Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14.03.2018 Exécuté par FELIX (21-03-2018 20:24:38) Exécuté depuis D:\Downloads Windows 10 Pro Version 1709 16299.309 (X64) (2017-10-28 05:32:41) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1649382640-37394211-3741768109-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1649382640-37394211-3741768109-503 - Limited - Disabled) FELIX (S-1-5-21-1649382640-37394211-3741768109-1001 - Administrator - Enabled) => C:\Users\FELIX Invité (S-1-5-21-1649382640-37394211-3741768109-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1649382640-37394211-3741768109-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated) Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_0_0) (Version: 15.0.0 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.0.294 - Adobe Systems Incorporated) Adobe Flash Player 29 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 29.0.0.113 - Adobe Systems Incorporated) Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated) Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_0) (Version: 19.0 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{D2FE6376-E549-4F63-A2C5-CA24DA035DE4}) (Version: 5.6 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{BB109E24-EE90-485B-A28B-ADDEFB40540B}) (Version: 5.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{0A596141-97D5-45FA-9281-98DFAF48D579}) (Version: 10.3.2.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.) Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{0E4C791E-B78E-477D-BD5A-CDD0985BA6EC}) (Version: 7.0.20622.1 - Microsoft Corporation) ASUS PCE-AC88 WLAN Card Driver (HKLM-x32\...\{735F545B-DEC1-475F-A8FA-1F39CAB6AF16}) (Version: 2.8.0.5 - ASUS) AURA (HKLM-x32\...\{5899CD4F-8764-4303-A0D9-C60A62CFC24F}) (Version: 1.05.25 - ASUSTeK Computer Inc.) Azure AD Authentication Connected Service (HKLM-x32\...\{8A1AD070-269F-4A15-AAB5-76AB896EF195}) (Version: 14.0.25420 - Microsoft Corporation) Hidden AzureTools.Notifications (HKLM-x32\...\{1E5CA362-39B6-4BD0-B9C0-69CF15F0FEA2}) (Version: 2.7.30611.1601 - Microsoft Corporation) Hidden Blend for Visual Studio SDK for .NET 4.5 (HKLM-x32\...\{37E53780-3944-4A6A-842F-727128E8616E}) (Version: 3.0.40218.0 - Microsoft Corporation) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.) Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.) Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform) Cerberus Gaming Keyboard (HKLM-x32\...\{D16F9C29-6695-4B47-A092-EF69D03832E4}}_is1) (Version: - ) Cheat Engine 6.7 (HKLM-x32\...\Cheat Engine 6.7_is1) (Version: - Cheat Engine) Citra (HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\{546cee35-cd22-4bf4-bbc0-17ce761c15e3}) (Version: 1.0.0 - Citra Team) CodeBlocks (HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\CodeBlocks) (Version: 17.12 - The Code::Blocks Team) CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.A.) DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 391.05 - NVIDIA Corporation) Hidden Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team) Dotfuscator and Analytics Community Edition 5.22.0 (HKLM-x32\...\{60018889-9E0F-43E8-9B89-29E8C828B40A}) (Version: 5.22.0.3788 - PreEmptive Solutions) Hidden Enregistrement utilisateur de Canon MG3500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3500 series) (Version: - ‭Canon Inc.) Epic Games Launcher (HKLM-x32\...\{210AFD22-5ABF-48FD-AB9F-91B36E102CD8}) (Version: 1.1.135.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games) Gtk# for .Net 2.12.26 (HKLM-x32\...\{BC25B808-A11C-4C9F-9C0A-6682E47AAB83}) (Version: 2.12.26 - Xamarin, Inc.) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden hubiC - x64 (HKLM\...\{CE2A3177-F286-4F6A-9694-DE8EED87D583}) (Version: 2.1.1.145 - OVH) Hidden hubiC (HKLM-x32\...\{51fea8cc-5bb6-4312-86f5-1802a10e030d}) (Version: 2.1.1.145 - OVH) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) Ironsight version 1 (HKLM-x32\...\Ironsight_is1) (Version: 1 - Aeria Games) iTunes (HKLM\...\{02F95875-9527-49CC-B32F-970ADAEBD1EF}) (Version: 12.6.2.20 - Apple Inc.) Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Kit de développement logiciel (SDK) Microsoft .NET Framework 4.6.1 (Français) (HKLM-x32\...\{9369E1F2-44C9-4864-843E-159725E660CB}) (Version: 4.6.01055 - Microsoft Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden LOOT version 0.11.0 (HKLM-x32\...\{BF634210-A0D4-443F-A657-0DCE38040374}_is1) (Version: 0.11.0 - LOOT Team) Malwarebytes version 3.4.4.2398 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.4.2398 - Malwarebytes) Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (HKLM-x32\...\{D3517C62-68A5-37CF-92F7-93C029A89681}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (ENU) (HKLM-x32\...\{290FC320-2F5A-329E-8840-C4193BD7A9EE}) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation) Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (ENU) (HKLM-x32\...\{034547E9-D8FA-49E7-8B9C-4C9861FB9146}) (Version: 4.6.00127 - Microsoft Corporation) Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 Targeting Pack (Français) (HKLM-x32\...