Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 28-05-2017
Exécuté par Thoma (30-05-2017 12:15:59)
Exécuté depuis C:\Users\Thoma\Downloads
Windows 10 Home Version 1607 (X64) (2016-09-24 09:42:20)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-822263033-981934304-1235300943-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-822263033-981934304-1235300943-503 - Limited - Disabled)
Invité (S-1-5-21-822263033-981934304-1235300943-501 - Limited - Disabled)
Thoma (S-1-5-21-822263033-981934304-1235300943-1001 - Administrator - Enabled) => C:\Users\Thoma

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Aliens vs Predator version 1.6 (HKLM-x32\...\Aliens vs Predator_is1) (Version: 1.6 - SEGA)
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version:  - Studio Wildcard)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
Besiege (HKLM\...\Steam App 346010) (Version:  - Spiderling Studios)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.11.1 - Bethesda Softworks)
BioShock Infinite version 1.1.25.5165 (HKLM-x32\...\BioShock Infinite_is1) (Version: 1.1.25.5165 - 2K Games)
Blender (HKLM\...\{DEA73CCA-7EC9-41EA-8509-1041C1CABFD0}) (Version: 2.78.3 - Blender Foundation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Discord (HKU\S-1-5-21-822263033-981934304-1235300943-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Evolve Stage 2 (HKLM\...\Steam App 273350) (Version:  - Turtle Rock Studios)
Fallout 4 - Patch FR 1.00 (HKLM-x32\...\Fallout 4 - Patch FR 1.00) (Version: 1.00 - TraductionJeux.com)
Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version:  - )
Fallout Shelter (HKLM-x32\...\Fallout Shelter) (Version:  - Bethesda Softworks)
Far Cry Primal (HKLM\...\Steam App 371660) (Version:  - Ubisoft)
Far Cry® 3 (HKLM\...\Steam App 220240) (Version:  - Ubisoft Montreal, Massive Entertainment, and Ubisoft Shanghai)
From Dust (HKLM\...\Steam App 33460) (Version:  - Ubisoft Montpellier)
FTL -  Advanced Edition (HKLM-x32\...\GOGPACKFTL_is1) (Version: 2.3.0.13 - GOG.com)
GIMP 2.8.18 (HKLM\...\GIMP-2_is1) (Version: 2.8.18 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Heroes of Normandie Bulletproof Edition version 1.0 (HKLM-x32\...\Heroes of Normandie Bulletproof Edition_is1) (Version: 1.0 - Slitherine Ltd) <==== ATTENTION
Hybrid Wars (HKLM-x32\...\1452686225_is1) (Version: 2.0.0.3 - GOG.com)
Hybrid Wars Upgrade Pack (HKLM-x32\...\1255274701_is1) (Version: 2.0.0.3 - GOG.com)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4463 - Intel Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Logitech - Assistant pour jeux vidéo 8.83 (HKLM\...\Logitech Gaming Software) (Version: 8.83.85 - Logitech Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.493 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.493 - LogMeIn, Inc.) Hidden
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Men of War Assault Squad 2 - Men of War Origins (HKLM-x32\...\Men of War Assault Squad 2 - Men of War Origins_is1) (Version:  - )
Metal Gear Solid V: The Phantom Pain (HKLM-x32\...\{48397BFF-7C01-4B64-8F1A-0D468DDE5D73}_is1) (Version:  - Kojima Productions)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 365 ProPlus - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.8067.2115 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-822263033-981934304-1235300943-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Mises à jour NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Mumble 1.2.16 (HKLM-x32\...\{E50084D9-6846-4196-BB18-C91FC026A18E}) (Version: 1.2.16 - Thorvald Natvig)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.9 - Black Tree Gaming)
NVIDIA Pilote 3D Vision 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 376.53 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.17 - NVIDIA Corporation)
NVIDIA Pilote graphique 376.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.53 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.16.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7967.2073 - Microsoft Corporation) Hidden
Offworld Trading Company (HKLM\...\b2Zmd29ybGR0cmFkaW5nY29tcGFueQ_is1) (Version: 1 - )
OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation)
Panneau de configuration NVIDIA 376.53 (Version: 376.53 - NVIDIA Corporation) Hidden
Patch v4.15 (HKLM-x32\...\{THEGUILDREN-0010-2010-300520102330}_is1) (Version:  - RUNEFORGE Games Studios)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version:  - )
Plague Inc Evolved Shadow Plague (HKLM-x32\...\Plague Inc Evolved Shadow Plague_is1) (Version:  - )
Planetary Annihilation TITANS (HKLM-x32\...\Planetary Annihilation TITANS_is1) (Version:  - )
Pokémon Trading Card Game Online (HKLM-x32\...\{96D56948-F0D8-43FB-A999-5E9EFB98AD22}) (Version: 2.39.0 - The Pokémon Company International)
Prison Architect (HKLM-x32\...\1441974651_is1) (Version: 2.16.0.20 - GOG.com)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.1031 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7836 - Realtek Semiconductor Corp.)
