Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-10-2017
Exécuté par thoma (28-10-2017 18:09:51)
Exécuté depuis C:\Users\thoma\Pictures
Windows 10 Pro Version 1703 15063.674 (X64) (2017-09-17 11:10:06)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2436032110-2931218502-407622478-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2436032110-2931218502-407622478-503 - Limited - Disabled)
Invité (S-1-5-21-2436032110-2931218502-407622478-501 - Limited - Disabled)
postgres (S-1-5-21-2436032110-2931218502-407622478-1002 - Limited - Enabled) => C:\Users\postgres
thoma (S-1-5-21-2436032110-2931218502-407622478-1001 - Administrator - Enabled) => C:\Users\thoma

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Action! (HKLM-x32\...\Mirillis Action!) (Version: 2.4.1 - Mirillis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{DE74B890-4025-A7BE-8EBC-F374528DCFFD}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 385.41 - NVIDIA Corporation) Hidden
Apowersoft Éditeur vidéo V1.1.9 (HKLM-x32\...\{3089CCCD-BC5F-4309-A3C1-45B5ACA7A5E7}_is1) (Version: 1.1.9 - APOWERSOFT LIMITED)
Audacity 2.1.3 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.3 - Audacity Team)
CCleaner (HKLM\...\CCleaner) (Version: 5.34 - Piriform)
Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH)
DaVinci Resolve (HKLM\...\{6A121309-5A77-478F-B94A-F4C824890F24}) (Version: 14.0.0078 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{6A8DCCDF-BC76-4964-B429-D74E5FC11E98}) (Version: 1.1.1.0 - Blackmagic Design)
Discord (HKU\S-1-5-21-2436032110-2931218502-407622478-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{886E86E6-6673-4EAD-A4FF-6E087A661F4E}) (Version: 1.1.123.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESL Wire 1.20.0 (HKLM\...\ESL Wire_is1) (Version:  - Turtle Entertainment GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.75 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.6.3 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Java 8 Update 144 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
K-Lite Codec Pack 13.5.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 13.5.5 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
MAGIX Contenu et Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{DFEE4333-B802-4E27-9521-2D9E970B7813}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-2436032110-2931218502-407622478-1001\...\OneDriveSetup.exe) (Version: 17.3.7073.1013 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
MorphVOX Pro (HKLM-x32\...\{DE289787-7ECA-4BED-9D8C-99FAC407E3D6}) (Version: 4.3.13 - Screaming Bee)
Motherboard Monitor 5 (HKLM-x32\...\Motherboard Monitor 5_is1) (Version: 5 - Alexander van Kaam)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Music Maker (HKLM\...\{D5FF45D3-3AE3-4490-85DE-04D059606382}) (Version: 25.0.2.44 - MAGIX Software GmbH) Hidden
Music Maker (HKLM-x32\...\MX.{D5FF45D3-3AE3-4490-85DE-04D059606382}) (Version: 25.0.2.44 - MAGIX Software GmbH)
NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 385.41 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 385.41 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.0.1 - OBS Project)
OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation)
Panneau de configuration NVIDIA 385.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 385.41 - NVIDIA Corporation) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-2436032110-2931218502-407622478-1001\...\PhotoFiltre 7) (Version:  - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.)
Sades 7.1CH Gaming Headset (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392006620}) (Version: 1.00.0019 - SHENZHEN SADES DIGITAL TECHNOLOGY CO.,LTD)
Shotcut (HKLM-x32\...\Shotcut) (Version:  - )
Spotify (HKU\S-1-5-21-2436032110-2931218502-407622478-1001\...\Spotify) (Version: 1.0.66.478.g1296534d - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Switch Off (HKLM-x32\...\SwitchOff) (Version: 2.3 - YaSoft)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-2436032110-2931218502-407622478-1001\...\TeamSpeak 3 Client) (Version: 3.1.6 - TeamSpeak Systems GmbH)
VEGAS Pro 14.0 (64-bit) (HKLM\...\{8C17D521-4FB0-11E7-A6E0-A9EF5249FCEF}) (Version: 14.0.270 - VEGAS)
Vita Concert Grand LE (HKLM\...\{BFA88ABE-D175-42C7-B374-92A2D9333CAB}) (Version: 2.4.0.95 - MAGIX Software GmbH) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.51.0 (HKLM\...\VulkanRT1.0.51.0) (Version: 1.0.51.0 - LunarG, Inc.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-08-22] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {06B4F05A-79E9-4AA9-8644-D7D898DB4167} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-22] (NVIDIA Corporation)
Task: {381FC99C-1563-4E39-8FA8-7D1CBE58CCA4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-28] (Google Inc.)
Task: {6A7ACB27-D084-42E0-A70B-402D46A826F5} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-22] (NVIDIA Corporation)
Task: {75E67F15-6CA9-4E68-AB7D-EBF269CDECCD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-22] (NVIDIA Corporation)
Task: {79B61C41-2F22-487C-BF4B-4FC0C7C2BA12} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-22] (NVIDIA Corporation)
Task: {9805C18E-A16C-4EDE-960B-283CBAFA224A} - System32\Tasks\Connect => C:\Program Files (x86)\MAGIX\Connect\connect.exe [2017-05-10] (MAGIX Software GmbH)
Task: {A1A9F851-EDB5-48D7-86D4-5C386251F242} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-09-07] (Piriform Ltd)
Task: {A461980F-724D-427D-9CDA-349C7ADC3645} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-22] (NVIDIA Corporation)
Task: {AC3CAFFE-90CB-4B0F-8769-F4D70AB46938} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-22] (NVIDIA Corporation)
Task: {B2604DA8-7E69-4187-A6D5-874D8882F906} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-22] (NVIDIA Corporation)
Task: {CDB7DC4A-4F24-4FB9-8EA6-6D0AF650481F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-09-22] ()
Task: {F5D4F8CF-4819-4839-B39B-F961B09D3507} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-22] (NVIDIA Corporation)
Task: {F9F1E455-937F-40BE-98E8-DEBD41CA021F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-28] (Google Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\Connect.job => C:\Program Files (x86)\MAGIX\Connect\connect.exe