\{AD054CB0-F527-48AD-832B-E65D46237C88}) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25420 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (HKLM-x32\...\{2774595F-BC2A-4B12-A25B-0C37A37049B0}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{1F9EB3B6-AED7-4AA7-B8F1-8E314B74B2A5}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{020CDFE0-C127-4047-B571-37C82396B662}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server 2014 T-SQL Language Service (HKLM-x32\...\{47D08E7A-92A1-489B-B0BF-415516497BCE}) (Version: 12.0.2000.8 - Microsoft Corporation) Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation) Microsoft Visual Studio Community 2015 with Updates (HKLM-x32\...\{79b486b9-c5f0-4096-a00c-8351f59587c2}) (Version: 14.0.25420.1 - Microsoft Corporation) Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mises à jour NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden Molotov (HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\Molotov) (Version: 1.8.0 - Molotov) MSBuild/NuGet Integration 14.0 (x86) (HKLM-x32\...\{128C1654-3B9E-4959-8BFB-CE6F09C0A01D}) (Version: 14.0.25420 - Microsoft Corporation) Hidden Multi-Device Hybrid Apps using C# - Templates - ENU (HKLM-x32\...\{12D99739-FFD3-3761-8AA6-F929E0FE407E}) (Version: 14.0.23107 - Microsoft Corporation) Hidden Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.1 - Notepad++ Team) NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 391.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.05 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 391.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.05 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.0.1 - OBS Project) OnTopReplica (HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\OnTopReplica) (Version: 3.4 - Lorenz Cuno Klopfenstein) Oracle VM VirtualBox 5.2.8 (HKLM\...\{6DC14AE3-4537-43C7-922B-BDA41FA7C3C8}) (Version: 5.2.8 - Oracle Corporation) Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Panneau de configuration NVIDIA 391.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.05 - NVIDIA Corporation) Hidden PreEmptive Analytics Visual Studio Components (HKLM-x32\...\{436A18DD-5F2C-4B3C-985E-AD3C13B0CC25}) (Version: 1.2.5134.1 - PreEmptive Solutions) Hidden PrtScr 1.7 (HKLM-x32\...\PrtScr_is1) (Version: - FireStarter) Python 3.5.2 (64-bit) (HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\{d46281ac-f66b-4246-8cfe-34f61512982f}) (Version: 3.5.2150.0 - Python Software Foundation) Python 3.5.2 Add to Path (64-bit) (HKLM\...\{2364A926-B4AC-4EA5-9838-BE88C2930E38}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Core Interpreter (64-bit) (HKLM\...\{E151A5E4-D373-4388-82FB-0C9F5F6CFB76}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Development Libraries (64-bit) (HKLM\...\{5397E020-59CB-43BF-A0FE-32B26DE98187}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Documentation (64-bit) (HKLM\...\{911FCD3E-A42F-472C-983A-0518799BFE7D}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Executables (64-bit) (HKLM\...\{24C31CC2-A8F2-417E-A61B-5E682D39893B}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 pip Bootstrap (64-bit) (HKLM\...\{A74E3253-CB6C-4214-8964-FFCEB37DB5D8}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Standard Library (64-bit) (HKLM\...\{976C50E6-00DF-40A6-9E59-70A4F3EF4E32}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Tcl/Tk Support (64-bit) (HKLM\...\{A4B31C78-C884-4B36-BDE4-FBAD3A2A1C7E}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Test Suite (64-bit) (HKLM\...\{7BA8A393-A7EB-4529-8A63-D7A4502C0D24}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python 3.5.2 Utility Scripts (64-bit) (HKLM\...\{E5642976-7F8E-41C1-A249-419B809CA2A8}) (Version: 3.5.2150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{0276F61C-30FC-46D4-BEFE-0EA959C4D691}) (Version: 3.5.2121.0 - Python Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8158 - Realtek Semiconductor Corp.) ReelSmart Motion Blur v5 for After Effects and Premiere Pro (HKLM\...\ReelSmart Motion Blur v5 for After Effects and Premiere Pro 5.1.9d) (Version: 5.1.9d - RE:Vision Effects) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games) ROG Armoury (HKLM-x32\...\{FE703E21-A9E0-4DB3-9115-404175C8222F}) (Version: 1.02.07 - ASUSTeK Computer Inc.) Roslyn Language Services - x86 (HKLM-x32\...\{6970C7E1-F99D-388D-8903-DF8FCE677FED}) (Version: 14.0.25431 - Microsoft Corporation) Hidden Roslyn Language Services - x86 (HKLM-x32\...\{6C1985E7-E1C5-3A95-86EF-2C62465F15C3}) (Version: 14.0.23107 - Microsoft Corporation) Hidden Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.6.46 - Safer-Networking Ltd.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Team Explorer for Microsoft Visual Studio 2015 Update 3.1 (HKLM-x32\...\{7A95671A-759E-3B83-B763-4289D1D24D73}) (Version: 14.102.25619 - Microsoft) Hidden TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer) Test Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{9EABBFE1-7EED-47D9-8FB8-21D7E4808057}) (Version: 14.0.23107 - Microsoft Corporation) Hidden TypeScript Power Tool (HKLM-x32\...\{465ACA24-B8D6-4FEC-A42D-9EFCB92CD560}) (Version: 1.8.34.0 - Microsoft Corporation) Hidden TypeScript Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{BA5762C7-D35F-4725-A4BD-525854127018}) (Version: 1.8.36.0 - Microsoft Corporation) Hidden Unity (HKLM-x32\...