Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 19.08.2018 02 Exécuté par Hicham (20-08-2018 16:06:33) Exécuté depuis C:\Users\Hicham\Desktop Windows 10 Home Version 1803 17134.228 (X64) (2018-08-17 02:41:11) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1929890749-651209269-2752319330-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1929890749-651209269-2752319330-503 - Limited - Disabled) defaultuser0 (S-1-5-21-1929890749-651209269-2752319330-1001 - Limited - Disabled) => C:\Users\defaultuser0 Hicham (S-1-5-21-1929890749-651209269-2752319330-1002 - Administrator - Enabled) => C:\Users\Hicham Invité (S-1-5-21-1929890749-651209269-2752319330-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1929890749-651209269-2752319330-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 1Clipboard (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\1Clipboard) (Version: 0.1.8 - NGWIN) Action! (HKLM-x32\...\Mirillis Action!) (Version: 2.0.7 - Mirillis) Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_2_1) (Version: 14.2.1 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 29.0.0.112 - Adobe Systems Incorporated) Adobe Animate CC 2018 (HKLM-x32\...\FLPR_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.1.298 - Adobe Systems Incorporated) Adobe Flash Player 30 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_2) (Version: 19.1.2 - Adobe Systems Incorporated) Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated) AEGIS II - Boost Launcher (HKLM-x32\...\{4829AFF2-F50E-44F6-8BC5-C985F2C24CE1}) (Version: 3.00.06 - ASUSTeK Computer Inc.) AEGIS II - GameALive (HKLM-x32\...\{9A689EB4-C4FA-49C1-80A5-EC49A7F43046}) (Version: 3.00.21 - ASUSTeK Computer Inc.) AEGIS II - Lighting (HKLM-x32\...\{E7691292-4F73-4EC6-A3F8-126BFDC987F5}) (Version: 3.00.19 - ASUSTeK Computer Inc.) AEGIS II - System Usage (HKLM-x32\...\{E8D6582C-D43C-452A-9F75-1D8C6BC0AA12}) (Version: 3.00.06 - ASUSTeK Computer Inc.) AEGIS II - Threshold Setting (HKLM-x32\...\{6C5979A6-97A8-4D0C-8A3F-4F49D2A13055}) (Version: 3.00.07 - ASUSTeK Computer Inc.) AEGIS II (HKLM-x32\...\{A9FDB6CC-F2D6-4903-87BC-1537931F11B0}) (Version: 2.01.05 - ASUSTeK Computer Inc.) AEGIS II Installation Wizard (HKLM-x32\...\{00087100-B4B1-405D-A902-59EE60F88CBC}) (Version: 1.01.01 - ASUSTeK Computer Inc.) AirDroid 3.6.3.0 (HKLM-x32\...\AirDroid) (Version: 3.6.3.0 - Sand Studio) AnalogX NetStat Live (HKLM-x32\...\AnalogX NetStat Live) (Version: - AnalogX) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology) Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version: - Ubisoft) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22532 - Microsoft Corporation) ASUS App Box (HKLM-x32\...\{F0CE6060-50B1-401E-8357-B6E24DB98D21}) (Version: 1.01.09 - ASUSTeK Computer Inc.) ASUS Command - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.18 - ASUSTeK Computer Inc.) ASUS Command - Ai Charger II (HKLM-x32\...\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}) (Version: 2.01.13 - ASUSTeK Computer Inc.) ASUS Command - Backup & Recovery (HKLM-x32\...\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}) (Version: 2.01.18 - ASUSTeK Computer Inc.) ASUS Command - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.01.20 - ASUSTeK Computer Inc.) ASUS Command - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.02.09 - ASUSTeK Computer Inc.) ASUS Command - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.05.05 - ASUSTeK Computer Inc.) ASUS Command (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.12.00 - ASUSTeK Computer Inc.) ASUS Oculus Wizard (HKLM-x32\...\{E4B59A43-F230-4901-974A-9949A8AB6378}) (Version: 1.02.01 - ASUSTeK COMPUTER INC.) Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.95 - ICEpower a/s) AutoHotkey 1.1.26.00 (HKLM\...\AutoHotkey) (Version: 1.1.26.00 - Lexikos) Bandicam (HKLM-x32\...\Bandicam) (Version: 4.1.2.1385 - Bandicam.com) Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com) Blender (HKLM\...\{DEA73CCA-7EC9-41EA-8509-1041C1CABFD0}) (Version: 2.78.3 - Blender Foundation) BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.7.34.1574 - BlueStack Systems, Inc.) Brave (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\Brave) (Version: 0.22.810 - Brave Software) Clavier+ 10.7.2 (HKLM\...\Clavier+_is1) (Version: 10.7.2 - Guillaume Ryder) CPUID CPU-Z 1.83 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.83 - CPUID, Inc.) Crossout Launcher 1.0.3.62 (HKLM-x32\...\CrossOutLauncher_is1) (Version: - ) Cuphead (HKLM-x32\...\1963513391_is1) (Version: 20170929 - GOG.com) Cuphead (HKLM-x32\...\Cuphead_is1) (Version: - ) CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version: - CyberGhost S.A.) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.6.0.0275 - Disc Soft Ltd) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.5 - ASUSTek COMPUTER INC.) Discord (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\Discord) (Version: 0.0.299 - Discord Inc.) Epic Games Launcher (HKLM-x32\...\{2E067A1E-46DE-45D9-A472-F35D7AD95F98}) (Version: 1.1.139.0 - Epic Games, Inc.) Farm Animal Sounds (HKLM-x32\...\{20052CA0-FF43-4901-8261-E6DBF0A09ED1}) (Version: 1.1.0 - Screaming Bee) FilmImpact.net - Bounce Pack (HKLM-x32\...\FilmImpact.net Bounce Pack) (Version: 3.6.14 - FilmImpact.net) FilmImpact.net - Transition Pack 1 (HKLM-x32\...\FilmImpact.net Transition Pack 1) (Version: 3.6.12 - FilmImpact.net) FilmImpact.net - Transition Pack 4 (HKLM-x32\...\FilmImpact.net Transition Pack 4) (Version: 3.6.3 - FilmImpact.net) ForHonor (HKLM-x32\...\Uplay Install 569) (Version: - Ubisoft) FreeMouseAutoClicker 3.8.2 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version: - Advanced Mouse Auto Clicker ltd.) Ghost Mouse Auto Clicker 4.0.9 (HKLM-x32\...\{62D023F4-CFDF-4E49-9DAA-52DFF37E6C73}_is1) (Version: - AMAC Ltd.) Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.) GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 68.0.3440.106 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.0.0.11" - Rockstar Games) Gwent (HKLM-x32\...\1971477531_is1) (Version: 0.9.8 public beta - GOG.com) Hextech Repair Tool (HKLM-x32\...\{7F9A97E6-E666-11E5-B582-B88687E82322}) (Version: 1.1.91 - Riot Games, Inc.) Hideman 3.3.0.0 (HKLM\...\Hideman) (Version: 3.3.0.0 - ) Infinity (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\Infinity) (Version: 3.0.23 - WeMod) Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation) Intel(R) Chipset Device Software (HKLM-x32\...\{fb610cea-ba50-4d4b-a717-cf025419035c}) (Version: 10.1.1.13 - Intel(R) Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.6.0.1029 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation) Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation) JPEXS Free Flash Decompiler (HKLM-x32\...\{E618D276-6596-41F4-8A98-447D442A77DB}_is1) (Version: 11.1.0 - JPEXS) Kaspersky Internet Security (HKLM-x32\...