Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02.01.2018 Exécuté par Xavier (09-01-2018 08:27:35) Exécuté depuis C:\Users\Xavier\Downloads Windows 10 Pro Version 1709 16299.125 (X64) (2017-12-13 19:38:52) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1966093867-3709839855-1224614334-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1966093867-3709839855-1224614334-503 - Limited - Disabled) Invité (S-1-5-21-1966093867-3709839855-1224614334-501 - Limited - Disabled) Utilisateur (S-1-5-21-1966093867-3709839855-1224614334-1000 - Administrator - Enabled) => C:\Users\Utilisateur WDAGUtilityAccount (S-1-5-21-1966093867-3709839855-1224614334-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) «City Car Driving» versions 1.5.4 (HKLM-x32\...\{CC457F3D-5CDE-4CE8-9685-90A4EDE81374}_is1) (Version: 1.5.4 - Forward Development) Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated) Adobe InDesign CC (HKLM-x32\...\{BC448016-6F11-1014-B0EA-97CEE6E26CB6}) (Version: 9.0 - Adobe Systems Incorporated) Adobe Reader XI (11.0.23) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated) Adobe Update Management Tool (HKLM-x32\...\{534A7A1A-7102-4AF6-23EA-7CD279C7B625}_is1) (Version: 6.2 - PainteR) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 2.3.0 - philandro Software GmbH) Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17332 - Microsoft Corporation) avast! Endpoint Protection Suite Plus (HKLM-x32\...\avast) (Version: 8.0.1609.0 - AVAST Software) Batigest Evolution (HKLM-x32\...\{7BFFDC1B-0AF5-4E51-BF4E-996FB2EB9734}) (Version: 11.60.00 - Apibâtiment) Hidden Batigest Evolution (HKLM-x32\...\{837D3495-C754-47FE-9BA1-FDD6A2859BC7}) (Version: 11.60.00 - Apibâtiment) Hidden BusinessObjects 5.1.9 (HKLM-x32\...\BusinessObjects 5.0) (Version: 5.1.9 - Business Objects) CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform) Extension d'application Sage Apibâtiment (HKLM-x32\...\{08549BFD-D589-4024-A803-1D8C8DB7743E}) (Version: 2.0.01 - Sage Apibâtiment) FileZilla Client 3.24.1 (HKLM-x32\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse) IMAPSize 0.3.7 (HKLM-x32\...\IMAPSize_is1) (Version: - Broobles) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation) Kaspersky Anti-Virus 2013 (HKLM-x32\...\{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab) Hidden Kaspersky Anti-Virus 2013 (HKLM-x32\...\InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}) (Version: 13.0.1.4190 - Kaspersky Lab) KONICA MINOLTA magicolor 4690MF (HKLM\...\KONICA MINOLTA magicolor 4690MF) (Version: - ) KONICA MINOLTA magicolor 4690MF Scanner (HKLM\...\{C99C29CC-EA33-4D15-8E2E-BF2D75A46598}) (Version: 1.01.0000 - KONICA MINOLTA) Hidden KONICA MINOLTA magicolor 4690MF Scanner (HKLM-x32\...\InstallShield_{C99C29CC-EA33-4D15-8E2E-BF2D75A46598}) (Version: - ) Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation) Microsoft Access database engine 2010 (French) (HKLM-x32\...\{90140000-00D1-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.6122.5000 - Microsoft Corporation) Microsoft Office Famille et Etudiant 2013 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 15.0.4981.1001 - Microsoft Corporation) Microsoft Office Starter 2010 - Français (HKLM-x32\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.7122.5000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2872573167-2697528254-2753942223-1113\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation) Mises à jour NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) Mozilla Firefox 57.0.4 (x64 fr) (HKLM\...\Mozilla Firefox 57.0.4 (x64 fr)) (Version: 57.0.4 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 57.0.4.6577 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.1.0.28 - Symantec Corporation) NVIDIA Logiciel système PhysX 9.13.0604 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0604 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 320.49 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 320.49 - NVIDIA Corporation) NVIDIA Pilote graphique 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.4981.1001 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.4981.1001 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-040C-0000-0000000FF1CE}) (Version: 15.0.4981.1001 - Microsoft Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) Panneau de configuration NVIDIA 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.13 - NVIDIA Corporation) Hidden PDF Settings CC (HKLM-x32\...