Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02-11-2017
Exécuté par orange info (06-11-2017 15:17:46)
Exécuté depuis C:\Users\orange info\Desktop
Windows 10 Pro Version 1703 15063.674 (X64) (2017-08-22 21:19:11)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1931957715-195133453-772619937-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1931957715-195133453-772619937-503 - Limited - Disabled)
Invité (S-1-5-21-1931957715-195133453-772619937-501 - Limited - Disabled)
orange info (S-1-5-21-1931957715-195133453-772619937-1001 - Administrator - Enabled) => C:\Users\orange info
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
"Battlefield 4" (HKLM-x32\...\{56BBB063-6069-4A00-94FE-AB1EC329DC6E}_is1) (Version: 1.0.0.0 - )
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.3.0.29126 - BitTorrent Inc.)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Reader 9.1 - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
Archiveur WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield Hardline (HKLM-x32\...\{D7BBC5BA-9EAE-424E-A054-613FD97458C4}_is1) (Version: 1.07.15.0 - Electronic Arts)
Call of Duty Modern Warfare 3 (HKLM-x32\...\{E2FF00D3-2CFD-449F-A880-A8A29E5ED54B}) (Version: 1.0.0.0 - Activision)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Crysis 3 (HKLM-x32\...\Crysis 3_is1) (Version: - )
Curse (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Curse)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Doom (HKLM-x32\...\{42824C12-C727-486B-8D51-CCE02953F2E6}_is1) (Version: 6.1.1.808 - id Software)
Dragon Gaming Center (HKLM-x32\...\{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.) Hidden
Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.)
FIFA 17 (HKLM-x32\...\FIFA 17_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.75 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Half-Life Complete Colection Game Pack (HKLM-x32\...\Half-Life Complete Colection Game Pack_is1) (Version: Half-Life Complete Colection Game Pack - hxxp://CSdownload.info)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.9.6 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4534 - Intel Corporation)
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mises à jour NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0.2 (x86 en-US)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 17.0 - Mozilla)
Mumble 1.2.17 (HKLM-x32\...\{39B43BDF-F32A-4C18-894C-B642A8B53585}) (Version: 1.2.17 - Thorvald Natvig)
NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NVIDIA Pilote graphique 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7944 - Realtek Semiconductor Corp.)
Resident Evil 6 version 1 (HKLM-x32\...\UmVzaWRlbnQgRXZpbCA2_is1) (Version: 1 - )
Resident Evil 7 Biohazard (HKLM-x32\...\{CA2C435D-88BA-49D8-8997-85E06951C50E}_is1) (Version: 1.0.0.0 - Capcom)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
SHAREit (HKLM-x32\...\www.ushareit.com_is1) (Version: 4.0.5.171 - SHAREit Technologies Co.Ltd)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.22.4 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Witcher 3 Wild Hunt - Patch FR 1.1 (HKLM-x32\...\The Witcher 3 Wild Hunt - Patch FR 1.1) (Version: 1.1 - TraductionJeux.com)
The Witcher 3: GotY Edition (HKLM-x32\...\The Witcher 3: GotY Edition_is1) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 26.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Yu-Gi-Oh! Legacy of the Duelist (HKLM-x32\...\Yu-Gi-Oh! Legacy of the Duelist_is1) (Version: - )
Yu-Gi-Oh! The Dawn of a New Era version 5.3.0.3862 (HKLM-x32\...\{1F276EF8-ACD8-4805-845C-BA1FC14DCB3B}_is1) (Version: 5.3.0.3862 - Kaiba Corporation)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-09-20] ()
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-09-20] ()
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-11-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-09-20] ()
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0CDD628F-376C-4B79-A19F-6D20E1955405} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {18F94FC8-BF20-49F4-B1C0-AF5062D75C37} - System32\Tasks\{04A8E36B-29F7-4A87-9D24-C1A3ED455785} => "c:\program files\internet explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.3.0.105&LastError=12007
Task: {2E9AD2B2-8E5F-4DAB-845E-3323161FFF4A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-15] (Adobe Systems Incorporated)
Task: {31F3B75A-1D4C-4C9E-9E0D-4BB507C9A016} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
Task: {3B604063-2BFD-4DEE-9566-F04FCA6A226B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
Task: {3E1C6FF7-7E02-455C-89D3-E1E6DAFF1811} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-23] (TODO: <公司名稱>)
Task: {43126C67-F50E-44EC-A1B5-73DF30B91B69} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {5F90D364-486E-4742-856B-663A0AD36200} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18] (NVIDIA Corporation)
Task: {7ADF959F-0F43-420A-B6FB-0DB5C32E6A47} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
Task: {9C32C075-B0FC-40A1-B6A6-6220357B02C5} - System32\Tasks\{20F8CFDC-1ED9-4D1F-87DC-244BAB62AAA6} => C:\Windows\system32\pcalua.exe -a "C:\Users\orange info\Downloads\Programs\Assassins Creed Unity InstallShield Wizard.exe" -d "C:\Users\orange info\AppData\Roaming\IDM"
Task: {9C653B74-3873-40C4-BA63-32FBB8279805} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {A22CF073-81E2-4C96-B7C2-C49B62880D9B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-18] (NVIDIA Corporation)
Task: {B0734C93-4CD9-46A7-9064-C7655ABD7006} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {BB5AA833-3872-4ACB-99D5-22FD15366B70} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-18] (NVIDIA Corporation)
Task: {C3B24514-2DE4-4B69-AC9B-3D67266BB625} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {CBE1219A-E44C-42E4-B85F-3E6AF997F751} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-04] (Google Inc.)