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


Shortcut: C:\Users\thoma\Desktop\Action!_crack.lnk -> C:\Program Files (x86)\Mirillis\Action!\Action!.bat ()

==================== Modules chargés (Avec liste blanche) ==============

2017-10-13 17:08 - 2017-07-25 17:08 - 000692544 _____ () C:\Program Files\EslWire\service\WireHelperSvc.exe
2017-10-13 17:08 - 2017-07-25 17:47 - 000214016 _____ () C:\Program Files\EslWire\service\NocIPC64.dll
2017-09-17 21:04 - 2017-08-22 03:01 - 001267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-10-16 17:47 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-03-18 22:58 - 2017-03-18 22:58 - 000138000 _____ () C:\Windows\SYSTEM32\inputhost.dll
2017-03-18 22:59 - 2017-03-20 07:12 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-10-10 09:44 - 2014-11-10 11:52 - 002341376 ____N () C:\Program Files\Sades 7.1CH Gaming Headset\CPL\FaceLift_x64.exe
2017-10-26 10:13 - 2017-10-26 10:14 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-10-26 10:13 - 2017-10-26 10:14 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-10-13 17:08 - 2017-07-25 17:27 - 008839168 _____ () C:\Program Files\EslWire\WireCore.dll
2017-10-13 17:08 - 2017-07-25 17:47 - 000453120 _____ () C:\Program Files\EslWire\Linesman.dll
2017-10-13 17:08 - 2017-07-25 17:47 - 000214016 _____ () C:\Program Files\EslWire\NocIPC64.dll
2017-10-13 17:08 - 2017-07-25 17:47 - 000310272 _____ () C:\Program Files\EslWire\laginspect\laginspect.dll
2017-10-28 17:42 - 2017-10-26 08:30 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libglesv2.dll
2017-10-28 17:42 - 2017-10-26 08:30 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libegl.dll
2017-10-25 17:02 - 2017-10-23 12:14 - 031229440 _____ () C:\Users\thoma\AppData\Local\Google\Chrome\User Data\PepperFlash\27.0.0.183\pepflashplayer.dll
2017-09-17 18:46 - 2017-09-09 21:25 - 000688416 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2017-09-17 18:46 - 2017-10-25 07:00 - 002546976 _____ () C:\Program Files (x86)\Steam\video.dll
2017-09-17 18:46 - 2016-09-01 03:02 - 004969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2017-09-17 18:46 - 2016-01-27 09:49 - 000491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2017-09-17 18:46 - 2016-01-27 09:49 - 000332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2017-09-17 18:46 - 2016-01-27 09:49 - 000442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2017-09-17 18:46 - 2016-01-27 09:49 - 000485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2017-09-17 18:46 - 2016-01-27 09:49 - 002549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2017-09-17 18:46 - 2016-09-01 03:02 - 001195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2017-09-17 18:46 - 2016-09-01 03:02 - 001563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2017-09-17 18:46 - 2017-10-25 07:00 - 000901408 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-09-17 18:46 - 2016-07-05 00:17 - 000266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2017-09-17 21:14 - 2017-08-08 15:13 - 001893880 _____ () C:\Users\thoma\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
2017-09-17 21:15 - 2017-09-17 21:15 - 001577976 _____ () \\?\C:\Users\thoma\AppData\Roaming\discord\0.0.298\modules\discord_toaster\discord_toaster.node
2017-09-17 21:05 - 2017-08-22 03:01 - 069807736 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2017-09-17 21:14 - 2017-08-08 15:13 - 001938424 _____ () C:\Users\thoma\AppData\Local\Discord\app-0.0.298\libglesv2.dll
2017-09-17 21:14 - 2017-08-08 15:13 - 000095736 _____ () C:\Users\thoma\AppData\Local\Discord\app-0.0.298\libegl.dll
2017-09-17 21:04 - 2017-08-22 03:01 - 001040504 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-09-17 21:15 - 2017-10-06 07:57 - 009722360 _____ () \\?\C:\Users\thoma\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
2017-09-17 21:15 - 2017-09-17 21:15 - 001440248 _____ () \\?\C:\Users\thoma\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
2017-10-28 17:17 - 2017-10-28 17:17 - 000148992 _____ () \\?\C:\Users\thoma\AppData\Local\Temp\C21A.tmp.node
2017-09-17 21:15 - 2017-09-17 21:15 - 002658296 _____ () \\?\C:\Users\thoma\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
2017-09-17 21:21 - 2017-09-17 21:21 - 002673656 _____ () \\?\C:\Users\thoma\AppData\Roaming\discord\0.0.298\modules\discord_contact_import\discord_contact_import.node
2017-09-17 18:48 - 2017-09-07 04:04 - 000678400 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll
2017-09-17 18:48 - 2017-08-17 00:28 - 073130272 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-09-17 18:46 - 2015-09-25 01:52 - 000119208 _____ () C:\Program Files (x86)\Steam\winh264.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 23:03 - 2017-10-28 17:06 - 000001361 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1            176.31.241.10
127.0.0.1            54.148.249.18
127.0.0.1            54.68.188.84
127.0.0.1            54.221.244.28
127.0.0.1            40.77.226.250
127.0.0.1            54.187.37.182
127.0.0.1            serwer2.paka-service.com
127.0.0.1            thislineskipsanyemptylines
127.0.0.1            mirillis.com
127.0.0.1            ns386119.ovh.net
127.0.0.1            mirillis.pl
127.0.0.1            mirillis.eu
127.0.0.1            www.mirillis.com
127.0.0.1            updates.mirillis.com  

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2436032110-2931218502-407622478-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==