\{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Kaspersky Secure Connection (HKLM-x32\...\{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games) LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.) Macro Recorder 5.8.0 (HKLM-x32\...\Macro Recorder_is1) (Version: 5.8.0 - Jitbit Software) Magicka 2: Ice, Death and Fury (HKLM\...\bWFnaWNrYTJpY2VkZWF0aGFuZGZ1cnk_is1) (Version: 1 - ) Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes) MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) MEmu (HKLM-x32\...\MEmu) (Version: 5.5.5.0 - Microvirt Software Technology Co. Ltd) Microsoft Office 365 - da-dk (HKLM\...\O365HomePremRetail - da-dk) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - el-gr (HKLM\...\O365HomePremRetail - el-gr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - fi-fi (HKLM\...\O365HomePremRetail - fi-fi) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - it-it (HKLM\...\O365HomePremRetail - it-it) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - nb-no (HKLM\...\O365HomePremRetail - nb-no) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - pt-pt (HKLM\...\O365HomePremRetail - pt-pt) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - sv-se (HKLM\...\O365HomePremRetail - sv-se) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - tr-tr (HKLM\...\O365HomePremRetail - tr-tr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - zh-cn (HKLM\...\O365HomePremRetail - zh-cn) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office 365 - zh-tw (HKLM\...\O365HomePremRetail - zh-tw) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProplusRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\OneDriveSetup.exe) (Version: 18.151.0729.0005 - Microsoft Corporation) Microsoft Project Professionnel 2016 - fr-fr (HKLM\...\ProjectProRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Visio Professionnel 2016 - fr-fr (HKLM\...\VisioProRetail - fr-fr) (Version: 16.0.10730.20030 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mises à jour NVIDIA 29.1.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 29.1.0.0 - NVIDIA Corporation) Hidden MorphVOX Pro (HKLM-x32\...\{DE289787-7ECA-4BED-9D8C-99FAC407E3D6}) (Version: 4.3.13 - Screaming Bee) MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Mozilla Firefox 61.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.1 (x64 fr)) (Version: 61.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla) NetWorx 6.2.1 (HKLM\...\NetWorx_is1) (Version: - SoftPerfect Pty Ltd) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.4.2 - Notepad++ Team) Nox APP Player (HKLM-x32\...\Nox) (Version: 6.0.1.1 - Duodian Technology Co. Ltd.) NVIDIA 3D Vision Controller Driver 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation) NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 375.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 375.63 - NVIDIA Corporation) NVIDIA Pilote graphique 375.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.63 - NVIDIA Corporation) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.0.1 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0404-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0406-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0408-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040B-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0410-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0413-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0414-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-041D-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-041F-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0804-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0816-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.10730.20030 - Microsoft Corporation) Hidden Opera Stable 54.0.2952.71 (HKLM-x32\...\Opera 54.0.2952.71) (Version: 54.0.2952.71 - Opera Software) Oracle VM VirtualBox 5.2.0 (HKLM\...\{3E34086D-2D0A-4E8B-84BE-CC185D64EE8E}) (Version: 5.2.0 - Oracle Corporation) osu! (HKLM-x32\...\{88bb69ec-0e5c-471a-9186-ddd1c472bcd1}) (Version: latest - ppy Pty Ltd) Oxenfree (HKLM-x32\...\{7EFDCDB3-3A17-48DF-BBE2-3BF21919CE2F}) (Version: - Night School Studio) paint.net (HKLM\...\{E8FA8815-3817-4128-A814-E2EAC456ADF0}) (Version: 4.0.21 - dotPDN LLC) Panneau de configuration NVIDIA 375.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 375.63 - NVIDIA Corporation) Hidden Parsec (HKLM-x32\...\Parsec) (Version: - Parsec Cloud Inc.) Pentablet version 1.4.5.180418 (HKLM\...\{5DAB8C1A-6D8E-467D-BE62-AC13087AA950}_is1) (Version: 1.4.5.180418 - XPPEN Technology) Pivot Animator version 4.1.10 (HKLM-x32\...\Pivot Animator_is1) (Version: 4.1.10 - Motus Software Ltd) Portal 2 (HKLM-x32\...\Postal 2_is1) (Version: - ) Portal Knights (HKLM-x32\...\Portal Knights_is1) (Version: - ) Quest version 0.1.2 (HKLM-x32\...\{A350AC1A-B548-48E4-9599-EF0A446F9026}_is1) (Version: 0.1.2 - Laupok) Rayman Legends (HKLM-x32\...\UmF5bWFuTGVnZW5kcw==_is1) (Version: 1 - ) REALTEK Bluetooth Filter Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AD}) (Version: 1.3.879.110515 - REALTEK Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7586 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) ROBLOX Player for Hicham (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation) Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.0 - Rockstar Games) ScpToolkit (HKLM\...\{1EA84ED4-28D4-4836-BF8B-0E31BF1704C5}) (Version: 1.7.277.16103 - Nefarius Software Solutions) Sid Meiers Civilization VI Persia and Macedon Civilization and Scenario Pack (HKLM\...\c2lkbWVpZXJzY2l2aWxpemF0aW9udmk_is1) (Version: 1 - ) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.) South Park: The Fractured... (HKLM-x32\...\South Park: The Fractured..._is1) (Version: - ) SPORE™ Collection (HKLM-x32\...\1948823323_is1) (Version: 2.0.0.5 - GOG.com) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Super macro 3.1 (HKLM-x32\...\Super macro) (Version: 3.1 - ) SUPERHOT (HKLM-x32\...\{62F505D5-9210-4784-9094-17CDC868F6DA}) (Version: - SUPERHOT Sp. z o.o.) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Taskbar Hide (HKLM-x32\...\Taskbar Hide) (Version: - ) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4.2 - TeamSpeak Systems GmbH) TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer) The Escapists 2 - Wicked Ward (HKLM-x32\...\The Escapists 2 - Wicked Ward_is1) (Version: - ) The Witcher 3 - Wild Hunt (HKLM-x32\...\1495134320_is1) (Version: 2.0.0.51 - GOG.com) Trove (HKLM-x32\...\Glyph Trove) (Version: - Trion Worlds, Inc.) TroveTools .NET (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\0ad522f4516a2a4e) (Version: 1.2.0.5 - Dazo) Twitch (HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.) Twitch Leecher 1.5.2 (HKLM\...\{8A2657AC-EFBB-4D51-BE2D-E0F0AB925E51}) (Version: 1.5.2.0 - Franiac) Hidden Twitch Leecher 1.5.2 (HKLM-x32\...