Task: {E6F2ABEA-4DF3-4850-B0C9-B2F6FAA88464} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-18] (NVIDIA Corporation)
Task: {F8B7C91C-5675-46C1-BF16-ECE0A014E0E5} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
Task: {FA4BFD9C-6B2E-44B7-81DD-A77E63C8435E} - System32\Tasks\SafeZone scheduled Autoupdate 1479854871 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {FE8F8DB1-2D19-4245-A495-B3EE8A622A52} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-04] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-11-22 00:09 - 2017-08-18 05:36 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-11-05 21:46 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2015-04-06 17:29 - 2006-12-11 01:14 - 000043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2017-03-18 21:59 - 2017-03-20 06:12 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2014-01-22 10:44 - 2014-01-22 10:44 - 000075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll
2017-09-15 02:02 - 2017-09-15 02:08 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11709.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 000021504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-10-05 17:16 - 2017-10-05 17:29 - 048839168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 17:16 - 2017-10-05 17:31 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2017-10-05 17:16 - 2017-10-05 17:31 - 000164352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\VideoPlugin.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 000352256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 002836480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-10-05 17:16 - 2017-10-05 17:30 - 020559872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 002705408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-10-05 17:16 - 2017-10-05 17:18 - 003128320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-08-29 20:32 - 2017-08-29 20:32 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 000118784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\ExploreModel.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 001380864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-10-05 17:16 - 2017-10-05 17:18 - 000367616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AnimatedGIF.dll
2017-10-09 21:01 - 2017-10-09 21:02 - 004252672 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-09-26 20:22 - 2017-09-26 20:26 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-18 21:59 - 2017-10-18 22:15 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-10-18 21:59 - 2017-10-18 22:15 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-11-04 23:55 - 2017-10-26 07:30 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libglesv2.dll
2017-11-04 23:55 - 2017-10-26 07:30 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libegl.dll
2017-11-02 22:08 - 2017-08-08 14:13 - 001893880 _____ () C:\Users\orange info\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
2017-11-02 22:09 - 2017-11-02 22:09 - 001577976 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_toaster\discord_toaster.node
2017-11-02 22:08 - 2017-08-08 14:13 - 001938424 _____ () C:\Users\orange info\AppData\Local\Discord\app-0.0.298\libglesv2.dll
2017-11-02 22:08 - 2017-08-08 14:13 - 000095736 _____ () C:\Users\orange info\AppData\Local\Discord\app-0.0.298\libegl.dll
2017-11-02 22:09 - 2017-11-02 22:10 - 009722360 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
2017-11-02 22:09 - 2017-11-02 22:09 - 001440248 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
2017-11-06 13:35 - 2017-11-06 13:35 - 000148992 _____ () \\?\C:\Users\orange info\AppData\Local\Temp\FC67.tmp.node
2017-11-02 22:08 - 2017-11-02 22:08 - 002658296 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
2016-11-22 00:09 - 2017-08-18 05:36 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1931957715-195133453-772619937-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\orange info\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
MSCONFIG\Services: Ds3Service => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: ICCS => 3
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: QWAVE => 3
MSCONFIG\Services: Service KMSELDI => 2
MSCONFIG\Services: Spooler => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: uSHAREitSvc => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_4B38071B96D9510C923E100A4B6E16DC"
HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\StartupApproved\Run: => "aljazeera-sport+2"
HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\StartupApproved\Run: => "Steam"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{8B015663-F2A1-4B33-AF85-BA8298635716}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{2F2AFAD1-1586-415D-B4BB-9F2A8504EC4A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{AB9622EC-D81F-4E8A-8437-5EFA833CFA0D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1460ED49-C9CD-4429-9C69-0BC3278D61B7}C:\program files (x86)\valve\hlds.exe] => (Allow) C:\program files (x86)\valve\hlds.exe
FirewallRules: [TCP Query User{43E4D6B9-C3D8-4B29-BB2E-9A96CE0A4889}C:\program files (x86)\valve\hlds.exe] => (Allow) C:\program files (x86)\valve\hlds.exe
FirewallRules: [UDP Query User{94E33182-D1E5-4818-A409-8E0C825A48ED}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe
FirewallRules: [TCP Query User{8CD16228-1826-44D5-8BF0-DD93DF30A0E4}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe
FirewallRules: [UDP Query User{A4B00883-6963-472B-9EA6-1792FAA61050}E:\counter-strike source\hl2.exe] => (Allow) E:\counter-strike source\hl2.exe
FirewallRules: [TCP Query User{028394E5-1198-4C1C-AF8A-898BF8F97EBA}E:\counter-strike source\hl2.exe] => (Allow) E:\counter-strike source\hl2.exe
FirewallRules: [{84091BF7-FB22-426D-8608-2FB173E113D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{581953AB-2FEB-40FC-964E-74187221F36B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D49301B5-35D1-4858-89B3-0EFACC2A5F15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{8ECD4CA7-1022-4F5D-A1D9-05B679617DAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{6540840B-AA4B-4E50-A728-29B2B6F757D7}D:\games\fifa 17\fifa17.exe] => (Allow) D:\games\fifa 17\fifa17.exe
FirewallRules: [TCP Query User{A6A8DBC8-E284-4955-AF65-1E4355E9CC26}D:\games\fifa 17\fifa17.exe] => (Allow) D:\games\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{67AA65A8-A7EB-444A-9CEC-383D8A45C3B5}D:\diablo iii\diablo iii.exe] => (Allow) D:\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{55649510-C5E8-4286-9AEF-4FDBABFE4631}D:\diablo iii\diablo iii.exe] => (Allow) D:\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{E1826649-49C4-4C10-A296-8E2D4E6F8AA8}D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9E7179A6-0C81-4654-8D92-945A423DFB13}D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{641E7249-C84E-4CD8-A568-0DD4874F58E4}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [TCP Query User{F8CDA689-808B-4BD0-8E27-5EBF35A1DAA6}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [UDP Query User{3B392EEB-4C15-4F4E-9F47-14C1D85F8408}D:\games\battlefield 4\bf4.exe] => (Allow) D:\games\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{47989930-85F2-4F57-A677-6E564DBEC6E4}D:\games\battlefield 4\bf4.exe] => (Allow) D:\games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{E6990ECA-F45F-4E6A-97D8-0E8746D48FFC}D:\games\call of duty - infinite warfare\iw7_ship.exe] => (Allow) D:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{85E2120A-6F08-4AB9-AAD9-F00DD0EA7CA9}D:\games\call of duty - infinite warfare\iw7_ship.exe] => (Allow) D:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [UDP Query User{EA47CCEB-CC30-4022-BB56-F4B1D47A8D40}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{438000E9-24CA-4452-8192-F22C439DF9A7}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [UDP Query User{27D5DB5F-2B32-4C0E-A1B8-A82D86E9C9C4}D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{69FE2734-8460-4530-8FEC-382CFB8DD196}D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe
FirewallRules: [{F79AC402-53B0-4E27-8184-69932CD06AB8}] => (Allow) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe
FirewallRules: [{606627B4-B8AA-4822-BD4C-EB4DCAAF16D8}] => (Allow) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe
FirewallRules: [UDP Query User{E4C8F31B-180B-47BE-8E85-170D6934B7FC}D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{810D3808-96C5-406E-BE8D-83F3C03BB2E9}D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{A4B43B60-EFFC-4F4B-BAF1-702C842F6A17}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{AFE19D74-F93F-439F-9CDF-964CD86291F7}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{CA0D7E46-9DF7-47C3-A6F3-513ECA0C7F23}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{471DC3B4-367F-4160-8C08-0E0E0A45A95C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1E7E4652-AA6A-41D6-8EE3-037FA5AE0758}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1685C999-1315-45A6-96EB-0AB019248F63}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{7D6782F2-5BCA-443D-9E72-7E6BD39D3A32}D:\heroes of the storm\versions\base49278\heroesofthestorm.exe] => (Block) D:\heroes of the storm\versions\base49278\heroesofthestorm.exe
FirewallRules: [TCP Query User{307B6820-3219-4587-B8A9-EAB70F6FB9ED}D:\heroes of the storm\versions\base49278\heroesofthestorm.exe] => (Block) D:\heroes of the storm\versions\base49278\heroesofthestorm.exe
FirewallRules: [UDP Query User{2D828FC5-161D-46D2-BFB1-C6BFE222F496}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{F96A3A8F-1412-415C-98AA-C41F8511CEC1}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{157682B8-BD60-4999-88DA-71231F62DB5F}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{D0FD0EA5-DEA2-42C5-9453-3DF9B1346CC7}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{04352424-680F-4404-B216-8DA6AC8F67A6}E:\games\call of duty - infinite warfare\iw7_ship.exe] => (Block) E:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{6956E085-70C4-4F29-8F41-43DC504D1EA9}E:\games\call of duty - infinite warfare\iw7_ship.exe] => (Block) E:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [{90C8E159-4E24-4ECC-A200-7D05DA5ECB7B}] => (Allow) D:\Games\Battlefield 4\bf4.exe
FirewallRules: [{B1F14C83-4669-4475-92DD-540348AE23EB}] => (Allow) D:\Games\Battlefield 4\bf4.exe
FirewallRules: [{37585372-1CCB-40F3-89CE-8CDE03FC4026}] => (Allow) D:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D8E6D5D3-5967-4DB9-8917-9F5FFA61DB46}] => (Allow) D:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [UDP Query User{865705D3-7539-496E-972B-281D62779673}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [TCP Query User{EBB9B027-1D41-4763-BD75-7379E46749EE}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [{CFB9C322-5085-4975-9B7E-9CE1D27594BA}] => (Allow) D:\Microsoft Office\Office15\outlook.exe
FirewallRules: [{BC303E7F-8A5D-478E-8732-F08D5F6F9765}] => (Allow) D:\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{FF3708A6-2A92-40DB-9AF1-8EA8AD13C9D6}] => (Allow) D:\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{7D79F665-0E07-4FFE-9103-095AA4197C30}] => (Allow) D:\Microsoft Office\Office15\lync.exe
FirewallRules: [{15B4D678-EE1C-4AF6-8AB9-D03C18BE1246}] => (Allow) D:\Microsoft Office\Office15\lync.exe
FirewallRules: [UDP Query User{E1A6C593-ECEC-46E8-99E1-50827BF82684}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{B07EBA48-6137-41EA-A112-8F5B2F7D5BB8}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{7C36AC46-B4BB-4BC2-85EF-49688FB9EFD0}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{C93D1640-8BDA-4257-A24D-5E2ADD827633}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{B6770B46-6533-467E-B707-1D0F6B227783}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{78A36C0A-BDBC-462C-84D6-F356FAE6D810}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [{7F45CFE3-FEC3-4D96-BE8A-31EF673F5543}] => (Allow) D:\Games\Battlefield 3™\bf3.exe
FirewallRules: [{D04818DC-CC7A-43ED-BA48-DB8F0C90AE7D}] => (Allow) D:\Games\Battlefield 3™\bf3.exe
FirewallRules: [{311FBBD6-5576-4B44-AF6F-243C568CC177}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{AFA5A544-DAFA-475D-9AA9-48F8876E2C5B}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{8361AD12-5404-4D20-9DD5-8AB9FE0B51CA}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{EF879D1D-A8F1-4989-8CD7-AEA45EC6AD55}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{97BA09EA-79B9-418A-9AA7-1A8741B40D52}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{CA3F2767-285D-4B8D-991E-27B89B36A05D}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{B101518C-DD28-4D24-BAC6-2A88282C5E2B}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{220855BD-DFDE-466C-AD0E-F7A397490B26}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{236C7960-4861-4E84-9A0D-BAAA3A39EBFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8F0A321C-62E7-4502-B848-DA39C5A94762}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B65D99CA-CD39-4C51-A88E-718E5823858D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EA8FF2F1-2858-4B1F-84AA-46EE5FDBBB0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CCBCC9DA-C9D8-451E-904F-B9EB6A5AFF77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{140E0C1C-0B18-4F0E-B546-D67A96EAD4E9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E9487509-39D4-4773-8A47-63799998DA27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{440E901C-3A03-4C72-9D8A-521E903189A6}H:\overwatch\overwatch.exe] => (Allow) H:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{5042D5F0-2E75-4F78-9839-E13A4945C4F5}H:\overwatch\overwatch.exe] => (Allow) H:\overwatch\overwatch.exe
FirewallRules: [{918A6DDE-282F-4202-88EB-1DB88AF70487}] => (Allow) C:\Users\orange info\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{669A06B9-0248-48CB-A9D7-06EC6B978614}] => (Allow) C:\Users\orange info\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{342F49F0-3575-47C9-BBEF-7B3E871C594A}E:\games\prey\binaries\danielle\x64\release\prey.exe] => (Allow) E:\games\prey\binaries\danielle\x64\release\prey.exe
FirewallRules: [UDP Query User{5BFE5F5A-CF88-4CB4-9B2A-3E4B1A58037F}E:\games\prey\binaries\danielle\x64\release\prey.exe] => (Allow) E:\games\prey\binaries\danielle\x64\release\prey.exe
FirewallRules: [TCP Query User{1BF72695-5518-44C6-A249-6015A1C53F3A}D:\starcraft ii\versions\base55958\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base55958\sc2_x64.exe
FirewallRules: [UDP Query User{504CF77B-9E5C-4F34-93AF-2A6CB4D25836}D:\starcraft ii\versions\base55958\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base55958\sc2_x64.exe
FirewallRules: [TCP Query User{C7B500C2-473D-48AC-B591-F3E68D197B62}D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{80299C27-32E4-4376-B4F5-B64D002F17F1}D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{94F1DEE6-F627-4DC1-9D24-4B93800B8AA6}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{83622C99-A2E5-4CE6-B1ED-95DFF682D06E}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{FDBA645D-490E-4750-B5F3-46BA84717D5F}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{0D067312-E08A-44F7-A4CB-C0BD30B60ACA}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{84D2B6E3-743B-4AAE-871C-EB7122CFC4A5}D:\starcraft ii\versions\base56787\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base56787\sc2_x64.exe
