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe FirewallRules: [TCP Query User{302315B7-2AE5-4BF5-9ADD-CF772F494124}C:\program files (x86)\battle.net\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.exe FirewallRules: [UDP Query User{E2009EFA-D63A-40A1-AAF2-36B51D44D1F0}C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe FirewallRules: [TCP Query User{8A61B8EE-7B9C-46B9-8FD7-CBB90F9F7F37}C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.9526\battle.net.exe FirewallRules: [UDP Query User{95912F73-B8EA-4E06-A1D9-C06C97BFE3D5}D:\destiny 2\destiny 2\destiny2.exe] => (Allow) D:\destiny 2\destiny 2\destiny2.exe FirewallRules: [TCP Query User{575FD0CD-59D6-4CEA-82B2-88C393B3FCDD}D:\destiny 2\destiny 2\destiny2.exe] => (Allow) D:\destiny 2\destiny 2\destiny2.exe FirewallRules: [UDP Query User{EF82B5B2-575D-4103-81D3-9CCFDA58C4E3}D:\destiny 2\destiny 2\destiny2.exe] => (Allow) D:\destiny 2\destiny 2\destiny2.exe FirewallRules: [TCP Query User{B9DDB3C8-C6B0-4336-ADF7-848BCB967F31}D:\destiny 2\destiny 2\destiny2.exe] => (Allow) D:\destiny 2\destiny 2\destiny2.exe FirewallRules: [UDP Query User{DEF3F378-8C95-4F45-AA6D-A0B20D8CEC65}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{C9F95923-A1AC-4C68-9780-E2DAD91DF1F5}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [{767022E0-B304-4C65-B74A-733E5AECF451}] => (Allow) C:\Users\eliot\Desktop\steamapps\common\UB\UB.exe FirewallRules: [{B2C6F48D-08B8-4BD0-B8ED-1D1825282150}] => (Allow) C:\Users\eliot\Desktop\steamapps\common\UB\UB.exe FirewallRules: [{D68B6D17-313D-4819-ACE4-E8B7E25AAD82}] => (Allow) C:\Users\eliot\Desktop\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{68DDAE4D-1038-4785-A6BB-6D7188063D6E}] => (Allow) C:\Users\eliot\Desktop\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{DDB45AB7-81FA-4BBE-BAF6-75A40D8F7801}] => (Allow) C:\Users\eliot\Desktop\Steam.exe FirewallRules: [{C143EEEF-0E07-4B84-8487-CBF0C3E0793C}] => (Allow) C:\Users\eliot\Desktop\Steam.exe FirewallRules: [{6E1E2CF6-88DD-44F7-9E61-476C5E57A4CB}] => (Allow) D:\Steam\steamapps\common\UB\UB.exe FirewallRules: [{C35933C7-74C8-4558-9AE0-F244548ADF20}] => (Allow) D:\Steam\steamapps\common\UB\UB.exe FirewallRules: [UDP Query User{4FD4A305-A4D5-49B3-BC94-973500993634}C:\users\eliot\appdata\local\temp\rar$exa0.906\tricky.towers.v06.12.2016\trickytowers.exe] => (Allow) C:\users\eliot\appdata\local\temp\rar$exa0.906\tricky.towers.v06.12.2016\trickytowers.exe FirewallRules: [TCP Query User{AE71210D-B6FA-4303-A860-06EB858DCA9C}C:\users\eliot\appdata\local\temp\rar$exa0.906\tricky.towers.v06.12.2016\trickytowers.exe] => (Allow) C:\users\eliot\appdata\local\temp\rar$exa0.906\tricky.towers.v06.12.2016\trickytowers.exe FirewallRules: [{B3760D9E-44D9-40A4-A562-D1FCA01F0C3B}] => (Allow) D:\Steam\steamapps\common\Gigantic\ArcSteamHelper.exe FirewallRules: [{35D24627-CA17-4A9D-9E2F-88E66D55DDE9}] => (Allow) D:\Steam\steamapps\common\Gigantic\ArcSteamHelper.exe FirewallRules: [UDP Query User{7F04F226-BCFE-436C-8922-4E521D2F912E}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe FirewallRules: [TCP Query User{CE601F10-C306-4317-9427-32C1AF9A9328}C:\program files (x86)\destiny 2\destiny2.exe] => (Allow) C:\program files (x86)\destiny 2\destiny2.exe FirewallRules: [UDP Query User{87484D9F-7D8A-4D6C-B6E9-8AE588337CB1}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{BB2EEA11-F29D-4AC3-81BB-1F3F3D07D1D5}D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [{64CE6192-849F-4557-902C-3E6D75368D45}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{AA0A0E0F-D5AA-41EF-B6CA-56D8FB402A0C}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{DE7BFF61-BC86-4173-810F-4BC76F469CE1}] => (Allow) D:\Steam\Steam.exe FirewallRules: [{7255365C-C3A3-4D9E-8D36-5C6762CE41E6}] => (Allow) D:\Steam\Steam.exe FirewallRules: [UDP Query User{33F20FA2-F2A4-4999-B05C-7664F3522697}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{3B88F4A9-4083-44C3-A41B-EB42AB3881D2}C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [{7C10EA89-149B-4EDC-9875-90FFA14C37DA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{D27EDC22-0E5C-4D65-B85B-29D83756B159}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{2A80B19A-EAE4-4612-B071-80C5AEA57BC1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{C315CA3D-F40A-4876-9B7F-DB0912045B95}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{CFE2CF1D-D0AF-4966-8F53-FB4B5A20D8BA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{AEADF8A7-190B-4F48-8C8E-E0A14F75C799}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{E5B74418-8A6B-444F-B945-B018BC3973D4}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{96A96459-3761-4B0B-8413-D14E4E587A66}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [UDP