\{f42402e2-a4bf-40b0-be44-29cddfa1fb82}) (Version: 1.5.2.0 - Franiac) UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden UnHackMe 9.96 (HKLM-x32\...\UnHackMe_is1) (Version: - Greatis Software, LLC.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{A951B9A0-13C0-4A4B-8E04-3CCF05701086}) (Version: 2.47.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden Uplay (HKLM-x32\...\Uplay) (Version: 42.0 - Ubisoft) Vegas Pro 13.0 (64-bit) (HKLM\...\{CE20A68F-BFBC-11E3-AA73-F04DA23A5C58}) (Version: 13.0.290 - Sony) VEGAS Pro 15.0 (HKLM\...\{E1892AB0-7FC4-11E7-9146-95BE57594EAC}) (Version: 15.0.177 - VEGAS) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN) Vocaloid3 Free Edition v3.0.5.0 third release (HKLM-x32\...\Vocaloid3 Free Edition v3.0.5.0 third release_is1) (Version: Vocaloid3 Free Edition v3.0.5.0 third release - ) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Watch_Dogs (HKLM-x32\...\Uplay Install 274) (Version: - Ubisoft) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.9.564 - ASUS Cloud Corporation) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Wondershare Filmora(Build 8.5.3) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1929890749-651209269-2752319330-1002_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-DA081500211E}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1929890749-651209269-2752319330-1002_Classes\CLSID\{23066764-9BDD-4FBD-8B1F-F4547CF2684F}\InprocServer32 -> C:\Users\Hicham\AppData\Local\Microsoft\OneDrive\18.070.0405.0002\amd64\FileSyncShell64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1929890749-651209269-2752319330-1002_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] () ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] () ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] () ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.9.564\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] () ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2017-06-18] () ContextMenuHandlers1: [BtSendToMenuEx] -> {CF24E6B8-F148-4BCB-9108-ADF313966E80} => -> Pas de fichier ContextMenuHandlers1: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2018-05-09] (AO Kaspersky Lab) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers2: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2018-05-09] (AO Kaspersky Lab) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Windows\system32\mscoree.dll [2018-04-12] (Microsoft Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2018-05-09] (AO Kaspersky Lab) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll [2017-10-18] () ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-10-22] (NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-02-10] () ContextMenuHandlers6: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\ShellEx.dll [2018-05-09] (AO Kaspersky Lab) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {03279D88-FA90-4448-96E5-77B9DA04E916} - System32\Tasks\ASUS\AEGIS II Alert Helper => C:\Program Files (x86)\ASUS\AEGIS II\AEGIS_II_AlertService.exe [2015-02-12] (ASUSTeK Computer Inc.) Task: {0445C850-7FD7-408D-9F5C-C0B6722AC532} - System32\Tasks\AdobeGCInvoker-1.0-PC-Hicham => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated) Task: {0996FE72-2523-4533-B316-2903A3FAB986} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation) Task: {0AF160F6-6395-477B-B698-4E00DDA3B7D6} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation) Task: {0C97E902-B004-44CE-9D64-65D0A563EFCB} - System32\Tasks\ASUS\ASUS AiCharger_II TrayIcon => C:\Program Files (x86)\ASUS\ASUS Manager\Ai Charger II\Ai_ChargerII_TrayIcon(ASUS_Manager).exe [2015-07-08] (ASUSTeK) Task: {1C6927C4-6084-4CE5-A538-DE2DBA72EAD5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-05] (Google Inc.) Task: {1FC5F074-18C2-4A2D-A1B5-8C0DE4A344F0} - System32\Tasks\ASUS\ASUS Manager HotKey Service => C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe [2016-03-25] (ASUSTeK Computer Inc.) Task: {24A0FFB9-D2FA-4D8A-8AEF-CCD4BE98A3C4} - System32\Tasks\ASUS\AEGIS_II Lighting CD_Rom Execute => C:\Program Files (x86)\ASUS\AEGIS II\Lighting\CheckCD_RomLighting.exe [2015-09-24] () Task: {26C7EEDE-D0A7-422E-B9E8-0848BEC433BF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-16] (Microsoft Corporation) Task: {29DA9505-A838-455E-A44A-960A7D6C34A5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-10] (Microsoft Corporation) Task: {2FEDB036-2D2A-4D76-981A-6F29614DC6AE} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-07-08] (ASUSTek COMPUTER INC.) Task: {33B8EF35-F310-451F-BF3B-1BECC17FACEC} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-10-11] (NVIDIA Corporation) Task: {3D11885F-234F-47B3-9775-D8CF59BC9F60} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-08-14] (Adobe Systems Incorporated) Task: {5C949EF8-6012-4714-968E-EEBCB9C2DAD4} - System32\Tasks\ASUS\ASUS Update Checker => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe [2016-07-15] () Task: {64CCE7CC-74BB-4F98-A83B-9F1642D69554} - System32\Tasks\ScpUpdater => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe [2016-04-12] (Nefarius Software Solutions) Task: {652F0F2A-2166-4807-8DC2-42070058E113} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-11] (NVIDIA Corporation) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {6B092A3A-573A-4765-A24B-CF3857E42EEC} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-10-11] (NVIDIA Corporation) Task: {6B36CC8C-84F6-442C-84D8-B7AE98F43262} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-10-11] (NVIDIA Corporation) Task: {6BF5ECBA-E768-46B7-9169-A262E4CFA8C3} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation) Task: {75D390C7-EF42-4805-BA8E-89E7310FAD27} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_pepper.exe [2018-08-14] (Adobe Systems Incorporated) Task: {761208CD-E67C-411D-B383-AFBB9E080BDE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation) Task: {7D48707E-9CC3-4663-9895-D3827ED24896} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation) Task: {81F1A366-D647-4563-889B-F251BC6A548F} - System32\Tasks\ASUS\ASUS AiCharger_Desktop Execute => C:\Program Files (x86)\InstallShield Installation Information\{9AF45D7C-34F1-4BA0-B799-825C8C04494C}\AiChargerDT.exe [2013-04-03] (ASUSTek Computer Inc.) <==== ATTENTION Task: {852098E8-F486-4DF0-A8FC-3722688F7C94} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-1929890749-651209269-2752319330-1002 => C:\Users\Hicham\AppData\Local\MEGAsync\MEGAupdater.exe [2018-01-15] (Mega Limited) Task: {88FDA56C-AEAD-455A-800D-52946D2EE4DD} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2016-02-19] (Intel(R) Corporation) Task: {8C188333-FBB6-43D5-BF97-FF2FFAA3DB4B} - System32\Tasks\ASUS\AEGIS_II Lighting AudioDetect Execute => C:\Program Files (x86)\ASUS\AEGIS II\Lighting\AudioDetect.exe [2015-08-11] () Task: {93A52174-F6C7-4FA4-9B1D-076C485201EA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-08-16] (Microsoft Corporation) Task: {982FA382-7C92-4B56-BA11-020BE52CCA26} - System32\Tasks\ASUS\AEGIS II Matrix => C:\Program Files (x86)\ASUS\AEGIS II\LaunchAtStartupHelper.exe [2015-03-13] () Task: {9A52B29D-ED65-45D4-BF16-376EAF7AE1D7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MpCmdRun.exe [2018-07-31] (Microsoft Corporation) Task: {A0DC9D37-852C-4A2E-91F2-AA77A4B4C18E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-08-16] (Microsoft Corporation) Task: {A50C3C65-3FB6-4E4D-A028-0131D729CB48} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-10-11] (NVIDIA Corporation) Task: {A6AD923B-F120-4EFB-A8D9-92CBB43C0CE9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-08-10] (Microsoft Corporation) Task: {A80B754E-83E5-462C-A44D-209D29F5DED3} - System32\Tasks\UnHackMe Task Scheduler => C:\Program Files (x86)\UnHackMe\hackmon.exe [2018-07-18] (Greatis Software) Task: {A8C6D8BD-FC27-4AE6-A071-8549E98BD69F} - System32\Tasks\ASUS\ASUS Updater => C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSFourceUpdater.exe [2016-07-15] () Task: {A93EFAFA-AB5F-444F-A681-555464B65B48} - System32\Tasks\Opera scheduled Autoupdate 1531913735 => C:\Program Files\Opera\launcher.exe [2018-08-07] (Opera Software) Task: {AAB77148-A189-4BEA-96B4-E40814B12AEF} - System32\Tasks\AdobeAAMUpdater-1.0-PC-Hicham => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated) Task: {AD5B4AE2-584E-4E42-A3FF-2E723919893F} - System32\Tasks\ASUS\AEGIS II System Level Up Helper => C:\Program Files (x86)\ASUS\AEGIS II\AEGIS_II_AsSysLevelUpSrc.exe [2015-02-12] (ASUSTeK Computer Inc.) Task: {AEF0A0E9-9785-49BD-A498-2B34D418B256} - System32\Tasks\ASUS\AEGIS II - Boost Launcher => C:\Program Files (x86)\ASUS\AEGIS II\Boost Launcher\BLMonitor.exe [2015-04-20] () Task: {B9545AAE-41BE-4C5A-B2DA-907A2EFE84FC} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-10-11] (NVIDIA Corporation) Task: {C405CC89-9BDE-40D9-8A7D-CA2FE959AE80} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-08-16] (Microsoft Corporation) Task: {C705E8D6-37A9-4316-A4B1-7C7DC7C6D6EE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-08-16] (Microsoft Corporation) Task: {C9075834-312F-4969-AA91-997C8323EF60} - System32\Tasks\S-1-5-21-1929890749-651209269-2752319330-1002\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-04-12] (Microsoft Corporation) Task: {CA7184B0-950C-45B0-80FC-B57ED95C8BC6} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe Task: {CDCEF4C3-4D2E-491E-A982-80666EBA16FE} - System32\Tasks\ASUS\AEGIS II Toast Helper => C:\Program Files (x86)\ASUS\AEGIS II\AEGIS_II_AsToastHelper.exe [2015-02-12] (ASUSTeK Computer Inc.) Task: {F05DE657-3521-4622-9BDA-C56AD9B88978} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {F1104409-8A5A-4878-BDEE-3F7C7E141416} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-05] (Google Inc.) Task: {F1555E0A-3214-48A2-A7B3-FEC0FD14637F} - System32\Tasks\ASUS\AEGIS II SysInfo Helper => C:\Program Files (x86)\ASUS\AEGIS II\AEGIS_II_SysMode.exe [2015-04-22] (ASUSTeK Computer Inc.) Task: {F6EE3D82-1A99-4238-8FED-A05E702EA698} - System32\Tasks\Microsoft\Office\OfficeOsfInstaller => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\osfinstaller.exe [2018-08-16] (Microsoft Corporation) Task: {FA3B0CA3-1286-4E6E-91A3-C6DF017135D2} - System32\Tasks\ASUS\ASUS Manager BackgroundWindow => C:\Program Files (x86)\ASUS\ASUS Manager\BackgroundWindow.exe [2016-03-25] () (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\ScpUpdater.job => C:\Program Files\Nefarius Software Solutions\ScpToolkit\ScpUpdater.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Hicham\Desktop\Action.lnk -> C:\Program Files (x86)\Mirillis\Action!\Action!.bat () ==================== Modules chargés (Avec liste blanche) ============== 2017-02-02 10:47 - 2015-07-21 05:19 - 000121560 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth Filter ONLY\BTDevMgr.exe 2017-10-30 21:21 - 2017-10-11 03:01 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-08-01 22:12 - 2018-06-18 13:32 - 002433744 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2018-08-17 14:05 - 2018-06-22 12:27 - 000085296 _____ () C:\Program Files\Microvirt\MEmu\MemuService.exe 2017-07-02 21:23 - 2016-10-13 11:32 - 000936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe 2017-07-11 18:16 - 2016-10-22 08:04 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2017-07-02 21:26 - 2015-09-24 17:12 - 000021456 _____ () C:\Program Files (x86)\ASUS\AEGIS II\Lighting\CheckCD_RomLighting.exe 2017-07-02 21:25 - 2015-04-20 17:55 - 001011712 _____ () C:\Program Files (x86)\ASUS\AEGIS II\Boost Launcher\BLMonitor.exe 2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2017-10-18 23:51 - 2017-10-18 23:51 - 000598528 _____ () C:\Users\Hicham\AppData\Local\MEGAsync\ShellExtX64.dll 2018-02-10 02:12 - 2018-02-10 02:12 - 000614856 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll 2017-02-02 10:51 - 2014-08-28 00:48 - 000907776 _____ () C:\Windows\PCCleanupContextMenu\x64\ContextMenuHandler.dll 2017-07-02 21:25 - 2015-04-20 18:06 - 000860160 _____ () C:\Windows\BoostLauncherMenu\x64\ContextMenuHandler.dll 2017-06-18 23:44 - 2017-06-18 23:44 - 000230064 _____ () C:\Program Files\Notepad++\NppShell_06.dll 2018-08-17 11:20 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-07-17 11:45 - 2018-07-17 11:45 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-07-17 11:45 - 2018-07-17 11:45 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-07-17 11:45 - 2018-07-17 11:45 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-07-17 11:45 - 2018-07-17 11:45 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll 2018-07-17 11:45 - 2018-07-17 11:45 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2018-07-04 00:01 - 2018-07-04 00:01 - 001960448 _____ () C:\Users\Hicham\AppData\Roaming\Parsec\electron\ffmpeg.dll 2018-07-04 00:01 - 2018-07-04 00:01 - 003429376 _____ () C:\Users\Hicham\AppData\Roaming\Parsec\electron\libglesv2.dll 2018-07-04 00:01 - 2018-07-04 00:01 - 000017408 _____ () C:\Users\Hicham\AppData\Roaming\Parsec\electron\libegl.dll 2018-08-17 14:05 - 2018-05-31 05:01 - 000895360 _____ () C:\Program Files\Microvirt\MEmu\adb.exe 2018-08-17 14:05 - 2018-06-29 11:29 - 000050488 _____ () C:\Program Files\Microvirt\MemuHyperv\MEmuRecordApi.dll 2018-08-17 14:05 - 2018-07-10 04:01 - 001235744 _____ () C:\Program Files\Microvirt\MemuHyperv\libOpenglRender.dll 2018-08-17 14:05 - 2018-07-04 08:05 - 000381744 _____ () C:\Program Files\Microvirt\MemuHyperv\libEGL.DLL 2018-08-17 14:05 - 2018-07-04 08:05 - 005154096 _____ () C:\Program Files\Microvirt\MemuHyperv\libGLESv2.