Rise of the Tomb Raider (HKLM-x32\...\{45F08513-973A-4C18-93FD-8E12B1908390}_is1) (Version:  - Square Enix)
Rolisteam (HKLM-x32\...\Rolisteam) (Version: v1.7.1 - Rolisteam)
Sid Meiers Civilization VI Proper (HKLM\...\c2lkbWVpZXJzY2l2aWxpemF0aW9udmk_is1) (Version: 1 - )
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Skyrim Script Extender (SKSE) (HKLM\...\Steam App 365720) (Version:  - The SKSE Team)
Sniper Elite 3 (HKLM-x32\...\Sniper Elite 3_is1) (Version: 1.0 - PLAZA)
Starcraft II version 3.05.39117 (HKLM-x32\...\{D4FE7EF7-818E-4194-9D94-DDB0356A0E30}_is1) (Version: 3.05.39117 - Blizzard)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stranded Deep (HKLM\...\Steam App 313120) (Version:  - Beam Team Games)
Stronghold Crusader 2 - The Jackal and The Khan (HKLM-x32\...\Stronghold Crusader 2 - The Jackal and The Khan_is1) (Version:  - )
Subnautica (HKLM\...\Steam App 264710) (Version:  - Unknown Worlds Entertainment)
Take On Mars (HKLM\...\dGFrZW9ubWFycw_is1) (Version: 1 - )
Tank Defense Division (HKLM-x32\...\Tank Defense Division_is1) (Version:  - )
Team Fortress 2 (HKLM\...\Steam App 440) (Version:  - Valve)
The Dwarves (HKLM-x32\...\1454499830_is1) (Version: 2.0.0.1 - GOG.com)
The Elder Scrolls Online (HKLM-x32\...\The Elder Scrolls Online) (Version: 1.0.0.0 - Zenimax Online Studios)
The Elder Scrolls Online: Tamriel Unlimited (HKLM\...\Steam App 306130) (Version:  - Zenimax Online Studios)
The Elder Scrolls V: Skyrim (HKLM\...\Steam App 72850) (Version:  - Bethesda Game Studios)
The Elder Scrolls V: Skyrim Special Edition (HKLM\...\Steam App 489830) (Version:  - Bethesda Game Studios)
The Guild 2 - Renaissance (HKLM-x32\...\1207664873_is1) (Version: 2.0.0.1 - GOG.com)
The Guild 2 (HKLM-x32\...\GOGPACKTHEGUILD2_is1) (Version: 2.0.0.4 - GOG.com)
The Settlers 7 - A L’AUBE D’UN NOUVEAU ROYAUME (HKLM-x32\...\{63860309-DA8A-4BAE-9EAE-CE1D6D79340C}) (Version: 1.12.1396 - Ubisoft)
This War of Mine - The Little Ones (HKLM-x32\...\This War of Mine - The Little Ones_is1) (Version:  - )
Tomb Raider (HKLM\...\Steam App 203160) (Version:  - Crystal Dynamics)
Total War: WARHAMMER (HKLM\...\Steam App 364360) (Version:  - Creative Assembly)
Tropico 5 (HKLM-x32\...\Tropico 5_is1) (Version:  - )
Uplay (HKLM-x32\...\Uplay) (Version: 4.3 - Ubisoft)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Warhammer 40,000 Sanctus Reach (HKLM-x32\...\Warhammer 40,000 Sanctus Reach_is1) (Version:  - )
Warhammer 40,000: Dawn of War – Winter Assault (HKLM\...\Steam App 9310) (Version:  - Relic Entertainment)
Warhammer 40,000: Eternal Crusade (HKLM\...\Steam App 375230) (Version:  - Behaviour Digital Inc.)