==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{DE86B141-568A-4649-A840-3979EAD4BF8B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{06278497-BBE9-4E91-BAF0-DA470AD45E34}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{556B661C-B88D-4BF9-B85D-86D22A2A8F90}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{817F3567-B8D3-4F01-A5E2-B72F2F0A29FE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{8283A582-3CAD-47E5-91B2-60037B38094F}C:\users\thoma\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thoma\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{BA01B120-BB8F-4C79-B3BB-9836E588BFD7}C:\users\thoma\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\thoma\appdata\roaming\spotify\spotify.exe
FirewallRules: [{5DC3AEB2-69E8-4B5F-B3FC-7C789BA95FFD}] => (Block) C:\users\thoma\appdata\roaming\spotify\spotify.exe
FirewallRules: [{BF0D196E-BA1E-4088-A24A-A1AFF43EA8B9}] => (Block) C:\users\thoma\appdata\roaming\spotify\spotify.exe
FirewallRules: [{BA0F2725-1CDB-4A01-9F33-752951478C09}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{714D645B-42E3-4E19-A1C6-61057E2DF857}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{EA61CD4C-F9BA-4A73-A36F-845046BA2880}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{28093056-CFF7-42A6-BBCD-11BDA8C4723B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B64525C0-8FAD-4167-8437-74B8E68217D1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D568F1D2-C0A1-4697-883F-69083216645E}] => (Allow) D:\SteamLibrary\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{8D4D8ACF-AB04-4D72-AEFA-1DA60AA72C98}] => (Allow) D:\SteamLibrary\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{7A97DEE3-9025-403B-88B4-7CCD3397307D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Editor Pro\Video Editor Pro.exe
FirewallRules: [{B262EF73-B239-411C-879D-6C875E6377CA}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Editor Pro\Video Editor Pro.exe
FirewallRules: [{D5416220-BCD9-412E-B4A5-1AB17526FAFD}] => (Allow) C:\Program Files (x86)\MAGIX\Music Maker\25\MusicMaker.exe
FirewallRules: [{7026BB0B-07F6-4943-8B72-E35B1C17307A}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{188A5158-5285-48B7-89B3-9EBF9D5C5E2D}] => (Allow) D:\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{E707903E-9DEA-42CA-A5B4-779CBAA6E51E}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{EA341287-6F69-4A1E-823C-B89FD4110870}] => (Allow) D:\SteamLibrary\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{438E8EDB-F288-470D-9401-A1316468AE25}] => (Allow) D:\SteamLibrary\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{21B1E579-CE77-4522-8BC4-E593725B1A2C}] => (Allow) D:\SteamLibrary\steamapps\common\MountBlade Warband\mb_warband.exe
FirewallRules: [{519C9746-B4E6-4C3D-A5B1-D4564C84766F}] => (Allow) D:\SteamLibrary\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{6BD873BE-F993-482A-A212-6FE2853B6330}] => (Allow) D:\SteamLibrary\steamapps\common\Miscreated\Miscreated.exe
FirewallRules: [{30265ECC-13FD-4994-9242-5A24259CC899}] => (Allow) D:\SteamLibrary\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{0D91B482-CA9A-4F85-B404-29258FB99460}] => (Allow) D:\SteamLibrary\steamapps\common\Miscreated\Bin64\Miscreated.exe
FirewallRules: [{014D7ED2-7BF3-4297-847C-725CBC923242}] => (Allow) D:\SteamLibrary\steamapps\common\Miscreated\EasyAntiCheat\EasyAntiCheat_x64.dll