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2018-08-17 05:08 - 2018-08-17 05:09 - 069226496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 000049664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll 2017-09-26 14:55 - 2017-09-26 14:57 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 003693568 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2018-04-26 12:08 - 2018-04-26 12:13 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\opencv_core320.dll 2018-04-05 14:54 - 2018-04-05 14:55 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 014258688 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2018-08-17 05:08 - 2018-08-17 05:09 - 003538944 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2018-08-17 05:08 - 2018-08-17 05:08 - 002944512 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2018-05-31 13:56 - 2018-05-31 13:57 - 000872448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-07-27 13:41 - 2018-07-27 13:42 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18061.17410.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-08-08 21:53 - 2018-08-08 02:41 - 004855640 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libglesv2.dll 2018-08-08 21:53 - 2018-08-08 02:41 - 000115544 _____ () C:\Program Files (x86)\Google\Chrome\Application\68.0.3440.106\libegl.dll 2018-08-11 15:24 - 2018-08-11 15:24 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-08-11 15:24 - 2018-08-11 15:24 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll 2018-08-11 15:24 - 2018-08-11 15:24 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll 2017-09-26 14:55 - 2017-09-26 14:55 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-08-11 15:24 - 2018-08-11 15:24 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll 2018-08-17 14:05 - 2018-05-31 05:01 - 000128552 _____ () C:\Program Files\Microvirt\MEmu\libgcc_s_dw2-1.dll 2017-07-02 21:23 - 2018-08-19 16:13 - 000023848 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2017-07-02 21:23 - 2016-10-13 11:32 - 000104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll 2016-05-26 08:52 - 2016-05-26 08:52 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2017-10-30 21:21 - 2017-10-11 03:01 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-07-02 21:25 - 2014-09-29 17:57 - 000011264 _____ () C:\Program Files (x86)\ASUS\AEGIS II\SysTranslations\AsMultiLang.dll 2017-07-02 21:25 - 2014-10-16 15:05 - 000053248 _____ () C:\Program Files (x86)\ASUS\AEGIS II\cpuutil.dll 2018-08-17 14:05 - 2017-09-22 10:57 - 001040608 _____ () C:\Program Files\Microvirt\MEmu\libstdc++-6.dll 2018-08-17 14:05 - 2018-05-31 05:01 - 001736912 _____ () C:\Program Files\Microvirt\MEmu\icuuc53.dll 2018-08-17 14:05 - 2018-05-31 05:01 - 021675192 _____ () C:\Program Files\Microvirt\MEmu\icudt53.dll 2018-08-17 14:05 - 2018-05-31 05:01 - 002771568 _____ () C:\Program Files\Microvirt\MEmu\icuin53.dll 2018-08-17 14:05 - 2018-05-31 05:01 - 000782350 _____ () C:\Program Files\Microvirt\MEmu\libprotobuf-7.dll 2017-07-03 14:11 - 2018-07-21 23:07 - 000854304 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2017-07-03 14:11 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2017-07-03 14:11 - 2018-08-09 00:43 - 002644768 _____ () C:\Program Files (x86)\Steam\video.dll 2017-12-14 16:32 - 2017-12-20 03:43 - 000695584 _____ () C:\Program Files (x86)\Steam\libavformat-57.dll 2017-12-14 16:32 - 2017-12-20 03:43 - 000351520 _____ () C:\Program Files (x86)\Steam\libavresample-3.dll 2017-12-14 16:32 - 2017-12-20 03:43 - 000847136 _____ () C:\Program Files (x86)\Steam\libavutil-55.dll 2017-12-14 16:32 - 2017-12-20 03:43 - 000783648 _____ () C:\Program Files (x86)\Steam\libswscale-4.dll 2017-07-03 14:11 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2017-07-03 14:11 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2017-12-14 16:32 - 2017-12-20 03:43 - 005137696 _____ () C:\Program Files (x86)\Steam\libavcodec-57.dll 2017-07-03 14:11 - 2018-08-09 00:43 - 001015072 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2017-07-03 14:11 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2017-12-17 13:53 - 2017-12-11 11:54 - 001893880 _____ () C:\Users\Hicham\AppData\Local\Discord\app-0.0.299\ffmpeg.dll 2017-12-17 14:10 - 2017-12-17 14:10 - 001886712 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_toaster\discord_toaster.node 2017-12-17 13:53 - 2017-12-11 11:54 - 001938424 _____ () C:\Users\Hicham\AppData\Local\Discord\app-0.0.299\libglesv2.dll 2017-12-17 13:53 - 2017-12-11 11:54 - 000095736 _____ () C:\Users\Hicham\AppData\Local\Discord\app-0.0.299\libegl.dll 2017-07-03 14:15 - 2018-07-21 23:07 - 000854304 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2017-07-03 14:15 - 2018-07-21 00:24 - 083524896 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2017-07-03 14:15 - 2018-07-21 00:24 - 003732256 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libglesv2.dll 2017-07-03 14:15 - 2018-07-21 00:24 - 000086304 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libegl.dll 2017-12-17 14:10 - 2017-12-17 14:10 - 002662904 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_rpc\discord_rpc.node 2017-12-17 14:10 - 2017-12-17 14:10 - 009802232 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_voice\discord_voice.node 2017-12-17 14:10 - 2017-12-17 14:10 - 001505784 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_utils\discord_utils.node 2017-12-17 14:10 - 2017-12-17 14:10 - 000513016 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_erlpack\discord_erlpack.node 2017-12-17 14:10 - 2017-12-17 14:10 - 001517048 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_game_utils\discord_game_utils.node 2017-12-17 14:23 - 2017-12-17 14:23 - 002749944 _____ () \\?\C:\Users\Hicham\AppData\Roaming\discord\0.0.299\modules\discord_contact_import\discord_contact_import.node 2017-07-03 14:11 - 2018-07-03 23:58 - 000137504 _____ () C:\Program Files (x86)\Steam\winh264.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\AppData:CSM [476] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\localhost -> localhost ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-07-16 13:47 - 2018-08-20 11:46 - 000024641 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 176.31.241.10 127.0.0.1 40.77.226.250 127.0.0.1 54.187.37.182 127.0.0.1 serwer2.paka-service.com 127.0.0.1 thislineskipsanyemptylines 127.0.0.1 mirillis.com 127.0.0.1 ns386119.ovh.net 127.0.0.1 mirillis.pl 127.0.0.1 mirillis.eu 127.0.0.1 www.mirillis.com 127.0.0.1 updates.mirillis.com 127.0.0.1 54.148.249.18 127.0.0.1 54.68.188.84 127.0.0.1 54.221.244.28 127.0.0.1 platform.wondershare.com 0.0.0.0 0x1f4b0.com 0.0.0.0 1q2w3.fun 0.0.0.0 1q2w3.website 0.0.0.0 2giga.dowload 0.0.0.0 2giga.link 0.0.0.0 8jd2lfsq.me 0.0.0.0 aalbbh84.info 0.0.0.0 acbp0020171456.page.tl 0.0.0.0 adless.io 0.0.0.0 ad-miner.com 0.0.0.0 adplusplus.fr 0.0.0.0 adrenali.gq 0.0.0.0 afflow.18-plus.net 0.0.0.0 afminer.com 0.0.0.0 ajcryptominer.com Il y a 914 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1929890749-651209269-2752319330-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run: => "NetWorx" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "SwitchBoard" HKLM\...