WATCH_DOGS (HKLM-x32\...\Uplay Install 274) (Version:  - Ubisoft)
Watch_Dogs 2 (HKLM-x32\...\Watch_Dogs 2_is1) (Version:  - )
Watch_Dogs Bad Blood DLC (HKLM-x32\...\V2F0Y2hfRG9ncw==_is1) (Version: 1 - )
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {134EB369-AA97-4365-913A-EF1009F54125} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-03] (AVAST Software)
Task: {2A4D5109-26D5-4A46-A926-93F3199AA692} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Thoma\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe 
Task: {40C8E0A5-C61A-4E18-850B-76A1AB5570BC} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-16] (AVAST Software)
Task: {4179FFFD-6322-4171-BD51-F1FE01DAEB94} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
Task: {5AF474C3-438E-4365-AEA4-DB119C5EAAEA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-11] (Google Inc.)
Task: {5D092137-5C52-4CAD-8930-C03276CD7B86} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-05-25] (Microsoft Corporation)
Task: {8CB51AC5-D70B-4F1F-8710-679C7C175C86} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-11] (Google Inc.)
Task: {97139FEC-35A2-4A57-AF61-348D22AD2AD8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {A97247CF-11B0-49F9-AED9-2A652DDA5D70} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
Task: {BE752460-8199-45AA-881A-17EF1FD3A5F9} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-25] (Microsoft Corporation)
Task: {CBCA5862-BE5D-49D8-A44A-00A05545F7AF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-25] ()
Task: {D01B2C1E-9EBD-4D42-87AF-D061388715A4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-25] (Microsoft Corporation)
Task: {F273C641-B826-4342-A1E6-494177654192} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-25] ()

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-05-29 14:30 - 2017-05-09 16:38 - 02270672 _____ () G:\PROGRAMMES UTILITAIRES\NETTOYAGE\ANTI-MALWARE\MwacLib.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2017-05-09 22:23 - 2017-04-28 02:49 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-09-24 11:29 - 2016-12-29 14:44 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-24 12:25 - 2016-09-24 12:25 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-14 21:02 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-14 21:03 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-14 21:03 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-14 21:03 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-09 22:23 - 2017-04-28 01:36 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-05-09 22:23 - 2017-04-28 01:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-09 22:23 - 2017-04-28 01:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2016-04-29 00:49 - 2016-04-29 00:49 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2016-04-29 00:49 - 2016-04-29 00:49 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2017-05-16 00:06 - 2017-05-09 11:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-16 00:06 - 2017-05-09 11:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-05-26 11:58 - 2017-05-26 11:58 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-05-26 11:58 - 2017-05-26 11:58 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-26 11:58 - 2017-05-26 11:58 - 43202048 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-05-26 11:58 - 2017-05-26 11:58 - 02442752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x64__kzf8qxf38zg5c\skypert.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-03 22:53 - 2017-05-03 22:53 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-04-26 15:19 - 2017-04-26 15:19 - 02005976 ____R () G:\programmes utilitaires\Phone\skypert.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-10-30 09:24 - 2015-10-30 09:21 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-822263033-981934304-1235300943-1001\Control Panel\Desktop\\Wallpaper -> c:\users\thoma\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{95f87399-f692-4678-a39b-2a67233ddcc9}.jpg