\Unity) (Version: 5.3.5f1 - Unity Technologies ApS) Unity Web Player (HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS) Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation) VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software) Visual Studio 2015 Update 3 (KB3022398) (HKLM-x32\...\{7a68448b-9cf2-4049-bd73-5875f1aa7ba2}) (Version: 14.0.25420 - Microsoft Corporation) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) VMware Player (HKLM\...\{3932C891-5563-421D-B9C0-DEA6CB35F9F4}) (Version: 12.5.9 - VMware, Inc.) VS Update core components (HKLM-x32\...\{B2918D01-1D89-34D3-87EF-A28121BC6EB7}) (Version: 14.0.25431 - Microsoft Corporation) Hidden vs_update3notification (HKLM-x32\...\{AB3DF932-C990-34D4-BF43-970F760DA3CD}) (Version: 14.0.25431 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden WCF Data Services 5.6.4 Runtime (HKLM-x32\...\{DB85E7BD-B2DD-43D4-B3C0-23D7B527B597}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden WCF Data Services Tools for Microsoft Visual Studio 2015 (HKLM-x32\...\{0A3B508E-5638-4471-BCC9-954E1868CB86}) (Version: 5.6.62175.4 - Microsoft Corporation) Hidden Win10Pcap (HKLM-x32\...\{B5B58F8A-1984-4F3E-B400-235A6E005002}) (Version: 10.2.5002 - Daiyuu Nobori, University of Tsukuba, Japan) WinRAR 5.50 bêta 3 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.3 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1649382640-37394211-3741768109-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-CE2809453F51}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1649382640-37394211-3741768109-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] () ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [HubicBackupRootOverlayHandler] -> {2DF0C6DB-1E85-4894-9D4F-63CB0EAB17EA} => C:\Windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicPublishedItemOverlayHandler] -> {7C76B697-27DF-4CFF-9909-863905561298} => C:\Windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicSyncItemOverlayHandler] -> {9B497753-D273-4A80-9DE8-72248D7FA595} => C:\Windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation) ShellIconOverlayIdentifiers: [HubicUnsyncItemOverlayHandler] -> {D5454A6E-0904-4BA3-9E4A-240A5080259D} => C:\Windows\system32\mscoree.dll [2017-09-29] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2017-08-29] () ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.) ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-26] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-05-26] (Alexander Roshal) ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => D:\VMware\VMware Player\vmdkShellExt.dll [2018-01-08] (VMware, Inc.) ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => D:\VMware\VMware Player\x64\vmdkShellExt64.dll [2018-01-08] (VMware, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-03] (Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-01] (NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] () ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-03] (Malwarebytes) ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.) ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2017-05-23] (Safer-Networking Ltd.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-05-26] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-05-26] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {000D3CEF-D673-4D77-84A8-C513E607ECF9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {00791207-7FE6-4CCA-993A-BA1C1155CA6D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation) Task: {10265A27-1E88-4DBE-9FF1-D7B8278154BE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated) Task: {172517E9-E4ED-4235-842A-9C79EC2EFA56} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-9EEFI5I-FELIX => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-01-05] (Adobe Systems, Incorporated) Task: {1D6FE7C7-A852-4A3C-9881-2246B56712DD} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe [2017-05-23] (Safer-Networking Ltd.) Task: {20FAA9C5-F6E4-43BE-9CB1-407F0C2170EB} - System32\Tasks\SS3Svc32Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\SS3Svc32.exe Task: {3796A32F-939C-416A-B90D-9082D7F01880} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {4C23AA6E-E334-45E0-9D40-DC0D65335EF9} - System32\Tasks\ASUS\AsRogAuraGpuDllServer => C:\Program Files (x86)\LightingService\1.00.29\AsRogAuraGpuDllServer.exe [2017-09-22] () Task: {6B72D5AE-A7CD-4C39-97A8-B11C26EB871E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_29_0_0_113_pepper.exe [2018-03-13] (Adobe Systems Incorporated) Task: {823F8CFD-1190-4B66-9DFE-736E70365547} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation) Task: {8305D0C8-1F92-4434-9AF8-42C2CC8B1A14} - System32\Tasks\SS3Svc64Run => C:\Program Files\ASUSTeKcomputer.Inc\Sonic Suite 3\Foundation\x64\SS3Svc64.exe Task: {8368F427-D5AD-4E3F-BC2F-2C16D0232202} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd) Task: {8670F869-5F17-436D-AABE-B7C97E72F647} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {9365115C-C317-4FB7-B9B4-B97BFA7909FB} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation) Task: {9E49AC63-4F92-42E1-8591-AF71714D9B89} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18022-0\MpCmdRun.exe [2018-03-01] (Microsoft Corporation) Task: {A00B7533-80AF-48FF-AA97-C5AAA62F58C6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-14] (NVIDIA Corporation) Task: {A18C7AC3-DFE9-4AC7-B78D-D6AB754F982D} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-06-20] (Microsoft Corporation) Task: {AB7899D8-5ACD-46A9-A082-8CBF9D4081FF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-10] (Google Inc.) Task: {B322C698-8BED-43DC-AB26-A40BCB9DFC8C} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation) Task: {B3D42411-4FCB-466D-9B49-B246CCD1DC5E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [2017-05-23] (Safer-Networking Ltd.) Task: {B99F8094-1BAA-406D-AF02-7453BA7AEEC3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-14] (NVIDIA Corporation) Task: {BD9C8EDD-D48F-4A30-82C4-B2AF5ED9F750} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe [2017-05-23] (Safer-Networking Ltd.) Task: {C39980F6-CCAC-456E-9FAF-30B6EAF52969} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-03-13] (Adobe Systems Incorporated) Task: {C8EE94EC-FDE1-460D-8097-90A63249FB16} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-14] (NVIDIA Corporation) Task: {DDB4E9F8-7843-4C9B-B137-1D18727DCCF4} - System32\Tasks\AdobeAAMUpdater-1.0-DESKTOP-9EEFI5I-FELIX => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated) Task: {EBE9D4AB-9E21-4003-A513-094FAB0DD426} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-08-10] (Google Inc.) Task: {EC1E67DC-5D29-4B43-8067-D0B21EB86A4D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-14] (NVIDIA Corporation) Task: {EF19B76A-2FB3-4F19-9E00-F110DDD0192B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2017-09-29 17:41 - 2017-09-29 17:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-03-11 11:38 - 2018-03-01 10:47 - 000544648 _____ () C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\DisplayDriverAnalyzer\_DisplayDriverCrashAnalyzer64.dll 2017-07-13 22:50 - 2017-07-13 22:50 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2017-07-13 22:50 - 2017-07-13 22:50 - 001354040 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2017-10-17 19:02 - 2013-05-14 18:50 - 000140936 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE 2018-03-11 11:39 - 2018-03-14 17:05 - 001267648 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-03-21 19:05 - 2018-02-05 15:44 - 002299168 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-03-11 11:39 - 2018-03-14 17:04 - 000019904 _____ () c:\program files\nvidia corporation\nvstreamsrv\detoured.dll 2017-11-15 16:37 - 2017-09-22 14:31 - 000247256 _____ () C:\Program Files (x86)\LightingService\1.00.29\AsRogAuraGpuDllServer.exe 2018-01-04 09:04 - 2018-01-04 09:04 - 000649672 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll 2018-01-04 16:43 - 2018-01-04 16:43 - 000948736 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\e_sqlite3.dll 2018-01-04 16:43 - 2018-01-04 16:43 - 002360512 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2018-01-04 16:43 - 2018-01-04 16:43 - 000381440 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll 2017-09-29 17:41 - 2017-09-29 17:41 - 004069888 _____ () C:\Windows\System32\Windows.UI.Input.Inking.Analysis.dll 2018-03-14 12:30 - 2018-02-22 04:26 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2018-03-14 12:30 - 2018-02-22 04:21 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-03-17 09:03 - 2018-03-17 09:05 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1809.217.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-03-17 09:03 - 2018-03-17 09:05 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1809.217.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-03-17 09:03 - 2018-03-17 09:06 - 022044160 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1809.217.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-03-17 09:03 - 2018-03-17 09:05 - 002559488 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1809.217.0_x64__kzf8qxf38zg5c\skypert.dll 2018-03-17 09:03 - 2018-03-17 09:04 - 000657408 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1809.217.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2018-03-17 11:52 - 2013-07-14 17:19 - 002766336 _____ () C:\Program Files (x86)\PrtScr\PrtScr.exe 2018-02-23 10:08 - 2018-02-22 07:57 - 004433752 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\libglesv2.dll 2018-02-23 10:08 - 2018-02-22 07:57 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\64.0.3282.186\libegl.dll 2017-04-12 14:46 - 2018-01-24 14:16 - 000174744 _____ () C:\Program Files\TeamSpeak 3 Client\quazip.dll 2017-03-13 20:37 - 2017-12-15 18:11 - 000020632 _____ () C:\Program Files\TeamSpeak 3 Client\libEGL.DLL 2017-03-13 20:37 - 2017-12-15 18:11 - 001981592 _____ () C:\Program Files\TeamSpeak 3 Client\libGLESv2.dll 2017-04-12 14:46 - 2018-01-24 14:16 - 000125592 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll 2017-04-12 14:46 - 2018-01-24 14:16 - 000150680 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll 2017-08-10 