Publicité
Publicité
Commentaire : Voici le premier rapport d'analyse fais avec Farbar 64 bits
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-03-2017
Exécuté par yann (17-03-2017 18:00:44)
Exécuté depuis C:\Users\yann\Downloads
Windows 10 Home Version 1607 (X64) (2016-11-09 16:56:50)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2069856630-2927579174-728704156-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2069856630-2927579174-728704156-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2069856630-2927579174-728704156-1005 - Limited - Enabled)
Invité (S-1-5-21-2069856630-2927579174-728704156-501 - Limited - Disabled)
lebgb (S-1-5-21-2069856630-2927579174-728704156-1002 - Limited - Disabled)
yann (S-1-5-21-2069856630-2927579174-728704156-1001 - Administrator - Enabled) => C:\Users\yann
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Ad-Aware Web Companion (x32 Version: 2.0.1025.2130 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Akamai NetSession Interface (HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{42EC3153-24B0-FCAD-0F16-0904BCBAB179}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
amulesw (HKLM-x32\...\{13D7C2E9-08E7-4889-94FF-87E707184E53}) (Version: 1.0.7 - amules) <==== ATTENTION
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.13.1.2 - Autodesk)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DTS Sound (HKLM-x32\...\{9B17BBEC-CF31-4C23-949E-E65A14365CE1}) (Version: 1.01.5700 - DTS, Inc.)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
Evernote (HKLM-x32\...\Evernote) (Version: 1.0.0 - Evernote Launcher by Toshiba Europe GmbH)
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GoPro Studio (x32 Version: 5.10.4643 - GoPro, Inc.) Hidden
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.5.5 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.12.108.1 - Intel Security)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{96C730E4-F055-4118-BDF3-6E071763853C}) (Version: 3.0.1342.02 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{eff1d9d1-41fa-49ef-a986-082bfe49c293}) (Version: 16.8.0 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
LavasoftTcpService (x32 Version: 2.3.4.7 - Lavasoft) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MP3 Skype recorder (HKLM-x32\...\{D524F89B-5E21-49CF-AB24-BA5619EABDE9}) (Version: 4.29.2.0 - Domit LTD)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.2 - Nikon)
OEM Application Profile (HKLM-x32\...\{EF04BC2A-6EDA-936B-7B10-20FEA5B2DEA3}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OLYMPUS AVCHD Codec (HKLM-x32\...\{FBD8E8CF-3460-4964-9079-9C68860487D4}) (Version: 1.0.0 - OLYMPUS IMAGING CORP.)
OLYMPUS Digital Camera Updater (HKLM-x32\...\{249AF4F3-0353-4C75-988D-019FCD52B4D4}) (Version: 1.0.2 - OLYMPUS IMAGING CORP.)
OLYMPUS Viewer 2 (HKLM-x32\...\{24494BC4-FDB2-4F76-8E3E-2B24DC9A5467}) (Version: 1.2.0 - OLYMPUS IMAGING CORP.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.103.32.0 - Overwolf Ltd.)
Package de pilotes Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM\...\2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 - OLYMPUS IMAGING CORP.)
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.45.1674.2 - Hi-Rez Studios)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.239 - Google, Inc.)
Pirates, Vikings, & Knights II (HKLM\...\Steam App 17570) (Version: - Octoshark Studios)
Prism - Convertisseur de fichiers vidéo (HKLM-x32\...\Prism) (Version: 2.50 - NCH Software)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Quik (HKLM-x32\...\{71fc4e33-8ac1-4b21-8cb5-040ce8986c4e}) (Version: 2.0.0.4643 - GoPro, Inc.)
Quik (Version: 0.1.4643 - GoPro, Inc.) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21249 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.23.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7173 - Realtek Semiconductor Corp.)
S4 League (HKLM-x32\...\S4 League) (Version: - )
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.5.1333.g822e0de8 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Symbaloo (HKLM-x32\...\Symbaloo) (Version: 1.0.0 - Symbaloo Launcher by Toshiba Europe GmbH)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.3 - Synaptics Incorporated)
TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.02.6402 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{DF800E02-DCC0-424B-A126-5AE2E07B3DD4}) (Version: 1.2.2.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{94D2A899-0C34-4420-880E-AE337E635AB0}) (Version: 2.4.2.6403 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{1844CFE2-EBA3-490A-8A5E-9BFC646342FD}) (Version: 1.1.5.6402 - Toshiba Corporation)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.6.02.6403 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.19 - TOSHIBA)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 4.06.000 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 3.01.01.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.1.03.55065007 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{BFE4C813-4DD4-4B1C-97F4-76A459055C8D}) (Version: 2.6.13 - Toshiba Corporation)
TOSHIBA Start Screen Option (HKLM\...\{06B71035-F19F-4F76-9875-FFCCD4FC3F83}) (Version: 1.00.01.6402 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0033 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.1.32003 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.5.1 - Toshiba Europe GmbH)
Update_msi (HKLM-x32\...\{59B5A9CD-253D-4C41-A073-B387D4C9672D}) (Version: 1.0.0 - Default Company Name)
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VideoPad - Logiciel de montage vidéo (HKLM-x32\...\VideoPad) (Version: 3.86 - NCH Software)
ViewNX 2 (HKLM-x32\...\{E64C137C-D0B7-467A-B47F-460AAB30F0A3}) (Version: 2.10.3 - Nikon)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Warface (HKLM\...\Steam App 291480) (Version: - Crytek)
Warface My.Com (HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\Warface My.Com) (Version: 1.27 - My.com B.V.)
WavePad - Logiciel d'édition audio (HKLM-x32\...\WavePad) (Version: 6.01 - NCH Software)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinSnare (HKLM-x32\...\{FC5A2575-5D95-4466-A08A-8908998E49D0}) (Version: 4.3.3 - WinSnare) <==== ATTENTION
XSplit Broadcaster (HKLM-x32\...\{34E8E886-07FF-4808-B2BB-993901AB39AC}) (Version: 2.7.1602.2244 - SplitmediaLabs)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0BA1EBD1-9FE5-48DF-95D8-98D04E7873D2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {0F13FEFD-6AD2-439C-8C58-851BC48E61BD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {10151048-0B9A-4EBC-83AD-1000609CAF9C} - System32\Tasks\spotify => C:\Program Files (x86)\Spotify\SpotifyLauncher.exe [2014-03-13] (Spotify Ltd)
Task: {142731EF-4BAA-411A-8547-441F23F8C9D2} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-12-24] (Toshiba Europe GmbH)
Task: {14DCA160-DAA8-4A48-9587-E8F596BAB96E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {1597FE58-0379-4B25-A4C5-5B30444F3E29} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {2D35DE5D-04F3-4C3C-869E-FBDB4BCE7B31} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {2DEBEE76-9B8F-431F-A30A-F0A006C33F2B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-03-14] (Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
Task: {35D141EE-5DFF-4F28-A467-46340978B46F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {4132FCD6-13A4-4BC3-B199-680A2A0DC69B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {46BC279F-4474-4CB6-9BB6-8E331C1ABB8E} - System32\Tasks\Majopyclbus => "msiexec" /i hxxp://d2buh1bf1g584w.cloudfront.net/msi/rel.php?u=TOSHIBAXMQ01ABD100H_44DHC02UTXX44DHC02UT&v=201739 /q <==== ATTENTION
Task: {47153E91-4961-4309-B0F6-6C5FF586E517} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-02-06] ()
Task: {4A1CDB25-3992-4F82-882D-AE346BD202B6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-03-05] (Overwolf LTD)
Task: {51F5EF5C-2A71-4B58-BDEA-B42D56ABA379} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {532E2833-104E-4A4B-AD08-8001ABBCEC73} - System32\Tasks\Werbering Configuration => C:\Program Files (x86)\Rebergeclarodom\xpurecult.exe [2017-03-09] (Glarysoft Ltd)
Task: {5D57BE68-90CA-42B5-9CAD-3385DD87AAED} - System32\Tasks\{690435AD-E247-4FE3-8103-0DAD767D5CE2} => Firefox.exe hxxp://ui.skype.com/ui/0/7.26.85.101/fr/go/help.faq.installer?LastError=1618
Task: {625A93E7-061E-4DE5-A0C1-FEAB2AA3993B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {71DD4488-E32C-457E-8402-9EE3783F2227} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {7C204F02-951F-4EC1-84B6-B953EC33A3E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {7EE76685-2FEB-4E55-B07A-B35F886B1CF4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
Task: {821BCBFE-D21F-42A5-9C15-B79F8460137B} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-01-20] (Realtek Semiconductor)
Task: {879872F0-42AE-43F2-9026-7236BA3A9789} - System32\Tasks\iXsKngJoTr => C:\Program Files (x86)\FE7epqlYsa\updengine.exe [2017-03-10] () <==== ATTENTION
Task: {A26B7573-C431-4DC6-BED1-C44CA912E9F9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {AABB7D45-98B8-498B-8DAD-AA70B2B825B0} - \WPD\SqmUpload_S-1-5-21-2069856630-2927579174-728704156-1001 -> Pas de fichier <==== ATTENTION
Task: {B408CA6E-FCBA-4EC4-8304-9A41F91E2003} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\yann\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {B76620AA-F1C5-448E-B25D-EF97B1886E71} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-28] (Adobe Systems Incorporated)
Task: {C9458473-E68E-4852-B770-F72E788F61B0} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {CC1C18E9-EFE7-4B7F-AD25-BFC08098FE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {D049353F-173C-43EA-8C8E-6E193EE9C5E4} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2013-11-08] (TOSHIBA Corporation)
Task: {D3D81D80-47FE-4388-9838-652EABBE84B3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {DA277DD9-C40F-4CFD-938A-62AB559008F2} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe <==== ATTENTION
Task: {DA57631E-4C5A-472D-B41C-4BEBF55661DC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {DC9B7377-ED02-4C90-B456-0C6B35491769} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-09-24] (TOSHIBA Corporation)
Task: {DF8944DF-FE5F-4431-93A9-ED7BD78ECF76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {E7AC1E82-1369-46C4-8559-4D345ED6B208} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe <==== ATTENTION
Task: {EFCF6AA7-FC17-45AD-985C-67E1FC143C37} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-09-23] (Synaptics Incorporated)
Task: {F40AC3C9-2000-45CC-8092-062E2D30F6FD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Cansuck\Application\chrome.exe (Google Inc.)
ShortcutWithArgument: C:\Users\yann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.startpageing123.com/?type=sc&ts=1489157248&z=2452b35befc9928913ed015g8zab6t2gawbmco5qbq&from=che0812&uid=TOSHIBAXMQ01ABD100H_44DHC02UTXX44DHC02UT
ShortcutWithArgument: C:\Users\yann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.startpageing123.com/?type=sc&ts=1489769711&z=07b17c645e13a5dca6a3c5egez9b0t9m6q0t6mfg6w&from=che0812&uid=TOSHIBAXMQ01ABD100H_44DHC02UTXX44DHC02UT
==================== Modules chargés (Avec liste blanche) ==============
2013-03-27 20:53 - 2013-03-27 20:53 - 00163168 _____ () C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
2017-03-09 19:53 - 2017-03-09 19:53 - 00307200 _____ () C:\Program Files (x86)\Werbering Configuration\local64spl.dll
2014-02-24 22:11 - 2014-02-24 22:11 - 00021328 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
2017-03-13 19:23 - 2017-03-10 03:23 - 00104624 _____ () C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
2016-12-02 02:09 - 2016-12-02 02:09 - 00037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-14 22:06 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2017-03-14 22:06 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-14 22:06 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-19 00:38 - 2016-12-02 07:32 - 00401912 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-11-09 15:58 - 2016-11-09 15:58 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 22:04 - 2017-03-04 07:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 22:05 - 2017-03-04 07:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 22:05 - 2017-03-04 07:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 22:05 - 2017-03-04 07:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-14 22:06 - 2017-03-04 07:05 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-14 22:05 - 2017-03-04 07:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-14 22:06 - 2017-03-04 07:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-07-19 02:38 - 2012-07-19 02:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2013-08-01 22:24 - 2013-08-01 22:24 - 00438112 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\TcrdKBB.exe
2016-12-02 02:09 - 2016-12-02 02:09 - 00866224 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
2015-11-12 14:59 - 2016-08-21 09:21 - 00563896 _____ () C:\Users\yann\AppData\Roaming\cacaoweb\cacaoweb.exe
2017-03-15 21:40 - 2017-03-15 21:41 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-15 21:40 - 2017-03-15 21:41 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-10 15:54 - 2017-03-10 15:55 - 01693904 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7967.57601.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2017-03-17 17:28 - 2017-03-17 17:29 - 13360320 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7967.57601.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-03-17 17:28 - 2017-03-17 17:29 - 00150208 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7967.57601.0_x64__8wekyb3d8bbwe\textinputdriver.dll
2017-03-10 15:45 - 2017-03-17 10:22 - 00113152 _____ () C:\Users\yann\AppData\Roaming\Kyubey\Kyubey.exe
2017-03-10 15:02 - 2017-03-10 15:02 - 00524288 _____ () C:\Program Files (x86)\FE7epqlYsa\kl.dll
2017-03-13 19:21 - 2017-03-10 03:03 - 00110592 _____ () c:\programdata\apple\apps\config.dll
2014-06-04 06:27 - 2013-12-09 23:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-07-31 15:54 - 2017-02-03 02:42 - 00668960 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-07-31 15:54 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-07-31 15:54 - 2017-03-13 23:04 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-07-31 15:54 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-07-31 15:54 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-07-31 15:54 - 2017-03-13 23:04 - 00838944 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-10 07:39 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-13 11:32 - 2017-01-30 22:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2015-07-31 15:54 - 2017-03-13 23:04 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 14:25 - 2017-03-11 18:37 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2069856630-2927579174-728704156-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\yann\Desktop\nZMRrME.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{C970C1C3-D899-45EB-80BC-2278264FEB44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{E7D21ADA-5B9E-4BA9-AD4A-8CD57CB83988}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [UDP Query User{BC26C98F-018A-4EA1-BAE9-CFC1E8C8649C}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{364AF7CD-1317-4F27-BB9A-C02BC9848F85}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{3DCC52C4-71D0-4E5F-9321-5DB6F8E6123A}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{839D15A5-AFFA-4223-AE88-B96871289453}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{357F26AC-D220-419B-A064-69ED82357B78}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{463F308B-EC43-4392-A68A-F2AFF6C88A2B}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{90A679FC-2215-4180-A2CE-55B8419C93D4}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4F244114-6AA2-45BA-B016-6E992E306144}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{F336F390-7ECC-48F6-BBCF-07AA64ABB503}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{2A00A19A-8402-4DB6-9F21-E6E2149EC48F}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{70F7F288-7A2D-400E-A74A-0052C4D29761}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{2F45067B-BA2F-4491-B363-E95960B70D49}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{B986C947-E6C0-4D3E-8EB7-B1CB67F17499}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{A381B09E-1A9D-4500-95E5-C9348B4C7450}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [{4D6D078A-00B6-4578-9679-02EBEC5F8B81}] => (Allow) C:\GameforgeLive\gfl_client.exe
FirewallRules: [UDP Query User{D5571818-B523-48D5-B5EF-7B1BF4AED9DE}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{924079D4-D1C0-4822-AE3B-BBEFB89A379E}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [{789E5909-BF13-43F5-B87D-B9E7EA757F83}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{87D5C3FE-8ECE-4622-B33F-E6250AF41D75}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4163141B-A6D5-429C-AC4B-98DF7F66ED49}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{95081A44-D159-45FE-A096-E5D9AC552885}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8FBB750A-AE2D-46EA-A0C5-D7D56E52F0C6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8E0CCC55-38A4-420A-A73C-EF0E464D6037}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FD46D929-3803-4AB9-AD41-37599A8E60FC}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{C5F7356E-7DAC-48FA-87EA-E86129C19F8D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C456B58A-9745-43D7-9C02-0BCA90EFD255}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{7604E76F-C82E-4B75-AA1F-5C4D5D1031C7}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{D4CE99E2-2243-4F89-9C7F-1813A09F68C1}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{5822F8FD-0D3D-407E-8843-7028F2AB85B6}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{3179576F-B813-4D28-AAC0-30F25B95E112}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{546980E2-5089-41A6-8E3E-85C2D1DE3B69}] => (Allow) LPort=2869
FirewallRules: [{8FF61BE0-7F03-4AE8-896A-FEB42C009785}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{7E736640-62BC-4504-8B88-2241CB0C855F}C:\users\yann\downloads\cacaoweb.exe] => (Block) C:\users\yann\downloads\cacaoweb.exe
FirewallRules: [UDP Query User{FA1EF0B9-9CDD-4601-A5DD-D8FF09C819DB}C:\users\yann\downloads\cacaoweb.exe] => (Block) C:\users\yann\downloads\cacaoweb.exe
FirewallRules: [TCP Query User{0713AE8E-5FCA-4DCB-95F8-0BCFA3990E38}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{3DF0CEF4-E3C3-4533-93A2-3FC05A0A369A}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B4715165-2CB7-4FFE-9AB2-F426FA32B814}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{31335EBC-5E1A-4CD7-B018-DD9948E7C509}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [TCP Query User{600B322C-64A5-4D43-864F-0BB976E16CEE}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{E432917C-AD59-4783-8466-1942BEE5575D}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{058C07F8-2206-4AFE-BC78-D1D969F6660C}C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe] => (Allow) C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{508DACBD-F5DE-46C8-B519-65E395BA4C4C}C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe] => (Allow) C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe
FirewallRules: [TCP Query User{A221092A-F8D1-4F99-8C16-3C6AA0F3E6A9}C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe] => (Allow) C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe
FirewallRules: [UDP Query User{BADEFF86-71AB-46BE-8C5B-8F79A1331FB1}C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe] => (Allow) C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe
FirewallRules: [TCP Query User{FD8EE352-BF2B-4E54-84FD-7CE127FD81CE}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{838394B1-198A-47E8-8C67-6F4B0051121D}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [TCP Query User{CDFA4BA4-EC20-4AF6-BD0A-6666125AAF99}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [UDP Query User{333216DB-9EEB-4DEC-B40F-4B289569B35E}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [TCP Query User{311352F9-3B64-4579-A246-4C39F57583CB}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{2F4D3FC1-E645-42FD-946E-BE14A2CC13AF}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{E906693B-AAB1-4484-B124-4518A6B75718}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{A05760E2-EBA2-4CE4-96E4-1018B18EE77D}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [{3B2B8AE7-1AE2-4C5C-AFBE-668981F335DA}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{F2E4409B-4402-4816-BEB9-2A745DF1F97C}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{9185B9F0-6C60-421C-8BBC-A5A73E1D5131}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{4E47D92B-D626-4E62-9768-937AC6F6DDC3}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{70C8EE93-DE68-43DE-B243-DA9FF5CEB98B}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{3D59455A-3F27-463D-A661-55A1CA6E6186}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [{89D42801-1FC3-4B9B-83DF-B3207F73ECC5}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{3239CB59-B74D-4E87-9525-52C43CF45A1C}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{71FD64C0-F782-4336-ADDF-4C6651756B6A}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{8A1DF83A-A0FD-4A30-B62E-55C3B2061C43}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{3C3686AC-8D37-481C-A2D6-3D960814E206}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{B7C7F930-993A-47ED-B1F0-2A501953B3C2}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{1F70AF34-7BB6-48C4-A40E-837B0E683708}C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{56294ECE-315B-4FD5-A8F7-71C001EB0C3D}C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{230862EE-4F28-48B6-9CA5-03560A604371}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{2389F2D2-510A-4CAB-BEAF-37E32E10D73B}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{8D2AF568-E3E8-45AA-95B9-9731588F20FF}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{708D580F-0700-4AA1-AE8C-88B683228C18}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{C201561B-2EB3-4F99-94A0-21857C147A5C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2338724B-31CC-4BBC-8193-958C30E93255}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{21676679-9EA7-4EC2-A266-40024FEAE052}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{BB20A94A-6C18-4DF3-924F-D3B8763525AE}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{5B03B734-6F8B-4B1D-8309-19405FA5E65A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{D020AFED-0AC0-456F-AB66-2D36D4BD8A72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{03473F87-BBB0-4B60-8950-679B5E00A981}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3DB3074F-62E4-43A0-9D95-A8DBB4D5A244}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{50568634-7AF1-4CB1-9074-A82FACD282B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\gflauncher.exe
FirewallRules: [{6ED17CD8-88B8-4B85-ADFD-24AA79994224}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\gflauncher.exe
FirewallRules: [{1D4CAF1D-E712-4985-AD16-D706561A7D84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{1DDBE9D0-5622-402C-8E46-3194DBC62C48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{E1AB32A5-F196-41ED-8F47-2FCEC59AA392}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\Quik.exe
FirewallRules: [{C167F5CA-8E4C-4254-8905-30D05173CC74}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{4221845A-B262-4DF3-AA9F-5B48B319F1CA}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{E0FF9465-158D-490F-B8F4-2C82FBAD11DA}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [TCP Query User{1BAEBA12-BBC0-4213-9FE4-9B2C513CE2A4}C:\users\yann\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yann\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{80796BF8-98F0-46F0-966D-8C8BB91CCFCF}C:\users\yann\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yann\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{EF8FFA58-3FE2-42B9-BCC7-474439000CB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pirates, vikings and knights ii\sdkbase_pvkii\hl2.exe
FirewallRules: [{F84D19A1-C7B4-4B29-8025-38B2B2C9E3E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pirates, vikings and knights ii\sdkbase_pvkii\hl2.exe
FirewallRules: [{355FE477-0F88-415F-A54A-A16F5423A736}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{792C48AD-05C3-4F30-AA85-CF5B9D96BA59}] => (Allow) C:\Program Files (x86)\Cansuck\Application\chrome.exe
FirewallRules: [{B7A3E219-CABE-477E-979F-27451B8E1BCB}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{B76B0BBB-45E0-4DAE-A2F3-1DE25015C94B}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [TCP Query User{E9F03902-31C9-4687-B607-7FE39ABD6D59}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{5177A361-3A24-4366-AB0E-D7F3248BE0AB}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
==================== Points de restauration =========================
15-03-2017 16:57:42 Removed WinSnare
15-03-2017 16:58:29 Removed deskapp
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (03/16/2017 11:17:37 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/16/2017 11:17:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2147024865 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/16/2017 11:17:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/16/2017 11:17:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/16/2017 11:17:22 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/15/2017 10:43:36 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/15/2017 10:43:18 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/15/2017 08:29:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/15/2017 05:38:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/15/2017 05:25:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Spotify.exe, version : 1.0.50.41368, horodatage : 0x58b7210c
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.953, horodatage : 0x58ba586d
Code d’exception : 0xe0000008
Décalage d’erreur : 0x000da882
ID du processus défaillant : 0x1e3c
Heure de début de l’application défaillante : 0x01d29d933cb24a7a
Chemin d’accès de l’application défaillante : C:\Users\yann\AppData\Roaming\Spotify\Spotify.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 3aeaca3b-5f2e-4056-bf14-1680de67784e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (03/17/2017 05:22:32 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/17/2017 05:19:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/17/2017 05:19:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/17/2017 05:19:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/16/2017 11:17:31 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:30 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:30 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:28 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:27 PM) (Source: DCOM) (EventID: 10001) (User: YANN)
Description: Impossible de démarrer un serveur DCOM : CortanaUI.AppX66vvx0wsdb34y1dm8b872ypnaj4fqty0.mca en tant que Non disponible/Non disponible. L’erreur
« 31 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (03/16/2017 11:17:27 PM) (Source: DCOM) (EventID: 10010) (User: YANN)
Description: Le serveur CortanaUI.AppX66vvx0wsdb34y1dm8b872ypnaj4fqty0.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2017-03-15 15:12:30.218
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdhdl64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-14 21:56:14.489
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-14 18:52:16.676
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-14 18:50:50.628
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-14 18:50:42.259
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:14:33.346
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:13:03.202
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:10:02.988
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:04:21.809
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:02:20.973
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4700HQ CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 35%
Mémoire physique - RAM - totale: 8102.87 MB
Mémoire physique - RAM - disponible: 5220.21 MB
Mémoire virtuelle totale: 9382.87 MB
Mémoire virtuelle disponible: 6146.22 MB
==================== Lecteurs ================================
Drive c: (TI31299000B) (Fixed) (Total:917.51 GB) (Free:495.77 GB) NTFS
Drive d: (TAXI) (CDROM) (Total:5.63 GB) (Free:0 GB) UDF
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par yann (17-03-2017 18:00:44)
Exécuté depuis C:\Users\yann\Downloads
Windows 10 Home Version 1607 (X64) (2016-11-09 16:56:50)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2069856630-2927579174-728704156-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2069856630-2927579174-728704156-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2069856630-2927579174-728704156-1005 - Limited - Enabled)
Invité (S-1-5-21-2069856630-2927579174-728704156-501 - Limited - Disabled)
lebgb (S-1-5-21-2069856630-2927579174-728704156-1002 - Limited - Disabled)
yann (S-1-5-21-2069856630-2927579174-728704156-1001 - Administrator - Enabled) => C:\Users\yann
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Ad-Aware Web Companion (x32 Version: 2.0.1025.2130 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (x32 Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Akamai NetSession Interface (HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{42EC3153-24B0-FCAD-0F16-0904BCBAB179}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
amulesw (HKLM-x32\...\{13D7C2E9-08E7-4889-94FF-87E707184E53}) (Version: 1.0.7 - amules) <==== ATTENTION
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17364 - Microsoft Corporation)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Autodesk Network License Manager (HKLM\...\{4BE91685-1632-47FC-B563-A8A542C6664C}) (Version: 11.13.1.2 - Autodesk)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DTS Sound (HKLM-x32\...\{9B17BBEC-CF31-4C23-949E-E65A14365CE1}) (Version: 1.01.5700 - DTS, Inc.)
EPSON SX430 Series Printer Uninstall (HKLM\...\EPSON SX430 Series) (Version: - SEIKO EPSON Corporation)
Evernote (HKLM-x32\...\Evernote) (Version: 1.0.0 - Evernote Launcher by Toshiba Europe GmbH)
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GoPro Studio (x32 Version: 5.10.4643 - GoPro, Inc.) Hidden
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.5.5 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.12.108.1 - Intel Security)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{96C730E4-F055-4118-BDF3-6E071763853C}) (Version: 3.0.1342.02 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{eff1d9d1-41fa-49ef-a986-082bfe49c293}) (Version: 16.8.0 - Intel Corporation)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
LavasoftTcpService (x32 Version: 2.3.4.7 - Lavasoft) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\OneDriveSetup.exe) (Version: 17.3.6798.0207 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{2749c485-3a8b-4533-92ff-7cf6e8221cff}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MP3 Skype recorder (HKLM-x32\...\{D524F89B-5E21-49CF-AB24-BA5619EABDE9}) (Version: 4.29.2.0 - Domit LTD)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.2 - Nikon)
OEM Application Profile (HKLM-x32\...\{EF04BC2A-6EDA-936B-7B10-20FEA5B2DEA3}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
OLYMPUS AVCHD Codec (HKLM-x32\...\{FBD8E8CF-3460-4964-9079-9C68860487D4}) (Version: 1.0.0 - OLYMPUS IMAGING CORP.)
OLYMPUS Digital Camera Updater (HKLM-x32\...\{249AF4F3-0353-4C75-988D-019FCD52B4D4}) (Version: 1.0.2 - OLYMPUS IMAGING CORP.)
OLYMPUS Viewer 2 (HKLM-x32\...\{24494BC4-FDB2-4F76-8E3E-2B24DC9A5467}) (Version: 1.2.0 - OLYMPUS IMAGING CORP.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.103.32.0 - Overwolf Ltd.)
Package de pilotes Windows - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM\...\2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 - OLYMPUS IMAGING CORP.)
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.45.1674.2 - Hi-Rez Studios)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.140.239 - Google, Inc.)
Pirates, Vikings, & Knights II (HKLM\...\Steam App 17570) (Version: - Octoshark Studios)
Prism - Convertisseur de fichiers vidéo (HKLM-x32\...\Prism) (Version: 2.50 - NCH Software)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Quik (HKLM-x32\...\{71fc4e33-8ac1-4b21-8cb5-040ce8986c4e}) (Version: 2.0.0.4643 - GoPro, Inc.)
Quik (Version: 0.1.4643 - GoPro, Inc.) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.21249 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.23.1126.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7173 - Realtek Semiconductor Corp.)
S4 League (HKLM-x32\...\S4 League) (Version: - )
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.5.1333.g822e0de8 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Symbaloo (HKLM-x32\...\Symbaloo) (Version: 1.0.0 - Symbaloo Launcher by Toshiba Europe GmbH)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.16.3 - Synaptics Incorporated)
TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.02.6402 - Toshiba Corporation)
TOSHIBA Display Utility (HKLM\...\{DF800E02-DCC0-424B-A126-5AE2E07B3DD4}) (Version: 1.2.2.0 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{94D2A899-0C34-4420-880E-AE337E635AB0}) (Version: 2.4.2.6403 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{1844CFE2-EBA3-490A-8A5E-9BFC646342FD}) (Version: 1.1.5.6402 - Toshiba Corporation)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.6.02.6403 - Toshiba Corporation)
TOSHIBA Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.19 - TOSHIBA)
TOSHIBA Password Utility (HKLM-x32\...\InstallShield_{78931270-BC9E-441A-A52B-73ECD4ACFAB5}) (Version: 4.06.000 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 3.01.01.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.1.03.55065007 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{BFE4C813-4DD4-4B1C-97F4-76A459055C8D}) (Version: 2.6.13 - Toshiba Corporation)
TOSHIBA Start Screen Option (HKLM\...\{06B71035-F19F-4F76-9875-FFCCD4FC3F83}) (Version: 1.00.01.6402 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0033 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.1.32003 - Toshiba Corporation)
Toshiba TEMPRO (HKLM-x32\...\{F76F5214-83A8-4030-80C9-1EF57391D72A}) (Version: 4.5.1 - Toshiba Europe GmbH)
Update_msi (HKLM-x32\...\{59B5A9CD-253D-4C41-A073-B387D4C9672D}) (Version: 1.0.0 - Default Company Name)
VFW_Codec32 (x32 Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VideoPad - Logiciel de montage vidéo (HKLM-x32\...\VideoPad) (Version: 3.86 - NCH Software)
ViewNX 2 (HKLM-x32\...\{E64C137C-D0B7-467A-B47F-460AAB30F0A3}) (Version: 2.10.3 - Nikon)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Warface (HKLM\...\Steam App 291480) (Version: - Crytek)
Warface My.Com (HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\Warface My.Com) (Version: 1.27 - My.com B.V.)
WavePad - Logiciel d'édition audio (HKLM-x32\...\WavePad) (Version: 6.01 - NCH Software)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinSnare (HKLM-x32\...\{FC5A2575-5D95-4466-A08A-8908998E49D0}) (Version: 4.3.3 - WinSnare) <==== ATTENTION
XSplit Broadcaster (HKLM-x32\...\{34E8E886-07FF-4808-B2BB-993901AB39AC}) (Version: 2.7.1602.2244 - SplitmediaLabs)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0BA1EBD1-9FE5-48DF-95D8-98D04E7873D2} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {0F13FEFD-6AD2-439C-8C58-851BC48E61BD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {10151048-0B9A-4EBC-83AD-1000609CAF9C} - System32\Tasks\spotify => C:\Program Files (x86)\Spotify\SpotifyLauncher.exe [2014-03-13] (Spotify Ltd)
Task: {142731EF-4BAA-411A-8547-441F23F8C9D2} - System32\Tasks\Toshiba\CommonNotifier => C:\Program Files (x86)\Toshiba TEMPRO\Toshiba.Tempro.UI.CommonNotifier.exe [2013-12-24] (Toshiba Europe GmbH)
Task: {14DCA160-DAA8-4A48-9587-E8F596BAB96E} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {1597FE58-0379-4B25-A4C5-5B30444F3E29} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {2D35DE5D-04F3-4C3C-869E-FBDB4BCE7B31} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {2DEBEE76-9B8F-431F-A30A-F0A006C33F2B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-03-14] (Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
Task: {35D141EE-5DFF-4F28-A467-46340978B46F} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {4132FCD6-13A4-4BC3-B199-680A2A0DC69B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {46BC279F-4474-4CB6-9BB6-8E331C1ABB8E} - System32\Tasks\Majopyclbus => "msiexec" /i hxxp://d2buh1bf1g584w.cloudfront.net/msi/rel.php?u=TOSHIBAXMQ01ABD100H_44DHC02UTXX44DHC02UT&v=201739 /q <==== ATTENTION
Task: {47153E91-4961-4309-B0F6-6C5FF586E517} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-02-06] ()
Task: {4A1CDB25-3992-4F82-882D-AE346BD202B6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-03-05] (Overwolf LTD)
Task: {51F5EF5C-2A71-4B58-BDEA-B42D56ABA379} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {532E2833-104E-4A4B-AD08-8001ABBCEC73} - System32\Tasks\Werbering Configuration => C:\Program Files (x86)\Rebergeclarodom\xpurecult.exe [2017-03-09] (Glarysoft Ltd)
Task: {5D57BE68-90CA-42B5-9CAD-3385DD87AAED} - System32\Tasks\{690435AD-E247-4FE3-8103-0DAD767D5CE2} => Firefox.exe hxxp://ui.skype.com/ui/0/7.26.85.101/fr/go/help.faq.installer?LastError=1618
Task: {625A93E7-061E-4DE5-A0C1-FEAB2AA3993B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {71DD4488-E32C-457E-8402-9EE3783F2227} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {7C204F02-951F-4EC1-84B6-B953EC33A3E7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {7EE76685-2FEB-4E55-B07A-B35F886B1CF4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-26] (Apple Inc.)
Task: {821BCBFE-D21F-42A5-9C15-B79F8460137B} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-01-20] (Realtek Semiconductor)
Task: {879872F0-42AE-43F2-9026-7236BA3A9789} - System32\Tasks\iXsKngJoTr => C:\Program Files (x86)\FE7epqlYsa\updengine.exe [2017-03-10] () <==== ATTENTION
Task: {A26B7573-C431-4DC6-BED1-C44CA912E9F9} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {AABB7D45-98B8-498B-8DAD-AA70B2B825B0} - \WPD\SqmUpload_S-1-5-21-2069856630-2927579174-728704156-1001 -> Pas de fichier <==== ATTENTION
Task: {B408CA6E-FCBA-4EC4-8304-9A41F91E2003} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\yann\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
Task: {B76620AA-F1C5-448E-B25D-EF97B1886E71} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-28] (Adobe Systems Incorporated)
Task: {C9458473-E68E-4852-B770-F72E788F61B0} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION
Task: {CC1C18E9-EFE7-4B7F-AD25-BFC08098FE3A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
Task: {D049353F-173C-43EA-8C8E-6E193EE9C5E4} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe [2013-11-08] (TOSHIBA Corporation)
Task: {D3D81D80-47FE-4388-9838-652EABBE84B3} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {DA277DD9-C40F-4CFD-938A-62AB559008F2} - System32\Tasks\ByteFence => C:\Program Files\ByteFence\ByteFence.exe <==== ATTENTION
Task: {DA57631E-4C5A-472D-B41C-4BEBF55661DC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {DC9B7377-ED02-4C90-B456-0C6B35491769} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2013-09-24] (TOSHIBA Corporation)
Task: {DF8944DF-FE5F-4431-93A9-ED7BD78ECF76} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {E7AC1E82-1369-46C4-8559-4D345ED6B208} - System32\Tasks\ByteFence Scan => C:\Program Files\ByteFence\ByteFence.exe <==== ATTENTION
Task: {EFCF6AA7-FC17-45AD-985C-67E1FC143C37} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-09-23] (Synaptics Incorporated)
Task: {F40AC3C9-2000-45CC-8092-062E2D30F6FD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-03-04] (Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Cansuck\Application\chrome.exe (Google Inc.)
ShortcutWithArgument: C:\Users\yann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.startpageing123.com/?type=sc&ts=1489157248&z=2452b35befc9928913ed015g8zab6t2gawbmco5qbq&from=che0812&uid=TOSHIBAXMQ01ABD100H_44DHC02UTXX44DHC02UT
ShortcutWithArgument: C:\Users\yann\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.startpageing123.com/?type=sc&ts=1489769711&z=07b17c645e13a5dca6a3c5egez9b0t9m6q0t6mfg6w&from=che0812&uid=TOSHIBAXMQ01ABD100H_44DHC02UTXX44DHC02UT
==================== Modules chargés (Avec liste blanche) ==============
2013-03-27 20:53 - 2013-03-27 20:53 - 00163168 _____ () C:\Program Files (x86)\TOSHIBA\PasswordUtility\GFNEXSrv.exe
2017-03-09 19:53 - 2017-03-09 19:53 - 00307200 _____ () C:\Program Files (x86)\Werbering Configuration\local64spl.dll
2014-02-24 22:11 - 2014-02-24 22:11 - 00021328 _____ () C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
2017-03-13 19:23 - 2017-03-10 03:23 - 00104624 _____ () C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
2016-12-02 02:09 - 2016-12-02 02:09 - 00037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-03-14 22:06 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2017-03-14 22:06 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-14 22:06 - 2017-03-04 08:19 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-08-19 00:38 - 2016-12-02 07:32 - 00401912 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-11-09 15:58 - 2016-11-09 15:58 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 22:04 - 2017-03-04 07:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 22:05 - 2017-03-04 07:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 22:05 - 2017-03-04 07:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 22:05 - 2017-03-04 07:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-03-14 22:06 - 2017-03-04 07:05 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-03-14 22:05 - 2017-03-04 07:05 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-03-14 22:06 - 2017-03-04 07:08 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2012-07-19 02:38 - 2012-07-19 02:38 - 00020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2013-08-01 22:24 - 2013-08-01 22:24 - 00438112 _____ () C:\Program Files\TOSHIBA\Hotkey\Hotkey\TcrdKBB.exe
2016-12-02 02:09 - 2016-12-02 02:09 - 00866224 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDesktopSystemTray.exe
2015-11-12 14:59 - 2016-08-21 09:21 - 00563896 _____ () C:\Users\yann\AppData\Roaming\cacaoweb\cacaoweb.exe
2017-03-15 21:40 - 2017-03-15 21:41 - 00077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-15 21:40 - 2017-03-15 21:41 - 00182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-03-10 15:54 - 2017-03-10 15:55 - 01693904 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7967.57601.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2017-03-17 17:28 - 2017-03-17 17:29 - 13360320 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7967.57601.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Core.dll
2017-03-17 17:28 - 2017-03-17 17:29 - 00150208 _____ () C:\Program Files\WindowsApps\Microsoft.Office.OneNote_17.7967.57601.0_x64__8wekyb3d8bbwe\textinputdriver.dll
2017-03-10 15:45 - 2017-03-17 10:22 - 00113152 _____ () C:\Users\yann\AppData\Roaming\Kyubey\Kyubey.exe
2017-03-10 15:02 - 2017-03-10 15:02 - 00524288 _____ () C:\Program Files (x86)\FE7epqlYsa\kl.dll
2017-03-13 19:21 - 2017-03-10 03:03 - 00110592 _____ () c:\programdata\apple\apps\config.dll
2014-06-04 06:27 - 2013-12-09 23:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-07-31 15:54 - 2017-02-03 02:42 - 00668960 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-07-31 15:54 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-07-31 15:54 - 2017-03-13 23:04 - 02465056 _____ () C:\Program Files (x86)\Steam\video.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-07-31 15:54 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-07-31 15:54 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-07-31 15:54 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-07-31 15:54 - 2017-03-13 23:04 - 00838944 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-03-10 07:39 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-12-13 11:32 - 2017-01-30 22:41 - 68875552 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2015-07-31 15:54 - 2017-03-13 23:04 - 00383776 _____ () C:\Program Files (x86)\Steam\steam.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-2069856630-2927579174-728704156-1001\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 14:25 - 2017-03-11 18:37 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2069856630-2927579174-728704156-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\yann\Desktop\nZMRrME.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{C970C1C3-D899-45EB-80BC-2278264FEB44}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{E7D21ADA-5B9E-4BA9-AD4A-8CD57CB83988}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [UDP Query User{BC26C98F-018A-4EA1-BAE9-CFC1E8C8649C}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{364AF7CD-1317-4F27-BB9A-C02BC9848F85}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{3DCC52C4-71D0-4E5F-9321-5DB6F8E6123A}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [TCP Query User{839D15A5-AFFA-4223-AE88-B96871289453}C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_101\bin\javaw.exe
FirewallRules: [UDP Query User{357F26AC-D220-419B-A064-69ED82357B78}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{463F308B-EC43-4392-A68A-F2AFF6C88A2B}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{90A679FC-2215-4180-A2CE-55B8419C93D4}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{4F244114-6AA2-45BA-B016-6E992E306144}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{F336F390-7ECC-48F6-BBCF-07AA64ABB503}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{2A00A19A-8402-4DB6-9F21-E6E2149EC48F}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{70F7F288-7A2D-400E-A74A-0052C4D29761}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{2F45067B-BA2F-4491-B363-E95960B70D49}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{B986C947-E6C0-4D3E-8EB7-B1CB67F17499}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{A381B09E-1A9D-4500-95E5-C9348B4C7450}C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [{4D6D078A-00B6-4578-9679-02EBEC5F8B81}] => (Allow) C:\GameforgeLive\gfl_client.exe
FirewallRules: [UDP Query User{D5571818-B523-48D5-B5EF-7B1BF4AED9DE}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{924079D4-D1C0-4822-AE3B-BBEFB89A379E}C:\users\yann\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\yann\appdata\local\akamai\netsession_win.exe
FirewallRules: [{789E5909-BF13-43F5-B87D-B9E7EA757F83}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{87D5C3FE-8ECE-4622-B33F-E6250AF41D75}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4163141B-A6D5-429C-AC4B-98DF7F66ED49}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{95081A44-D159-45FE-A096-E5D9AC552885}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8FBB750A-AE2D-46EA-A0C5-D7D56E52F0C6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8E0CCC55-38A4-420A-A73C-EF0E464D6037}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{FD46D929-3803-4AB9-AD41-37599A8E60FC}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{C5F7356E-7DAC-48FA-87EA-E86129C19F8D}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{C456B58A-9745-43D7-9C02-0BCA90EFD255}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{7604E76F-C82E-4B75-AA1F-5C4D5D1031C7}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{D4CE99E2-2243-4F89-9C7F-1813A09F68C1}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{5822F8FD-0D3D-407E-8843-7028F2AB85B6}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{3179576F-B813-4D28-AAC0-30F25B95E112}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{546980E2-5089-41A6-8E3E-85C2D1DE3B69}] => (Allow) LPort=2869
FirewallRules: [{8FF61BE0-7F03-4AE8-896A-FEB42C009785}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{7E736640-62BC-4504-8B88-2241CB0C855F}C:\users\yann\downloads\cacaoweb.exe] => (Block) C:\users\yann\downloads\cacaoweb.exe
FirewallRules: [UDP Query User{FA1EF0B9-9CDD-4601-A5DD-D8FF09C819DB}C:\users\yann\downloads\cacaoweb.exe] => (Block) C:\users\yann\downloads\cacaoweb.exe
FirewallRules: [TCP Query User{0713AE8E-5FCA-4DCB-95F8-0BCFA3990E38}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{3DF0CEF4-E3C3-4533-93A2-3FC05A0A369A}C:\users\yann\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\yann\appdata\roaming\spotify\spotify.exe
FirewallRules: [{B4715165-2CB7-4FFE-9AB2-F426FA32B814}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{31335EBC-5E1A-4CD7-B018-DD9948E7C509}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [TCP Query User{600B322C-64A5-4D43-864F-0BB976E16CEE}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{E432917C-AD59-4783-8466-1942BEE5575D}C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe] => (Block) C:\users\yann\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{058C07F8-2206-4AFE-BC78-D1D969F6660C}C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe] => (Allow) C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{508DACBD-F5DE-46C8-B519-65E395BA4C4C}C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe] => (Allow) C:\ubisoft\ghost recon phantoms\pdc-live\ghostreconphantoms.exe
FirewallRules: [TCP Query User{A221092A-F8D1-4F99-8C16-3C6AA0F3E6A9}C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe] => (Allow) C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe
FirewallRules: [UDP Query User{BADEFF86-71AB-46BE-8C5B-8F79A1331FB1}C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe] => (Allow) C:\users\yann\appdata\local\apps\2.0\arzjba5a.qrt\qhg7vkal.wmx\laun...app_2e973cc213891be7_0001.0024_dd24b003d48bfc42\launcher.exe
FirewallRules: [TCP Query User{FD8EE352-BF2B-4E54-84FD-7CE127FD81CE}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{838394B1-198A-47E8-8C67-6F4B0051121D}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [TCP Query User{CDFA4BA4-EC20-4AF6-BD0A-6666125AAF99}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [UDP Query User{333216DB-9EEB-4DEC-B40F-4B289569B35E}C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [TCP Query User{311352F9-3B64-4579-A246-4C39F57583CB}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [UDP Query User{2F4D3FC1-E645-42FD-946E-BE14A2CC13AF}C:\games\world_of_tanks\wotlauncher.exe] => (Allow) C:\games\world_of_tanks\wotlauncher.exe
FirewallRules: [TCP Query User{E906693B-AAB1-4484-B124-4518A6B75718}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [UDP Query User{A05760E2-EBA2-4CE4-96E4-1018B18EE77D}C:\games\world_of_tanks\worldoftanks.exe] => (Allow) C:\games\world_of_tanks\worldoftanks.exe
FirewallRules: [{3B2B8AE7-1AE2-4C5C-AFBE-668981F335DA}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{F2E4409B-4402-4816-BEB9-2A745DF1F97C}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{9185B9F0-6C60-421C-8BBC-A5A73E1D5131}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{4E47D92B-D626-4E62-9768-937AC6F6DDC3}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{70C8EE93-DE68-43DE-B243-DA9FF5CEB98B}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{3D59455A-3F27-463D-A661-55A1CA6E6186}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [{89D42801-1FC3-4B9B-83DF-B3207F73ECC5}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{3239CB59-B74D-4E87-9525-52C43CF45A1C}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{71FD64C0-F782-4336-ADDF-4C6651756B6A}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.exe
FirewallRules: [{8A1DF83A-A0FD-4A30-B62E-55C3B2061C43}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Warframe.x64.exe
FirewallRules: [{3C3686AC-8D37-481C-A2D6-3D960814E206}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\Launcher.exe
FirewallRules: [{B7C7F930-993A-47ED-B1F0-2A501953B3C2}] => (Allow) C:\Users\yann\AppData\Local\Warframe\Downloaded\Public\Tools\RemoteCrashSender.exe
FirewallRules: [TCP Query User{1F70AF34-7BB6-48C4-A40E-837B0E683708}C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{56294ECE-315B-4FD5-A8F7-71C001EB0C3D}C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\yann\downloads\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{230862EE-4F28-48B6-9CA5-03560A604371}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{2389F2D2-510A-4CAB-BEAF-37E32E10D73B}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Allow) C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{8D2AF568-E3E8-45AA-95B9-9731588F20FF}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{708D580F-0700-4AA1-AE8C-88B683228C18}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{C201561B-2EB3-4F99-94A0-21857C147A5C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2338724B-31CC-4BBC-8193-958C30E93255}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{21676679-9EA7-4EC2-A266-40024FEAE052}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [UDP Query User{BB20A94A-6C18-4DF3-924F-D3B8763525AE}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe
FirewallRules: [{5B03B734-6F8B-4B1D-8309-19405FA5E65A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{D020AFED-0AC0-456F-AB66-2D36D4BD8A72}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{03473F87-BBB0-4B60-8950-679B5E00A981}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3DB3074F-62E4-43A0-9D95-A8DBB4D5A244}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{50568634-7AF1-4CB1-9074-A82FACD282B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\gflauncher.exe
FirewallRules: [{6ED17CD8-88B8-4B85-ADFD-24AA79994224}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\gflauncher.exe
FirewallRules: [{1D4CAF1D-E712-4985-AD16-D706561A7D84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{1DDBE9D0-5622-402C-8E46-3194DBC62C48}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe
FirewallRules: [{E1AB32A5-F196-41ED-8F47-2FCEC59AA392}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\Quik.exe
FirewallRules: [{C167F5CA-8E4C-4254-8905-30D05173CC74}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{4221845A-B262-4DF3-AA9F-5B48B319F1CA}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{E0FF9465-158D-490F-B8F4-2C82FBAD11DA}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [TCP Query User{1BAEBA12-BBC0-4213-9FE4-9B2C513CE2A4}C:\users\yann\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yann\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{80796BF8-98F0-46F0-966D-8C8BB91CCFCF}C:\users\yann\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\yann\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{EF8FFA58-3FE2-42B9-BCC7-474439000CB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pirates, vikings and knights ii\sdkbase_pvkii\hl2.exe
FirewallRules: [{F84D19A1-C7B4-4B29-8025-38B2B2C9E3E6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\pirates, vikings and knights ii\sdkbase_pvkii\hl2.exe
FirewallRules: [{355FE477-0F88-415F-A54A-A16F5423A736}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{792C48AD-05C3-4F30-AA85-CF5B9D96BA59}] => (Allow) C:\Program Files (x86)\Cansuck\Application\chrome.exe
FirewallRules: [{B7A3E219-CABE-477E-979F-27451B8E1BCB}] => (Allow) C:\Program Files (x86)\Firefox\bin\FirefoxUpdate.exe
FirewallRules: [{B76B0BBB-45E0-4DAE-A2F3-1DE25015C94B}] => (Allow) C:\Program Files (x86)\Firefox\Firefox.exe
FirewallRules: [TCP Query User{E9F03902-31C9-4687-B607-7FE39ABD6D59}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
FirewallRules: [UDP Query User{5177A361-3A24-4366-AB0E-D7F3248BE0AB}C:\windows\system32\mmc.exe] => (Block) C:\windows\system32\mmc.exe
==================== Points de restauration =========================
15-03-2017 16:57:42 Removed WinSnare
15-03-2017 16:58:29 Removed deskapp
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (03/16/2017 11:17:37 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/16/2017 11:17:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2147024865 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/16/2017 11:17:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/16/2017 11:17:24 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/16/2017 11:17:22 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/15/2017 10:43:36 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/15/2017 10:43:18 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/15/2017 08:29:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/15/2017 05:38:39 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YANN)
Description: Échec de l’activation de l’application Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/15/2017 05:25:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Spotify.exe, version : 1.0.50.41368, horodatage : 0x58b7210c
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.953, horodatage : 0x58ba586d
Code d’exception : 0xe0000008
Décalage d’erreur : 0x000da882
ID du processus défaillant : 0x1e3c
Heure de début de l’application défaillante : 0x01d29d933cb24a7a
Chemin d’accès de l’application défaillante : C:\Users\yann\AppData\Roaming\Spotify\Spotify.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 3aeaca3b-5f2e-4056-bf14-1680de67784e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (03/17/2017 05:22:32 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/17/2017 05:19:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/17/2017 05:19:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/17/2017 05:19:32 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/16/2017 11:17:31 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:30 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:30 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:28 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {AA65DD7C-83AC-48C0-A6FD-9B61FEBF8800} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/16/2017 11:17:27 PM) (Source: DCOM) (EventID: 10001) (User: YANN)
Description: Impossible de démarrer un serveur DCOM : CortanaUI.AppX66vvx0wsdb34y1dm8b872ypnaj4fqty0.mca en tant que Non disponible/Non disponible. L’erreur
« 31 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (03/16/2017 11:17:27 PM) (Source: DCOM) (EventID: 10010) (User: YANN)
Description: Le serveur CortanaUI.AppX66vvx0wsdb34y1dm8b872ypnaj4fqty0.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2017-03-15 15:12:30.218
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\amdhdl64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-03-14 21:56:14.489
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-14 18:52:16.676
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-14 18:50:50.628
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-14 18:50:42.259
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:14:33.346
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:13:03.202
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:10:02.988
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:04:21.809
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-03-13 21:02:20.973
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4700HQ CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 35%
Mémoire physique - RAM - totale: 8102.87 MB
Mémoire physique - RAM - disponible: 5220.21 MB
Mémoire virtuelle totale: 9382.87 MB
Mémoire virtuelle disponible: 6146.22 MB
==================== Lecteurs ================================
Drive c: (TI31299000B) (Fixed) (Total:917.51 GB) (Free:495.77 GB) NTFS
Drive d: (TAXI) (CDROM) (Total:5.63 GB) (Free:0 GB) UDF
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt ============================