DNS Servers: 109.88.203.3 - 62.197.111.140
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\StartupFolder: => "Téléchargement en arrière-plan de SOLIDWORKS.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-822263033-981934304-1235300943-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-822263033-981934304-1235300943-1001\...\StartupApproved\Run: => "RESTART_STICKY_NOTES"
HKU\S-1-5-21-822263033-981934304-1235300943-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-822263033-981934304-1235300943-1001\...\StartupApproved\Run: => "World of Warships"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{F4BFCA9B-8180-4188-8221-F77BCC5D149B}] => (Block) G:\jeux\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{405C50D4-6B33-4DBB-8D49-C2285720B0E4}] => (Block) G:\jeux\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [UDP Query User{A8710604-DD86-4F05-9DC5-B6F3C7A664CD}G:\jeux\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) G:\jeux\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [TCP Query User{072C0EFE-0342-4975-AB50-AF43BF4C7F7C}G:\jeux\steam\steamapps\common\total war warhammer\warhammer.exe] => (Allow) G:\jeux\steam\steamapps\common\total war warhammer\warhammer.exe
FirewallRules: [{1D33783C-F2E8-4BCE-9CCC-024BB495C228}] => (Allow) G:\Jeux\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{51513D6D-5144-434C-B8D7-B33381FDFCC7}] => (Allow) G:\Jeux\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{60F70FCB-F330-4491-B46D-182494BEF519}] => (Allow) G:\Jeux\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [{ADC007AF-403D-49F0-8A0A-203B17D248B0}] => (Allow) G:\Jeux\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe
FirewallRules: [UDP Query User{67CE54DC-5E31-4F00-9EF9-1BEE738EC320}G:\jeux\autres\sim city\dossier d'install\simcity\simcity\simcity.exe] => (Allow) G:\jeux\autres\sim city\dossier d'install\simcity\simcity\simcity.exe
FirewallRules: [TCP Query User{D0C4FEF9-4B90-4398-9B8B-736D43D89D63}G:\jeux\autres\sim city\dossier d'install\simcity\simcity\simcity.exe] => (Allow) G:\jeux\autres\sim city\dossier d'install\simcity\simcity\simcity.exe
FirewallRules: [{B455C304-62C0-4E87-B9BE-84CC821F537C}] => (Allow) G:\Jeux\autres\sim city\dossier d'install\SimCity\SimCityRecovery\SimCity.exe
FirewallRules: [{9FF8A258-FD9C-4C61-A47C-D028EEB4DEC0}] => (Allow) G:\Jeux\autres\sim city\dossier d'install\SimCity\SimCityRecovery\SimCity.exe
FirewallRules: [{94EFFBA3-5372-4E12-B6E5-63129D69815C}] => (Allow) G:\Jeux\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{88BA4FB1-7802-4575-84C3-6C44A8A6E053}] => (Allow) G:\Jeux\Steam\steamapps\common\Besiege\Besiege.exe
FirewallRules: [{03B6437A-1D25-4D40-982A-C2D41730D8A9}] => (Allow) G:\Jeux\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{B27E2A30-8CE6-49D8-9870-A65D89FE5A2A}] => (Allow) G:\Jeux\Steam\steamapps\common\Subnautica\Subnautica.exe
FirewallRules: [{EB8C8D91-C7A8-457A-B638-DD4127FE20F2}] => (Allow) G:\programmes utilitaires\Phone\Skype.exe
FirewallRules: [{3BC15C95-446D-411F-84C5-5A6F162AEE9A}] => (Allow) G:\Jeux\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{F3BAED9A-F1ED-431C-9F27-6E5DCD378928}] => (Allow) G:\Jeux\Steam\steamapps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [UDP Query User{EA8C76FC-EAD0-4460-B44D-EF9C7B174F5A}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{AD80C5EF-5A33-463D-8287-CB5ED9F89F72}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{FC9C7686-9F8C-479F-AD36-CF638C20E622}] => (Allow) G:\Jeux\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{440E933D-F7F2-4C3A-B269-123D6F6DB587}] => (Allow) G:\Jeux\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{E0BE70C7-F37A-4119-A77D-1FFAB1B5CA48}] => (Allow) G:\Jeux\Steam\Steam.exe
