Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02.08.2018 Exécuté par leejo (16-08-2018 16:29:18) Exécuté depuis C:\Users\leejo\Desktop Windows 10 Home Version 1803 17134.228 (X64) (2018-05-13 17:32:39) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-30635440-4163099551-1822413230-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-30635440-4163099551-1822413230-503 - Limited - Disabled) defaultuser0 (S-1-5-21-30635440-4163099551-1822413230-1000 - Limited - Disabled) => C:\Users\defaultuser0 Invité (S-1-5-21-30635440-4163099551-1822413230-501 - Limited - Disabled) leejo (S-1-5-21-30635440-4163099551-1822413230-1001 - Administrator - Enabled) => C:\Users\leejo WDAGUtilityAccount (S-1-5-21-30635440-4163099551-1822413230-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) A3Launcher version 0.1.6.2 (HKLM-x32\...\{1E29A86E-9AE2-4CD8-74C8-6B170ED3C4D2}_is1) (Version: 0.1.6.2 - Maca134) Agorapolis Launcher (HKLM-x32\...\Agorapolis Launcher) (Version: - ) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 18.5.2342 - AVAST Software) Avast Driver Updater (HKLM-x32\...\{D606EFF9-3813-4875-B455-AECD2E7B0676}) (Version: 2.3.3 - AVAST Software) Hidden Avast Driver Updater (HKLM-x32\...\Avast Driver Updater) (Version: 2.3.3 - AVAST Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 67.1.664.100 - AVAST Software) Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.4.136.333 - AVAST Software) Hidden Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.) Canon MG2500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG2500_series) (Version: 1.02 - Canon Inc.) Canon MG2500 series On-screen Manual (HKLM-x32\...\Canon MG2500 series On-screen Manual) (Version: 7.8.0 - Canon Inc.) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Crossout Launcher 1.0.3.18 (HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\CrossOutLauncher_is1) (Version: - ) Discord (HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\Discord) (Version: 0.0.301 - Discord Inc.) DriversCloud.com (64 bits) (HKLM\...\{29DC4128-CF89-49D9-A524-B4430F036F14}) (Version: 10.0.7.0 - Cybelsoft) Enregistrement utilisateur de Canon MG2500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG2500 series) (Version: - ‭Canon Inc.) Epic Games Launcher (HKLM-x32\...\{D55AA8F9-1DD5-4EFD-BBAA-7879A5C32ACC}) (Version: 1.1.151.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FACEIT (HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\FACEITApp) (Version: 1.19.0 - FACEIT Ltd.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation) Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProplusRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0001 - Microsoft Corporation) Microsoft Project Professionnel 2016 - fr-fr (HKLM\...\ProjectProRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Visio Professionnel 2016 - fr-fr (HKLM\...\VisioProRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mises à jour NVIDIA 25.6.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 25.6.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 61.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.2 (x64 fr)) (Version: 61.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla) Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming) NVIDIA GeForce Experience 3.7.0.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.7.0.81 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation) NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.7.0.81 - NVIDIA Corporation) Hidden NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.6.1.0 - NVIDIA Corporation) Hidden NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden OpenOffice 4.1.4 (HKLM-x32\...\{DAEDCAF7-E42C-41E1-822C-33658A2C6EAD}) (Version: 4.14.9788 - Apache Software Foundation) Panneau de configuration NVIDIA 398.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.82 - NVIDIA Corporation) Hidden SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0380 - NVIDIA Corporation) Hidden Spotify (HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\Spotify) (Version: 1.0.87.491.ge2a121fc - Spotify AB) StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) The Escapists 2 (HKLM-x32\...\The Escapists 2_is1) (Version: - ) Tropico 5 (HKLM-x32\...\1436885062_is1) (Version: 2.0.0.4 - GOG.com) Tropico 5 Complete Collection Upgrade (HKLM-x32\...\Tropico 5 Complete Collection Upgrade_is1) (Version: 2.0.0.4 - GOG.com) Unreal Development Kit: 2015-01 (HKLM\...