FirewallRules: [{2BA51B2D-F1FA-4954-9190-E7D241D87890}] => (Allow) D:\SteamLibrary\steamapps\common\Miscreated\EasyAntiCheat\EasyAntiCheat_x64.dll
FirewallRules: [{C0869B3D-95B0-47F1-A7D1-76941187AA50}] => (Allow) D:\SteamLibrary\steamapps\common\Contagion\contagion.exe
FirewallRules: [{CFE4F989-E1A0-42DB-BACB-E3BD2AF29952}] => (Allow) D:\SteamLibrary\steamapps\common\Contagion\contagion.exe
FirewallRules: [{39CBE37D-E798-49E5-89E0-AA722480DD80}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
FirewallRules: [{00A9D0B7-C4DA-4151-8979-A54049EA985F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe
FirewallRules: [{930AC5EA-206A-4078-8E2F-401FD3728EB4}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe
FirewallRules: [{449B94E6-83C2-4E49-88DC-E91B09A4598B}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe
FirewallRules: [{42E8A617-2ADB-4313-B281-ED3BCC2B5E0D}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe
FirewallRules: [{B361598B-5361-4963-AFF3-C7A19FE45484}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe
FirewallRules: [{37A7D953-F5DB-465D-9AAA-5E5D50B95273}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe
FirewallRules: [{64794B74-108A-45A9-BCD7-767831F3048E}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\OxygenPanelDaemon.exe
FirewallRules: [{90E2F82C-27BD-4900-9D5E-7F544C6FED4E}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe
FirewallRules: [{ED9715C3-33EC-4605-B90E-949566CD7E84}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe
FirewallRules: [TCP Query User{BB9EE690-FFA3-4C9B-B26C-5DC81173ECFD}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe
FirewallRules: [UDP Query User{BA2AA515-9BCA-4321-BFCC-1A72B5CB85F0}C:\program files\blackmagic design\davinci resolve\dpdecoder.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\dpdecoder.exe
FirewallRules: [TCP Query User{6ABCFE38-D068-4679-B866-EDB2AF7E0CB9}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Block) C:\program files\blackmagic design\davinci resolve\resolve.exe
FirewallRules: [UDP Query User{023A2366-F6A0-4209-B8D9-EB0742B0970E}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Block) C:\program files\blackmagic design\davinci resolve\resolve.exe
FirewallRules: [{29AB1983-C1E5-4FFF-A8C7-9F0AEC1AAB01}] => (Allow) D:\SteamLibrary\steamapps\common\Star Wars Empire at War\runme.exe
FirewallRules: [{510FE249-B94E-4E30-B1E0-F6ACC10977AF}] => (Allow) D:\SteamLibrary\steamapps\common\Star Wars Empire at War\runme.exe
FirewallRules: [{BEC181CA-8577-4FC2-8452-073230C4C9E9}] => (Allow) D:\SteamLibrary\steamapps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{BD63B46B-7ECF-417E-A0CA-C78775279192}] => (Allow) D:\SteamLibrary\steamapps\common\Star Wars Empire at War\runme2.exe
FirewallRules: [{1AC3A4BD-04BB-4E74-AAFE-8E45BC6C1C23}] => (Allow) D:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{0D5AD14D-9E40-4F0D-8AA9-595B2282D445}] => (Allow) D:\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{827AAACE-1C33-4E98-A42C-4C32A455F493}D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{8218513F-F663-42D8-AF85-E21A8AC4B583}D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{64385088-D30C-4307-93BE-818FB751C0FF}] => (Allow) D:\SteamLibrary\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [{C426FFC9-BC81-4C44-BE8A-D6997758045D}] => (Allow) D:\SteamLibrary\steamapps\common\insurgency2\insurgency_BE.exe