FirewallRules: [UDP Query User{FC7FE47D-F959-4CB9-9095-C9E0C5AE6CE4}D:\starcraft ii\versions\base56787\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base56787\sc2_x64.exe
FirewallRules: [TCP Query User{A4988201-2BFC-46E6-AE63-FCE14398DF35}D:\starcraft ii\versions\base57507\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base57507\sc2_x64.exe
FirewallRules: [UDP Query User{77E9C2AB-1D37-4502-95E7-695F397E1330}D:\starcraft ii\versions\base57507\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base57507\sc2_x64.exe
FirewallRules: [TCP Query User{A99EF6A0-9630-482C-A107-74D1970BB029}E:\games\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) E:\games\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [UDP Query User{7B8077D4-FB18-4A6B-B0C7-FEE72A807C7D}E:\games\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) E:\games\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [TCP Query User{5A733D0D-5DA4-4317-B1B8-762560FAF7CB}C:\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) C:\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [UDP Query User{A36EA8C4-8FC5-4DBD-9E4B-B672EC7BC22B}C:\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) C:\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [{88D97727-41E7-4302-955A-31DF18E85FEB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
26-10-2017 23:52:15 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (11/06/2017 01:36:27 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/06/2017 01:34:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004C003
Arguments de la ligne de commande :
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=49cd895b-53b2-4dc4-a5f7-b18aa019ad37;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (11/06/2017 01:34:28 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: L’acquisition de la licence d’utilisateur final a échoué. hr=0xC004C003
Id Sku=49cd895b-53b2-4dc4-a5f7-b18aa019ad37
Error: (11/06/2017 01:34:28 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Détails de l’échec d’acquisition de la licence.
hr=0xC004C003
Error: (11/06/2017 01:34:13 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: L’acquisition de la licence d’utilisateur final a échoué. hr=0xC004C003
Id Sku=49cd895b-53b2-4dc4-a5f7-b18aa019ad37
Error: (11/06/2017 01:34:13 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Détails de l’échec d’acquisition de la licence.
hr=0xC004C003
Error: (11/06/2017 01:33:44 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x80072EE7
Arguments de la ligne de commande :
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=49cd895b-53b2-4dc4-a5f7-b18aa019ad37;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
Error: (11/06/2017 01:33:44 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: L’acquisition de la licence d’utilisateur final a échoué. hr=0x80072EE7
Id Sku=49cd895b-53b2-4dc4-a5f7-b18aa019ad37
Error: (11/06/2017 01:33:44 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Détails de l’échec d’acquisition de la licence.
hr=0x80072EE7
Error: (11/06/2017 01:33:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007139F
Arguments de la ligne de commande :
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=49cd895b-53b2-4dc4-a5f7-b18aa019ad37;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (11/06/2017 03:01:23 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {F3B4E234-7A68-4E43-B813-E4BA55A065F6} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 01:33:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (11/06/2017 01:33:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (11/06/2017 01:33:22 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: Le système a détecté un conflit d’adresses pour l’adresse IP 192.168.1.5 avec le système
d’adresse physique réseau 10-68-3F-7D-F6-57. En conséquence les opérations réseau sur se système
peuvent être interrompues.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/05/2017 10:03:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
CodeIntegrity:
===================================
Date: 2017-11-05 21:54:47.314
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-11-05 21:54:45.412
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-11-05 21:47:17.056
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-04 23:54:54.668
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-11-04 23:54:54.466
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 21:22:22.059
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 21:22:21.673
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-14 22:19:32.141
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-14 22:19:31.332
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-12 23:30:17.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Pourcentage de mémoire utilisée: 35%
Mémoire physique - RAM - totale: 8103.87 MB
Mémoire physique - RAM - disponible: 5225.25 MB
Mémoire virtuelle totale: 9383.87 MB
Mémoire virtuelle disponible: 6457.57 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:243.25 GB) (Free:83.15 GB) NTFS
Drive d: (Disque local) (Fixed) (Total:687.15 GB) (Free:35.19 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0FA2841F)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par orange info (06-11-2017 15:17:46)
Exécuté depuis C:\Users\orange info\Desktop
Windows 10 Pro Version 1703 15063.674 (X64) (2017-08-22 21:19:11)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1931957715-195133453-772619937-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1931957715-195133453-772619937-503 - Limited - Disabled)
Invité (S-1-5-21-1931957715-195133453-772619937-501 - Limited - Disabled)
orange info (S-1-5-21-1931957715-195133453-772619937-1001 - Administrator - Enabled) => C:\Users\orange info
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
"Battlefield 4" (HKLM-x32\...\{56BBB063-6069-4A00-94FE-AB1EC329DC6E}_is1) (Version: 1.0.0.0 - )
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.3.0.29126 - BitTorrent Inc.)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Reader 9.1 - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-A91000000001}) (Version: 9.1.0 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 382.53 - NVIDIA Corporation) Hidden
Archiveur WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.0.0.0 - Electronic Arts)
Battlefield Hardline (HKLM-x32\...\{D7BBC5BA-9EAE-424E-A054-613FD97458C4}_is1) (Version: 1.07.15.0 - Electronic Arts)
Call of Duty Modern Warfare 3 (HKLM-x32\...\{E2FF00D3-2CFD-449F-A880-A8A29E5ED54B}) (Version: 1.0.0.0 - Activision)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.65.28.50 - Conexant)
CPUID CPU-Z 1.78 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
Crysis 3 (HKLM-x32\...\Crysis 3_is1) (Version: - )
Curse (HKLM-x32\...\{F36ED29E-33E1-48AB-95DA-2498AD41A9A0}) (Version: 6.0.0.0 - Curse)
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Discord (HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Doom (HKLM-x32\...\{42824C12-C727-486B-8D51-CCE02953F2E6}_is1) (Version: 6.1.1.808 - id Software)
Dragon Gaming Center (HKLM-x32\...\{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.) Hidden
Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 2.0.1701.0601 - Micro-Star International Co., Ltd.)