\{1FBAE18D-4DE4-47AA-83EC-D1B046F262DC}) (Version: 12.0 - Adobe Systems Incorporated) Hidden PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.3 - pdfforge) PuTTY release 0.70 (64-bit) (HKLM\...\{45B3032F-22CC-40CD-9E97-4DA7095FA5A2}) (Version: 0.70.0.0 - Simon Tatham) RAR Password Unlocker (HKLM-x32\...\{69B77D45-F5AD-4AB9-933D-352703324469}_is1) (Version: - RAR Password Unlocker, Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.65.1025.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7076 - Realtek Semiconductor Corp.) Sage Apibâtiment Batigest Edition Pilotée (HKLM-x32\...\{297EF3F2-FDD5-40A9-8D33-5D6F8A0EE8FA}) (Version: 1.26 - Sage) Sage Apibâtiment Batigest Evolution (HKLM-x32\...\{A79278BA-2FBA-479F-B22C-DAB0631EB81F}) (Version: 11.60.00 - Apibâtiment) SPIGAO Connect 3.1.0.66 (HKLM-x32\...\{C7FC4F1D-1713-40A1-A633-104DA9978B58}_is1) (Version: 3.1.0.66 - Edisys) SPIGAO SCRIBE_BTP version 2.2.14 R3 (HKLM-x32\...\SPIGAO SCRIBE_BTP_is1) (Version: - EDISYS S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Sweet Home 3D version 4.6 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.90968 - TeamViewer) TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp) The Golf Club 2 (HKLM-x32\...\The Golf Club 2_is1) (Version: - ) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.0 - VideoLAN) VNC Free Edition 4.1.3 (HKLM-x32\...\RealVNC_is1) (Version: 4.1.3 - RealVNC Ltd.) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH) WinZip 19.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240E5}) (Version: 19.0.11293 - WinZip Computing, S.L. ) Xara Designer Pro 7 (HKLM-x32\...\{1B9DF2F7-6E59-4F9D-ADE1-F0CF9C7F4B0F}) (Version: 7.1.1.17261 - Xara Group Ltd) Hidden Xara Designer Pro 7 (HKLM-x32\...\MAGIX_MSI_Xara_Designer_Pro_7) (Version: 7.1.1.17261 - Xara Group Ltd) Xara Photo & Graphic Designer 9 (HKLM\...\{8F248F78-37CD-4909-935B-986A455A48FF}) (Version: 9.2.3.29638 - Xara Group Ltd) Hidden Xara Photo & Graphic Designer 9 (HKLM-x32\...\MX.{8F248F78-37CD-4909-935B-986A455A48FF}) (Version: 9.2.3.29638 - Xara Group Ltd) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{10EEED4B-0712-4716-A4C7-53E7F0A72E8A}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\PDFXFilter\PDFXFilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{3F6132E2-B6B3-46B0-8674-C5435683AACD}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\TIFFImport.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{401340E5-0D87-4B6E-B068-EB80B416B33B}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\SVGFilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{453BF3FD-5FF2-42DC-8480-9A7361D7CF13}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\HTMLfilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{49BE320E-A98E-4124-92CC-4C3D9095F3AE}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\RAWImport\RAWImport.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{4BCF5244-315E-445D-87D5-F6E07A9341E8}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\EMFFilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{65545209-E245-4026-94AE-DEABE04DA1BF}\localserver32 -> "C:\Program Files\Xara\Xara Designer Pro X\12\DesignerPro.exe" -embedding => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{6CA0D096-7666-4FBB-9066-2111E0F929C8}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\PPImport.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{702DAC56-42B1-4391-8E8D-0F4B93FFEF82}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\DocImport\DocImport.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{7839B834-E9A6-4362-A15A-F3331D6A9086}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\PSDFilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{7F753F3A-9E51-468E-82F1-8E9592D44052}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\RTFfilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{C3479BEE-ABD1-469D-AD76-7AF83CAEE10A}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\PDFImport\PDFImport.