Query User{52A29027-F575-4324-96C8-EB64C2E3846B}C:\program files (x86)\toon boom animation\toon boom harmony 14.0 premium\win64\bin\harmonypremium.exe] => (Allow) C:\program files (x86)\toon boom animation\toon boom harmony 14.0 premium\win64\bin\harmonypremium.exe FirewallRules: [TCP Query User{67D6374B-BB60-47AD-A798-0CDCA27C0F3A}C:\program files (x86)\toon boom animation\toon boom harmony 14.0 premium\win64\bin\harmonypremium.exe] => (Allow) C:\program files (x86)\toon boom animation\toon boom harmony 14.0 premium\win64\bin\harmonypremium.exe FirewallRules: [UDP Query User{1B4D8EBE-4A8D-44E4-88D9-A318EA7DE463}C:\program files (x86)\steam\steamapps\common\battlecrew space pirates\wal\binaries\win64\wal.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\battlecrew space pirates\wal\binaries\win64\wal.exe FirewallRules: [TCP Query User{37669760-9A62-442D-8741-EA7AD09D17A1}C:\program files (x86)\steam\steamapps\common\battlecrew space pirates\wal\binaries\win64\wal.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\battlecrew space pirates\wal\binaries\win64\wal.exe FirewallRules: [{1F47721B-B3B3-4871-AFA8-F871B5B4DB31}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{2CF198BC-69E8-439D-90B7-372B68F60642}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{EFD18211-C46C-4F95-9C94-59F6858668B1}C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe FirewallRules: [TCP Query User{4C45201C-5134-4CEC-9CC7-2CA0AAAAFDD7}C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe FirewallRules: [UDP Query User{427BC774-9970-44B1-AB9A-646490528825}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe FirewallRules: [TCP Query User{ACE7057C-3041-4525-B3CF-0362ABE6C8B2}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe FirewallRules: [{86C795C6-3179-475F-8723-174D8F3B3533}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{074E50B5-C622-4A30-A3CD-781B664A3B83}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [UDP Query User{9FAD31C5-0BE9-4AD0-9C84-8BB31542F317}C:\program files (x86)\battle.net\battle.net.9093\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.9093\battle.net.exe FirewallRules: [TCP Query User{C9928E41-258A-4A74-BBE8-CC279F7AB728}C:\program files (x86)\battle.net\battle.net.9093\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.9093\battle.net.exe FirewallRules: [UDP Query User{CE08FBCC-26BC-40D3-91A1-63A0AF7D0BA0}C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe FirewallRules: [TCP Query User{3F1EF321-766A-4732-BF60-093F52E1F763}C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\gigantic\binaries\win64\rxgame-win64-shipping.exe FirewallRules: [UDP Query User{E135E614-729D-48D3-9C0D-55C1292199D4}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe FirewallRules: [TCP Query User{BC18A707-31E9-4EAE-A4B4-1E1CFFB1B064}C:\program files (x86)\arc\arcchat.exe] => (Allow) C:\program files (x86)\arc\arcchat.exe FirewallRules: [{AEACB584-772B-4557-853B-AA24D05D357B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gigantic\ArcSteamHelper.exe FirewallRules: [{9D4BA611-BE75-4E23-A901-4853383072E7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Gigantic\ArcSteamHelper.exe FirewallRules: [{D240A5DA-8B97-40ED-A438-E08D9102B99B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{9A85FB23-4231-4E74-9847-C6B44EEE8C46}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{3E5D7148-AC2E-40BB-B563-36955ACCFB0E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{C45169EB-57DE-43FE-B1BD-B3B3092A54AF}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{0AE4DF4B-C60B-4FD0-B386-CF40CB0492AE}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{9E47EC3B-C97F-416C-8542-D7804D127419}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{908E4FD6-AE42-4BC8-AF6A-B7E0A4BBEC9C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{3E3B6325-C5BC-462F-BA7D-269F4310E82A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{FDE92FB9-1D71-49D8-8714-1A26A38A7491}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [TCP