FIFA 17 (HKLM-x32\...\FIFA 17_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.75 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Half-Life Complete Colection Game Pack (HKLM-x32\...\Half-Life Complete Colection Game Pack_is1) (Version: Half-Life Complete Colection Game Pack - hxxp://CSdownload.info)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version: - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.0.9.6 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4534 - Intel Corporation)
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mises à jour NVIDIA 28.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 28.0.0.0 - NVIDIA Corporation) Hidden
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 47.0.2 (x86 en-US)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 17.0 - Mozilla)
Mumble 1.2.17 (HKLM-x32\...\{39B43BDF-F32A-4C18-894C-B642A8B53585}) (Version: 1.2.17 - Thorvald Natvig)
NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NVIDIA Pilote graphique 382.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.53 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.3.3.1921 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Panneau de configuration NVIDIA 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 382.05 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7944 - Realtek Semiconductor Corp.)
Resident Evil 6 version 1 (HKLM-x32\...\UmVzaWRlbnQgRXZpbCA2_is1) (Version: 1 - )
Resident Evil 7 Biohazard (HKLM-x32\...\{CA2C435D-88BA-49D8-8997-85E06951C50E}_is1) (Version: 1.0.0.0 - Capcom)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft)
SHAREit (HKLM-x32\...\www.ushareit.com_is1) (Version: 4.0.5.171 - SHAREit Technologies Co.Ltd)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
StarCraft II (HKLM-x32\...\StarCraft II) (Version: - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.22.4 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Witcher 3 Wild Hunt - Patch FR 1.1 (HKLM-x32\...\The Witcher 3 Wild Hunt - Patch FR 1.1) (Version: 1.1 - TraductionJeux.com)
The Witcher 3: GotY Edition (HKLM-x32\...\The Witcher 3: GotY Edition_is1) (Version: - )
Uplay (HKLM-x32\...\Uplay) (Version: 26.1 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Yu-Gi-Oh! Legacy of the Duelist (HKLM-x32\...\Yu-Gi-Oh! Legacy of the Duelist_is1) (Version: - )
Yu-Gi-Oh! The Dawn of a New Era version 5.3.0.3862 (HKLM-x32\...\{1F276EF8-ACD8-4805-845C-BA1FC14DCB3B}_is1) (Version: 5.3.0.3862 - Kaiba Corporation)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] ()
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-09-20] ()
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] ()
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-09-20] ()
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Intel Corporation)
ContextMenuHandlers5: [igfxOSP] -> {FA507C3F-30C6-4DCA-9EE5-2656072EEC14} => C:\WINDOWS\system32\igfxOSP.dll [2016-11-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2006-12-11] ()
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2007-09-20] ()
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {0CDD628F-376C-4B79-A19F-6D20E1955405} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {18F94FC8-BF20-49F4-B1C0-AF5062D75C37} - System32\Tasks\{04A8E36B-29F7-4A87-9D24-C1A3ED455785} => "c:\program files\internet explorer\iexplore.exe" hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=6.3.0.105&LastError=12007
Task: {2E9AD2B2-8E5F-4DAB-845E-3323161FFF4A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-15] (Adobe Systems Incorporated)
Task: {31F3B75A-1D4C-4C9E-9E0D-4BB507C9A016} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
Task: {3B604063-2BFD-4DEE-9566-F04FCA6A226B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
Task: {3E1C6FF7-7E02-455C-89D3-E1E6DAFF1811} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-23] (TODO: <公司名稱>)
Task: {43126C67-F50E-44EC-A1B5-73DF30B91B69} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {5F90D364-486E-4742-856B-663A0AD36200} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18] (NVIDIA Corporation)
Task: {7ADF959F-0F43-420A-B6FB-0DB5C32E6A47} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
Task: {9C32C075-B0FC-40A1-B6A6-6220357B02C5} - System32\Tasks\{20F8CFDC-1ED9-4D1F-87DC-244BAB62AAA6} => C:\Windows\system32\pcalua.exe -a "C:\Users\orange info\Downloads\Programs\Assassins Creed Unity InstallShield Wizard.exe" -d "C:\Users\orange info\AppData\Roaming\IDM"
Task: {9C653B74-3873-40C4-BA63-32FBB8279805} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
Task: {A22CF073-81E2-4C96-B7C2-C49B62880D9B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-18] (NVIDIA Corporation)
Task: {B0734C93-4CD9-46A7-9064-C7655ABD7006} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe
Task: {BB5AA833-3872-4ACB-99D5-22FD15366B70} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-18] (NVIDIA Corporation)
Task: {C3B24514-2DE4-4B69-AC9B-3D67266BB625} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {CBE1219A-E44C-42E4-B85F-3E6AF997F751} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-04] (Google Inc.)