FirewallRules: [{B0186512-8089-441F-AAA3-2ED783908758}] => (Allow) G:\Jeux\Steam\Steam.exe
FirewallRules: [TCP Query User{74B5C69E-70DB-4828-A1C3-38FBB550D850}G:\jeux\autres\fallout 4\fallout 4\fallout4.exe] => (Block) G:\jeux\autres\fallout 4\fallout 4\fallout4.exe
FirewallRules: [UDP Query User{8529EA86-30D1-4979-98A4-6B68873EC8C4}G:\jeux\autres\fallout 4\fallout 4\fallout4.exe] => (Block) G:\jeux\autres\fallout 4\fallout 4\fallout4.exe
FirewallRules: [{50671B21-6164-4A7F-8FC0-6CF28DC0E439}] => (Allow) G:\Jeux\Steam\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [{058FBB56-E00B-40CF-9203-383DBEC84DFA}] => (Allow) G:\Jeux\Steam\steamapps\common\Dawn of War Gold\W40kWA.exe
FirewallRules: [TCP Query User{3AADCB79-FFB2-4F3B-9681-FD31F87C432A}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{3AEF4DC1-CD8D-48AD-9352-DB6D2B7FC434}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{71FD18A5-F74E-4198-A9A3-C8CC6E306E50}] => (Allow) G:\Jeux\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{3F6C3A6A-3E14-408E-91C2-88044E026DA6}] => (Allow) G:\Jeux\Steam\steamapps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{62BF80A9-F22A-4280-9CBB-26B999E0AF85}] => (Allow) G:\Jeux\Steam\steamapps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{BB3641DF-6B4F-4426-B673-33C2B52EC959}] => (Allow) G:\Jeux\Steam\steamapps\common\Skyrim\skse_steam_boot.exe
FirewallRules: [{59BF656E-FAB4-48CF-9754-BC51DB7E010C}] => (Allow) G:\Jeux\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{359C78AC-CBB1-4B47-9ECE-A458851F8338}] => (Allow) G:\Jeux\Steam\steamapps\common\Skyrim Special Edition\SkyrimSELauncher.exe
FirewallRules: [{07A8B6AE-618C-47A2-9C38-302B1D821ED8}] => (Allow) G:\Jeux\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{ED4CD46F-683E-44B8-85D8-9521C91EDD90}] => (Allow) G:\Jeux\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{F97030B0-40D8-4D6E-A8C8-EC3332B33D97}] => (Allow) G:\Jeux\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{1CA8FAA9-9958-4FE2-B4E7-8F8FEAEE237A}] => (Allow) G:\Jeux\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{A666B72B-2462-4FFC-97B7-68F0E9625713}] => (Allow) G:\Jeux\autres\watchdogs\bin\Watch_Dogs.exe
FirewallRules: [{105ED45C-BE9B-436D-83A2-9D1B334E7E00}] => (Allow) G:\Jeux\autres\watchdogs\bin\Watch_Dogs.exe
FirewallRules: [{7372D92A-C3E5-4707-864E-60754C2274CA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{498B8AC0-B01D-49DE-A410-80653DDB52DB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{5DAB9C56-44DF-49B7-9FE7-47D05CA91FD2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{F628FAA9-5E5D-4991-9371-60B6545FB491}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{E09B3A9E-1001-4BB1-A3BE-2C0AD023D8E8}] => (Allow) G:\Jeux\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{60AE6407-4CEC-407A-BB2B-540E178071D0}] => (Allow) G:\Jeux\Steam\steamapps\common\Stranded Deep\Stranded_Deep_x64.exe
FirewallRules: [{29AEF13C-73C3-4915-A4E3-73B3E3CC86C1}] => (Allow) G:\Jeux\Steam\steamapps\common\From Dust\From_Dust.exe
FirewallRules: [{AE81240E-1C50-4C36-8B13-8D6A73413BD6}] => (Allow) G:\Jeux\Steam\steamapps\common\From Dust\From_Dust.exe
FirewallRules: [{42B3AF07-2206-4AA8-9A73-15DD3015D814}] => (Allow) G:\Jeux\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [{1613665C-9FAC-45E1-B5A0-CC87CCF150F1}] => (Allow) G:\Jeux\Steam\steamapps\common\Zenimax Online\zosSteamStarter.exe