\UDK-bd5ff9c7-7de5-465c-9a0b-3c0f8d834098) (Version: - Epic Games, Inc.) WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-30635440-4163099551-1822413230-1001_Classes\CLSID\{23066764-9BDD-4FBD-8B1F-F4547CF2684F}\InprocServer32 -> C:\Users\leejo\AppData\Local\Microsoft\OneDrive\18.070.0405.0002\amd64\FileSyncShell64.dll => Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-16] (AVAST Software) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-16] (AVAST Software) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-16] (AVAST Software) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\leejo\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-07-30] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-16] (AVAST Software) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {08EF21E4-61C3-43E8-847C-CAB68F2A7443} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-10] (Microsoft Corporation) Task: {1313C6E7-74F6-4F9F-A33B-DF526BB20501} - System32\Tasks\Avast Driver Updater Startup => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe [2018-03-27] (AVAST Software) Task: {19102973-A8EC-4AFB-A9BB-DCB05AA2794D} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-15] (Microsoft Corporation) Task: {1B05C733-A952-495F-A7B0-80313D16F2AC} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-03-26] (AVAST Software) Task: {32AFF752-D239-403B-921C-CE63BD3743EB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-08-15] (Microsoft Corporation) Task: {374A5D6F-991D-42A1-BD39-56E93E175B74} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-06-21] (NVIDIA Corporation) Task: {3ECB440D-7EB5-4A59-836C-DA4972309AD6} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation) Task: {51D8C824-0ECE-4F2C-989B-50A82ACD2C64} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-10] (Microsoft Corporation) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {66E2D365-3580-466D-8F56-3310764766C0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-16] (Google Inc.) Task: {70BF14C3-1F5C-4B48-9A81-BA7DF5BBDAB9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-08-15] (Microsoft Corporation) Task: {768FC40D-E4E3-4051-8BCB-307DDFC5FAD0} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-06-21] (NVIDIA Corporation) Task: {77D785DF-A49F-479E-AA1A-B493030A5AC6} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-06-07] (AVAST Software) Task: {78F2F473-DD82-458D-8C05-9EE9C974E3E5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-15] (Microsoft Corporation) Task: {9440F12D-5DF3-429E-8948-4F26F1E09D96} - System32\Tasks\AgorapolisLauncher => C:\Program Files (x86)\Agorapolis Launcher\Agorapolis Launcher.exe Task: {9DD681FE-60E9-45AE-B3F5-47A56AF65B88} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK Task: {A5C4854B-997B-4E32-BFF4-EB0BF889EBC2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-06-21] (NVIDIA Corporation) Task: {AB501B9F-2DC1-4BF4-9306-4B3FABF3D31A} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-06-21] (NVIDIA Corporation) Task: {AE46BF83-821C-4242-8D85-D4BB721791BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-08-16] (Google Inc.) Task: {B14C73F8-6BF9-4451-8328-CFB7B56B3D79} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\osfinstaller.exe [2018-08-15] (Microsoft Corporation) Task: {B5B9E688-B8C5-48E0-B6D9-711F935C6BAE} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-08-16] (AVAST Software) Task: {C4CC8765-B14B-447A-AAAD-03D4D7A3475B} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-03-26] (AVAST Software) Task: {C63D6E6C-5DFD-412F-AD34-FBFCAECB20F2} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation) Task: {C6824420-FF1C-4A3E-8590-EA1E330CA4A2} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-06-21] (NVIDIA Corporation) Task: {D8ED4A76-5748-4ECA-8E45-3E2F09F0B23B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe Task: {E7B3E309-220C-4108-B384-E1E51CE1B529} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {EB7E0584-1E70-4C16-9F8C-D2FCAA18FF01} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-06-21] (NVIDIA Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Avast Driver Updater Startup.job => C:\Program Files (x86)\Avast Driver Updater\Avast Driver Updater.