Task: {E6F2ABEA-4DF3-4850-B0C9-B2F6FAA88464} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-18] (NVIDIA Corporation)
Task: {F8B7C91C-5675-46C1-BF16-ECE0A014E0E5} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
Task: {FA4BFD9C-6B2E-44B7-81DD-A77E63C8435E} - System32\Tasks\SafeZone scheduled Autoupdate 1479854871 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe
Task: {FE8F8DB1-2D19-4245-A495-B3EE8A622A52} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-04] (Google Inc.)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-11-22 00:09 - 2017-08-18 05:36 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2017-11-05 21:46 - 2017-11-01 08:55 - 002299344 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2015-04-06 17:29 - 2006-12-11 01:14 - 000043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2017-03-18 21:59 - 2017-03-20 06:12 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2014-01-22 10:44 - 2014-01-22 10:44 - 000075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll
2017-09-15 02:02 - 2017-09-15 02:08 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11709.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 000021504 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-10-05 17:16 - 2017-10-05 17:29 - 048839168 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-05 17:16 - 2017-10-05 17:31 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2017-10-05 17:16 - 2017-10-05 17:31 - 000164352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\VideoPlugin.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 000675328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\IPPNativePlugin.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 000352256 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 002836480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2017-10-05 17:16 - 2017-10-05 17:30 - 020559872 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 002705408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-10-05 17:16 - 2017-10-05 17:18 - 003128320 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2017-08-29 20:32 - 2017-08-29 20:32 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 17:16 - 2017-10-05 17:27 - 000118784 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\ExploreModel.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 000046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-10-05 17:16 - 2017-10-05 17:29 - 001380864 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-10-05 17:16 - 2017-10-05 17:18 - 000367616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2017.39081.15820.0_x64__8wekyb3d8bbwe\AnimatedGIF.dll
2017-10-09 21:01 - 2017-10-09 21:02 - 004252672 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-09-26 20:22 - 2017-09-26 20:26 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1709.2703.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-18 21:59 - 2017-10-18 22:15 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-10-18 21:59 - 2017-10-18 22:15 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.7.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-11-04 23:55 - 2017-10-26 07:30 - 004135768 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libglesv2.dll
2017-11-04 23:55 - 2017-10-26 07:30 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\62.0.3202.75\libegl.dll
2017-11-02 22:08 - 2017-08-08 14:13 - 001893880 _____ () C:\Users\orange info\AppData\Local\Discord\app-0.0.298\ffmpeg.dll
2017-11-02 22:09 - 2017-11-02 22:09 - 001577976 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_toaster\discord_toaster.node
2017-11-02 22:08 - 2017-08-08 14:13 - 001938424 _____ () C:\Users\orange info\AppData\Local\Discord\app-0.0.298\libglesv2.dll
2017-11-02 22:08 - 2017-08-08 14:13 - 000095736 _____ () C:\Users\orange info\AppData\Local\Discord\app-0.0.298\libegl.dll
2017-11-02 22:09 - 2017-11-02 22:10 - 009722360 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_voice\discord_voice.node
2017-11-02 22:09 - 2017-11-02 22:09 - 001440248 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_utils\discord_utils.node
2017-11-06 13:35 - 2017-11-06 13:35 - 000148992 _____ () \\?\C:\Users\orange info\AppData\Local\Temp\FC67.tmp.node
2017-11-02 22:08 - 2017-11-02 22:08 - 002658296 _____ () \\?\C:\Users\orange info\AppData\Roaming\discord\0.0.298\modules\discord_rpc\discord_rpc.node
2016-11-22 00:09 - 2017-08-18 05:36 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-1931957715-195133453-772619937-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\orange info\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
MSCONFIG\Services: Ds3Service => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: ICCS => 3
MSCONFIG\Services: igfxCUIService2.0.0.0 => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: Origin Web Helper Service => 2
MSCONFIG\Services: QWAVE => 3
MSCONFIG\Services: Service KMSELDI => 2
MSCONFIG\Services: Spooler => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: uSHAREitSvc => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "Adobe Reader Speed Launcher"
HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_4B38071B96D9510C923E100A4B6E16DC"
HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\StartupApproved\Run: => "aljazeera-sport+2"
HKU\S-1-5-21-1931957715-195133453-772619937-1001\...\StartupApproved\Run: => "Steam"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{8B015663-F2A1-4B33-AF85-BA8298635716}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{2F2AFAD1-1586-415D-B4BB-9F2A8504EC4A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{AB9622EC-D81F-4E8A-8437-5EFA833CFA0D}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1460ED49-C9CD-4429-9C69-0BC3278D61B7}C:\program files (x86)\valve\hlds.exe] => (Allow) C:\program files (x86)\valve\hlds.exe
FirewallRules: [TCP Query User{43E4D6B9-C3D8-4B29-BB2E-9A96CE0A4889}C:\program files (x86)\valve\hlds.exe] => (Allow) C:\program files (x86)\valve\hlds.exe
FirewallRules: [UDP Query User{94E33182-D1E5-4818-A409-8E0C825A48ED}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe
FirewallRules: [TCP Query User{8CD16228-1826-44D5-8BF0-DD93DF30A0E4}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe
FirewallRules: [UDP Query User{A4B00883-6963-472B-9EA6-1792FAA61050}E:\counter-strike source\hl2.exe] => (Allow) E:\counter-strike source\hl2.exe
FirewallRules: [TCP Query User{028394E5-1198-4C1C-AF8A-898BF8F97EBA}E:\counter-strike source\hl2.exe] => (Allow) E:\counter-strike source\hl2.exe
FirewallRules: [{84091BF7-FB22-426D-8608-2FB173E113D5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{581953AB-2FEB-40FC-964E-74187221F36B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D49301B5-35D1-4858-89B3-0EFACC2A5F15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{8ECD4CA7-1022-4F5D-A1D9-05B679617DAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{6540840B-AA4B-4E50-A728-29B2B6F757D7}D:\games\fifa 17\fifa17.exe] => (Allow) D:\games\fifa 17\fifa17.exe
FirewallRules: [TCP Query User{A6A8DBC8-E284-4955-AF65-1E4355E9CC26}D:\games\fifa 17\fifa17.exe] => (Allow) D:\games\fifa 17\fifa17.exe