FirewallRules: [TCP Query User{47891FE6-43D4-447B-8D10-A945DE560444}G:\jeux\autres\7 days to die\7daystodie.exe] => (Allow) G:\jeux\autres\7 days to die\7daystodie.exe
FirewallRules: [UDP Query User{828D9339-8C4E-4E7E-A3FF-8882629E6208}G:\jeux\autres\7 days to die\7daystodie.exe] => (Allow) G:\jeux\autres\7 days to die\7daystodie.exe
FirewallRules: [{A56FA8B3-7EF3-404D-A0C2-AFBD04776A53}] => (Block) G:\jeux\autres\7 days to die\7daystodie.exe
FirewallRules: [{675CEFBB-B378-4C86-85E0-673F61CCF3C8}] => (Block) G:\jeux\autres\7 days to die\7daystodie.exe
FirewallRules: [{D8887994-4DBD-4E59-9764-13CCB85A9E43}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry Primal\bin\FCPrimal.exe
FirewallRules: [{F7FFD3F1-88B7-4BC4-9152-2A5EC5E7F100}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry Primal\bin\FCPrimal.exe
FirewallRules: [{F23CBDF1-C897-4326-BAB1-9EE455034576}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{4DDCC2CF-176B-47D5-8F30-FB4282E45C1A}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry 3\bin\FC3UpdaterSteam.exe
FirewallRules: [{58FFCDC8-7A63-4064-AFA3-1871D6C1849D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{81DA0CC7-FFBD-4831-89B7-7A7C3A0FF93D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{B2BDFB07-A81B-4001-AF03-37ABF3995D31}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{78842D62-70B2-4029-941A-A18CF549A075}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{8EE521BB-33B0-477A-99D9-D71663919EC7}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{9FF7EFCA-4655-4B18-AA86-8A2204D3AA2B}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry 3\bin\farcry3.exe
FirewallRules: [{F86A1217-7A94-405E-BBEE-BCAA843C2CF7}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{80CAF56F-C05C-40E7-ADD6-0B1E95B5F1B9}] => (Allow) G:\Jeux\Steam\steamapps\common\Far Cry 3\bin\farcry3_d3d11.exe
FirewallRules: [{61629E18-2172-48B3-8CD5-6EA580CABFFD}] => (Allow) G:\Jeux\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{8F44D6B3-D4A1-4B4B-BE4A-4E298B9AFBBF}] => (Allow) G:\Jeux\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{D59E7951-492A-4729-8F73-F40064417AF1}G:\jeux\autres\tank.defense.division-plaza\tank defense division\tankdefensedivision\binaries\win64\tankdefensedivision-win64-shipping.exe] => (Allow) G:\jeux\autres\tank.defense.division-plaza\tank defense division\tankdefensedivision\binaries\win64\tankdefensedivision-win64-shipping.exe
FirewallRules: [UDP Query User{17442437-F74C-4A65-BE40-4EB5D9EAC1E4}G:\jeux\autres\tank.defense.division-plaza\tank defense division\tankdefensedivision\binaries\win64\tankdefensedivision-win64-shipping.exe] => (Allow) G:\jeux\autres\tank.defense.division-plaza\tank defense division\tankdefensedivision\binaries\win64\tankdefensedivision-win64-shipping.exe
FirewallRules: [{058F3FE1-B112-464C-9532-DD87C2CA63F0}] => (Allow) G:\Jeux\autres\The Settlers 7 Paths to a Kingdom - Deluxe Gold Edition\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [{6E40DA50-B6BC-4BA4-8228-77372A7F768F}] => (Allow) G:\Jeux\autres\The Settlers 7 Paths to a Kingdom - Deluxe Gold Edition\Data\Base\_Dbg\Bin\Release\Settlers7R.exe
FirewallRules: [TCP Query User{88DB57BC-71E4-46CD-B605-ED175F80EB14}G:\jeux\autres\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe] => (Block) G:\jeux\autres\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe
FirewallRules: [UDP Query User{C311400B-946F-4B59-B8CE-55D1EA2DC293}G:\jeux\autres\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe] => (Block) G:\jeux\autres\stronghold crusader 2 - the jackal and the khan\bin\win32_galaxy_release\crusader2.exe