16:37 - 2017-08-10 16:37 - 000157696 _____ () C:\Users\FELIX\AppData\Roaming\TS3Client\plugins\gamepad_joystick_win64.dll 2017-08-10 16:37 - 2017-08-10 16:37 - 000345880 _____ () C:\Users\FELIX\AppData\Roaming\TS3Client\plugins\clientquery_plugin_win64.dll 2018-03-21 19:37 - 2018-03-21 19:38 - 003037568 _____ () D:\Downloads\ZHPDiag3.exe 2017-11-15 16:37 - 2017-09-22 13:36 - 001746432 _____ () C:\Program Files (x86)\LightingService\1.00.29\Vender.dll 2017-11-15 16:37 - 2017-09-22 13:36 - 000073728 _____ () C:\Program Files (x86)\LightingService\1.00.29\ClaymoreProtocol.dll 2017-11-15 16:37 - 2017-09-22 13:36 - 000519680 _____ () C:\Program Files (x86)\LightingService\1.00.29\RogNewmouseProtocol.dll 2017-11-15 16:37 - 2017-09-22 13:36 - 000053248 _____ () C:\Program Files (x86)\LightingService\1.00.29\cpuutil.dll 2017-11-15 16:33 - 2017-09-21 11:31 - 000081728 _____ () C:\Program Files (x86)\ASUS\AXSP\2.00.06\ATKEX.dll 2017-11-15 16:37 - 2018-03-21 19:42 - 000043816 _____ () C:\Program Files (x86)\ASUS\AXSP\2.00.06\PEbiosinterface32.dll 2018-03-21 18:30 - 2017-05-12 11:36 - 000507464 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll 2018-03-21 18:30 - 2016-09-13 14:00 - 000109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl 2018-03-21 18:30 - 2016-09-13 14:00 - 000167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl 2018-03-21 18:30 - 2016-09-13 14:00 - 000416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl 2018-03-11 11:39 - 2018-03-14 17:05 - 001041344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-03-11 11:39 - 2018-03-14 17:04 - 081563584 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll 2018-03-21 10:59 - 2018-03-14 17:04 - 002478016 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll 2018-03-21 10:59 - 2018-03-14 17:04 - 000125376 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll 2018-03-17 11:52 - 2013-06-06 14:44 - 018730496 _____ () C:\Program Files (x86)\PrtScr\dsp_ipp.dll 2018-03-17 11:52 - 2013-04-11 02:18 - 000509440 _____ () C:\Program Files (x86)\PrtScr\QuickFontCache.dll 2018-03-17 11:52 - 2013-04-06 09:26 - 000487424 _____ () C:\Program Files (x86)\PrtScr\freetype.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\AppData:CSM [434] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-03-19 01:03 - 2018-03-21 18:54 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1649382640-37394211-3741768109-1001\Control Panel\Desktop\\Wallpaper -> c:\users\felix\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "ione" HKLM\...\StartupApproved\Run32: => "Sonic Studio 3" HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\StartupApproved\StartupFolder: => "PowerMenu.lnk" HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\StartupApproved\Run: => "OneDriveSetup" HKU\S-1-5-21-1649382640-37394211-3741768109-1001\...\StartupApproved\Run: => "Application Restart #1" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{45F59CF6-B56E-4F7F-819A-0B8E0FF28E73}] => (Allow) LPort=5558 FirewallRules: [{112730B5-DCFB-43A3-83C2-B1D37A1175E1}] => (Allow) LPort=5556 FirewallRules: [{C2D0819E-1894-44C5-B9A1-E482765A5772}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{C2A22E0D-A0AE-4735-A60C-C097BA10DD7E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [UDP Query User{6E9C7FC4-E78F-46C4-8682-AABB1E95CF6A}D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [TCP Query User{3C64106E-E1B6-4F8A-8E50-88D811368D00}D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{84688435-8B81-4C69-8ED3-8BCF691503BA}] => (Allow) E:\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe FirewallRules: [{D71F0C19-68FD-494E-BB50-C57727C781E5}] => (Allow) E:\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe FirewallRules: [{8EC230CF-2918-4876-BDE0-3502B5CD1E25}] => (Allow) E:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{8838F789-2525-46F1-A549-02CC8A300625}] => (Allow) E:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{F0DD05D7-7025-429C-A8A2-F67E39059537}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{12300BE0-36CA-4712-8178-66675C388011}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{E2BB132A-AFF5-4870-9994-7EDA9AE6254D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{8D76C5D4-DC8D-4BAA-930D-DE356DE20ADF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{196C2506-2139-4AE5-ACA4-B734242FBB90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [UDP Query User{6C87AE2A-4194-49E7-9582-04B8FFA9789C}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [TCP Query User{34B4CC7C-60CF-4306-B62D-A5F07BF9632C}E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) E:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe FirewallRules: [{0EDDA492-E144-4673-89C0-B278F82B9E0F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{0424FA73-0E3D-4F46-90B1-27019BD3C235}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{8C1EC304-9CEC-411B-8790-A37AD863D3FC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{DE4FCD6B-B3CC-4382-8587-1227CE85A791}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{6735033B-88FB-400B-92B7-1687F771B121}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{1645E60B-D4A8-4005-A417-C59377C16DAE}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{1639DFF5-A6DD-41CB-A8F9-A86E4165977B}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{1F2D2BBC-19BF-4FDB-8AA9-0FA48BB7C90A}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{226E2654-2BCA-4496-9AEC-1143C8BD1543}] => (Allow) D:\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe FirewallRules: [{70EC29B5-92D1-4E87-A476-E62E959918BA}] => (Allow) D:\SteamLibrary\steamapps\common\Batman Arkham Knight\Binaries\Win64\BatmanAK.exe FirewallRules: [TCP Query User{46FF1347-2D03-4CAA-BABD-8527D5AD544A}D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{00B5B396-3816-4695-B996-E1D1B884A54E}D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{EACF0223-A2D7-4D55-98ED-0D1831920183}] => (Allow) D:\SteamLibrary\steamapps\common\Alien Isolation\AI.exe FirewallRules: [{4D62613C-589A-4BD3-9AF2-D80F674E6F45}] => (Allow) D:\SteamLibrary\steamapps\common\Alien Isolation\AI.exe FirewallRules: [{635FD7AA-204E-422C-A7A7-2D4DC7019F43}] => (Allow) D:\SteamLibrary\steamapps\common\swkotor\swkotor.exe FirewallRules: [{B26E2696-DAB3-47E2-99AC-5EA2DBD24E87}] => (Allow) D:\SteamLibrary\steamapps\common\swkotor\swkotor.exe FirewallRules: [{F35B3EEB-6EBC-474D-9E0D-C2D5C32568AA}] => (Allow) D:\SteamLibrary\steamapps\common\Knights of the Old Republic II\swkotor2.exe FirewallRules: [{ADA43EE5-D950-4624-9F80-ED43E3C6BEA1}] => (Allow) D:\SteamLibrary\steamapps\common\Knights of the Old Republic II\swkotor2.exe FirewallRules: [TCP Query User{012519A1-0FF5-40E1-AC68-D229CCCE849A}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{25982B4E-253B-4CC0-8862-D174F7196ACB}D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{B9752A25-0FBA-40DF-AE59-E8BE1D1415DB}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{F11D6ED7-40D5-4433-9DEC-14D5E1BD6FFB}D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{1C59916A-0BFC-424D-8C7C-DB1196DA06F6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{C0383D3C-C50F-4F7A-9A50-4DAE57C872A9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{88788AA6-5058-4908-8FA6-347F21CC9489}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{035B40E0-D2E1-47A9-B8AA-2E5637A9070B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [TCP Query User{1B05E36F-C81F-4C00-B3BF-EB7FB61A7EF3}E:\emulateurs\wii u\helper\wiiu_usb_helper.exe] => (Allow) E:\emulateurs\wii u\helper\wiiu_usb_helper.exe FirewallRules: [UDP Query User{623ABA1A-1D14-4AEC-AF45-79C75F55EECC}E:\emulateurs\wii u\helper\wiiu_usb_helper.exe] => (Allow) E:\emulateurs\wii u\helper\wiiu_usb_helper.exe FirewallRules: [{6CE5E556-8F48-4314-9534-008D44630616}] => (Allow) D:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe FirewallRules: [{B5DDA5B9-F393-4750-8263-310354B177CC}] => (Allow) D:\SteamLibrary\steamapps\common\killingfloor2\Binaries\Win64\KFGame.exe FirewallRules: [{CA72CAD5-047B-4039-B82B-04669C3C1F39}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe FirewallRules: [TCP Query User{64F95874-016A-445E-9C68-D1A0D6E7D5AD}D:\unity\editor\unity.exe] => (Allow) D:\unity\editor\unity.exe FirewallRules: [UDP Query User{933E7173-AAC1-4ADF-A601-4ECA1E259804}D:\unity\editor\unity.exe] => (Allow) D:\unity\editor\unity.exe FirewallRules: [{9D1AB61B-2F13-493A-A0F4-74B21CCB3A94}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{948B5250-1E3A-493D-8E40-8DBE5C1121EA}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{2F11AA74-1D91-49F2-8030-4828CF6E8F6D}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe FirewallRules: [{A9638998-5BAC-41C3-9DD5-40EC13A15BE7}] => (Allow) D:\SteamLibrary\steamapps\common\Deceit\bin\win_x64\Deceit.exe FirewallRules: [TCP Query User{9841EE04-BB12-4F43-B661-4518381B519D}E:\mods\pubg\modification audio\pedalboard2-2.14-windows\pedalboard2\pedalboard2-64bit.exe] => (Allow) E:\mods\pubg\modification audio\pedalboard2-2.14-windows\pedalboard2\pedalboard2-64bit.exe FirewallRules: [UDP Query User{7C096F9A-7020-4724-9DDA-48BCEE95DB17}E:\mods\pubg\modification audio\pedalboard2-2.14-windows\pedalboard2\pedalboard2-64bit.exe] => (Allow) E:\mods\pubg\modification audio\pedalboard2-2.14-windows\pedalboard2\pedalboard2-64bit.exe FirewallRules: [TCP Query User{88D9B4E4-3733-42AA-B022-4700503E4545}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{CEB9B515-D63E-469D-8A83-769DB1156D03}D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) D:\games\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [{F402A476-6E61-4856-8BC3-D37D34B56BCF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [DNS Server Forward Rule - TCP - f6ed7828-cdca-47d4-9981-ca50bc3f8bb9 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - UDP - f6ed7828-cdca-47d4-9981-ca50bc3f8bb9 - 0] => (Allow) LPort=53 FirewallRules: [TCP Query User{F32A568F-A5FD-45D8-9E24-FA0BA9EDD8FC}D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\launcher.exe] => (Allow) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\launcher.exe FirewallRules: [UDP Query User{8BC2A63D-93BE-4806-A1BC-68A337D2BF43}D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\launcher.exe] => (Allow) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\launcher.exe FirewallRules: [{F7C58638-3ECF-48D3-B530-9303D442F25C}] => (Block) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\launcher.exe FirewallRules: [{5691FAB1-C2AA-43FF-B126-F3F9405F1D04}] => (Block) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\launcher.exe FirewallRules: [TCP Query User{6CA31B5F-25D2-479D-A058-F5E7EB3148B4}D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\aok hd.exe] => (Allow) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\aok hd.exe FirewallRules: [UDP Query User{A911A562-42D9-4B18-AFF1-D21C962D3C9C}D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\aok hd.exe] => (Allow) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\aok hd.exe FirewallRules: [{96E3A7EE-F12F-4746-B5F6-D0F24A6EEED2}] => (Block) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\aok hd.exe FirewallRules: [{158E26DE-5657-48F3-9040-04FD5651EDDC}] => (Block) D:\jeux\age of empires\age.of.empires.ii.hd.v5.6\age of empires ii hd\aok hd.exe FirewallRules: [{3EA577EF-6CF4-494B-8B5E-DFA4D666D100}] => (Allow) D:\Rockstar Games\GTA5.exe FirewallRules: [{4A049262-9C95-407B-B799-CAB71E5C06D0}] => (Allow) D:\Rockstar Games\GTA5.exe FirewallRules: [{84A22129-72F3-40EB-8E1C-52DCD04CE8BA}] => (Allow) D:\VMware\VMware Player\vmware-authd.exe FirewallRules: [{F9F37992-2BE8-480A-A1EB-4D7A3A959275}] => (Allow) D:\VMware\VMware Player\vmware-authd.exe FirewallRules: [DNS Server Forward Rule - TCP - 6cc3376b-dd6f-405a-ae84-0d8bdea972f1 - 0] => (Allow) LPort=53 FirewallRules: [DNS Server Forward Rule - UDP - 6cc3376b-dd6f-405a-ae84-0d8bdea972f1 - 0] => (Allow) LPort=53 FirewallRules: [TCP Query User{25075386-6829-47F0-BB89-B2450FE4D8E7}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [UDP Query User{DAEA2DBB-F608-411A-8812-8DCD992C6642}D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe] => (Allow) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [{31FFC9CC-1D63-4BB2-BAF7-D7223BB7C4A1}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [{310913D9-B1D0-42F3-A2D9-F235BC52FD00}] => (Block) D:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.129\deploy\leagueclient.exe FirewallRules: [{C0744893-7C9D-4016-BFA8-E0C60C5D1E1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{EA1CE5AC-DC88-4597-B31C-1E7FF578B1F1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{3714E639-F7F1-4E0F-83E1-85A1B7375F28}] => (Block) C:\Program Files (x86)\Mirillis\Action! FirewallRules: [{A3D9BA9D-01D6-4945-826D-E07BACEAEEDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{240885D6-D07A-41AB-A455-EE28BE5CD90F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{E4A02E4F-4269-4C6C-BD7F-E8D3D54CFA35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{947D6FCE-E24F-45D4-A9D3-78F946571199}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 6.0.9.F.2.A.F.0.0.5.5.9.6.8.C.8.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-9EEFI5I.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.15:5353 25 6.0.9.F.2.A.F.0.0.5.5.9.6.8.C.8.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-9EEFI5I-2.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 15.1.168.192.in-addr.arpa. PTR DESKTOP-9EEFI5I.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.15:5353 25 15.1.168.192.in-addr.arpa. PTR DESKTOP-9EEFI5I-2.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 7.5.A.C.F.C.2.D.2.D.1.6.9.6.D.D.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-9EEFI5I.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.56.1:5353 25 7.5.A.C.F.C.2.D.2.D.1.6.9.6.D.D.0.0.0.0.0.0.0.0.0.0.0.0.0.8.E.F.ip6.arpa. PTR DESKTOP-9EEFI5I-2.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Unexpected conflict discarding 23 1.56.168.192.in-addr.arpa. PTR DESKTOP-9EEFI5I.local. Error: (03/21/2018 04:30:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.56.1:5353 25 1.56.168.192.in-addr.arpa. PTR DESKTOP-9EEFI5I-2.local. Erreurs système: ============= Error: (03/21/2018 07:43:54 PM) (Source: NetBT) (EventID: 4311) (User: ) Description: L’initialisation a échoué car le pilote de périphérique n’a pas pu être créé. Utilisez la chaîne « 00FF0E09478A » pour identifier l’interface pour laquelle l’initialisation a échoué. Cette chaîne représente l’adresse MAC de l’interface défaillante ou l’identificateur global unique (GUID) si NetBT n’a pas réussi à mapper le GUID à l’adresse MAC. Si, ni l’adresse MAC, ni le GUID ne sont disponibles, la chaîne représente un nom de périphérique de cluster. Error: (03/21/2018 07:43:50 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-9EEFI5I) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-9EEFI5I\FELIX de l’utilisateur (S-1-5-21-1649382640-37394211-3741768109-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/21/2018 07:43:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/21/2018 07:43:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (03/21/2018 07:42:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service WinDefend n’a pas pu démarrer en raison de l’erreur : Windows ne peut pas vérifier la signature numérique de ce fichier. Il est possible qu’une modification matérielle ou logicielle récente ait installé un fichier endommagé ou dont la signature est incorrecte, ou qu’il