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{C4732D4A-E395-46F7-9508-B737F0EB81CA}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\ODPImport.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{CB58FF31-2539-11D0-BDEE-0020AFE14B84}\localserver32 -> C:\Program Files (x86)\Xara\Xara Photo Graphic Designer 9\PhotoGraphicDesigner.exe (Xara Group Ltd.) CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{CB58FF32-2539-11D0-BDEE-0020AFE14B84}\localserver32 -> "C:\Program Files\Xara\Xara Designer Pro X\12\DesignerPro.exe" => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{CCCD7C49-B2B0-44BB-9BCD-8765B5BF5E3C}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\XPSFilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{D5DFAD3D-5ED4-4C4B-8206-FE0B85090217}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\WSMFilter.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-2872573167-2697528254-2753942223-1113_Classes\CLSID\{FCF53EC9-E448-43BB-91F0-05339FA0A093}\InprocServer32 -> C:\Program Files\Xara\Xara Designer Pro X\12\Filters\ENG\HDPImport.dll => Pas de fichier ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast Business\ashShA64.dll [2016-10-24] (Avast Software s.r.o.) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast Business\ashShA64.dll [2016-10-24] (Avast Software s.r.o.) ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\ShellExt.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers1-x32: [WinZip] -> _{E0D79304-84BE-11CE-9641-444553540000} => -> Pas de fichier ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\ShellExt.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast Business\ashShA64.dll [2016-10-24] (Avast Software s.r.o.) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\ShellExt.dll [2017-09-29] (Microsoft Corporation) ContextMenuHandlers4: [WinZip] -> _{E0D79304-84BE-11CE-9641-444553540000} => -> Pas de fichier ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Intel Corporation) ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2017-10-20] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast Business\ashShA64.dll [2016-10-24] (Avast Software s.r.o.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-02-04] (Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {06B34A92-07E1-4336-9867-70C610BFD2E1} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {07B232CD-4412-42FF-AF9B-7DC89A3C438D} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {118E0DAD-694E-4353-9B31-C9416423756E} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {15AF134F-F67E-4995-A766-3386AD780095} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {22A78A51-CCF4-4AC8-8BEC-4D32387706C1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-14] (Microsoft Corporation) Task: {2666DB16-97CB-487A-8A0B-75881C597A93} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {27311F3E-32FD-4B0D-A5CA-C480D7D45316} - System32\Tasks\Microsoft\Windows\GroupPolicy\{3E0A038B-D834-4930-9981-E89C9BFF83AA} => C:\Windows\system32\gpupdate.exe [2017-09-29] (Microsoft Corporation) Task: {3296D1AC-4BE3-40B5-A86A-3F7947BC33DD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-14] (Microsoft Corporation) Task: {38B6F756-1E05-4C55-AE5B-F12F77DAB1F5} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {3A9A679D-B7C1-46FF-AD3E-283F62F3DF25} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-13] (Adobe Systems Incorporated) Task: {42910D2C-7F50-46C7-ABED-B758EBD76358} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {43E17FFC-0D3E-4A97-80A9-A1F59D39EE7A} - System32\Tasks\Microsoft\Windows\GroupPolicy\{A7719E0F-10DB-4640-AD8C-490CC6AD5202} => C:\Windows\system32\gpupdate.exe [2017-09-29] (Microsoft Corporation) Task: {485E2DE1-F816-4E0B-B9C2-C7F08E87E36C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {4930B57C-2B16-4A2B-823B-00E8C0EC1211} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION Task: {51644557-52AC-4A30-BC5D-5D3B405DB899} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated) Task: {56DDD218-6813-415A-A221-48969F8854A5} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION Task: {5F57E60A-302A-4AFC-AE28-7F56F11B1ACA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-14] (Microsoft Corporation) Task: {6B33B4EF-E612-4F91-A9A9-0C8ED4C964A9} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-09-05] (Microsoft Corporation) Task: {7089D4E4-E8BB-47BF-AC64-513FBC5F8B46} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {91457CC2-DC76-4100-BB77-BA6F0A49964C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {91E7F036-CDEE-4753-B9FD-097ED1E2D6E5} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {9D662850-1EB4-4123-840E-A00FCA68B888} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A81F4116-CC71-41C2-ACE2-A5B93390F8C1} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B2ADC625-5766-4690-AA68-6B9193DF5011} - System32\Tasks\3c91fcc2-ce59-42b3-b901-f68079520898 => C:\Users\Xavier\AppData\Local\Temp\ce98ac2e-20c0-4a93-86f6-bdb3e61caf55.exe <==== ATTENTION Task: {B97832BD-ECCF-466A-A9E1-95B901F772A3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-19] (Piriform Ltd) Task: {C1619131-7331-497B-8C0C-F56ABD0E7A61} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-09-05] (Microsoft Corporation) Task: {C32F7334-9702-4E47-BF0F-7BFD588B2543} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C3504CB4-83D8-49EA-8F2F-07DABFC9B88A} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-01-09] (AVAST Software) Task: {C716E2CA-AA8F-49F4-9B1D-3FFDA0B6FC12} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D1E2D778-FDEB-4DF1-9645-3F348ADFE330} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D951D255-C31E-47FD-8451-24A29CCBB799} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {E504B022-1924-48F4-9D10-F690AB08126A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.17123-0\MpCmdRun.exe [2017-12-14] (Microsoft Corporation) Task: {E5B0F510-1461-4D18-8FC7-3A6A7B58049E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {E7288B90-46D1-4DF8-AB9C-B06BAB9C86C7} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast Business\AvastEmUpdate.exe [2018-01-08] (AVAST Software) Task: {EE854658-C246-47AF-9B1A-24E4EF8F479A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F3ADDB04-4210-4772-BDA6-6F95C8D0CFF7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {FBE6CEEF-524F-490F-85E3-EF78CEC30517} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FC17E5F6-BC95-4CC5-93FB-8E7BEE6A10C5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {FFD401A0-CEEA-4875-826E-2EC13D0D6195} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll 2016-06-06 14:41 - 2016-06-06 14:40 - 001490592 _____ () C:\Program Files (x86)\AnyDesk\AnyDesk.exe 2016-07-22 12:55 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2008-02-01 09:54 - 2008-02-01 09:54 - 000070656 _____ () C:\WINDOWS\system32\M4690WDV.dll 2017-12-12 08:39 - 2017-12-12 08:39 - 000948736 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\e_sqlite3.dll 2017-12-12 08:39 - 2017-12-12 08:39 - 002360512 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2017-12-12 08:39 - 2017-12-12 08:39 - 000381440 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftStickyNotes_2.0.5.0_x64__8wekyb3d8bbwe\Microsoft.Notes.Upgrade.dll 2017-09-29 14:41 - 2017-09-29 14:41 - 004069888 _____ () C:\Windows\System32\Windows.UI.Input.Inking.Analysis.dll 2017-12-13 19:29 - 2017-12-13 19:29 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-12-13 19:29 - 2017-12-13 19:29 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-01-03 10:01 - 2018-01-03 10:01 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2018-01-03 10:01 - 2018-01-03 10:01 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2018-01-03 10:01 - 2018-01-03 10:01 - 024670720 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2018-01-03 10:01 - 2018-01-03 10:01 - 002550272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\skypert.dll 2018-01-03 10:01 - 2018-01-03 10:01 - 000667648 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.257.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll 2018-01-09 08:07 - 2018-01-09 08:07 - 004698840 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11712.1001.11.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 000477184 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2017-12-14 09:25 - 2017-12-14 09:26 - 058590720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2017-10-05 07:08 - 2017-10-05 07:09 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2017-11-10 08:26 - 2017-11-10 08:28 - 000164864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\VideoPlugin.dll 2017-10-05 07:08 - 2017-10-05 07:09 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 003727360 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 002270720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 016395264 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 003579904 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2017-12-14 09:25 - 2017-12-14 09:25 - 003204096 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2017-08-29 07:12 - 2017-08-29 07:12 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 000043520 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 004038144 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.People.PeoplePicker.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 001367040 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll 2017-12-14 09:25 - 2017-12-14 09:26 - 000214528 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39101.16720.0_x64__8wekyb3d8bbwe\SKU.dll 2017-11-02 08:28 - 2017-11-02 08:30 - 001919680 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8730.21725.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll 2018-01-04 08:19 - 2018-01-04 08:24 - 001231528 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8730.21725.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll 2018-01-09 08:05 - 2018-01-08 16:35 - 005116928 _____ () c:\program files\avast software\avast business\defs\18010804\algo.dll 2017-12-06 08:21 - 2017-12-06 08:21 - 000102088 _____ () C:\Users\Xavier\AppData\Local\Microsoft\OneDrive\17.3.7131.1115\UpdateRingSettings.dll 2014-06-04 19:18 - 2013-09-16 11:17 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [153] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2872573167-2697528254-2753942223-1113\Control Panel\Desktop\\Wallpaper -> C:\Users\Xavier\AppData\Roaming\Mozilla\Firefox\Fond d’écran.bmp DNS Servers: 192.168.1.64 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\Run32: => "USB3MON" HKU\S-1-5-21-2872573167-2697528254-2753942223-1113\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2872573167-2697528254-2753942223-1113\...\StartupApproved\Run: => "Steam" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{0260107A-07EA-42A3-8F7D-11010B5956DC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{6D28CFEB-7B94-4FC7-9EC3-C872447795F1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{5D753452-598E-47B5-AFF0-DF3E7BFA2672}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{CB8ED634-D994-43D4-A09E-57DFF079BF65}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{E7C46D4F-EA54-44DE-8AE0-E3E9F2EBDB2C}] => (Allow) C:\Program Files (x86)\Forward Development\City Car Driving Home Edition\bin\win32\starter.exe FirewallRules: [UDP Query User{99CEA576-759D-41AF-A23F-4669E1D9DB84}C:\program files (x86)\filezilla ftp client\filezilla.exe] => (Allow) C:\program files (x86)\filezilla ftp client\filezilla.exe FirewallRules: [TCP Query User{216D38BF-B7D3-4A15-A8F8-17976089420D}C:\program files (x86)\filezilla ftp client\filezilla.exe] => (Allow) C:\program files (x86)\filezilla ftp client\filezilla.exe FirewallRules: [{D423E28C-FEEE-4271-995C-2813AB4A5754}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GTR 2 - FIA GT Racing Game\sudo.exe FirewallRules: [{3EAE31B1-8CB0-49E6-9CE6-197EA5EC9375}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GTR 2 - FIA GT Racing Game\sudo.exe FirewallRules: [{659B6084-3218-4B05-835D-C8BE677C266A}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{91A03121-8A45-478F-88A5-A967338A3571}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{C6889DCE-9D89-4467-86AD-CF91129EBB78}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{E5BC3A85-CB90-43FA-A6DF-0F31A0F23913}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{DD24897F-F642-4771-A283-9E7B330878C8}] => (Allow) LPort=25322 FirewallRules: [{8148873F-D019-4B6A-A291-06F73D7E8757}] => (Allow) LPort=25322 FirewallRules: [{577ACADB-C8CD-4F6B-AED5-44D5DEFA141F}] => (Allow) LPort=25322 FirewallRules: [{853EA56D-BC81-4F4A-9ED7-57281A848D82}] => (Allow) LPort=25322 FirewallRules: [{5571D368-F204-46F8-96A1-FB044156C719}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{276337B4-01E7-441F-884F-C74C675DC03C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [TCP Query User{8C7836E4-9FD5-4E3C-A5CD-F2E85B314241}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe FirewallRules: [UDP Query User{1DDE5183-748F-436C-B2A5-3DF4A8FF72FC}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe FirewallRules: [TCP Query User{89F55DC6-EA70-4F07-A951-E6ACA07E0BD6}C:\program files (x86)\realvnc\vnc4\vncviewer.exe] => (Allow) C:\program files (x86)\realvnc\vnc4\vncviewer.exe FirewallRules: [UDP Query User{0ECA0548-E037-4B65-9DE1-8352AFD38875}C:\program files (x86)\realvnc\vnc4\vncviewer.exe] => (Allow) C:\program files (x86)\realvnc\vnc4\vncviewer.exe FirewallRules: [{42340E00-FCBC-4987-8FBD-DC41294882DE}] => (Allow) C:\APIBAT\BatGest11\Crun\Crun.exe FirewallRules: [{BA81380F-963D-448E-A784-19B8FC5CC210}] => (Allow) C:\APIBAT\BatGest11\Crun\Crun.exe FirewallRules: [TCP Query User{317500CA-2933-424B-8938-1ED3D7CF72B7}C:\program files (x86)\kart racing pro\kart.exe] => (Allow) C:\program files (x86)\kart racing pro\kart.exe FirewallRules: [UDP Query User{CFFADFF9-2198-4B9E-ACB8-BBF23A41F439}C:\program files (x86)\kart racing pro\kart.exe] => (Allow) C:\program files (x86)\kart racing pro\kart.exe FirewallRules: [{8B293AB1-C785-47DB-A5BA-DBDB1857294D}] => (Allow) C:\Users\Xavier\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{D53C7814-AE17-41C8-BB07-C2A9954D2155}] => (Allow) C:\Users\Xavier\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{38AB32A9-3B07-4F3E-8A37-60D57B79DD79}C:\program files (x86)\realvnc\vnc4\winvnc4.exe] => (Block) C:\program files (x86)\realvnc\vnc4\winvnc4.exe FirewallRules: [UDP Query User{B1B90D36-6882-441D-8665-B8F8B20B3741}C:\program files (x86)\realvnc\vnc4\winvnc4.exe] => (Block) C:\program files (x86)\realvnc\vnc4\winvnc4.exe FirewallRules: [{CC92B5A6-7C22-4A39-96F9-8DD7375B376A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E98F3F85-7255-4CCF-AD88-215BBECC3D7F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{86352C6B-041E-4893-9223-0026A987B21F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{89D68AC3-7FA3-4FED-A4A3-1F4E4EC2DC26}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{031BE448-4E9A-4621-8298-535CC9391027}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{6C2F17C6-5746-41C8-8932-83467F44D8D7}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{C7648138-F350-4845-BA74-28B264EF5F66}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{A19ACCA7-3542-45CD-AFD4-61F507AE288D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{3285A00A-178C-4543-B43C-8EBF62B49C9B}C:\users\xavier\appdata\roaming\utorrent\updates\3.4.5_41372.exe] => (Allow) C:\users\xavier\appdata\roaming\utorrent\updates\3.4.5_41372.exe FirewallRules: [UDP Query User{7D1F2DC8-761E-40EA-8D36-19338208A9BC}C:\users\xavier\appdata\roaming\utorrent\updates\3.4.5_41372.exe] => (Allow) C:\users\xavier\appdata\roaming\utorrent\updates\3.4.5_41372.exe FirewallRules: [{B70C6896-3861-40B0-A4F6-A0E8180B0644}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{35B8D56F-5D69-4D58-8BF3-70A9A4CD3357}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{DE601B49-4CEA-4C6A-8786-F3AE4D03BE3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{D887ED20-B552-43D1-8E26-D9A65D59B89C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{A0A95E50-DBDE-4107-9253-9C0241E2331C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{36181E8B-B495-477E-8EE9-5D51E4D18F44}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{0A47B27E-4765-4B2B-9482-D66C88B6F2B6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{BFB3573E-52D5-49EF-B26D-87D0723E47EA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{A4B64B5D-2611-4AEC-96D8-375810D78F62}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{CEF1CFF0-8414-4935-A2AB-DDFA86B5C740}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{3E0FB13F-EF9C-4286-880F-998F095A2B09}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{215ABC76-7333-4C73-8E0D-8B59A2C522EE}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{C3E45965-B2EA-448E-95BC-4FAEBFC75434}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe FirewallRules: [{D3301B3C-BAAD-4E30-B915-07BDDF36E660}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe ==================== Points de restauration ========================= 26-12-2017 11:36:39 Point de contrôle planifié 02-01-2018 12:45:57 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (01/09/2018 08:25:36 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:36 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:36 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:36 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:36 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:36 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:35 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:35 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:35 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Error: (01/09/2018 08:25:35 AM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_EXPIRED. Erreurs système: ============= Error: (01/09/2018 08:01:15 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 18:30:56 le ‎08/‎01/‎2018 n’était pas prévu. Error: (01/09/2018 08:00:17 AM) (Source: NetBT) (EventID: 4300) (User: ) Description: Le pilote n’a pas pu être créé. Error: (01/09/2018 08:00:17 AM) (Source: NetBT) (EventID: 4300) (User: ) Description: Le pilote n’a pas pu être créé. Error: (01/09/2018 08:00:17 AM) (Source: NetBT) (EventID: 4300) (User: ) Description: Le pilote n’a pas pu être créé. Error: (01/09/2018 08:00:17 AM) (Source: NetBT) (EventID: 4300) (User: ) Description: Le pilote n’a pas pu être créé. Error: (01/08/2018 09:05:02 AM) (Source: DCOM) (EventID: 10010) (User: EQUIPECO) Description: Le serveur {D2F3EBD7-B305-4369-91B7-7FF1ABEC616A} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/05/2018 06:33:01 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 18:24:43 le ‎05/‎01/‎2018 n’était pas prévu. Error: (01/05/2018 06:32:09 PM) (Source: NetBT) (EventID: 4300) (User: ) Description: Le pilote n’a pas pu être créé. Error: (01/05/2018 06:32:09 PM) (Source: NetBT) (EventID: 4300) (User: ) Description: Le pilote n’a pas pu être créé. Error: (01/05/2018 06:32:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Assistance NetBIOS sur TCP/IP n’a pas pu démarrer en raison de l’erreur : Le chemin d’accès spécifié est introuvable. CodeIntegrity: =================================== Date: 2017-12-15 08:27:04.162 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:04.106 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:04.074 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:04.004 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:03.970 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:03.928 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:02.243 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:27:02.103 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:19:54.478 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements. Date: 2017-12-15 08:19:54.436 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i5-4440 CPU @ 3.10GHz Pourcentage de mémoire utilisée: 23% Mémoire physique - RAM - totale: 12171.54 MB Mémoire physique - RAM - disponible: 9315.96 MB Mémoire virtuelle totale: 24459.54 MB Mémoire virtuelle disponible: 21556.06 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:465.22 GB) (Free:340.19 GB) NTFS Drive e: (Nouveau nom) (Fixed) (Total:465.76 GB) (Free:325.82 GB) NTFS Drive f: () (Removable) (Total:1.86 GB) (Free:1.01 GB) FAT ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 26611DE6) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=450 MB) - (Type=27) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F81B6E6D) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ======================================================== Disk: 2 (Size: 1.9 GB) (Disk ID: F032B4C9) Partition 1: (Not Active) - (Size=1.9 GB) - (Type=06) ==================== Fin de Addition.txt ============================