Query User{AB14B4B8-E2E3-465A-BD7D-236ECB9C6F5C}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{4C00341F-D153-4221-9D67-D486115C75B3}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{8425BF3B-E154-462E-B870-5EC17158BF67}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [UDP Query User{45B876DD-49F3-46CD-9B1F-E7376D80C61A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{B4521CC8-E240-4C5F-BB16-654DF2A64E04}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{E4F069B7-0E04-412E-8F17-0B5C672322B5}] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [TCP Query User{3894D249-EF67-4ED9-87C6-EE05A1FED5AB}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [UDP Query User{10D7F8C8-FBB7-4CC4-A3C1-2E194D5BF606}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{BAF4FA09-7771-4E82-90D1-93A9A9D8E32A}] => (Block) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{05058E49-CCAB-4572-97F3-987C10D8BFEC}] => (Block) C:\program files (x86)\overwatch\overwatch.exe FirewallRules: [{160F6AF0-BB5D-4F32-8D07-3BDB2E933247}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{E1F219D7-29FA-4453-BC19-0243DCBCF0A1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{43384D60-D855-471A-848B-649AD22872BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{DA1A3950-0C10-4B7A-A8A8-1873E2B25C2A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{7C020E7B-C300-4AF9-8BAB-3EDACC24BBB3}C:\program files\tvpaint developpement\tvpaint animation 11 pro (64bits) (demo)\tvpaint animation 11 pro (64bits) (demo).exe] => (Allow) C:\program files\tvpaint developpement\tvpaint animation 11 pro (64bits) (demo)\tvpaint animation 11 pro (64bits) (demo).exe FirewallRules: [UDP Query User{0EC3923A-50A5-44A3-9CF7-EE844F29392D}C:\program files\tvpaint developpement\tvpaint animation 11 pro (64bits) (demo)\tvpaint animation 11 pro (64bits) (demo).exe] => (Allow) C:\program files\tvpaint developpement\tvpaint animation 11 pro (64bits) (demo)\tvpaint animation 11 pro (64bits) (demo).exe FirewallRules: [TCP Query User{EE3C833D-5722-447C-A95F-0BC3F358AAEA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{13760536-3879-42A6-A742-0BDA8994B753}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{3704F07C-0312-4A8F-AEE9-275B45336931}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{D7D06100-E924-4C04-9167-7381A1E62344}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{00A131FC-0E4F-4820-833E-F2AB6EE30F06}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{F80D17F1-E8B9-4ADF-B53B-A47539A581FB}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{39A2A627-5FFA-4784-9133-613A9AEA541A}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [UDP Query User{4C78F484-F98B-41B8-9688-504B5F2EB2ED}C:\program files\logitech gaming software\lcore.exe] => (Block) C:\program files\logitech gaming software\lcore.exe FirewallRules: [{35F775CE-59C9-4C66-92CA-08650A19F78F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{C6F291A7-0EC1-4789-815E-FBA515140AF0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [TCP Query User{0A3DC3A9-8F0F-4A26-A928-CE35AB8E8041}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{A05C0D65-12A7-478A-AAF0-96F7A77FC225}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{94235C5B-A7C0-4982-9E3F-E57F0C07350C}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe FirewallRules: [UDP Query User{A57DF1E7-876B-46FC-B7C1-3A4343FFDA2B}C:\program files (x86)\overwatch test\overwatch.exe] => (Allow) C:\program files (x86)\overwatch test\overwatch.exe FirewallRules: [TCP Query User{83DDBEA0-4BF8-4871-ABE2-C0717046B44B}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{3C2C0482-07D4-40D1-9A19-55732ED688F4}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{E45C0EC2-8163-4999-875D-A623BD89CFED}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{A2CFE1BA-AE44-4116-B3C3-0075F7A1A2A1}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{8249086E-ADDA-4AFE-A55F-A81F9DEC91F6}] => (Allow) D:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe FirewallRules: [{8B8FB898-6E40-4846-9DAB-8E36D7881B07}] => (Allow) D:\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe FirewallRules: [{A90B3109-A7E6-42D9-B0B4-160A52A4514A}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{34CA8E64-9B74-4221-93B2-DE128B9B981D}] => (Allow) D:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [TCP