FirewallRules: [TCP Query User{EB909FA6-C076-4F57-B9C7-CB53655EB56B}G:\jeux\autres\hybrid wars\hw.exe] => (Block) G:\jeux\autres\hybrid wars\hw.exe
FirewallRules: [UDP Query User{7E9E7F79-B279-4CCE-9F0F-810C07F02CD0}G:\jeux\autres\hybrid wars\hw.exe] => (Block) G:\jeux\autres\hybrid wars\hw.exe
FirewallRules: [{E8F3D5A9-B6A7-4D9A-BD3E-824A045DDFC8}] => (Allow) G:\Jeux\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [{D33F6755-9178-410D-A58F-0B1D15138E92}] => (Allow) G:\Jeux\Steam\steamapps\common\EvolveGame\bin64_SteamRetail\Evolve.exe
FirewallRules: [TCP Query User{3EDEB804-C7A4-40D5-BEAE-A18F9CE54BDE}G:\jeux\steam\steamapps\common\warhammer 40,000 - eternal crusade\eternalcrusade\binaries\win64\eternalcrusadeclient.exe] => (Allow) G:\jeux\steam\steamapps\common\warhammer 40,000 - eternal crusade\eternalcrusade\binaries\win64\eternalcrusadeclient.exe
FirewallRules: [UDP Query User{1B2194D7-F482-42FD-B696-2B41CECCC44A}G:\jeux\steam\steamapps\common\warhammer 40,000 - eternal crusade\eternalcrusade\binaries\win64\eternalcrusadeclient.exe] => (Allow) G:\jeux\steam\steamapps\common\warhammer 40,000 - eternal crusade\eternalcrusade\binaries\win64\eternalcrusadeclient.exe
FirewallRules: [{30452B52-0C75-407B-AB29-2D3BC7EAA4F3}] => (Block) G:\jeux\steam\steamapps\common\warhammer 40,000 - eternal crusade\eternalcrusade\binaries\win64\eternalcrusadeclient.exe
FirewallRules: [{DA07D183-CCFA-4F1B-B3EE-0E74EA814CE8}] => (Block) G:\jeux\steam\steamapps\common\warhammer 40,000 - eternal crusade\eternalcrusade\binaries\win64\eternalcrusadeclient.exe
FirewallRules: [{91B7AAD9-749B-4F7A-952D-2A9F3480F4D6}] => (Allow) G:\Jeux\Steam\steamapps\common\Warhammer 40,000 - Eternal Crusade\EternalCrusadeClient.exe
FirewallRules: [{0C9218FE-C203-4540-A49B-88325D3FE672}] => (Allow) G:\Jeux\Steam\steamapps\common\Warhammer 40,000 - Eternal Crusade\EternalCrusadeClient.exe
FirewallRules: [{893D2EF3-BDB4-442D-9901-797BBA620DFE}] => (Allow) G:\Jeux\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{7E8763E0-8B2B-4821-840C-0DDE4DBF1A87}] => (Allow) G:\Jeux\Steam\steamapps\common\Total War WARHAMMER\launcher\launcher.exe
FirewallRules: [{E1CC1908-F86C-46B2-B165-3A020581045E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9C721973-B268-470F-BA57-C022E92ADB3B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{32D1B280-C92D-45D6-B309-D1551796B2E4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2184D86E-D998-4A42-8415-F51CBE0D0FD7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{FAF37CDA-5681-4FA3-ADB0-F6EDE6AA3D84}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9C0992D1-39B5-4F3E-A368-57AA7D278352}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [TCP Query User{F6FC2C60-5792-44A1-99A1-FB8D3A38A336}G:\jeux\autres\men of war assault squad 2 - men of war origins\mowas_2.exe] => (Allow) G:\jeux\autres\men of war assault squad 2 - men of war origins\mowas_2.exe
FirewallRules: [UDP Query User{FBED9C2A-50B9-4081-9196-FDA3DAF2313B}G:\jeux\autres\men of war assault squad 2 - men of war origins\mowas_2.exe] => (Allow) G:\jeux\autres\men of war assault squad 2 - men of war origins\mowas_2.exe
FirewallRules: [{18B75C58-9066-4484-B7CC-A466A1692286}] => (Block) G:\jeux\autres\men of war assault squad 2 - men of war origins\mowas_2.exe
FirewallRules: [{80D4D2B6-A2E7-4616-8A9B-633CB3005C4C}] => (Block) G:\jeux\autres\men of war assault squad 2 - men of war origins\mowas_2.exe

==================== Points de restauration =========================

ATTENTION: La Restauration système est désactivée

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (05/30/2017 12:12:24 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (05/30/2017 12:11:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/30/2017 01:56:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/30/2017 01:32:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Prison Architect.exe, version : 0.0.0.0, horodatage : 0x587383b7
Nom du module défaillant : Prison Architect.exe, version : 0.0.0.0, horodatage : 0x587383b7
Code d’exception : 0xc0000409
Décalage d’erreur : 0x0040fc33
ID du processus défaillant : 0x28b8
Heure de début de l’application défaillante : 0x01d2d87901d86efc
Chemin d’accès de l’application défaillante : G:\Jeux\autres\Prison Architect\Prison Architect.exe
Chemin d’accès du module défaillant: G:\Jeux\autres\Prison Architect\Prison Architect.exe
ID de rapport : e4c06757-dd74-4433-9a7b-d2217ff2bb96
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (05/30/2017 01:24:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/30/2017 12:52:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/30/2017 12:20:22 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/29/2017 11:57:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/29/2017 11:27:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (05/29/2017 10:57:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-DVPNG3M)
Description: Échec de l’activation de l’application Microsoft.BingWeather_8wekyb3d8bbwe!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.


Erreurs système:
=============
Error: (05/30/2017 12:11:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 et l’APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/30/2017 02:01:31 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 et l’APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/29/2017 02:37:16 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Thoma\AppData\Local\Temp\catchme.sys

Error: (05/29/2017 02:37:16 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Thoma\AppData\Local\Temp\catchme.sys

Error: (05/29/2017 02:37:15 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Thoma\AppData\Local\Temp\catchme.sys

Error: (05/29/2017 02:27:35 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 et l’APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/29/2017 02:26:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 et l’APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (05/29/2017 02:26:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (05/29/2017 02:26:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service LogMeIn Hamachi Tunneling Engine s’est terminé de façon inattendue pour la 1ème fois.

Error: (05/29/2017 02:26:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service PnkBstrA s’est terminé de façon inattendue pour la 1ème fois.


CodeIntegrity:
===================================
  Date: 2017-05-29 14:37:16.239
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\Thoma\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-05-29 14:37:16.232
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\Thoma\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-05-29 14:37:15.868
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume6\Users\Thoma\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i7-6700 CPU @ 3.40GHz
Pourcentage de mémoire utilisée: 20%
Mémoire physique - RAM - totale: 16295.69 MB
Mémoire physique - RAM - disponible: 12935.49 MB
Mémoire virtuelle totale: 18727.69 MB
Mémoire virtuelle disponible: 15316.55 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:118.69 GB) (Free:73.78 GB) NTFS
Drive g: (Donnees) (Fixed) (Total:1862.89 GB) (Free:739.69 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 119.2 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt ============================