s’agisse d’un logiciel malveillant provenant d’une source inconnue. Error: (03/21/2018 07:41:02 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9EEFI5I) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (03/21/2018 07:33:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service VMware USB Arbitration Service s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error: (03/21/2018 07:33:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service VMware DHCP Service s’est terminé de façon inattendue pour la 1ème fois. Windows Defender: =================================== Date: 2018-03-21 16:49:22.033 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0 Nom : Trojan:Win32/Azden.A!cl ID : 2147718745 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_D:\$RECYCLE.BIN\S-1-5-21-1649382640-37394211-3741768109-1001\$RXQNF82.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-9EEFI5I\FELIX Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.263.830.0, AS: 1.263.830.0, NIS: 118.8.0.0 Version du moteur : AM: 1.1.14600.4, NIS: 2.1.14202.0 Date: 2018-03-21 16:49:22.030 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0 Nom : Trojan:Win32/Azden.A!cl ID : 2147718745 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_D:\$RECYCLE.BIN\S-1-5-21-1649382640-37394211-3741768109-1001\$RXQNF82.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-9EEFI5I\FELIX Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.263.830.0, AS: 1.263.830.0, NIS: 118.8.0.0 Version du moteur : AM: 1.1.14600.4, NIS: 2.1.14202.0 Date: 2018-03-21 16:49:02.440 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0 Nom : Trojan:Win32/Azden.A!cl ID : 2147718745 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_D:\$RECYCLE.BIN\S-1-5-21-1649382640-37394211-3741768109-1001\$RXQNF82.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : DESKTOP-9EEFI5I\FELIX Nom du processus : C:\Windows\explorer.exe Version de la signature : AV: 1.263.830.0, AS: 1.263.830.0, NIS: 118.8.0.0 Version du moteur : AM: 1.1.14600.4, NIS: 2.1.14202.0 Date: 2018-03-21 19:34:49.261 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Analyse du comportement Code d’erreur : 0x80070006 Description de l’erreur : Descripteur non valide Raison : La protection en temps réel a cessé de fonctionner pour une raison inconnue. Redémarrez le service pour effectuer la récupération. Date: 2018-03-21 19:31:34.445 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.263.830.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.14600.4 Code d’erreur : 0x80070422 Description de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Date: 2018-03-21 19:21:34.451 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Analyse du comportement Code d’erreur : 0x80070006 Description de l’erreur : Descripteur non valide Raison : Le pilote de filtre nécessite un moteur à jour pour fonctionner. Vous devez installer les dernières mises à jour des définitions afin d’activer la protection en temps réel. Date: 2018-03-21 19:08:25.052 Description: La fonctionnalité de protection en temps réel Antivirus Windows Defender a rencontré une erreur et échoué. Fonctionnalité : Sur accès Code d’erreur : 0x8007043c Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec Raison : La protection contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème. Date: 2018-03-21 19:07:52.640 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.263.830.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.14600.4 Code d’erreur : 0x80070422 Description de l’erreur : Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. CodeIntegrity: =================================== Date: 2018-03-21 20:23:33.349 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 20:23:33.348 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 20:03:38.035 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 20:03:38.035 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 19:53:00.820 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 19:53:00.819 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 19:52:59.302 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-03-21 19:52:59.301 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-7700K CPU @ 4.20GHz Pourcentage de mémoire utilisée: 14% Mémoire physique - RAM - totale: 32706.85 MB Mémoire physique - RAM - disponible: 27857.79 MB Mémoire virtuelle totale: 57282.85 MB Mémoire virtuelle disponible: 52001.07 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:118.69 GB) (Free:40.09 GB) NTFS Drive d: (Stockage B) (Fixed) (Total:3725.9 GB) (Free:2367.1 GB) NTFS Drive e: (Jeux SSD) (Fixed) (Total:465.76 GB) (Free:217.64 GB) NTFS \\?\Volume{a4de7a47-dc45-4848-8cb7-bf90820da0ed}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.06 GB) NTFS \\?\Volume{aff00e89-5ab3-4606-9dbb-168f4ded3f72}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: 65F38AEC) Partition: GPT. ======================================================== Disk: 1 (Size: 3726 GB) (Disk ID: 10929276) Partition: GPT. ======================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 639C39E7) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================