Query User{F776D43D-1918-43AB-BE8B-D3C32BAE5B8D}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{160C90AE-B5EB-4D6C-9785-25EA95D46F43}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{D3554D80-F9B3-490A-B85D-55499BF43A0F}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{01595F01-5597-4AD3-9938-BF58B55A19C6}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [{ED50D1D9-61AA-4F24-9F2F-6E53ED523965}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{F245D7AF-FC87-4C44-BD8F-C4F73D8BE3B1}] => (Allow) D:\Steam\steamapps\common\Doki Doki Literature Club\DDLC.exe FirewallRules: [{A46A6924-EC78-4E9A-832A-31D681E2BE07}] => (Allow) D:\Steam\steamapps\common\Doki Doki Literature Club\DDLC.exe FirewallRules: [{B94B8FF8-662A-4CB5-9F0C-A5292060F66C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{AB94C8CA-330A-4961-BA2E-0790D77F2A02}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{6C0E00AB-1372-43D1-9885-6DA1668AD40C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{594B16A7-ADCD-4321-9309-094C9369FD3A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{20B6E67F-AAE3-4CC7-9CB5-E38FFE5343CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{45D5A60C-840D-4DBE-A262-D48C4CD1791C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{97720603-A4E4-47FA-B130-F7742D078C62}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 26-02-2018 15:55:55 Removed Avira Safe Shopping 28-02-2018 14:46:45 Installed ArtRage 5 Demo ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: ASUS Touchpad Description: ASUS Touchpad Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: ASUS Service: mouhid Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/02/2018 08:38:25 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (03/02/2018 08:32:14 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (03/02/2018 08:31:58 AM) (Source: Perflib) (EventID: 1023) (User: ) Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows. Error: (03/02/2018 08:31:58 AM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état. Error: (03/02/2018 08:31:58 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « MSDTC » dans la DLL « C:\WINDOWS\system32\msdtcuiu.DLL ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (03/02/2018 08:31:58 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (03/02/2018 08:31:58 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (03/02/2018 08:31:58 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Erreurs système: ============= Error: (03/02/2018 09:07:59 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:59:03 AM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-1T139MI) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-1T139MI\eliot de l’utilisateur (S-1-5-21-2859240256-1174380967-1921194399-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:46:42 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:40:25 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:38:24 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:32:03 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:31:42 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/02/2018 08:31:42 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2018-02-26 17:20:46.929 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Sprisky.Y!cl&threatid=2147719840&enterprise=0 Nom : Trojan:Win32/Sprisky.Y!cl ID : 2147719840 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\eliot\Downloads\Non confirmé 780113.crdownload Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-1T139MI\eliot Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Version de la signature : AV: 1.261.1633.0, AS: 1.261.1633.0, NIS: 118.2.0.0 Version du moteur : AM: 1.1.14500.5, NIS: 2.1.14202.0 Date: 2018-02-26 17:20:27.240 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Sprisky.Y!cl&threatid=2147719840&enterprise=0 Nom : Trojan:Win32/Sprisky.Y!cl ID : 2147719840 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\eliot\Downloads\Non confirmé 446549.crdownload Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-1T139MI\eliot Nom du processus : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe Version de la signature : AV: 1.261.1633.0, AS: 1.261.1633.0, NIS: 118.2.0.0 Version du moteur : AM: 1.1.14500.5, NIS: 2.1.14202.0 Date: 2018-02-26 17:19:59.711 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Sprisky.Y!cl&threatid=2147719840&enterprise=0 Nom : Trojan:Win32/Sprisky.Y!cl ID : 2147719840 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\eliot\AppData\Local\Temp\5F3E.tmp;file:_C:\Users\eliot\Downloads\ZHPDiag3.