FirewallRules: [UDP Query User{67AA65A8-A7EB-444A-9CEC-383D8A45C3B5}D:\diablo iii\diablo iii.exe] => (Allow) D:\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{55649510-C5E8-4286-9AEF-4FDBABFE4631}D:\diablo iii\diablo iii.exe] => (Allow) D:\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{E1826649-49C4-4C10-A296-8E2D4E6F8AA8}D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9E7179A6-0C81-4654-8D92-945A423DFB13}D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base55288\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{641E7249-C84E-4CD8-A568-0DD4874F58E4}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [TCP Query User{F8CDA689-808B-4BD0-8E27-5EBF35A1DAA6}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [UDP Query User{3B392EEB-4C15-4F4E-9F47-14C1D85F8408}D:\games\battlefield 4\bf4.exe] => (Allow) D:\games\battlefield 4\bf4.exe
FirewallRules: [TCP Query User{47989930-85F2-4F57-A677-6E564DBEC6E4}D:\games\battlefield 4\bf4.exe] => (Allow) D:\games\battlefield 4\bf4.exe
FirewallRules: [UDP Query User{E6990ECA-F45F-4E6A-97D8-0E8746D48FFC}D:\games\call of duty - infinite warfare\iw7_ship.exe] => (Allow) D:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{85E2120A-6F08-4AB9-AAD9-F00DD0EA7CA9}D:\games\call of duty - infinite warfare\iw7_ship.exe] => (Allow) D:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [UDP Query User{EA47CCEB-CC30-4022-BB56-F4B1D47A8D40}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{438000E9-24CA-4452-8192-F22C439DF9A7}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [UDP Query User{27D5DB5F-2B32-4C0E-A1B8-A82D86E9C9C4}D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{69FE2734-8460-4530-8FEC-382CFB8DD196}D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base50441\heroesofthestorm_x64.exe
FirewallRules: [{F79AC402-53B0-4E27-8184-69932CD06AB8}] => (Allow) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe
FirewallRules: [{606627B4-B8AA-4822-BD4C-EB4DCAAF16D8}] => (Allow) C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.exe
FirewallRules: [UDP Query User{E4C8F31B-180B-47BE-8E85-170D6934B7FC}D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{810D3808-96C5-406E-BE8D-83F3C03BB2E9}D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) D:\games\steamlibrary\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{A4B43B60-EFFC-4F4B-BAF1-702C842F6A17}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{AFE19D74-F93F-439F-9CDF-964CD86291F7}] => (Allow) D:\Games\SteamLibrary\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{CA0D7E46-9DF7-47C3-A6F3-513ECA0C7F23}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{471DC3B4-367F-4160-8C08-0E0E0A45A95C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{1E7E4652-AA6A-41D6-8EE3-037FA5AE0758}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{1685C999-1315-45A6-96EB-0AB019248F63}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{7D6782F2-5BCA-443D-9E72-7E6BD39D3A32}D:\heroes of the storm\versions\base49278\heroesofthestorm.exe] => (Block) D:\heroes of the storm\versions\base49278\heroesofthestorm.exe
FirewallRules: [TCP Query User{307B6820-3219-4587-B8A9-EAB70F6FB9ED}D:\heroes of the storm\versions\base49278\heroesofthestorm.exe] => (Block) D:\heroes of the storm\versions\base49278\heroesofthestorm.exe
FirewallRules: [UDP Query User{2D828FC5-161D-46D2-BFB1-C6BFE222F496}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{F96A3A8F-1412-415C-98AA-C41F8511CEC1}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{157682B8-BD60-4999-88DA-71231F62DB5F}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{D0FD0EA5-DEA2-42C5-9453-3DF9B1346CC7}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{04352424-680F-4404-B216-8DA6AC8F67A6}E:\games\call of duty - infinite warfare\iw7_ship.exe] => (Block) E:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [TCP Query User{6956E085-70C4-4F29-8F41-43DC504D1EA9}E:\games\call of duty - infinite warfare\iw7_ship.exe] => (Block) E:\games\call of duty - infinite warfare\iw7_ship.exe
FirewallRules: [{90C8E159-4E24-4ECC-A200-7D05DA5ECB7B}] => (Allow) D:\Games\Battlefield 4\bf4.exe
FirewallRules: [{B1F14C83-4669-4475-92DD-540348AE23EB}] => (Allow) D:\Games\Battlefield 4\bf4.exe
FirewallRules: [{37585372-1CCB-40F3-89CE-8CDE03FC4026}] => (Allow) D:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{D8E6D5D3-5967-4DB9-8917-9F5FFA61DB46}] => (Allow) D:\Games\Battlefield 4\bf4_x86.exe
FirewallRules: [UDP Query User{865705D3-7539-496E-972B-281D62779673}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [TCP Query User{EBB9B027-1D41-4763-BD75-7379E46749EE}D:\doom\doomx64.exe] => (Allow) D:\doom\doomx64.exe
FirewallRules: [{CFB9C322-5085-4975-9B7E-9CE1D27594BA}] => (Allow) D:\Microsoft Office\Office15\outlook.exe
FirewallRules: [{BC303E7F-8A5D-478E-8732-F08D5F6F9765}] => (Allow) D:\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{FF3708A6-2A92-40DB-9AF1-8EA8AD13C9D6}] => (Allow) D:\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{7D79F665-0E07-4FFE-9103-095AA4197C30}] => (Allow) D:\Microsoft Office\Office15\lync.exe
FirewallRules: [{15B4D678-EE1C-4AF6-8AB9-D03C18BE1246}] => (Allow) D:\Microsoft Office\Office15\lync.exe
FirewallRules: [UDP Query User{E1A6C593-ECEC-46E8-99E1-50827BF82684}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [TCP Query User{B07EBA48-6137-41EA-A112-8F5B2F7D5BB8}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{7C36AC46-B4BB-4BC2-85EF-49688FB9EFD0}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [TCP Query User{C93D1640-8BDA-4257-A24D-5E2ADD827633}C:\program files (x86)\resident evil 6\bh6.exe] => (Allow) C:\program files (x86)\resident evil 6\bh6.exe
FirewallRules: [UDP Query User{B6770B46-6533-467E-B707-1D0F6B227783}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{78A36C0A-BDBC-462C-84D6-F356FAE6D810}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [{7F45CFE3-FEC3-4D96-BE8A-31EF673F5543}] => (Allow) D:\Games\Battlefield 3™\bf3.exe
FirewallRules: [{D04818DC-CC7A-43ED-BA48-DB8F0C90AE7D}] => (Allow) D:\Games\Battlefield 3™\bf3.exe
FirewallRules: [{311FBBD6-5576-4B44-AF6F-243C568CC177}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{AFA5A544-DAFA-475D-9AA9-48F8876E2C5B}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{8361AD12-5404-4D20-9DD5-8AB9FE0B51CA}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{EF879D1D-A8F1-4989-8CD7-AEA45EC6AD55}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{97BA09EA-79B9-418A-9AA7-1A8741B40D52}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{CA3F2767-285D-4B8D-991E-27B89B36A05D}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PandoraService.exe
FirewallRules: [{B101518C-DD28-4D24-BAC6-2A88282C5E2B}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{220855BD-DFDE-466C-AD0E-F7A397490B26}] => (Allow) C:\Program Files (x86)\PANDORA.TV\PanService\PanProcess.exe
FirewallRules: [{236C7960-4861-4E84-9A0D-BAAA3A39EBFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8F0A321C-62E7-4502-B848-DA39C5A94762}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B65D99CA-CD39-4C51-A88E-718E5823858D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EA8FF2F1-2858-4B1F-84AA-46EE5FDBBB0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CCBCC9DA-C9D8-451E-904F-B9EB6A5AFF77}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{140E0C1C-0B18-4F0E-B546-D67A96EAD4E9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{E9487509-39D4-4773-8A47-63799998DA27}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [UDP Query User{440E901C-3A03-4C72-9D8A-521E903189A6}H:\overwatch\overwatch.exe] => (Allow) H:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{5042D5F0-2E75-4F78-9839-E13A4945C4F5}H:\overwatch\overwatch.exe] => (Allow) H:\overwatch\overwatch.exe