\StartupApproved\Run32: => "Discord" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\StartupFolder: => "Twitch.lnk" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "1Clipboard" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "GalaxyClient" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_0DFD1012524F14EBC210B2105E51A15D" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "Dashlane" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "DashlanePlugin" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "Gaijin.Net Agent" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "BitTorrent" HKU\S-1-5-21-1929890749-651209269-2752319330-1002\...\StartupApproved\Run: => "MinimizeToTray" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{9EBA72B9-3FD3-4B58-91F9-ED271F2EAFF6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe FirewallRules: [{F2FA2959-53A6-41F5-8EC5-691BE09CA858}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Realm of the Mad God\Realm of the Mad God.exe FirewallRules: [{E91F0871-4BCA-44A5-8439-7D6A5C6245EC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{75658885-50CD-4B4F-B417-427BBC829B6B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{63ADBFFE-E3FB-4D49-AC6C-CEB88D4DE5FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{44B2BE38-0F1C-4D47-9977-103F7B918C21}] => (Allow) C:\Program Files\Opera\54.0.2952.71\opera.exe FirewallRules: [{414C55A5-1CB3-4179-8F95-27308DAF2A27}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{B9B892CF-0DE0-4F15-B483-9BF5DBB13D58}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{0AC39983-E8CF-4E35-86A7-27914C789209}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{47895F72-81E7-4B99-928A-ABE847B5697B}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe FirewallRules: [{A8F50E1A-7C92-4D23-94F7-9CE682A88F8A}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe FirewallRules: [{9652F417-C0F4-4354-8E11-0CC5B66075C3}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe FirewallRules: [{67CEAEE4-E443-45CA-AC2C-48D40EAFEF4B}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{3E2EFC96-5770-4F77-A7C4-3E84FF4C6740}] => (Allow) C:\Program Files (x86)\UnHackMe\RegRunInfo.exe FirewallRules: [{FB8E6681-D99B-4DB0-9382-FB6B09B889E7}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA8}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777934}}] => (Allow) C:\Program Files (x86)\UnHackMe\regruninfo.exe FirewallRules: [{9187CF69-6824-487d-A9F0-AFF5C2C29BA9}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [{85B34758-97A3-4a63-832A-9825D8777935}}] => (Allow) C:\Program Files (x86)\UnHackMe\wu.exe FirewallRules: [UDP Query User{1CA81269-FBCA-4311-BDDE-EBD50BBE99BB}C:\program files (x86)\bluestacks\hd-plus-service.exe] => (Allow) C:\program files (x86)\bluestacks\hd-plus-service.exe FirewallRules: [TCP Query User{292D7771-7CC6-42DC-B053-038BC83BD57F}C:\program files (x86)\bluestacks\hd-plus-service.exe] => (Allow) C:\program files (x86)\bluestacks\hd-plus-service.exe FirewallRules: [{D7F881F3-F34F-44BC-B3AD-840C73DD3324}] => (Allow) 㩃啜敳獲䡜捩慨屭灁䑰瑡屡潒浡湩屧楶睥癜敩啷攮數 FirewallRules: [{535D3406-6322-438D-825A-FE076C5FF849}] => (Allow) 㩃啜敳獲䡜捩慨屭灁䑰瑡屡潒浡湩屧楶睥癜敩⹷硥e FirewallRules: [{B8D1F788-77BD-4C57-885D-25330B3AFF76}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe FirewallRules: [{1BC8BC56-878E-4EF2-A9B5-941320BD1BDB}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe FirewallRules: [{75717DC7-49FA-4605-980D-90C3A2BDDB8E}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe FirewallRules: [{EDD77EDC-E35E-471D-87B2-5C17F2588EB0}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe FirewallRules: [{0A2B3BEE-AFA9-4627-A344-109B317B73AC}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe FirewallRules: [{D8387FD0-E89A-4EAA-A082-41B67022476A}] => (Allow) C:\WINDOWS\SysWOW64\svchost.exe FirewallRules: [{71B3F865-D12F-45E9-8277-1C6737D952EB}] => (Allow) C:\Program Files (x86)\Common Files\IEpoc.exe FirewallRules: [{5DA724AC-98FF-4F83-9737-F91C2F333297}] => (Allow) C:\WINDOWS\SysWOW64\EOcEDOw.exe FirewallRules: [{9713F57A-CD58-44E4-8863-A6DC106396B5}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe FirewallRules: [{3E7FF228-EA55-46F1-8B6A-6B3F1FF12521}] => (Allow) C:\Program Files\Opera\54.0.2952.64\opera.exe FirewallRules: [{5D117778-2501-4FF9-927D-815B9B1795A4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{CA26C60B-B495-4EE6-8AEF-321BAABCC303}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe FirewallRules: [{DF8F73A9-F4EA-47FC-89F1-0E9B7A5F69C7}] => (Block) C:\program files (x86)\rayman legends\rayman legends.exe FirewallRules: [{D6089442-D687-415D-A518-D27AC33CF295}] => (Block) C:\program files (x86)\rayman legends\rayman legends.exe FirewallRules: [UDP Query User{20271931-B87B-43D6-A026-F3B720D32681}C:\program files (x86)\rayman legends\rayman legends.exe] => (Allow) C:\program files (x86)\rayman legends\rayman legends.exe FirewallRules: [TCP Query User{3F91971D-0EA6-4833-9CDD-447438F3EEF2}C:\program files (x86)\rayman legends\rayman legends.exe] => (Allow) C:\program files (x86)\rayman legends\rayman legends.exe FirewallRules: [{35F6B4A6-E5E5-4FAA-A5EB-092E93E9692E}] => (Allow) C:\Program Files\Parsec\parsecd.exe FirewallRules: [UDP Query User{A02B8E44-E6BB-4EE8-91EF-370164D20E6C}C:\program files (x86)\steam\steamapps\common\crossout\launcher.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\crossout\launcher.exe FirewallRules: [TCP Query User{CBBC8EA8-9946-4065-8929-E3CEAA10240C}C:\program files (x86)\steam\steamapps\common\crossout\launcher.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\crossout\launcher.exe FirewallRules: [{D23FA877-B412-4C3E-A430-351B2C8BFE7E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{EA3204A1-99FB-4BEF-9812-499776742C41}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{91E482DC-7048-49A8-B3A3-EC584BB77FFC}] => (Allow) C:\Program Files\NetWorx\networx.exe FirewallRules: [UDP Query User{092BBF76-E541-4CBB-B060-3AAEB0B4A349}C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe FirewallRules: [TCP Query User{2390618B-5A24-4786-BB0C-7EBED601AD25}C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\robocraft\robocraftclient.exe FirewallRules: [UDP Query User{897DFE76-90C1-4A77-9A08-7D800BBA8E8F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe FirewallRules: [TCP Query User{AAA90059-2D7E-45E4-814B-F11CA90E54E2}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe FirewallRules: [{1C4AC676-F3E1-427C-A280-87F68FDF24F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe FirewallRules: [{3C1FF70E-CE14-4C45-8EEC-8A6E0E6DFB1E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe FirewallRules: [{D3BF88A8-36C9-440F-9B20-23EA71078BE9}] => (Allow) C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe FirewallRules: [{36A5A25B-99E4-411C-B54A-0C477C4448EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RNR\ShooterGame\Binaries\Win64\RadicalHeights.exe FirewallRules: [{6ECC9265-D795-45C9-8F0F-DA9862011A3A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\RNR\ShooterGame\Binaries\Win64\RadicalHeights.exe FirewallRules: [UDP Query User{5DD202AB-47FD-4A02-8F8C-2F4EB0097A8A}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [TCP Query User{2C319571-071D-422D-893A-E85134A39C0C}C:\program files\rockstar games\grand theft auto v\gta5.exe] => (Allow) C:\program files\rockstar games\grand theft auto v\gta5.exe FirewallRules: [{17412B92-016B-4208-BE42-39A55C928360}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe FirewallRules: [{69471828-8BD5-4780-891E-DAC871A22B10}] => (Allow) C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe FirewallRules: [{E0F2678E-D502-48E4-9E51-B59F4D2E1911}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe FirewallRules: [{499E8839-636C-4D07-848D-CE95A29187C6}] => (Allow) C:\Riot Games\League of Legends\LeagueClient.exe FirewallRules: [UDP Query User{A15E8984-2196-4BDB-898F-6814E4D33F14}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe FirewallRules: [TCP Query User{F79B7C47-A46B-4C3E-A315-ABDBF4CEECB8}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe FirewallRules: [UDP Query User{C91500FC-EF57-4155-82F2-1A8C67235ADE}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe FirewallRules: [TCP Query User{B965EE67-6B0B-46E9-940E-217CA0FDC0B7}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.153\deploy\leagueclient.exe FirewallRules: [{47734DCA-4B12-41FE-89CD-6AAB77888D75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{1F9B3420-1844-4936-B2D5-583366365C90}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{A920FAE0-0268-4A08-B45E-4D3E5638E8BF}] => (Allow) C:\Users\Hicham\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{5F5CF63E-75AF-4051-B31A-F6B63CE5D532}] => (Allow) C:\Users\Hicham\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{59D798BA-0A9F-4C33-9BCA-73290E053DBE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{069F824F-5280-42F7-8BED-6E95BAADDC11}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe FirewallRules: [{36E437F0-61E0-4ADA-8DC9-63195A707DBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [{DABEE6E5-1CBA-4B61-924D-46D566985B38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe FirewallRules: [UDP Query User{8F30F8CD-631B-4C9A-8FDE-D0F59681EC70}C:\users\hicham\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\hicham\appdata\roaming\bittorrent\bittorrent.exe FirewallRules: [TCP Query User{92D6AA4D-E9AD-4A62-9DBC-F3B4DFF69C40}C:\users\hicham\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\hicham\appdata\roaming\bittorrent\bittorrent.exe FirewallRules: [UDP Query User{26570409-4DD3-4BC8-A0EA-F560F2C2613C}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe FirewallRules: [TCP Query User{01A0025C-0448-452B-ACF2-42700F73B85E}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe FirewallRules: [UDP Query User{ADDFA038-52C8-4D08-A5E8-E626CD9AB8AC}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe FirewallRules: [TCP Query User{38F4DB0D-C9D7-4D09-B164-E8787F3258E1}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe FirewallRules: [UDP Query User{9246541A-B782-4C54-AACA-444CF3EE11DE}C:\users\hicham\documents\anydesk.exe] => (Allow) C:\users\hicham\documents\anydesk.exe FirewallRules: [TCP Query User{A3902967-0008-4E8E-9C96-FA5D9E628F2F}C:\users\hicham\documents\anydesk.exe] => (Allow) C:\users\hicham\documents\anydesk.exe FirewallRules: [UDP Query User{BDF1DBD9-8A44-4332-BAA0-62CD31D37223}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [TCP Query User{CC90B73D-3990-43AD-B6CB-509427F080C9}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{762B1B05-46AB-4BC8-96D8-0EC9C34226AA}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe FirewallRules: [TCP Query User{1B6524C8-34B5-49FC-99E9-A30EB45D785F}C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe] => (Allow) C:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.149\deploy\leagueclient.exe FirewallRules: [{5191808B-F1E3-42DC-A8F4-00F4CDEAFC9E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TotallyAccurateBattlegrounds.exe FirewallRules: [{15E993E5-EC3A-4247-B933-F6180B179816}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TotallyAccurateBattlegrounds\TotallyAccurateBattlegrounds.exe FirewallRules: [{3092EF67-71B1-4256-BBFC-F529547B6288}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{D79B6576-76D0-42EA-8CBF-E2EE598FE903}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe FirewallRules: [{23BC69AB-057E-421D-BFAA-9A8CC37112CF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{BEF91C47-3E00-40D5-BC45-7DF4B51C3D9B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{8A0A0F1D-5AFB-4392-87DC-5174BBD0625F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{E38978DC-C9CC-4643-ADF1-D359F1092414}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{12D69D4B-A651-4BFF-A9FC-40EE09E240AF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{F09AFA80-5B73-42B9-8AFE-01D45BD5D76F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{ECA060B6-3DEA-43D3-A0DF-A7E8A1670494}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{51074D46-F9D0-40F8-B491-357769585501}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe ==================== Points de restauration ========================= 17-08-2018 11:12:52 Windows Update 19-08-2018 18:14:11 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: ManyCam Virtual Microphone Description: ManyCam Virtual Microphone Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Visicom Media Inc. Service: mcaudrv_simple Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19) Resolution: A registry problem was detected. This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options: On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (08/19/2018 07:00:03 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: Échec de la sauvegarde. Raison : une erreur d'écriture s'est produite à l'emplacement de sauvegarde (E:\). Erreur : Emplacement de sauvegarde introuvable ou non valide. Vérifiez-le en passant en revue vos paramètres de sauvegarde. (0x81000006). Error: (08/19/2018 05:56:44 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (08/19/2018 04:03:28 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary ManyCam Virtual Microphone. System Error: Le fichier spécifié est introuvable. . Error: (08/19/2018 01:20:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_MapsBroker, version : 10.0.17134.1, horodatage : 0xa38b9ab2 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0x8400000e Décalage d’erreur : 0x0000000000000000 ID du processus défaillant : 0x24ac Heure de début de l’application défaillante : 0x01d437ae7fae12e9 Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\svchost.exe