FirewallRules: [TCP Query User{70F1BB22-4D56-4A7C-BBC9-EA564A94E7C0}D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe] => (Allow) D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [UDP Query User{51870053-99DC-4796-AA08-79D6E35C7D17}D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe] => (Allow) D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [TCP Query User{186A6B07-5F30-4763-92B9-4D8170C68204}D:\fortnite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [UDP Query User{B6A71E5D-42D7-4C7D-BB69-583A3121C4E9}D:\fortnite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe
FirewallRules: [TCP Query User{CED20F12-1B62-4910-9540-38A811BF3367}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{FC97600A-6762-4205-A7BF-590761EE8D18}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [{956AEC10-3646-4E55-B4F7-6089B680181E}] => (Allow) D:\SteamLibrary\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [{2585B03A-6B3F-4674-8FA0-5E1B3A9A413B}] => (Allow) D:\SteamLibrary\steamapps\common\Star Wars Battlefront II\GameData\BattlefrontII.exe
FirewallRules: [TCP Query User{3C06B8C2-2852-47D7-A606-67D4CF6CA876}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [UDP Query User{BCCE1CC6-B313-4180-B576-7BB9E8692436}D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) D:\fortnite\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe
FirewallRules: [TCP Query User{F9877906-ED55-412A-AD10-B122C8559466}D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe] => (Block) D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [UDP Query User{D6D14B00-DB23-43B3-9043-572176A7AA91}D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe] => (Block) D:\steamlibrary\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{80A39DBB-9E57-455E-A966-7B3AC2CD7226}] => (Allow) D:\SteamLibrary\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe
FirewallRules: [{4A978277-463B-411D-817E-D3EE83AD951B}] => (Allow) D:\SteamLibrary\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe
FirewallRules: [{C56093F6-135B-4C29-8B72-A4151B50A0AC}] => (Allow) D:\SteamLibrary\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [{1F7E3BED-EDB0-4CC0-B618-FB85CD8C912E}] => (Allow) D:\SteamLibrary\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe
FirewallRules: [TCP Query User{6CB8E85E-634B-4A96-A847-95AF6F5BB676}D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{46C1CE3A-DCCB-492A-BA69-75C6BAA8E97B}D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{CB5079BE-B3AF-4B9A-BE56-037FC983F4F9}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{11835579-3774-4918-BA00-B744EB83DD25}] => (Allow) D:\SteamLibrary\steamapps\common\SpeedRunners\SpeedRunners.exe
FirewallRules: [{A11BE815-F98E-40F1-9AF1-5A465CF0D2E6}] => (Allow) D:\SteamLibrary\steamapps\common\Elemental Fallen Enchantress\FallenEnchantress.exe
FirewallRules: [{81E3288F-EA9D-4BE7-8C20-5B06325FFB98}] => (Allow) D:\SteamLibrary\steamapps\common\Elemental Fallen Enchantress\FallenEnchantress.exe
FirewallRules: [{72155DB6-6102-4344-B968-78707CA4F323}] => (Allow) C:\Program Files\EslWire\wire.exe
FirewallRules: [{C80DC8C5-637F-4A98-8626-386D34EC4777}] => (Allow) C:\Program Files\EslWire\wire.exe
FirewallRules: [{A3B364DD-97BA-45E3-9412-1F01A0899971}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{D1F11F65-4A3A-4317-9C07-0CC75B735D8B}] => (Allow) D:\SteamLibrary\steamapps\common\Dead Age\DeadAge.exe
FirewallRules: [{16530A86-7617-490A-A5C1-C2007D6F97C1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