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-08-15 23:22 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-07-09 16:20 - 2017-06-21 09:02 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-08-16 12:59 - 2018-08-16 12:59 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-08-16 12:55 - 2018-08-16 12:55 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2018-08-16 12:54 - 2018-08-16 12:54 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-07-09 16:20 - 2017-06-21 09:02 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\AppData:CSM [230] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [484] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-30635440-4163099551-1822413230-1001\...\webcompanion.com -> hxxp://webcompanion.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-07-16 13:47 - 2016-07-16 13:45 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-30635440-4163099551-1822413230-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-30635440-4163099551-1822413230-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\leejo\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\25488504_1668721586520655_2768358083178724187_o.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{0B522D11-0C52-41DC-8772-EF92916F42CC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe FirewallRules: [{161A3BE2-731B-4CB9-9F02-7354B4B5E00A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Fallout Shelter\FalloutShelter.exe FirewallRules: [{BE6733AF-380A-4FED-B6DD-B29D3C41AE55}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{16526268-946E-4F2A-B583-B6F6213A9D25}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [UDP Query User{9BFCF187-408F-4873-BC14-67FCFF83E36D}C:\users\leejo\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\leejo\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{F60CFD13-7F39-4499-93D4-316904D0D980}C:\users\leejo\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\leejo\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{3BC8E4E5-5042-41F0-A7C4-64CAA5DF2E12}C:\users\leejo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\leejo\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{DC4833F8-5325-4175-93B4-F440E905BBFE}C:\users\leejo\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\leejo\appdata\roaming\spotify\spotify.exe FirewallRules: [{B3D8EBBC-2438-4645-B680-920675B0A8E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{9118F872-7FA2-43FB-82D1-0C35719D9CD3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{94FCCBD0-0698-45CF-88C0-32BE3E300071}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{15045C79-B5FA-443B-BE73-F2AAA5CAD21C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{AECBA960-9CE8-4D79-A18B-D11A31DD223A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{99E5B017-1E42-4C57-9CA5-5748BA33A0CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe FirewallRules: [{AFE3515D-2A60-4134-A842-D56A53F8A2D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [{57674177-EDB6-4B57-86EE-0CEDDE71A91F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe FirewallRules: [UDP Query User{465A7DD2-F963-4EA0-B3C9-70E806EFF38C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [TCP Query User{2121FE99-9599-4F3B-BDF3-2D6A26683363}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe FirewallRules: [UDP Query User{D6AC58F9-FD99-4D91-BAFA-077B0B350516}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{7F35008B-0184-4412-9567-E66ABAA62950}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{D630AEF0-206A-45EB-B03F-D64646456A7C}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{E6A5DE55-0518-4E36-9862-CC648F8A446F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{062A91DF-8025-4257-82AE-59E5F15852BB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{9BDF370A-0E56-42C4-9F8F-72336EB21BA6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{2204FB85-D00F-4445-B0F9-525A29BF8B2D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E95435C4-52DD-4E26-80CF-7D9BC728BAF2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{F8E209CA-2877-4A45-8565-64F752A46BA7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{75453EA3-89EB-4334-82E9-D59FFD72E7D7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{CF3C5025-64E3-44D6-8A39-6BB1A62581D3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{47AFEE0C-6D32-44A1-A745-8EDC176BD6C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [{244A19F6-D8CE-4AD0-AF66-CE8EA2F0AC02}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rust\Rust.exe FirewallRules: [TCP Query User{4EEC2BFC-2D61-4AAC-9C08-81279DAADFAE}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{85B161AD-8EBB-4FE3-89A9-1474BD192638}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{ECAC0584-66B0-4544-BB13-856EA3969B18}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{31F9259D-1D8D-4A6D-95C4-F5CB550966B6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{5D92B8D1-D508-47C8-9345-32C08AC50004}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [{FE28168C-8980-4186-BF8A-545499AE3264}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Arma 3\arma3launcher.exe FirewallRules: [TCP Query User{F0AAFDD1-E6C4-431D-AF57-A22E0322CFBB}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe FirewallRules: [UDP Query User{70F54966-19A8-466B-9B71-6171A16F273C}C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\arma 3\arma3_x64.exe FirewallRules: [{B1ECA26F-9345-4655-A988-6FC8C691FE84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{841426C6-1F38-469B-A1CC-440D33747E3B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Skyrim\skse_steam_boot.exe FirewallRules: [{AF306F94-2A46-4260-BC97-A8F57F6D73B3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{7E191670-802B-4F75-8301-F8D36838C0EF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{838E3F9C-0E5C-4D51-B552-780201D509A5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{4C54C4C7-24F4-4D0B-BAC5-4F5237B46DAD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{7881CE15-BFC2-46BA-934D-92EF1F278EF4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{3CF9A07C-8E6A-4AEA-A07E-03957F078BC3}C:\users\leejo\appdata\local\crossout\launcher.exe] => (Allow) C:\users\leejo\appdata\local\crossout\launcher.exe FirewallRules: [UDP Query User{0FF58CE0-084E-4CAD-BA55-9E244959E2B9}C:\users\leejo\appdata\local\crossout\launcher.exe] => (Allow) C:\users\leejo\appdata\local\crossout\launcher.exe FirewallRules: [TCP Query User{3CDF84CC-4CEC-4F05-A41F-DD204B627D12}C:\users\leejo\desktop\startup.company.beta.12.4\startupcompany.exe] => (Allow) C:\users\leejo\desktop\startup.company.beta.12.4\startupcompany.exe FirewallRules: [UDP Query User{EF45C89F-2C3F-456D-9672-5D342CDE6A19}C:\users\leejo\desktop\startup.company.beta.12.4\startupcompany.exe] => (Allow) C:\users\leejo\desktop\startup.company.beta.12.4\startupcompany.exe FirewallRules: [TCP Query User{98399AE4-0050-4846-9174-A5EB33FB0EC6}C:\program files (x86)\the escapists 2\theescapists2.exe] => (Allow) C:\program files (x86)\the escapists 2\theescapists2.exe FirewallRules: [UDP Query User{091DBD1E-BEE6-405E-B973-05641CF2B16B}C:\program files (x86)\the escapists 2\theescapists2.exe] => (Allow) C:\program files (x86)\the escapists 2\theescapists2.exe FirewallRules: [{78ABBBA0-CE87-43D6-9F2F-1AE717C20554}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\AOEOnline.exe FirewallRules: [{26FB6DF3-37A0-4842-B9A1-0FBA3BD1BF13}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\AOEOnline.exe FirewallRules: [{640EF402-887B-43A6-AB87-BEF9F2C92BEF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Celeste_Launcher_Gui.exe FirewallRules: [{1F2D4EC8-EC80-4095-AF71-F3427EC3F157}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Celeste_Launcher_Gui.exe FirewallRules: [{85851314-E174-4360-9EC5-72A46ACE7483}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Celeste_Launcher_Gui.exe FirewallRules: [{95F6E363-46AE-4C33-A5DE-9F8734615E7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Celeste_Launcher_Gui.exe FirewallRules: [{DA664310-50FB-4DEC-936D-8547952EBB7F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Spartan.exe FirewallRules: [{E2E0BE5C-F148-41ED-AF4A-C140322C82E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Spartan.exe FirewallRules: [{B63624AA-5DFF-457C-A120-D3EE3B2CB41A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Spartan.exe FirewallRules: [{F64CFE0D-EA8C-4B20-B513-C15A94A7B97A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires Online\Spartan.exe FirewallRules: [{AC38001B-B02D-436C-AC05-89902476DF41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [{57A4D927-5F30-47AD-961F-88F3DC696465}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\DayZ\DayZ_BE.exe FirewallRules: [TCP Query User{384C7D7B-F08C-46A2-BDF7-09071B5FB0F0}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [UDP Query User{1767897F-BF5F-4FB7-8A13-4ADEBEDAAC60}C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dayz\dayz.exe FirewallRules: [{B9CD486F-9F0D-4A85-BB41-7D1036C81B51}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{05609259-A61B-47E6-BCFB-349E76AEB32B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe FirewallRules: [{2EA34AA5-70BE-4410-935B-A81CD5E7BF8E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{4C56988F-F2C7-42BC-82F9-9EAFCB962D4B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{0314D3C8-1C46-4A2C-88FF-1AAF5531380D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe FirewallRules: [{34559911-96F9-4461-9A27-82CD1E30054B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe FirewallRules: [{40356EA5-3696-48E8-A984-F79C20260169}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{549C4E2C-3E7C-4976-8A2C-9F70D317191A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe FirewallRules: [{D9A38FCC-D299-4889-9BE9-B136A2005334}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe FirewallRules: [{56CD2CBA-6523-484C-ACDF-F5AE34C46145}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Broforce\Broforce_beta.exe FirewallRules: [{7C6C0982-F505-4A42-BC57-0D87B28169B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Supraball\launcher\supraball-launcher.exe FirewallRules: [{4C2B4914-15A8-4E3A-9D8E-C404178979AC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Supraball\launcher\supraball-launcher.exe FirewallRules: [TCP Query User{3E7F95F8-D2D6-4868-9167-3576305C99E5}C:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe FirewallRules: [UDP Query User{51D078F9-8870-4D3E-A2EC-14AAD7752A50}C:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\supraball\binaries\win32\udk.exe FirewallRules: [{01820766-42A0-4A00-93B6-53D86938E73D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB_BE.exe FirewallRules: [{47399CC3-EF5C-4B5A-B9B1-70318F9B196E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB_BE.exe FirewallRules: [{7DEE24E1-D1AA-48B8-9349-D632A836E9E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{47E8118F-7F65-41F2-8C57-19A3FCC838AF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe FirewallRules: [{1747D5FC-4E84-4299-B99D-DD56B4206444}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{C2B610F2-99FA-4F48-8998-DFAA72CB3430}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [TCP Query User{579590D6-1180-48CE-9D3A-74E65566ED10}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{DB37A3E0-6618-42E1-B7A8-32AD7B650BA5}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{235FA2B8-AE1C-4189-B849-734A5CC32AEE}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe FirewallRules: [{59254BB6-0006-4E58-88E6-70BBD805C31B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{6A35113A-F8E5-41CD-9DD9-8BD110FD08DC}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe FirewallRules: [{442A7FD0-679E-48E4-BF24-78223E05B21F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe FirewallRules: [{7EA5CCB3-64AC-4B70-9F7F-3A0D63BCD01A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{56FF0FFD-5A1C-4671-8655-87973EB5665A}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{E77C5BF4-24C4-49DB-B52A-BFD5E99A7E70}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{F6B708F0-5BED-4468-8222-45A797DBB887}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe FirewallRules: [{F3DDD037-A572-4D5A-BAF8-74524D847F1E}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe ==================== Points de restauration ========================= 07-08-2018 20:17:18 Programme d’installation pour les modules Windows 08-08-2018 22:17:26 Programme d’installation pour les modules Windows 10-08-2018 00:17:40 Programme d’installation pour les modules Windows 11-08-2018 12:10:09 Programme d’installation pour les modules Windows 13-08-2018 21:33:07 Programme d’installation pour les modules Windows 14-08-2018 23:05:34 Programme d’installation pour les modules Windows 15-08-2018 23:13:08 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/16/2018 02:31:22 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O1G149K) Description: httphttp-2147467263 Error: (08/16/2018 01:07:34 PM) (Source: MsiInstaller) (EventID: 11316) (User: AUTORITE NT) Description: Product: Google Update Helper -- Error 1316. Le compte spécifié existe déjà. Error: (08/16/2018 12:45:09 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O1G149K) Description: httphttp-2147467263 Error: (08/16/2018 12:39:21 PM) (Source: Windows Search Service) (EventID: 7042) (User: ) Description: Le service de recherche Windows a été arrêté à cause d’un problème avec l’indexeur : Échec de la phase de récupération. Contexte : Application , Catalogue SystemIndex Détails : Fermeture du rassembleur en cours (HRESULT : 0x80040d23) (0x80040d23) Error: (08/16/2018 12:39:21 PM) (Source: Windows Search Service) (EventID: 3602) (User: ) Description: ID d’erreur 1 survenu lors de l’étape de récupération de Windows Search. Redémarrez le service. Si l’erreur persiste, recréez l’index. Contexte : Application , Catalogue SystemIndex Détails : Fermeture du rassembleur en cours (HRESULT : 0x80040d23) (0x80040d23) Error: (08/15/2018 11:38:54 PM) (Source: MsiInstaller) (EventID: 10005) (User: AUTORITE NT) Description: Produit : Office 16 Click-to-Run Extensibility Component -- Windows Installer a rencontré une erreur inattendue lors de l’installation de ce package. Il s’agit peut-être d’un problème lié au package. Le code d’erreur est 2333. Les arguments sont : 32, c:\WINDOWS\Installer\, Error: (08/13/2018 09:34:16 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O1G149K) Description: httphttp-2147467263 Error: (08/12/2018 10:49:45 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-O1G149K) Description: httphttp-2147467263 Erreurs système: ============= Error: (08/16/2018 04:27:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (08/16/2018 04:27:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 8000 millisecondes : Redémarrer le service. Error: (08/16/2018 04:27:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 8000 millisecondes : Redémarrer le service. Error: (08/16/2018 04:27:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Telemetry Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service. Error: (08/16/2018 04:27:09 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service. Error: (08/16/2018 04:27:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service. Error: (08/16/2018 02:31:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-O1G149K) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-O1G149K\leejo de l’utilisateur (S-1-5-21-30635440-4163099551-1822413230-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/16/2018 02:30:43 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-O1G149K) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID DESKTOP-O1G149K\leejo de l’utilisateur (S-1-5-21-30635440-4163099551-1822413230-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2018-08-13 21:44:23.599 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {521B468D-1F57-4676-BFC8-0F386617C691} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-08 17:58:20.943 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {92B80F63-5139-4E10-9629-FA134BAA3B56} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-07 22:23:48.016 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {A8C0C57E-C83D-4F20-92DD-89A3E4A40AA5} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-07 20:31:25.672 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {B9DE9611-7EE9-40A6-A5A2-E32D4E032281} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-15 23:22:41.701 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.273.1393.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15100.1 Code d’erreur : 0x80240016 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =================================== Date: 2018-07-21 16:24:43.212 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-21 16:24:43.202 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-21 16:05:08.203 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-21 16:05:08.192 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-21 15:44:59.262 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-21 15:44:59.251 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-09 01:17:19.074 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. Date: 2018-07-09 01:17:19.064 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\nvspcap64.dll because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-4690K CPU @ 3.50GHz Pourcentage de mémoire utilisée: 23% Mémoire physique - RAM - totale: 8142.64 MB Mémoire physique - RAM - disponible: 6203.86 MB Mémoire virtuelle totale: 12750.64 MB Mémoire virtuelle disponible: 10745.26 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:1862.07 GB) (Free:1596.58 GB) NTFS \\?\Volume{81087fb9-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{81087fb9-0000-0000-0000-90a3d1010000}\ () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 81087FB9) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=1862.1 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=470 MB) - (Type=27) ==================== Fin de Addition.txt ============================