Chemin d’accès du module défaillant: unknown ID de rapport : a76d8932-cfa1-454f-9a8d-f1035721bd46 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/19/2018 12:13:55 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante nvcontainer.exe, version : 1.8.2284.6734, horodatage : 0x59bb107f Nom du module défaillant : nvcontainer.exe, version : 1.8.2284.6734, horodatage : 0x59bb107f Code d’exception : 0xc0000409 Décalage d’erreur : 0x0000000000012a30 ID du processus défaillant : 0x1118 Heure de début de l’application défaillante : 0x01d4370462759b23 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe Chemin d’accès du module défaillant: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ID de rapport : 259d033e-9de0-46b4-9ff0-751119661851 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/19/2018 12:13:54 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante nvcontainer.exe, version : 1.8.2284.6734, horodatage : 0x59bb0ff7 Nom du module défaillant : nvcontainer.exe, version : 1.8.2284.6734, horodatage : 0x59bb0ff7 Code d’exception : 0xc0000409 Décalage d’erreur : 0x0000efc4 ID du processus défaillant : 0x2e5c Heure de début de l’application défaillante : 0x01d43740a913ec09 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe ID de rapport : 85632ddf-8c01-4e7b-8def-363c358396dc Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (08/18/2018 05:57:24 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Error: (08/17/2018 11:54:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante nvcontainer.exe, version : 1.8.2284.6734, horodatage : 0x59bb107f Nom du module défaillant : nvcontainer.exe, version : 1.8.2284.6734, horodatage : 0x59bb107f Code d’exception : 0xc0000409 Décalage d’erreur : 0x0000000000012a30 ID du processus défaillant : 0xfa0 Heure de début de l’application défaillante : 0x01d435d024dd06c0 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe Chemin d’accès du module défaillant: C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ID de rapport : 39d84d99-4d1c-4510-82dc-a79035546b42 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (08/20/2018 02:07:04 PM) (Source: DCOM) (EventID: 10016) (User: PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC\Hicham de l’utilisateur (S-1-5-21-1929890749-651209269-2752319330-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/20/2018 12:14:38 PM) (Source: DCOM) (EventID: 10016) (User: PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC\Hicham de l’utilisateur (S-1-5-21-1929890749-651209269-2752319330-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/20/2018 11:32:58 AM) (Source: DCOM) (EventID: 10016) (User: PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC\Hicham de l’utilisateur (S-1-5-21-1929890749-651209269-2752319330-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/20/2018 11:30:52 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/20/2018 11:30:52 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/20/2018 12:24:22 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service NVIDIA NetworkService Container s’est terminé de façon inattendue pour la 1ème fois. Error: (08/19/2018 07:47:07 PM) (Source: DCOM) (EventID: 10016) (User: PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC\Hicham de l’utilisateur (S-1-5-21-1929890749-651209269-2752319330-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (08/19/2018 04:53:08 PM) (Source: DCOM) (EventID: 10016) (User: PC) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID PC\Hicham de l’utilisateur (S-1-5-21-1929890749-651209269-2752319330-1002) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Windows Defender: =================================== Date: 2018-08-19 22:04:27.607 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {BB858330-4194-4A20-A243-374EA736EFFC} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-19 16:49:42.734 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {0F0EA871-5C91-4B5A-BD8D-6203EEEF651E} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-19 15:50:31.512 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {4132655B-C8CA-424C-8892-F10D60B8CCF9} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : PC\Hicham Date: 2018-08-18 22:25:39.331 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {CAE26FEB-601A-4CE2-87FA-94F9753D2FFD} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2018-08-17 05:14:24.138 Description: Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Bluteal!rfn&threatid=2147724737&enterprise=0 Nom : Trojan:Win32/Bluteal!rfn ID : 2147724737 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\Users\Hicham\Documents\dossier\Jeux\Dead.Cells.Beta.v0.3.5\skidrowgamesreloaded.com\steam_api.dll Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : AUTORITE NT\Système Nom du processus : C:\Windows\System32\SearchProtocolHost.exe Version de la signature : AV: 1.273.1494.0, AS: 1.273.1494.0, NIS: 1.273.1494.0 Version du moteur : AM: 1.1.15100.1, NIS: 1.1.15100.1 Date: 2018-08-18 17:22:17.416 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.273.1622.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15100.1 Code d’erreur : 0x80240016 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. Date: 2018-08-17 11:45:44.434 Description: Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures. Nouvelle version de la signature : Version précédente de la signature : 1.273.1548.0 Source de mise à jour : Serveur Microsoft Update Type de signature : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.15100.1 Code d’erreur : 0x80240016 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =================================== Date: 2018-08-19 16:10:47.804 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 16:10:21.146 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 16:10:21.024 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 16:07:17.980 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 13:12:30.160 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 13:11:58.338 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 13:11:58.213 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2018-08-19 13:08:52.111 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\ScpVBus.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Pourcentage de mémoire utilisée: 86% Mémoire physique - RAM - totale: 8119.99 MB Mémoire physique - RAM - disponible: 1065.56 MB Mémoire virtuelle totale: 14904.95 MB Mémoire virtuelle disponible: 2569.47 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:930.91 GB) (Free:29.19 GB) NTFS \\?\Volume{29c03db3-70f8-4178-ac99-abdef604a4fe}\ (Windows RE tools) (Fixed) (Total:0.49 GB) (Free:0.09 GB) NTFS \\?\Volume{a9dba9b5-32a7-44bf-91b1-ad6f4501fc7b}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: A3B6237B) Partition: GPT. ==================== Fin de Addition.txt ============================