17-10-2017 19:43:33 Windows Update
25-10-2017 20:26:46 Point de contrôle planifié
27-10-2017 00:18:31 Installed MorphVOX Pro
28-10-2017 16:40:21 Removed Google Chrome

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (10/28/2017 05:36:06 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.

Error: (10/28/2017 05:34:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « c:\program files (x86)\audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.

Error: (10/28/2017 05:23:27 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.

Error: (10/28/2017 05:13:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: DESKTOP-AU8SKTE)
Description: Échec de l’activation de l’application Microsoft.WindowsStore_8wekyb3d8bbwe!App avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (10/28/2017 05:05:47 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.

Error: (10/28/2017 05:05:44 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme WinZipMalwareProtector.exe version 2.1.1000.22182 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : e0

Heure de début : 01d34ffe2cf0f889

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe

ID de rapport : f6a3fd41-a84d-42df-9d93-1644ab55d823

Nom complet du package défaillant : 

ID de l'application relative au package défaillant :

Error: (10/28/2017 05:04:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme reanimator.exe version 9.30.0.630 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : ec

Heure de début : 01d34ffd0ed7b3aa

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files (x86)\UnHackMe\reanimator.exe

ID de rapport : 146c6651-f43b-48bc-a188-445d34979008

Nom complet du package défaillant : 

ID de l'application relative au package défaillant :

Error: (10/28/2017 04:57:57 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.

Error: (10/28/2017 04:22:07 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.

Error: (10/28/2017 04:21:50 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Audacity\audacity.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_26002d27e7c744a2.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.15063.483_none_6dad63fefc436da8.manifest.


Erreurs système:
=============
Error: (10/28/2017 05:42:50 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 et l’APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/28/2017 05:16:02 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Optimisation de livraison est en attente de démarrage.

Error: (10/28/2017 05:10:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : 
Cette demande n’est pas prise en charge.

Error: (10/28/2017 05:09:02 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-AU8SKTE)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/28/2017 05:08:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Steam Client Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (10/28/2017 05:08:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 6000 millisecondes : Redémarrer le service.

Error: (10/28/2017 05:08:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service NVIDIA Telemetry Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service.

Error: (10/28/2017 05:08:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service VIA Karaoke digital mixer Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (10/28/2017 05:08:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service ESL Wire Helper Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (10/28/2017 05:08:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Hi-Rez Studios Authenticate and Update Service s’est terminé de façon inattendue pour la 1ème fois.


CodeIntegrity:
===================================
  Date: 2017-10-28 17:10:10.991
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-10-27 14:49:16.239
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-10-21 20:16:29.696
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-10-17 21:54:51.323
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-10-17 21:50:45.089
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\SysWOW64\mbmiodrvr.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-10-01 22:04:56.812
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-10-01 22:04:45.771
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-10-01 22:04:45.243
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-29 22:20:43.213
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-09-29 22:20:03.129
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


==================== Infos Mémoire =========================== 

Processeur: AMD Phenom(tm) II X6 1090T Processor
Pourcentage de mémoire utilisée: 33%
Mémoire physique - RAM - totale: 16382.05 MB
Mémoire physique - RAM - disponible: 10841.25 MB
Mémoire virtuelle totale: 18814.05 MB
Mémoire virtuelle disponible: 12872.33 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:185.82 GB) (Free:123.1 GB) NTFS
Drive d: (700 GB) (Fixed) (Total:698.63 GB) (Free:284.02 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 186.3 GB) (Disk ID: 03214B2F)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=185.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 66876A9F)
Partition 1: (Not Active) - (Size=698.6 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================