Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-10-2016
Exécuté par Christian (26-10-2016 20:49:18)
Exécuté depuis C:\Users\Christian\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-09 16:53:49)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2792382195-2971463290-2128144674-500 - Administrator - Disabled)
Christian (S-1-5-21-2792382195-2971463290-2128144674-1001 - Administrator - Enabled) => C:\Users\Christian
DefaultAccount (S-1-5-21-2792382195-2971463290-2128144674-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2792382195-2971463290-2128144674-1005 - Limited - Enabled)
Invité (S-1-5-21-2792382195-2971463290-2128144674-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Acronis True Image (HKLM-x32\...\{2D18E04C-2EFC-48C6-A17F-F53FC9D8564C}Visible) (Version: 20.0.5554 - Acronis)
Acronis True Image (x32 Version: 20.0.5554 - Acronis) Hidden
Adam's Venture Chronicles (HKLM-x32\...\Adam's Venture Chronicles_is1) (Version:  - )
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.020.20039 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Ansel (Version: 373.06 - NVIDIA Corporation) Hidden
Assassins Creed Syndicate (HKLM-x32\...\Assassins Creed Syndicate_is1) (Version:  - )
Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17354 - Microsoft Corporation)
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.7.9.0 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.7.9.0 - ASUSTek COMPUTER INC.) Hidden
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.026 - ASUSTek Computer Inc.)
AVS Audio Editor 8.1.1 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 8.1.1.506 - Online Media Technologies Ltd.)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CamStudio 2.02 Fr (HKLM-x32\...\CamStudio 2.02 Fr_is1) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.23 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6321 - CDBurnerXP)
Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Centre Souris et Claviers Microsoft (Version: 2.7.133.0 - Microsoft Corporation) Hidden
DriversCloud.com (64 bits) (HKLM\...\{AEEC522D-38DD-46FD-9367-3E32F51B3A42}) (Version: 10.0.1.0 - Cybelsoft)
FaceRig Virtual Video driver version 1.0.1.1000 (HKLM-x32\...\{7D6A1A0F-F57E-4C6B-9331-86CBC7D5C787}_is1) (Version: 1.0.1.1000 - Adoriasoft LLC)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Goat Simulator (HKLM-x32\...\Steam App 265930) (Version:  - Coffee Stain Studios)
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version:  - Richard)
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.5 - ASUS) Hidden
HP Button Manager (HKLM-x32\...\{465D6ACC-CAB9-40CD-ADAC-A91B071FA30E}) (Version: 3.5.00 - Hewlett-Packard)
HP Webcam Software Suite (HKLM-x32\...\{D10FE2E3-B2DE-4B0E-ACBD-F87A566B9649}) (Version: 1.1.1.13889 - Hewlett-Packard)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
Intel(R) Smart Connect Technology (HKLM\...\{33013669-7557-430E-9153-3C025284E623}) (Version: 5.0.10.2907 - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\{3FD0C489-0F02-481a-A3E1-9754CD396761}) (Version:  - Intel Corporation)
Intel® Watchdog Timer Driver (Intel® WDT) (HKLM-x32\...\3FD0C489-0F02-481a-A3E1-9754CD396761) (Version:  - Intel Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kings Quest Chapter 4 (HKLM-x32\...\Kings Quest Chapter 4_is1) (Version:  - )
K-Lite Codec Pack 12.4.2 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.4.2 - KLCP)
LEGO Marvels Avengers (HKLM-x32\...\LEGO Marvels Avengers_is1) (Version:  - )
LEGO® MARVEL Super Heroes (HKLM-x32\...\Steam App 249130) (Version:  - Traveller's Tales)
Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Mafia II (HKLM-x32\...\Mafia II_is1) (Version:  - )
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 (HKLM-x32\...\{037a3c70-cc6a-4ae2-aa0e-70eb68ea81d5}) (Version: 4.0.20714.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 FRA (HKLM-x32\...\{9d0c23f9-afeb-4e5c-8b8f-2b58b4b1ed55}) (Version: 4.0.20710.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{4549ceb8-695a-42eb-a183-4820d542a15f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft)
Mirror's Edge (HKLM\...\Steam App 17410) (Version:  - DICE)
Mirror's Edge™ Catalyst (HKLM-x32\...\{12228a0d-f6ad-4691-82af-d2c643424468}) (Version: 1.0.3.47248 - Electronic Arts)
Mises à jour NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 49.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 49.0.2 (x64 fr)) (Version: 49.0.2 - Mozilla)
Mozilla Firefox 49.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 49.0.2 (x86 fr)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.2 - Mozilla)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.1.12 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.8 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.1.021 - MSI)
MSI Smart Utilities (HKLM-x32\...\{009E5DF2-3F97-480B-89DA-F2D5E672E14A}_is1) (Version: 2.0.0.11 - MSI)
MSI(R) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{482c7431-75e2-4124-a453-6a294cd2c6a4}) (Version: 6.0.2.101 - Intel Corporation)
MSI(R) Intel(R) Extreme Tuning Utility (x32 Version: 6.0.2.101 - Intel Corporation) Hidden
NetworkGenie (HKLM-x32\...\{B416A23D-C2BD-4956-8BAE-5C3BAFF1AC1E}) (Version: 1.0.0.8 - MSI)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Pilote graphique 373.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 373.06 - NVIDIA Corporation)
OCCT 4.4.2 (HKLM-x32\...\OCCT) (Version: 4.4.2 - Ocbase.com)
Origin (HKLM-x32\...\Origin) (Version: 9.11.6.18139 - Electronic Arts, Inc.)
Panneau de configuration NVIDIA 373.06 (Version: 373.06 - NVIDIA Corporation) Hidden
Piercing Blow (HKLM\...\Steam App 382850) (Version:  - Zepetto Co.)
Quantum Break (HKLM-x32\...\Quantum Break_is1) (Version:  - )
RAPID Mode (Version: 1.0.1.96 - Samsung Electronics Co., Ltd.) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7634 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.1 - VS Revo Group, Ltd.)
Rise of the Tomb Raider (HKLM-x32\...\Steam App 391220) (Version:  - Crystal Dynamics)
ROBLOX Player for Christian (HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version:  - ROBLOX Corporation)
ROBLOX Studio for Christian (HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version:  - ROBLOX Corporation)
Rocket League (HKLM-x32\...\Rocket League_is1) (Version:  - Psyonix)
RomStation (HKLM-x32\...\{223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1) (Version:  - RomStation)
S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version:  - Dragonfly GF Co., LTD)
Saints Row IV, âåðñèÿ 1.0.0.0 (HKLM-x32\...\Saints Row IV_is1) (Version: 1.0.0.0 - )
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.9.7 - Samsung Electronics)
SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Songr (HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\...\Songr) (Version: 2.1 - