Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-09-2017
Exécuté par Phong (11-09-2017 14:54:21)
Exécuté depuis C:\Users\garfi\Desktop
Windows 10 Home Version 1703 (X64) (2017-08-05 21:04:03)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3537187915-2253798678-3291736898-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3537187915-2253798678-3291736898-503 - Limited - Disabled)
Invité (S-1-5-21-3537187915-2253798678-3291736898-501 - Limited - Disabled)
Phong (S-1-5-21-3537187915-2253798678-3291736898-1001 - Administrator - Enabled) => C:\Users\garfi
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.)
Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Aeria Ignite (HKLM-x32\...\{22A72F06-FA80-42CB-9A8C-46C6AE53425C}) (Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Akamai NetSession Interface (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{1BA994F2-88D8-D18E-AA07-595FE026C54E}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.)
APB Reloaded (HKLM\...\Steam App 113400) (Version: - Reloaded Productions)
AuraKingdom-FR (HKLM-x32\...\AuraKingdom-FR) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.7.320.8504 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{3E245378-BF77-6946-C6F6-096DBE5EAB82}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{45907537-804A-514F-5280-5F4F12A6DCBC}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{962364E4-08BB-347D-32E7-2B789F37BF8A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{A0407E39-2AA4-60B3-885F-3C5347B6909E}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0989D0EA-AFF3-5F9A-3D25-20EE133E409B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{A8689A0F-5928-7300-B82B-C5E85131B7BA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{76AAF56B-93D8-161D-809A-EC05F3B913DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{063CED74-F5F0-870E-DC9C-2D78FDEDA3EE}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{13BB60AA-88F7-4B1F-2DEC-D81EEDE8B3AA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{37AA6227-FF2C-95AC-87C0-45DCC0BB87DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{EB328356-1DF0-1CCE-3607-6361DD329219}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{87E6EC29-AEC5-28CB-F773-93EB6C1B8A2B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{CA55697D-BD74-3ED8-6B21-D7EDAD3B7D02}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{CFC860C8-4F51-E08C-A74C-2E444ED06160}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9338D693-38B7-1ED4-9B42-BFA1D5600CCB}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{C971C145-258D-6650-7088-13DDB161327A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{EBA09DAF-14B4-7BE7-676E-6E2FB21EDBDD}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{9AA4DD93-94BF-22EA-C9D2-7084F304A31B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{379D900B-A785-6DB0-012E-434356A365B3}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{366C4FB5-CF6E-258B-418D-E6D29549A278}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{B10089DE-934F-6E0F-683A-B788F89348DF}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Dead Alliance™: Multiplayer Beta (HKLM\...\Steam App 645540) (Version: - IllFonic)
Dungeon Defenders II (HKLM\...\Steam App 236110) (Version: - Trendy Entertainment)
Dying Light (HKLM\...\Steam App 239140) (Version: - Techland)
Far Cry® 3 (HKLM\...\Steam App 220240) (Version: - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.79 - Google Inc.)
Google Drive (HKLM-x32\...\{A90339B3-2C3F-492E-B3A7-0BDFC691E526}) (Version: 2.34.6425.2548 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.4.6 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel Extreme Tuning Utility (HKLM-x32\...\{41E5D953-530A-441B-98D3-92B5D6B80AEB}) (Version: 6.2.0.17 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{fde8aa07-3912-4bdf-ad35-ff1231bfd00d}) (Version: 6.2.0.17 - Intel Corporation)
Killer Bandwidth Control Filter Driver (HKLM\...\{5B7A2B7B-CEA9-4E50-B0E4-E82F204CBE78}) (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer E220x Drivers (HKLM\...\{77C95134-CA2D-4614-9C86-55B7A6A281AA}) (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{51B5A084-A40D-4F4B-90AA-EF8354EA7D96}) (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.57.1125 - Rivet Networks)
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve)
Lindo 1.1.4 (only current user) (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\a062a80e-4fba-5e6e-9563-13825db2d262) (Version: 1.1.4 - Prixe)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.18 - MSI)
MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.5 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.09 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.19 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.11 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.14 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.16 - MSI)
Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig)
My.com Game Center (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\MyComGames) (Version: 3.196 - My.com B.V.)
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 2.0.0 - Nexon)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.6.1.80 - Symantec Corporation)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.3.1 - Duodian Technology Co. Ltd.)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
osu! (HKLM-x32\...\{912cb7fe-b2ff-46df-87eb-9363aa557614}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.58.2083.6 - Hi-Rez Studios)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM\...\Steam App 221040) (Version: - Capcom)
Resident Evil 7 / Biohazard 7 Teaser: Beginning Hour (HKLM\...\Steam App 530620) (Version: - CAPCOM Co., Ltd.)
Revelation Online (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\Revelation Online) (Version: 1.25 - My.com B.V.)
S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version: - Dragonfly GF Co., LTD)
S4 League (HKLM-x32\...\S4 League) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Forest (HKLM\...\Steam App 242760) (Version: - Endnight Games Ltd)
Trove (HKLM\...\Steam App 304050) (Version: - Trion Worlds)
UnnyWorld (HKLM\...\Steam App 446270) (Version: - Unnyhog)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Wakfu (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [0TheftProtectionDll] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => -> Pas de fichier
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-11-21] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0EBF6EA9-96F5-4529-85F6-BED80E85C83E} - System32\Tasks\SVC Update => C:\WINDOWS\explorer.exe "hxxp://sh.st/AeotZ" <==== ATTENTION
Task: {0F551A39-A970-4DB3-8987-45883E9326E0} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [2017-05-26] (Micro-Star INT'L CO., LTD.)
Task: {899E35C2-5A8A-4658-9193-38B15EBC607D} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {B86C1E17-4673-4CA1-B2D5-3BBE7E871462} - System32\Tasks\{905BEDC0-5F55-40F0-96DB-0B7AC8915B4E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {BB045533-27B4-4BCB-BD6C-05C3A5721F9C} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [2015-08-18] (MSI)
Task: {BE6BCA35-7C43-443F-BF06-2B8EAE84E137} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {C2C721E7-31FD-4AF4-87D4-FA0BF81B1722} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-03] (Google Inc.)
Task: {E3DFBEA0-B134-4927-9B43-50DB7510E8C7} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {E48F6C00-2720-4393-A45D-22C5C48441DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-03] (Google Inc.)
Task: {E728212B-0233-431B-BDA0-D4D764189752} - System32\Tasks\Norton Security Scan for Phong => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.80\Nss.exe [2016-11-03] (Symantec Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\garfi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2fae1f4995fc9e7f\NexonLauncher.lnk -> D:\Nexon Launcher\bin\nexon_client\nexon_client.exe (Nexon) -> --user-data-dir="C:\Users\garfi\AppData\Local\NexonLauncher\User Data" --profile-directory=Default --app-id=dobbaijafcbikgimjpakclacfgeagffm
==================== Modules chargés (Avec liste blanche) ==============
2017-07-28 19:37 - 2017-07-28 19:37 - 000076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2017-09-11 14:23 - 2017-09-11 14:26 - 002260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-06-09 09:05 - 2016-06-14 16:35 - 000187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-08-23 08:13 - 2017-08-23 08:13 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-08-23 08:13 - 2017-08-23 08:13 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-23 08:13 - 2017-08-23 08:13 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-08-23 08:13 - 2017-08-23 08:13 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 002013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-11-21 17:19 - 2016-11-21 17:19 - 000155016 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2017-09-11 14:50 - 2017-09-04 10:12 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libglesv2.dll
2017-09-11 14:50 - 2017-09-04 10:12 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libegl.dll
2017-08-09 01:49 - 2017-07-28 11:18 - 031134720 _____ () C:\Users\garfi\AppData\Local\Google\Chrome\User Data\PepperFlash\26.0.0.151\pepflashplayer.dll
2017-06-09 09:03 - 2005-07-18 13:43 - 000160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2017-06-09 09:05 - 2016-06-14 16:35 - 000163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2017-02-05 19:49 - 2017-08-04 23:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-02-05 19:49 - 2017-09-07 06:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll
2017-02-05 19:49 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-02-05 19:49 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-02-05 19:49 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-02-05 19:49 - 2017-09-07 06:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-02-05 19:51 - 2017-07-18 00:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-06-09 09:02 - 2017-05-17 03:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-02-05 19:49 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2017-03-03 10:59 - 2017-03-03 10:59 - 000144896 _____ () C:\Users\garfi\AppData\Local\MyComGames\zlib1.dll
2017-03-03 10:59 - 2017-03-03 10:59 - 000076176 _____ () C:\Users\garfi\AppData\Local\MyComGames\pxd.dll
2017-03-03 10:59 - 2017-06-20 16:43 - 000249744 _____ () C:\Users\garfi\AppData\Local\MyComGames\LightUpdate.dll
2017-03-03 10:59 - 2017-08-14 12:39 - 002495696 _____ () C:\Users\garfi\AppData\Local\MyComGames\BigUp2.dll
2016-05-23 20:36 - 2016-05-23 20:36 - 048962048 _____ () C:\Users\garfi\AppData\Local\MyComGames\Chrome\3.2623.1401\libcef.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 000047104 _____ () D:\Nexon Launcher\bin\lib\_socket.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000085504 _____ () D:\Nexon Launcher\bin\lib\_ctypes.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000053760 _____ () D:\Nexon Launcher\bin\lib\_bz2.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 001331200 _____ () D:\Nexon Launcher\bin\lib\_ssl.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000182272 _____ () D:\Nexon Launcher\bin\lib\_decimal.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000758784 _____ () D:\Nexon Launcher\bin\lib\unicodedata.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000096768 _____ () D:\Nexon Launcher\bin\lib\win32api.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000104960 _____ () D:\Nexon Launcher\bin\lib\pywintypes34.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 000133120 _____ () D:\Nexon Launcher\bin\lib\pyexpat.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000009728 _____ () D:\Nexon Launcher\bin\lib\select.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000035840 _____ () D:\Nexon Launcher\bin\lib\win32process.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000254976 _____ () D:\Nexon Launcher\bin\lib\zmq\libzmq.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000036864 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\constants.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000013824 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\error.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000043520 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\message.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000031232 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\context.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000070656 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\socket.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000022528 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\utils.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000029184 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\_poll.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000011264 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\_version.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000024064 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\_device.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000029184 _____ () D:\Nexon Launcher\bin\lib\zmq\devices\monitoredqueue.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 001847296 _____ () D:\Nexon Launcher\bin\lib\PySide\QtCore.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000113152 _____ () D:\Nexon Launcher\bin\lib\PySide\pyside-python3.4.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 000115712 _____ () D:\Nexon Launcher\bin\lib\PySide\shiboken-python3.4.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 006935040 _____ () D:\Nexon Launcher\bin\lib\PySide\QtGui.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000035840 _____ () D:\Nexon Launcher\bin\modules\apps\contenttools\rollinghash.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000166912 _____ () D:\Nexon Launcher\bin\lib\win32gui.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000010752 _____ () D:\Nexon Launcher\bin\lib\Crypto\Random\OSRNG\winrandom.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000009728 _____ () D:\Nexon Launcher\bin\lib\Crypto\Util\_counter.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000029696 _____ () D:\Nexon Launcher\bin\lib\Crypto\Cipher\_AES.pyd
2017-09-09 20:07 - 2017-08-10 03:32 - 001938944 _____ () D:\Nexon Launcher\bin\nexon_client\ffmpeg.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 002205696 _____ () D:\Nexon Launcher\bin\nexon_client\libglesv2.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 000075776 _____ () D:\Nexon Launcher\bin\nexon_client\libegl.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 003134464 _____ () D:\Nexon Launcher\bin\nexon_client\node.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 000185344 _____ () \\?\D:\Nexon Launcher\bin\front_end\node_modules\zmq\build\Release\zmq.node
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-07-10 13:04 - 2017-06-10 12:55 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\garfi\Downloads\ecran-noir.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{F46BCC44-633B-4073-AB0C-F8DA9D2D9F99}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{AE7A3C4C-C95A-4821-B6C1-B78A4FBDE12E}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{B227B5D4-5F20-45F1-B1F6-3DD896933E34}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{52F999C4-0E76-44E6-BCFB-1F5DEC28C258}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{62E2EA74-960A-492A-8B29-29556A3DCBE9}] => (Allow) C:\Users\garfi\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{D9A12105-F474-491A-A4D3-04E0BC8FEC84}] => (Allow) C:\Users\garfi\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{467E785A-6055-4F34-8BEE-5C5DE7A07204}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{489C65F0-239F-4262-9846-D22F7D52C1BE}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{DC92AEBB-0162-4689-AD98-3E5F13DBE032}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{D90CE450-87A2-40AF-BD25-29C39D1F85B9}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{92A0A521-36B7-4047-83D2-3CC3320A64AA}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{F7D653B1-09BB-468B-B677-EBF1C131373F}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{073F8292-9912-4B95-8B91-FE499AD98164}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{EECD7BB8-EDCF-4989-BE2D-C18221C759DF}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{0B278621-D629-4C86-A8A7-1019E4A6D13C}] => (Allow) C:\Users\garfi\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{B58F6034-4040-4A1F-B7F0-E8F7B95EDE75}] => (Allow) C:\Users\garfi\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [UDP Query User{066AA6D8-23E5-46AC-B5F9-EE087F38F48A}C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [TCP Query User{E960B6BB-F618-49BC-9A24-2E8054F7AD44}C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{37B6ACEA-F8E7-4ADC-8A11-7089CE9E9614}] => (Allow) D:\steam\steamapps\common\Resident Evil 6\BH6.exe
FirewallRules: [{762512C0-A2D5-40B1-892B-FF7F867207FE}] => (Allow) D:\steam\steamapps\common\Resident Evil 6\BH6.exe
FirewallRules: [{CD298D91-BEEF-4C5E-9BCE-B93A8C775EB3}] => (Allow) D:\steam\steamapps\common\RESIDENT EVIL 7 biohazard Demo\re7trial.exe
FirewallRules: [{4E66D01E-B61D-4A4C-8F0A-408C733BC5E2}] => (Allow) D:\steam\steamapps\common\RESIDENT EVIL 7 biohazard Demo\re7trial.exe
FirewallRules: [{8D110991-1986-4113-9450-E6091DC11C44}] => (Allow) D:\steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{DE039841-0347-4C5F-9246-6090E35CF837}] => (Allow) D:\steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{B04A0783-6750-41B7-B49E-31B7B5971BF4}] => (Allow) D:\steam\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{2E014143-7D70-45B2-B132-C1BC66CBCC26}] => (Allow) D:\steam\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{DFBC281B-3F21-421D-B8A5-5512112FDEBA}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{05CA2FCB-159F-4DC8-A0A3-4DAAEE0DB9D6}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{8BAA34CC-2BF9-48C4-AE63-730158BDD1C3}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{D5E25B60-109A-4CFF-A554-F744CB06C380}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{30FC9D8B-04E8-46FE-B6ED-919D8295B1AB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9515D5B8-5B1B-438F-85F9-F74624F429F9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6B33921E-7086-45C7-84C4-246FD25D73E5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{92E28319-48BE-4C75-B2AC-D3825034F945}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{042682D5-56FC-44A9-BB63-BA879E00E059}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{19BD4F0C-48D1-4C43-9047-ED9C90CC5AA5}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{E34410AD-457E-4AD9-978E-9C712255280A}] => (Allow) D:\steam\steamapps\common\Dead Alliance Open Beta\MHGame.exe
FirewallRules: [{8168E095-D9DE-4577-8FCC-A65B939359E7}] => (Allow) D:\steam\steamapps\common\Dead Alliance Open Beta\MHGame.exe
FirewallRules: [{1308C39E-7705-4FA6-A032-AAB1AF2A2310}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{95F10C41-CC84-41F1-9DF1-916A62719B29}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
FirewallRules: [UDP Query User{266D05C4-DBE2-461D-8984-1426D2CFCD66}D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{95C929E4-E6BC-42C8-9162-B84526A671E0}D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [{9F591E72-5319-4EB8-9F79-3B06498BF8A2}] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{20839CAF-046D-4CF3-875D-4F595F31742D}] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2004ED04-3EC7-4839-9307-445BD18ECBF3}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{F4E5EFCD-DB67-4493-AAF7-18243BC55C70}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2F3340E4-9654-4925-B8E5-D278CD9EFF51}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{AB60C035-940B-40C3-8331-FED786CBCDB7}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{27AAA4C8-E647-4676-AD96-B500A5EB2C43}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{FF8544F6-F5E8-410B-9042-EC5E46ADEF4A}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{EDF8FDC4-C98C-409B-85E3-493655E50855}] => (Block) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [{979B73DA-C0B7-4114-BF15-B3A676F83C44}] => (Block) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [UDP Query User{4F1CA456-EB55-4F8B-8B4B-89ED0CF4818F}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [TCP Query User{C531DD18-29BF-4497-A29C-B371890B24B2}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [{A7DE5FF8-2821-4BB3-AE4B-A5E5419C9553}] => (Block) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [{C7A50C64-2735-4A07-852D-AC0C12CC97E9}] => (Block) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [UDP Query User{43957332-D952-492B-9DDF-88B9D87EBD60}C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [TCP Query User{F0800627-1441-4A86-A452-00B1134FAD22}C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [{C5573E3D-86F2-47F4-B9E2-80D038E81141}] => (Allow) LPort=26789
FirewallRules: [UDP Query User{A3F200B4-393C-4E3D-B9A2-2CF20335ECA0}C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe
FirewallRules: [TCP Query User{DD9C8D17-0862-4534-B31B-AD0B73A04406}C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe
FirewallRules: [{82E1297D-D15D-4601-AA7B-D8B69CB06AF7}] => (Block) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [{FAA37CA6-54BF-485A-B497-3E210B3B6187}] => (Block) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [UDP Query User{93E8B792-BD3C-4542-AA26-FC07FE41F442}C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [TCP Query User{38241A6F-0009-4A07-A007-C753B433D804}C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [{58918932-1B4A-4CBA-9E65-909B67BF61BB}] => (Block) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{2F9CE702-96F2-4D61-8951-2DE124AF1B0C}] => (Block) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{8BAA57EB-B646-4A9F-96A2-2EC9A732C659}] => (Block) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [{7C86D76B-B919-4ACD-9559-C939BB2D66BD}] => (Block) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [UDP Query User{FA0A6F3F-B3BA-4D1B-B31B-2D167A8C523D}C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [TCP Query User{7E0A2C7F-B5AD-4624-97F5-8E3606901F7A}C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [UDP Query User{C66247AB-8AEF-4B45-B33D-1CB9E91DBAE6}D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D795208B-5013-46C5-922E-179DA7828E48}D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{880A4672-EB5E-4229-8056-96FD192D593D}] => (Block) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [{1AE6F9DF-0C1E-45DB-8B94-9506C21A45C4}] => (Block) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DD3CF003-605B-4936-BDA6-A6041D09D174}D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{4188FF41-5B80-4FA7-8BF8-E70BDFB1619B}D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [{97576C70-362D-41F5-A8D4-56D603B979BC}] => (Block) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [{2592BA46-6491-45C9-A3B6-0EAC8BDCED3D}] => (Block) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [UDP Query User{E712AA72-A275-41B8-8987-DA188A8C78CB}C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [TCP Query User{BA22C071-218D-4BAC-8BD8-CDFA0427BBD3}C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [UDP Query User{F81E0175-404C-4D70-AABA-9984B8B283CC}D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8C8CAC81-2728-427D-AAB8-BD967B498E91}D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [{EAF31FFB-36EF-45D6-84AB-2919D7CCCC45}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{DA31231F-F437-487D-854B-0AF770721D62}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{78554F0D-329D-400D-B5AB-169E87C4F534}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{0931FA39-59DF-4998-B127-3A5D1E92F2BC}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{F4FF5146-DEFF-49CB-A262-DE7101FA4D18}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{5D9641B1-ADFB-4326-A873-2AB08EDDEFB5}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [UDP Query User{AC738D00-180C-40B4-8B00-FDC65BD0CD92}D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{04E4C392-C2BA-4445-816B-EBAF1D3D9A80}D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [{EBE6FB12-28FD-4D38-A7C9-7401071173A1}] => (Block) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [{A2CFA0ED-BB6C-454A-A02D-4A87A054224E}] => (Block) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [UDP Query User{48154DBD-AF9D-48E4-8B6C-7F0C87472FBB}C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [TCP Query User{947A839A-C564-4F2F-B381-04336CB28ECD}C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [{6AE9A3C1-F477-4CED-930B-93BC7F3D942A}] => (Block) D:\battle\overwatch\overwatch.exe
FirewallRules: [{1B2D10A4-374A-4E05-81C4-14EAE68949E5}] => (Block) D:\battle\overwatch\overwatch.exe
FirewallRules: [UDP Query User{D41D5314-E9A4-460B-B758-C600AA23B8C2}D:\battle\overwatch\overwatch.exe] => (Allow) D:\battle\overwatch\overwatch.exe
FirewallRules: [TCP Query User{EE698CC7-A832-4987-BC5D-13B0754CECCA}D:\battle\overwatch\overwatch.exe] => (Allow) D:\battle\overwatch\overwatch.exe
FirewallRules: [{BABC24AF-BCF6-4DEC-8CAA-591A7BEE5085}] => (Allow) D:\steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{3B4625A7-F94D-42D4-8530-764BDA374895}] => (Allow) D:\steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{548CAAC6-179D-4D5B-88AF-BFA26C8E939F}] => (Allow) D:\steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{D0B82342-CEE1-4CB9-A581-EF7B70E2E907}] => (Allow) D:\steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{B39D430A-B1F8-4D55-A95E-36DAD8338917}] => (Allow) D:\steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{3C9C5A75-8761-4754-8A28-B9B082F11578}] => (Allow) D:\steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{0F887043-431C-46DF-966A-595B98FB3036}] => (Allow) D:\steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{0530BF10-9419-4F4B-A171-3A5799585B35}] => (Allow) D:\steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{EDD45528-834F-404D-ABC0-9B36E9D1C3F7}] => (Allow) D:\steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{24FB9555-011E-4A0E-B681-7FB93B8D3961}] => (Allow) D:\steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{41449FBD-F40B-4752-9F13-24BBC6F05350}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3A0639DA-A3D9-476D-84A1-4BB7D378B0D6}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [UDP Query User{2276FD5D-96D0-4562-9929-A9ED2D60CC2E}C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe
FirewallRules: [TCP Query User{BC61ECFD-5644-44B8-87B4-F31F326254F1}C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe
FirewallRules: [UDP Query User{2B915D92-173D-47BF-AED3-10043C3901D9}C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [TCP Query User{03224C68-9CBD-41E9-AC8F-7EDA1F658263}C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [{35E6D940-BA35-4D12-9CDF-2D084EC2E289}] => (Block) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [{CFDFCBC4-4293-4A48-81CE-E66A7D8B3901}] => (Block) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [UDP Query User{BBA185AF-7DA5-41B0-8804-99DEE7033D9E}C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [TCP Query User{459FB390-63A9-4601-AEDD-23BA893A0166}C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [UDP Query User{99ADBE1E-B97A-4F48-9F14-C7117D7CC73B}C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe
FirewallRules: [TCP Query User{7A047EA3-D3CE-4FE7-8875-05591DF713E5}C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe
FirewallRules: [UDP Query User{D9FDD36E-2378-41D2-813A-D3FAD68F882D}C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe
FirewallRules: [TCP Query User{A2D1066E-1068-4CC5-B748-E1AA4F7A634B}C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe
FirewallRules: [{45F396B0-2189-40BE-BC92-852D99E774D2}] => (Block) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{DDD8912A-CC44-493F-9A36-2C676CD9C097}] => (Block) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{9C128B5B-4D69-4CCB-82BC-D3CF5E69461E}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [TCP Query User{773BA3E1-5984-4345-946A-5EBD024A2BB4}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{B65613E5-145A-46A9-8482-7FB71AD587F0}] => (Block) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{FB736892-6A93-4EED-96BF-CA38176C28B5}] => (Block) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{24F4E643-1D4A-4308-B66A-9E8002086EFB}C:\users\garfi\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{987E4A1D-5821-4AF7-B70F-5AD9AB060ADD}C:\users\garfi\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{C25EB95D-BE9B-4EB8-A8DD-A6FAE620B35D}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{A87B132B-488F-4468-8E59-BED3621B25A1}] => (Allow) C:\WINDOWS\explorer.exe
FirewallRules: [UDP Query User{87C33E3B-9D99-42A7-98BB-39B181F3B8DD}C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [TCP Query User{79C24E49-7120-4656-AA9A-AB3CAECC760D}C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [{9761A790-B003-474D-AD28-62D87F367580}] => (Block) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [{7ED6ECFF-3E9C-422E-B741-AE828E5FE95F}] => (Block) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [UDP Query User{58D92D78-5D97-4146-971C-F3E0F24D6ADE}C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [TCP Query User{E370A1B4-E27D-422E-832B-4B68331BA61E}C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [{70E460B9-0213-48D6-A116-B27501B69E6D}] => (Block) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{249055BD-8D63-4D0E-B908-9568767B690C}] => (Block) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{6D184C98-3FE8-470D-8FBF-4C8AFCE76333}C:\users\garfi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{0874E6AC-4393-493D-BDEB-1CAF32131BCA}C:\users\garfi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7741913D-BDC0-4BF8-9F02-FE7C0F952A19}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{AA6492E9-2E3A-4E36-87A1-E29921C8EB4B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{EF4F3589-0C34-4F7A-86D7-9F6B55D40B3C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6C87E5D3-3216-4C7E-84F6-127A211DC865}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3242ECF2-4CE1-4379-A958-A9F976DE0104}] => (Block) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [{F6FEA1CB-D6D9-464C-BC99-634C3301BDEE}] => (Block) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [UDP Query User{414EE8DD-F858-4DD4-B760-CEE50997D4AB}C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [TCP Query User{DBB0C5A8-B4CB-453F-8414-104B73A973B3}C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [{9CBBB93A-81FA-42E2-B845-6602A2B480FC}] => (Block) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{B407BBB2-9AA9-41F1-B4EE-5B97AE91EA7C}] => (Block) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{F46DD1F9-E83B-435C-BA70-C66537A97BA5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{27767BF2-4A58-458E-B79E-62CCBA7C51F5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{85A64763-7741-46DA-BE81-A7DB3327DFE4}] => (Allow) D:\steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{E44793A7-7CB3-4637-B480-395C09F57F30}] => (Allow) D:\steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{AE5D41EA-71E9-4D85-AC90-242002188447}] => (Allow) D:\steam\steamapps\common\UnnyWorld\Unnyworld.exe
FirewallRules: [{02ABF4D7-CE8F-487C-B77F-5BCB3CFBA39D}] => (Allow) D:\steam\steamapps\common\UnnyWorld\Unnyworld.exe
FirewallRules: [{F6604602-A78E-4258-BA84-927A2D441F53}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{CC3298F3-36BB-4BAD-BD3E-F4CC53D0B484}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{8F79BD21-CAFC-4AE2-92EC-8FC21857E6C0}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D7C9D33E-FCFD-480E-817A-1D752E9F88AB}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{BB540022-7A5F-4690-8449-2D733578E1B3}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{449D728F-4E7F-4D8E-AAC0-EBA58C4F7C77}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{535A6370-B676-48C7-97D7-8936E137EC6E}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{3FA0A1E7-8487-4DAF-9FC0-E13478133CCC}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{52EECFB0-E520-4AF5-923E-E3C46A8520F0}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{6BDF595D-AA5B-4FB4-8D57-9F05C6D97E7D}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{B236FC8B-94B5-4548-88F9-7DDFC0624FD6}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{38491DCE-9BBC-4084-85FB-42A7E971F754}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D6E31719-C72C-4A02-9E1E-F3967A81B71D}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{AD32BD0B-CD15-4881-96E9-1F2FED786125}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{8A4FFBAF-EC98-4B1C-8327-174264668D01}] => (Allow) C:\Users\garfi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{22D1574E-A275-49B3-B241-4E7747497742}] => (Allow) C:\Users\garfi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{974B6CBF-345C-476A-A39B-7FA1A0020732}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{A9D9434F-1A3B-4F3D-92B4-8615C371ED4B}] => (Allow) C:\Nexon\Library\vindictus\appdata\en-US\NMService.exe
FirewallRules: [{3F6B6E3F-E930-4CBB-9BAA-6ED99ED97790}] => (Allow) C:\Nexon\Library\vindictus\appdata\en-US\NMService.exe
FirewallRules: [{497676F8-8DFB-4C06-A34E-3A9C434E8074}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
25-08-2017 23:51:06 Point de contrôle planifié
02-09-2017 13:39:17 Point de contrôle planifié
10-09-2017 21:01:22 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:43 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « .NETFramework » dans la DLL « C:\WINDOWS\system32\mscoree.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MSIDDRService.exe, version : 3.0.0.16, horodatage : 0x58a41e28
Nom du module défaillant : MSIDDRService.exe, version : 3.0.0.16, horodatage : 0x58a41e28
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00026eaf
ID du processus défaillant : 0xc0c
Heure de début de l’application défaillante : 0x01d32afafeeece9d
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Chemin d’accès du module défaillant: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
ID de rapport : 95608b81-8f7c-4595-848b-82685659886f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (09/11/2017 02:34:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:34:38 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
Error: (09/11/2017 02:34:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:34:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Erreurs système:
=============
Error: (09/11/2017 02:44:55 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (09/11/2017 02:39:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 1ème fois.
Error: (09/11/2017 02:39:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.
Error: (09/11/2017 02:34:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 1ème fois.
Error: (09/11/2017 02:34:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.
Error: (09/11/2017 01:19:06 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (09/11/2017 11:05:50 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (09/11/2017 10:16:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 6ème fois.
Error: (09/11/2017 08:04:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 5ème fois.
Error: (09/11/2017 08:01:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-V6GIC6J)
Description: Le serveur {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2017-09-11 14:53:20.291
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:53:20.289
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:53:20.032
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:53:20.031
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:50:37.975
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:37.794
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:37.662
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:20.729
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:20.497
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:20.374
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Pourcentage de mémoire utilisée: 23%
Mémoire physique - RAM - totale: 16311.92 MB
Mémoire physique - RAM - disponible: 12399.61 MB
Mémoire virtuelle totale: 21175.92 MB
Mémoire virtuelle disponible: 16521.39 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:231.95 GB) (Free:112.01 GB) NTFS
Drive d: (Stockage) (Fixed) (Total:931.51 GB) (Free:700.79 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: C92494FB)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=460 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8AA34DC0)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================
Exécuté par Phong (11-09-2017 14:54:21)
Exécuté depuis C:\Users\garfi\Desktop
Windows 10 Home Version 1703 (X64) (2017-08-05 21:04:03)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3537187915-2253798678-3291736898-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3537187915-2253798678-3291736898-503 - Limited - Disabled)
Invité (S-1-5-21-3537187915-2253798678-3291736898-501 - Limited - Disabled)
Phong (S-1-5-21-3537187915-2253798678-3291736898-1001 - Administrator - Enabled) => C:\Users\garfi
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\uTorrent) (Version: 3.5.0.43916 - BitTorrent Inc.)
Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A90000000001}) (Version: 9.0.0 - Adobe Systems Incorporated)
Aeria Ignite (HKLM-x32\...\{22A72F06-FA80-42CB-9A8C-46C6AE53425C}) (Version: 1.13.3296 - Aeria Games & Entertainment) Hidden
Aeria Ignite (HKLM-x32\...\Aeria Ignite 1.13.3296) (Version: 1.13.3296 - Aeria Games & Entertainment)
Aeria Ignite (HKLM-x32\...\Aeria Ignite) (Version: 1.13.3296 - Aeria Games & Entertainment)
Akamai NetSession Interface (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
AMD Catalyst Install Manager (HKLM\...\{1BA994F2-88D8-D18E-AA07-595FE026C54E}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Settings (HKLM\...\WUCCCApp) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.)
APB Reloaded (HKLM\...\Steam App 113400) (Version: - Reloaded Productions)
AuraKingdom-FR (HKLM-x32\...\AuraKingdom-FR) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.7.320.8504 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Catalyst Control Center Next Localization BR (HKLM\...\{3E245378-BF77-6946-C6F6-096DBE5EAB82}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{45907537-804A-514F-5280-5F4F12A6DCBC}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{962364E4-08BB-347D-32E7-2B789F37BF8A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{A0407E39-2AA4-60B3-885F-3C5347B6909E}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{0989D0EA-AFF3-5F9A-3D25-20EE133E409B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{A8689A0F-5928-7300-B82B-C5E85131B7BA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{76AAF56B-93D8-161D-809A-EC05F3B913DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{063CED74-F5F0-870E-DC9C-2D78FDEDA3EE}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{13BB60AA-88F7-4B1F-2DEC-D81EEDE8B3AA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{37AA6227-FF2C-95AC-87C0-45DCC0BB87DA}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{EB328356-1DF0-1CCE-3607-6361DD329219}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{87E6EC29-AEC5-28CB-F773-93EB6C1B8A2B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{CA55697D-BD74-3ED8-6B21-D7EDAD3B7D02}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{CFC860C8-4F51-E08C-A74C-2E444ED06160}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{9338D693-38B7-1ED4-9B42-BFA1D5600CCB}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{C971C145-258D-6650-7088-13DDB161327A}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{EBA09DAF-14B4-7BE7-676E-6E2FB21EDBDD}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{9AA4DD93-94BF-22EA-C9D2-7084F304A31B}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{379D900B-A785-6DB0-012E-434356A365B3}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{366C4FB5-CF6E-258B-418D-E6D29549A278}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{B10089DE-934F-6E0F-683A-B788F89348DF}) (Version: 2016.1121.1657.30480 - Advanced Micro Devices, Inc.) Hidden
Dead Alliance™: Multiplayer Beta (HKLM\...\Steam App 645540) (Version: - IllFonic)
Dungeon Defenders II (HKLM\...\Steam App 236110) (Version: - Trendy Entertainment)
Dying Light (HKLM\...\Steam App 239140) (Version: - Techland)
Far Cry® 3 (HKLM\...\Steam App 220240) (Version: - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.79 - Google Inc.)
Google Drive (HKLM-x32\...\{A90339B3-2C3F-492E-B3A7-0BDFC691E526}) (Version: 2.34.6425.2548 - Google, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.4.6 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel Extreme Tuning Utility (HKLM-x32\...\{41E5D953-530A-441B-98D3-92B5D6B80AEB}) (Version: 6.2.0.17 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{fde8aa07-3912-4bdf-ad35-ff1231bfd00d}) (Version: 6.2.0.17 - Intel Corporation)
Killer Bandwidth Control Filter Driver (HKLM\...\{5B7A2B7B-CEA9-4E50-B0E4-E82F204CBE78}) (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer E220x Drivers (HKLM\...\{77C95134-CA2D-4614-9C86-55B7A6A281AA}) (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer Network Manager (HKLM\...\{51B5A084-A40D-4F4B-90AA-EF8354EA7D96}) (Version: 1.1.57.1125 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.57.1125 - Rivet Networks)
Left 4 Dead 2 (HKLM\...\Steam App 550) (Version: - Valve)
Lindo 1.1.4 (only current user) (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\a062a80e-4fba-5e6e-9563-13825db2d262) (Version: 1.1.4 - Prixe)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\OneDriveSetup.exe) (Version: 17.3.6966.0824 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.18 - MSI)
MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.5 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.09 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.19 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.11 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.14 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.16 - MSI)
Mumble 1.2.19 (HKLM-x32\...\{9BCF5203-72BB-4425-A391-83BF298EF376}) (Version: 1.2.19 - Thorvald Natvig)
My.com Game Center (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\MyComGames) (Version: 3.196 - My.com B.V.)
Nexon Launcher (HKLM-x32\...\Nexon Nexon Launcher) (Version: 2.0.0 - Nexon)
Norton Security Scan (HKLM-x32\...\NSS) (Version: 4.6.1.80 - Symantec Corporation)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.8.3.1 - Duodian Technology Co. Ltd.)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
osu! (HKLM-x32\...\{912cb7fe-b2ff-46df-87eb-9363aa557614}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Paladins (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF402}) (Version: 0.58.2083.6 - Hi-Rez Studios)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM\...\Steam App 221040) (Version: - Capcom)
Resident Evil 7 / Biohazard 7 Teaser: Beginning Hour (HKLM\...\Steam App 530620) (Version: - CAPCOM Co., Ltd.)
Revelation Online (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\Revelation Online) (Version: 1.25 - My.com B.V.)
S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version: - Dragonfly GF Co., LTD)
S4 League (HKLM-x32\...\S4 League) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Forest (HKLM\...\Steam App 242760) (Version: - Endnight Games Ltd)
Trove (HKLM\...\Steam App 304050) (Version: - Trion Worlds)
UnnyWorld (HKLM\...\Steam App 446270) (Version: - Unnyhog)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
Wakfu (HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\1F4715F1-86E7-4450-AA9A-13ADBF14BED1-2) (Version: - Ankama)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-08-04] (Google)
ShellIconOverlayIdentifiers: [0TheftProtectionDll] -> {3B5B973C-92A4-4855-9D3F-0F3D23332208} => -> Pas de fichier
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-08-04] (Google)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2016-11-21] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0EBF6EA9-96F5-4529-85F6-BED80E85C83E} - System32\Tasks\SVC Update => C:\WINDOWS\explorer.exe "hxxp://sh.st/AeotZ" <==== ATTENTION
Task: {0F551A39-A970-4DB3-8987-45883E9326E0} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [2017-05-26] (Micro-Star INT'L CO., LTD.)
Task: {899E35C2-5A8A-4658-9193-38B15EBC607D} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {B86C1E17-4673-4CA1-B2D5-3BBE7E871462} - System32\Tasks\{905BEDC0-5F55-40F0-96DB-0B7AC8915B4E} => C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files\ByteFence\ByteFence.exe" -c /uninstall
Task: {BB045533-27B4-4BCB-BD6C-05C3A5721F9C} - System32\Tasks\MSISW_Host => C:\WINDOWS\SysWOW64\muachost.exe [2015-08-18] (MSI)
Task: {BE6BCA35-7C43-443F-BF06-2B8EAE84E137} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2016-07-28] (Micro-Star INT'L CO., LTD.)
Task: {C2C721E7-31FD-4AF4-87D4-FA0BF81B1722} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-03] (Google Inc.)
Task: {E3DFBEA0-B134-4927-9B43-50DB7510E8C7} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-11-20] (Intel Corporation)
Task: {E48F6C00-2720-4393-A45D-22C5C48441DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-03] (Google Inc.)
Task: {E728212B-0233-431B-BDA0-D4D764189752} - System32\Tasks\Norton Security Scan for Phong => C:\Program Files (x86)\Norton Security Scan\Engine\4.6.1.80\Nss.exe [2016-11-03] (Symantec Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\MSISW_Host.job => C:\WINDOWS\SysWOW64\muachost.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\garfi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2fae1f4995fc9e7f\NexonLauncher.lnk -> D:\Nexon Launcher\bin\nexon_client\nexon_client.exe (Nexon) -> --user-data-dir="C:\Users\garfi\AppData\Local\NexonLauncher\User Data" --profile-directory=Default --app-id=dobbaijafcbikgimjpakclacfgeagffm
==================== Modules chargés (Avec liste blanche) ==============
2017-07-28 19:37 - 2017-07-28 19:37 - 000076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2017-09-11 14:23 - 2017-09-11 14:26 - 002260432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-06-09 09:05 - 2016-06-14 16:35 - 000187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 07:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-08-23 08:13 - 2017-08-23 08:13 - 000074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-08-23 08:13 - 2017-08-23 08:13 - 000203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-08-23 08:13 - 2017-08-23 08:13 - 036162048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-08-23 08:13 - 2017-08-23 08:13 - 002237952 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.19.856.0_x64__kzf8qxf38zg5c\skypert.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 000011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-06-30 19:12 - 2016-06-30 19:12 - 002013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-11-21 17:19 - 2016-11-21 17:19 - 000155016 _____ () C:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
2017-09-11 14:50 - 2017-09-04 10:12 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libglesv2.dll
2017-09-11 14:50 - 2017-09-04 10:12 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.79\libegl.dll
2017-08-09 01:49 - 2017-07-28 11:18 - 031134720 _____ () C:\Users\garfi\AppData\Local\Google\Chrome\User Data\PepperFlash\26.0.0.151\pepflashplayer.dll
2017-06-09 09:03 - 2005-07-18 13:43 - 000160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2017-06-09 09:05 - 2016-06-14 16:35 - 000163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2017-02-05 19:49 - 2017-08-04 23:19 - 000678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-02-05 19:49 - 2017-09-07 06:51 - 002505504 _____ () C:\Program Files (x86)\Steam\video.dll
2017-02-05 19:49 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-02-05 19:49 - 2016-01-27 09:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-02-05 19:49 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-02-05 19:49 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-02-05 19:49 - 2017-09-07 06:51 - 000885024 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-02-05 19:51 - 2017-07-18 00:50 - 073115424 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-06-09 09:02 - 2017-05-17 03:54 - 000678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-02-05 19:49 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll
2017-03-03 10:59 - 2017-03-03 10:59 - 000144896 _____ () C:\Users\garfi\AppData\Local\MyComGames\zlib1.dll
2017-03-03 10:59 - 2017-03-03 10:59 - 000076176 _____ () C:\Users\garfi\AppData\Local\MyComGames\pxd.dll
2017-03-03 10:59 - 2017-06-20 16:43 - 000249744 _____ () C:\Users\garfi\AppData\Local\MyComGames\LightUpdate.dll
2017-03-03 10:59 - 2017-08-14 12:39 - 002495696 _____ () C:\Users\garfi\AppData\Local\MyComGames\BigUp2.dll
2016-05-23 20:36 - 2016-05-23 20:36 - 048962048 _____ () C:\Users\garfi\AppData\Local\MyComGames\Chrome\3.2623.1401\libcef.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 000047104 _____ () D:\Nexon Launcher\bin\lib\_socket.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000085504 _____ () D:\Nexon Launcher\bin\lib\_ctypes.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000053760 _____ () D:\Nexon Launcher\bin\lib\_bz2.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 001331200 _____ () D:\Nexon Launcher\bin\lib\_ssl.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000182272 _____ () D:\Nexon Launcher\bin\lib\_decimal.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000758784 _____ () D:\Nexon Launcher\bin\lib\unicodedata.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000096768 _____ () D:\Nexon Launcher\bin\lib\win32api.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000104960 _____ () D:\Nexon Launcher\bin\lib\pywintypes34.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 000133120 _____ () D:\Nexon Launcher\bin\lib\pyexpat.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000009728 _____ () D:\Nexon Launcher\bin\lib\select.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000035840 _____ () D:\Nexon Launcher\bin\lib\win32process.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000254976 _____ () D:\Nexon Launcher\bin\lib\zmq\libzmq.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000036864 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\constants.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000013824 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\error.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000043520 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\message.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000031232 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\context.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000070656 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\socket.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000022528 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\utils.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000029184 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\_poll.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000011264 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\_version.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000024064 _____ () D:\Nexon Launcher\bin\lib\zmq\backend\cython\_device.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000029184 _____ () D:\Nexon Launcher\bin\lib\zmq\devices\monitoredqueue.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 001847296 _____ () D:\Nexon Launcher\bin\lib\PySide\QtCore.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000113152 _____ () D:\Nexon Launcher\bin\lib\PySide\pyside-python3.4.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 000115712 _____ () D:\Nexon Launcher\bin\lib\PySide\shiboken-python3.4.dll
2017-09-09 20:07 - 2017-09-06 02:51 - 006935040 _____ () D:\Nexon Launcher\bin\lib\PySide\QtGui.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000035840 _____ () D:\Nexon Launcher\bin\modules\apps\contenttools\rollinghash.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000166912 _____ () D:\Nexon Launcher\bin\lib\win32gui.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000010752 _____ () D:\Nexon Launcher\bin\lib\Crypto\Random\OSRNG\winrandom.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000009728 _____ () D:\Nexon Launcher\bin\lib\Crypto\Util\_counter.pyd
2017-09-09 20:07 - 2017-09-06 02:51 - 000029696 _____ () D:\Nexon Launcher\bin\lib\Crypto\Cipher\_AES.pyd
2017-09-09 20:07 - 2017-08-10 03:32 - 001938944 _____ () D:\Nexon Launcher\bin\nexon_client\ffmpeg.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 002205696 _____ () D:\Nexon Launcher\bin\nexon_client\libglesv2.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 000075776 _____ () D:\Nexon Launcher\bin\nexon_client\libegl.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 003134464 _____ () D:\Nexon Launcher\bin\nexon_client\node.dll
2017-09-09 20:07 - 2017-08-10 03:32 - 000185344 _____ () \\?\D:\Nexon Launcher\bin\front_end\node_modules\zmq\build\Release\zmq.node
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\aeriagames.com -> hxxp://aeriagames.com
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-07-10 13:04 - 2017-06-10 12:55 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\garfi\Downloads\ecran-noir.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-3537187915-2253798678-3291736898-1001\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{F46BCC44-633B-4073-AB0C-F8DA9D2D9F99}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{AE7A3C4C-C95A-4821-B6C1-B78A4FBDE12E}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{B227B5D4-5F20-45F1-B1F6-3DD896933E34}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{52F999C4-0E76-44E6-BCFB-1F5DEC28C258}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{62E2EA74-960A-492A-8B29-29556A3DCBE9}] => (Allow) C:\Users\garfi\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{D9A12105-F474-491A-A4D3-04E0BC8FEC84}] => (Allow) C:\Users\garfi\AppData\Local\Temp\RemoveTemp.exe
FirewallRules: [{467E785A-6055-4F34-8BEE-5C5DE7A07204}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{489C65F0-239F-4262-9846-D22F7D52C1BE}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{DC92AEBB-0162-4689-AD98-3E5F13DBE032}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{D90CE450-87A2-40AF-BD25-29C39D1F85B9}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{92A0A521-36B7-4047-83D2-3CC3320A64AA}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{F7D653B1-09BB-468B-B677-EBF1C131373F}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{073F8292-9912-4B95-8B91-FE499AD98164}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{EECD7BB8-EDCF-4989-BE2D-C18221C759DF}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{0B278621-D629-4C86-A8A7-1019E4A6D13C}] => (Allow) C:\Users\garfi\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [{B58F6034-4040-4A1F-B7F0-E8F7B95EDE75}] => (Allow) C:\Users\garfi\AppData\Local\Temp\andy-x64\Setup.exe
FirewallRules: [UDP Query User{066AA6D8-23E5-46AC-B5F9-EE087F38F48A}C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [TCP Query User{E960B6BB-F618-49BC-9A24-2E8054F7AD44}C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe] => (Allow) C:\users\garfi\appdata\roaming\haiyuinst\plugins\download\minithunderplatform.exe
FirewallRules: [{37B6ACEA-F8E7-4ADC-8A11-7089CE9E9614}] => (Allow) D:\steam\steamapps\common\Resident Evil 6\BH6.exe
FirewallRules: [{762512C0-A2D5-40B1-892B-FF7F867207FE}] => (Allow) D:\steam\steamapps\common\Resident Evil 6\BH6.exe
FirewallRules: [{CD298D91-BEEF-4C5E-9BCE-B93A8C775EB3}] => (Allow) D:\steam\steamapps\common\RESIDENT EVIL 7 biohazard Demo\re7trial.exe
FirewallRules: [{4E66D01E-B61D-4A4C-8F0A-408C733BC5E2}] => (Allow) D:\steam\steamapps\common\RESIDENT EVIL 7 biohazard Demo\re7trial.exe
FirewallRules: [{8D110991-1986-4113-9450-E6091DC11C44}] => (Allow) D:\steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{DE039841-0347-4C5F-9246-6090E35CF837}] => (Allow) D:\steam\steamapps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{B04A0783-6750-41B7-B49E-31B7B5971BF4}] => (Allow) D:\steam\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{2E014143-7D70-45B2-B132-C1BC66CBCC26}] => (Allow) D:\steam\steamapps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{DFBC281B-3F21-421D-B8A5-5512112FDEBA}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{05CA2FCB-159F-4DC8-A0A3-4DAAEE0DB9D6}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{8BAA34CC-2BF9-48C4-AE63-730158BDD1C3}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{D5E25B60-109A-4CFF-A554-F744CB06C380}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{30FC9D8B-04E8-46FE-B6ED-919D8295B1AB}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{9515D5B8-5B1B-438F-85F9-F74624F429F9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6B33921E-7086-45C7-84C4-246FD25D73E5}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{92E28319-48BE-4C75-B2AC-D3825034F945}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{042682D5-56FC-44A9-BB63-BA879E00E059}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{19BD4F0C-48D1-4C43-9047-ED9C90CC5AA5}] => (Allow) D:\steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{E34410AD-457E-4AD9-978E-9C712255280A}] => (Allow) D:\steam\steamapps\common\Dead Alliance Open Beta\MHGame.exe
FirewallRules: [{8168E095-D9DE-4577-8FCC-A65B939359E7}] => (Allow) D:\steam\steamapps\common\Dead Alliance Open Beta\MHGame.exe
FirewallRules: [{1308C39E-7705-4FA6-A032-AAB1AF2A2310}] => (Allow) C:\Program Files (x86)\Bignox\BigNoxVM\RT\NoxVMHandle.exe
FirewallRules: [{95F10C41-CC84-41F1-9DF1-916A62719B29}] => (Allow) C:\Program Files (x86)\Nox\bin\Nox.exe
FirewallRules: [UDP Query User{266D05C4-DBE2-461D-8984-1426D2CFCD66}D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{95C929E4-E6BC-42C8-9162-B84526A671E0}D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe] => (Allow) D:\hirez\hirezgames\paladins\binaries\win32\paladins.exe
FirewallRules: [{9F591E72-5319-4EB8-9F79-3B06498BF8A2}] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{20839CAF-046D-4CF3-875D-4F595F31742D}] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2004ED04-3EC7-4839-9307-445BD18ECBF3}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{F4E5EFCD-DB67-4493-AAF7-18243BC55C70}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2F3340E4-9654-4925-B8E5-D278CD9EFF51}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{AB60C035-940B-40C3-8331-FED786CBCDB7}D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{27AAA4C8-E647-4676-AD96-B500A5EB2C43}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{FF8544F6-F5E8-410B-9042-EC5E46ADEF4A}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{EDF8FDC4-C98C-409B-85E3-493655E50855}] => (Block) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [{979B73DA-C0B7-4114-BF15-B3A676F83C44}] => (Block) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [UDP Query User{4F1CA456-EB55-4F8B-8B4B-89ED0CF4818F}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [TCP Query User{C531DD18-29BF-4497-A29C-B371890B24B2}C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8965\battle.net.exe
FirewallRules: [{A7DE5FF8-2821-4BB3-AE4B-A5E5419C9553}] => (Block) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [{C7A50C64-2735-4A07-852D-AC0C12CC97E9}] => (Block) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [UDP Query User{43957332-D952-492B-9DDF-88B9D87EBD60}C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [TCP Query User{F0800627-1441-4A86-A452-00B1134FAD22}C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8941\battle.net.exe
FirewallRules: [{C5573E3D-86F2-47F4-B9E2-80D038E81141}] => (Allow) LPort=26789
FirewallRules: [UDP Query User{A3F200B4-393C-4E3D-B9A2-2CF20335ECA0}C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe
FirewallRules: [TCP Query User{DD9C8D17-0862-4534-B31B-AD0B73A04406}C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8839\battle.net.exe
FirewallRules: [{82E1297D-D15D-4601-AA7B-D8B69CB06AF7}] => (Block) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [{FAA37CA6-54BF-485A-B497-3E210B3B6187}] => (Block) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [UDP Query User{93E8B792-BD3C-4542-AA26-FC07FE41F442}C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [TCP Query User{38241A6F-0009-4A07-A007-C753B433D804}C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8800\battle.net.exe
FirewallRules: [{58918932-1B4A-4CBA-9E65-909B67BF61BB}] => (Block) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{2F9CE702-96F2-4D61-8951-2DE124AF1B0C}] => (Block) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{8BAA57EB-B646-4A9F-96A2-2EC9A732C659}] => (Block) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [{7C86D76B-B919-4ACD-9559-C939BB2D66BD}] => (Block) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [UDP Query User{FA0A6F3F-B3BA-4D1B-B31B-2D167A8C523D}C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [TCP Query User{7E0A2C7F-B5AD-4624-97F5-8E3606901F7A}C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8793\battle.net.exe
FirewallRules: [UDP Query User{C66247AB-8AEF-4B45-B33D-1CB9E91DBAE6}D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{D795208B-5013-46C5-922E-179DA7828E48}D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [{880A4672-EB5E-4229-8056-96FD192D593D}] => (Block) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [{1AE6F9DF-0C1E-45DB-8B94-9506C21A45C4}] => (Block) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{DD3CF003-605B-4936-BDA6-A6041D09D174}D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{4188FF41-5B80-4FA7-8BF8-E70BDFB1619B}D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base53275\heroesofthestorm_x64.exe
FirewallRules: [{97576C70-362D-41F5-A8D4-56D603B979BC}] => (Block) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [{2592BA46-6491-45C9-A3B6-0EAC8BDCED3D}] => (Block) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [UDP Query User{E712AA72-A275-41B8-8987-DA188A8C78CB}C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [TCP Query User{BA22C071-218D-4BAC-8BD8-CDFA0427BBD3}C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8733\battle.net.exe
FirewallRules: [UDP Query User{F81E0175-404C-4D70-AABA-9984B8B283CC}D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{8C8CAC81-2728-427D-AAB8-BD967B498E91}D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52986\heroesofthestorm_x64.exe
FirewallRules: [{EAF31FFB-36EF-45D6-84AB-2919D7CCCC45}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{DA31231F-F437-487D-854B-0AF770721D62}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{78554F0D-329D-400D-B5AB-169E87C4F534}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{0931FA39-59DF-4998-B127-3A5D1E92F2BC}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{F4FF5146-DEFF-49CB-A262-DE7101FA4D18}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [{5D9641B1-ADFB-4326-A873-2AB08EDDEFB5}] => (Allow) D:\steam\steamapps\common\APB Reloaded\Launcher\APBLauncher.exe
FirewallRules: [UDP Query User{AC738D00-180C-40B4-8B00-FDC65BD0CD92}D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{04E4C392-C2BA-4445-816B-EBAF1D3D9A80}D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Allow) D:\battle\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [{EBE6FB12-28FD-4D38-A7C9-7401071173A1}] => (Block) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [{A2CFA0ED-BB6C-454A-A02D-4A87A054224E}] => (Block) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [UDP Query User{48154DBD-AF9D-48E4-8B6C-7F0C87472FBB}C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [TCP Query User{947A839A-C564-4F2F-B381-04336CB28ECD}C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8657\battle.net.exe
FirewallRules: [{6AE9A3C1-F477-4CED-930B-93BC7F3D942A}] => (Block) D:\battle\overwatch\overwatch.exe
FirewallRules: [{1B2D10A4-374A-4E05-81C4-14EAE68949E5}] => (Block) D:\battle\overwatch\overwatch.exe
FirewallRules: [UDP Query User{D41D5314-E9A4-460B-B758-C600AA23B8C2}D:\battle\overwatch\overwatch.exe] => (Allow) D:\battle\overwatch\overwatch.exe
FirewallRules: [TCP Query User{EE698CC7-A832-4987-BC5D-13B0754CECCA}D:\battle\overwatch\overwatch.exe] => (Allow) D:\battle\overwatch\overwatch.exe
FirewallRules: [{BABC24AF-BCF6-4DEC-8CAA-591A7BEE5085}] => (Allow) D:\steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{3B4625A7-F94D-42D4-8530-764BDA374895}] => (Allow) D:\steam\steamapps\common\Trove\GlyphClient.exe
FirewallRules: [{548CAAC6-179D-4D5B-88AF-BFA26C8E939F}] => (Allow) D:\steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{D0B82342-CEE1-4CB9-A581-EF7B70E2E907}] => (Allow) D:\steam\steamapps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{B39D430A-B1F8-4D55-A95E-36DAD8338917}] => (Allow) D:\steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{3C9C5A75-8761-4754-8A28-B9B082F11578}] => (Allow) D:\steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{0F887043-431C-46DF-966A-595B98FB3036}] => (Allow) D:\steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{0530BF10-9419-4F4B-A171-3A5799585B35}] => (Allow) D:\steam\steamapps\common\Dungeon Defenders 2\DunDefLauncher.exe
FirewallRules: [{EDD45528-834F-404D-ABC0-9B36E9D1C3F7}] => (Allow) D:\steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{24FB9555-011E-4A0E-B681-7FB93B8D3961}] => (Allow) D:\steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{41449FBD-F40B-4752-9F13-24BBC6F05350}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{3A0639DA-A3D9-476D-84A1-4BB7D378B0D6}] => (Allow) D:\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [UDP Query User{2276FD5D-96D0-4562-9929-A9ED2D60CC2E}C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe
FirewallRules: [TCP Query User{BC61ECFD-5644-44B8-87B4-F31F326254F1}C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8600\battle.net.exe
FirewallRules: [UDP Query User{2B915D92-173D-47BF-AED3-10043C3901D9}C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [TCP Query User{03224C68-9CBD-41E9-AC8F-7EDA1F658263}C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8554\battle.net.exe
FirewallRules: [{35E6D940-BA35-4D12-9CDF-2D084EC2E289}] => (Block) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [{CFDFCBC4-4293-4A48-81CE-E66A7D8B3901}] => (Block) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [UDP Query User{BBA185AF-7DA5-41B0-8804-99DEE7033D9E}C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [TCP Query User{459FB390-63A9-4601-AEDD-23BA893A0166}C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8539\battle.net.exe
FirewallRules: [UDP Query User{99ADBE1E-B97A-4F48-9F14-C7117D7CC73B}C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe
FirewallRules: [TCP Query User{7A047EA3-D3CE-4FE7-8875-05591DF713E5}C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8532\battle.net.exe
FirewallRules: [UDP Query User{D9FDD36E-2378-41D2-813A-D3FAD68F882D}C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe
FirewallRules: [TCP Query User{A2D1066E-1068-4CC5-B748-E1AA4F7A634B}C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8518\battle.net.exe
FirewallRules: [{45F396B0-2189-40BE-BC92-852D99E774D2}] => (Block) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{DDD8912A-CC44-493F-9A36-2C676CD9C097}] => (Block) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [UDP Query User{9C128B5B-4D69-4CCB-82BC-D3CF5E69461E}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [TCP Query User{773BA3E1-5984-4345-946A-5EBD024A2BB4}C:\mygames\revelation online\game\tianyu.exe] => (Allow) C:\mygames\revelation online\game\tianyu.exe
FirewallRules: [{B65613E5-145A-46A9-8482-7FB71AD587F0}] => (Block) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{FB736892-6A93-4EED-96BF-CA38176C28B5}] => (Block) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{24F4E643-1D4A-4308-B66A-9E8002086EFB}C:\users\garfi\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{987E4A1D-5821-4AF7-B70F-5AD9AB060ADD}C:\users\garfi\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\garfi\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{C25EB95D-BE9B-4EB8-A8DD-A6FAE620B35D}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{A87B132B-488F-4468-8E59-BED3621B25A1}] => (Allow) C:\WINDOWS\explorer.exe
FirewallRules: [UDP Query User{87C33E3B-9D99-42A7-98BB-39B181F3B8DD}C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [TCP Query User{79C24E49-7120-4656-AA9A-AB3CAECC760D}C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8423\battle.net.exe
FirewallRules: [{9761A790-B003-474D-AD28-62D87F367580}] => (Block) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [{7ED6ECFF-3E9C-422E-B741-AE828E5FE95F}] => (Block) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [UDP Query User{58D92D78-5D97-4146-971C-F3E0F24D6ADE}C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [TCP Query User{E370A1B4-E27D-422E-832B-4B68331BA61E}C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8394\battle.net.exe
FirewallRules: [{70E460B9-0213-48D6-A116-B27501B69E6D}] => (Block) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{249055BD-8D63-4D0E-B908-9568767B690C}] => (Block) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{6D184C98-3FE8-470D-8FBF-4C8AFCE76333}C:\users\garfi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{0874E6AC-4393-493D-BDEB-1CAF32131BCA}C:\users\garfi\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\garfi\appdata\local\akamai\netsession_win.exe
FirewallRules: [{7741913D-BDC0-4BF8-9F02-FE7C0F952A19}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{AA6492E9-2E3A-4E36-87A1-E29921C8EB4B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{EF4F3589-0C34-4F7A-86D7-9F6B55D40B3C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6C87E5D3-3216-4C7E-84F6-127A211DC865}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{3242ECF2-4CE1-4379-A958-A9F976DE0104}] => (Block) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [{F6FEA1CB-D6D9-464C-BC99-634C3301BDEE}] => (Block) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [UDP Query User{414EE8DD-F858-4DD4-B760-CEE50997D4AB}C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [TCP Query User{DBB0C5A8-B4CB-453F-8414-104B73A973B3}C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe] => (Allow) C:\program files (x86)\battle.net\battle.net.8293\battle.net.exe
FirewallRules: [{9CBBB93A-81FA-42E2-B845-6602A2B480FC}] => (Block) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{B407BBB2-9AA9-41F1-B4EE-5B97AE91EA7C}] => (Block) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{F46DD1F9-E83B-435C-BA70-C66537A97BA5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{27767BF2-4A58-458E-B79E-62CCBA7C51F5}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{85A64763-7741-46DA-BE81-A7DB3327DFE4}] => (Allow) D:\steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{E44793A7-7CB3-4637-B480-395C09F57F30}] => (Allow) D:\steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{AE5D41EA-71E9-4D85-AC90-242002188447}] => (Allow) D:\steam\steamapps\common\UnnyWorld\Unnyworld.exe
FirewallRules: [{02ABF4D7-CE8F-487C-B77F-5BCB3CFBA39D}] => (Allow) D:\steam\steamapps\common\UnnyWorld\Unnyworld.exe
FirewallRules: [{F6604602-A78E-4258-BA84-927A2D441F53}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{CC3298F3-36BB-4BAD-BD3E-F4CC53D0B484}] => (Allow) D:\Aura Kingdom\AuraKingdom-FR\game.bin
FirewallRules: [{8F79BD21-CAFC-4AE2-92EC-8FC21857E6C0}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{D7C9D33E-FCFD-480E-817A-1D752E9F88AB}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{BB540022-7A5F-4690-8449-2D733578E1B3}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{449D728F-4E7F-4D8E-AAC0-EBA58C4F7C77}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{535A6370-B676-48C7-97D7-8936E137EC6E}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{3FA0A1E7-8487-4DAF-9FC0-E13478133CCC}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{52EECFB0-E520-4AF5-923E-E3C46A8520F0}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{6BDF595D-AA5B-4FB4-8D57-9F05C6D97E7D}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{B236FC8B-94B5-4548-88F9-7DDFC0624FD6}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.exe
FirewallRules: [{38491DCE-9BBC-4084-85FB-42A7E971F754}] => (Allow) D:\steam\steamapps\common\Warframe\Warframe.x64.exe
FirewallRules: [{D6E31719-C72C-4A02-9E1E-F3967A81B71D}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{AD32BD0B-CD15-4881-96E9-1F2FED786125}] => (Allow) D:\steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe
FirewallRules: [{8A4FFBAF-EC98-4B1C-8327-174264668D01}] => (Allow) C:\Users\garfi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{22D1574E-A275-49B3-B241-4E7747497742}] => (Allow) C:\Users\garfi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{974B6CBF-345C-476A-A39B-7FA1A0020732}] => (Allow) C:\WINDOWS\system32\rundll32.exe
FirewallRules: [{A9D9434F-1A3B-4F3D-92B4-8615C371ED4B}] => (Allow) C:\Nexon\Library\vindictus\appdata\en-US\NMService.exe
FirewallRules: [{3F6B6E3F-E930-4CBB-9BAA-6ED99ED97790}] => (Allow) C:\Nexon\Library\vindictus\appdata\en-US\NMService.exe
FirewallRules: [{497676F8-8DFB-4C06-A34E-3A9C434E8074}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
25-08-2017 23:51:06 Point de contrôle planifié
02-09-2017 13:39:17 Point de contrôle planifié
10-09-2017 21:01:22 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:43 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:43 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « .NETFramework » dans la DLL « C:\WINDOWS\system32\mscoree.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:39:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MSIDDRService.exe, version : 3.0.0.16, horodatage : 0x58a41e28
Nom du module défaillant : MSIDDRService.exe, version : 3.0.0.16, horodatage : 0x58a41e28
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00026eaf
ID du processus défaillant : 0xc0c
Heure de début de l’application défaillante : 0x01d32afafeeece9d
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
Chemin d’accès du module défaillant: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
ID de rapport : 95608b81-8f7c-4595-848b-82685659886f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (09/11/2017 02:34:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:34:38 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
Error: (09/11/2017 02:34:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (09/11/2017 02:34:38 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Erreurs système:
=============
Error: (09/11/2017 02:44:55 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (09/11/2017 02:39:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 1ème fois.
Error: (09/11/2017 02:39:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.
Error: (09/11/2017 02:34:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 1ème fois.
Error: (09/11/2017 02:34:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.
Error: (09/11/2017 01:19:06 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (09/11/2017 11:05:50 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (09/11/2017 10:16:33 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 6ème fois.
Error: (09/11/2017 08:04:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 5ème fois.
Error: (09/11/2017 08:01:24 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-V6GIC6J)
Description: Le serveur {A463FCB9-6B1C-4E0D-A80B-A2CA7999E25D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2017-09-11 14:53:20.291
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:53:20.289
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:53:20.032
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:53:20.031
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-09-11 14:50:37.975
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:37.794
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:37.662
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:20.729
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:20.497
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
Date: 2017-09-11 14:50:20.374
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Pourcentage de mémoire utilisée: 23%
Mémoire physique - RAM - totale: 16311.92 MB
Mémoire physique - RAM - disponible: 12399.61 MB
Mémoire virtuelle totale: 21175.92 MB
Mémoire virtuelle disponible: 16521.39 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:231.95 GB) (Free:112.01 GB) NTFS
Drive d: (Stockage) (Fixed) (Total:931.51 GB) (Free:700.79 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: C92494FB)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=460 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 8AA34DC0)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================