FirewallRules: [{918A6DDE-282F-4202-88EB-1DB88AF70487}] => (Allow) C:\Users\orange info\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{669A06B9-0248-48CB-A9D7-06EC6B978614}] => (Allow) C:\Users\orange info\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{342F49F0-3575-47C9-BBEF-7B3E871C594A}E:\games\prey\binaries\danielle\x64\release\prey.exe] => (Allow) E:\games\prey\binaries\danielle\x64\release\prey.exe
FirewallRules: [UDP Query User{5BFE5F5A-CF88-4CB4-9B2A-3E4B1A58037F}E:\games\prey\binaries\danielle\x64\release\prey.exe] => (Allow) E:\games\prey\binaries\danielle\x64\release\prey.exe
FirewallRules: [TCP Query User{1BF72695-5518-44C6-A249-6015A1C53F3A}D:\starcraft ii\versions\base55958\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base55958\sc2_x64.exe
FirewallRules: [UDP Query User{504CF77B-9E5C-4F34-93AF-2A6CB4D25836}D:\starcraft ii\versions\base55958\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base55958\sc2_x64.exe
FirewallRules: [TCP Query User{C7B500C2-473D-48AC-B591-F3E68D197B62}D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{80299C27-32E4-4376-B4F5-B64D002F17F1}D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56705\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{94F1DEE6-F627-4DC1-9D24-4B93800B8AA6}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{83622C99-A2E5-4CE6-B1ED-95DFF682D06E}D:\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{FDBA645D-490E-4750-B5F3-46BA84717D5F}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{0D067312-E08A-44F7-A4CB-C0BD30B60ACA}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [TCP Query User{84D2B6E3-743B-4AAE-871C-EB7122CFC4A5}D:\starcraft ii\versions\base56787\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base56787\sc2_x64.exe
FirewallRules: [UDP Query User{FC7FE47D-F959-4CB9-9095-C9E0C5AE6CE4}D:\starcraft ii\versions\base56787\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base56787\sc2_x64.exe
FirewallRules: [TCP Query User{A4988201-2BFC-46E6-AE63-FCE14398DF35}D:\starcraft ii\versions\base57507\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base57507\sc2_x64.exe
FirewallRules: [UDP Query User{77E9C2AB-1D37-4502-95E7-695F397E1330}D:\starcraft ii\versions\base57507\sc2_x64.exe] => (Allow) D:\starcraft ii\versions\base57507\sc2_x64.exe
FirewallRules: [TCP Query User{A99EF6A0-9630-482C-A107-74D1970BB029}E:\games\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) E:\games\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [UDP Query User{7B8077D4-FB18-4A6B-B0C7-FEE72A807C7D}E:\games\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) E:\games\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [TCP Query User{5A733D0D-5DA4-4317-B1B8-762560FAF7CB}C:\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) C:\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [UDP Query User{A36EA8C4-8FC5-4DBD-9E4B-B672EC7BC22B}C:\warhammer 40k - dawn of war 3\relicdow3.exe] => (Allow) C:\warhammer 40k - dawn of war 3\relicdow3.exe
FirewallRules: [{88D97727-41E7-4302-955A-31DF18E85FEB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
26-10-2017 23:52:15 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (11/06/2017 01:36:27 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (11/06/2017 01:34:28 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004C003
Arguments de la ligne de commande :
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=49cd895b-53b2-4dc4-a5f7-b18aa019ad37;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (11/06/2017 01:34:28 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: L’acquisition de la licence d’utilisateur final a échoué. hr=0xC004C003
Id Sku=49cd895b-53b2-4dc4-a5f7-b18aa019ad37
Error: (11/06/2017 01:34:28 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Détails de l’échec d’acquisition de la licence.
hr=0xC004C003
Error: (11/06/2017 01:34:13 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: L’acquisition de la licence d’utilisateur final a échoué. hr=0xC004C003
Id Sku=49cd895b-53b2-4dc4-a5f7-b18aa019ad37
Error: (11/06/2017 01:34:13 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Détails de l’échec d’acquisition de la licence.
hr=0xC004C003
Error: (11/06/2017 01:33:44 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x80072EE7
Arguments de la ligne de commande :
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=49cd895b-53b2-4dc4-a5f7-b18aa019ad37;NotificationInterval=1440;Trigger=UserLogon;SessionId=2
Error: (11/06/2017 01:33:44 PM) (Source: Software Protection Platform Service) (EventID: 1014) (User: )
Description: L’acquisition de la licence d’utilisateur final a échoué. hr=0x80072EE7
Id Sku=49cd895b-53b2-4dc4-a5f7-b18aa019ad37
Error: (11/06/2017 01:33:44 PM) (Source: Software Protection Platform Service) (EventID: 8200) (User: )
Description: Détails de l’échec d’acquisition de la licence.
hr=0x80072EE7
Error: (11/06/2017 01:33:37 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007139F
Arguments de la ligne de commande :
RuleId=31e71c49-8da7-4a2f-ad92-45d98a1c79ba;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=49cd895b-53b2-4dc4-a5f7-b18aa019ad37;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (11/06/2017 03:01:23 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {F3B4E234-7A68-4E43-B813-E4BA55A065F6} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 01:33:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (11/06/2017 01:33:38 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (11/06/2017 01:33:22 PM) (Source: Tcpip) (EventID: 4199) (User: )
Description: Le système a détecté un conflit d’adresses pour l’adresse IP 192.168.1.5 avec le système
d’adresse physique réseau 10-68-3F-7D-F6-57. En conséquence les opérations réseau sur se système
peuvent être interrompues.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/06/2017 03:20:27 AM) (Source: DCOM) (EventID: 10010) (User: MSI)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (11/05/2017 10:03:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
CodeIntegrity:
===================================
Date: 2017-11-05 21:54:47.314
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-11-05 21:54:45.412
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-11-05 21:47:17.056
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2017-11-04 23:54:54.668
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-11-04 23:54:54.466
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 21:22:22.059
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 21:22:21.673
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-14 22:19:32.141
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-14 22:19:31.332
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-12 23:30:17.524
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\nvmi.inf_amd64_0401a47bc69f625c\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Pourcentage de mémoire utilisée: 35%
Mémoire physique - RAM - totale: 8103.87 MB
Mémoire physique - RAM - disponible: 5225.25 MB
Mémoire virtuelle totale: 9383.87 MB
Mémoire virtuelle disponible: 6457.57 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:243.25 GB) (Free:83.15 GB) NTFS
Drive d: (Disque local) (Fixed) (Total:687.15 GB) (Free:35.19 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0FA2841F)
Partition: GPT.
==================== Fin de Addition.txt ============================