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-1T139MI\eliot Nom du processus : C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe Version de la signature : AV: 1.261.1633.0, AS: 1.261.1633.0, NIS: 118.2.0.0 Version du moteur : AM: 1.1.14500.5, NIS: 2.1.14202.0 Date: 2018-02-26 17:19:59.704 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Sprisky.Y!cl&threatid=2147719840&enterprise=0 Nom : Trojan:Win32/Sprisky.Y!cl ID : 2147719840 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\eliot\AppData\Local\Temp\5F3E.tmp;file:_C:\Users\eliot\Downloads\ZHPDiag3.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-1T139MI\eliot Nom du processus : C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe Version de la signature : AV: 1.261.1633.0, AS: 1.261.1633.0, NIS: 118.2.0.0 Version du moteur : AM: 1.1.14500.5, NIS: 2.1.14202.0 Date: 2018-02-26 17:19:58.406 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Sprisky.Y!cl&threatid=2147719840&enterprise=0 Nom : Trojan:Win32/Sprisky.Y!cl ID : 2147719840 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\eliot\Downloads\ZHPDiag3.exe;process:_pid:17164,ProcessStart:131641355659702471 Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : C:\Users\eliot\Downloads\ZHPDiag3.exe Version de la signature : AV: 1.261.1633.0, AS: 1.261.1633.0, NIS: 118.2.0.0 Version du moteur : AM: 1.1.14500.5, NIS: 2.1.14202.0 Date: 2018-01-22 18:57:59.614 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.261.104.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.14500.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2018-01-22 18:57:59.614 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 118.2.0.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de signature : Système d’inspection réseau Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 2.1.14202.0 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2018-01-22 18:57:59.607 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.261.104.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.14500.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2018-01-22 18:57:59.607 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.261.104.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de signature : Logiciel anti-espion Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.14500.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2018-01-22 18:57:59.607 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.261.104.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.14500.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu CodeIntegrity: =================================== Date: 2018-03-02 12:45:28.407 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:45:28.406 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:39:35.705 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:39:35.704 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:30:39.739 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:30:39.737 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:30:28.053 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-02 12:30:28.052 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-6700HQ CPU @ 2.60GHz Pourcentage de mémoire utilisée: 47% Mémoire physique - RAM - totale: 16292.09 MB Mémoire physique - RAM - disponible: 8557.91 MB Mémoire virtuelle totale: 28292.09 MB Mémoire virtuelle disponible: 15758.06 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:237.39 GB) (Free:33.43 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:402.46 GB) NTFS \\?\Volume{2600a376-06c9-43b2-8bb7-af3ed3fe3ed2}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 \\?\Volume{40ec187c-ef7e-44c7-8adc-9b591900452c}\ () (Fixed) (Total:0.81 GB) (Free:0.33 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F630B7AE) Partition: GPT. ======================================================== Disk: 1 (Size: 238.5 GB) (Disk ID: 65E03A7C) Partition: GPT. ==================== Fin de Addition.txt ============================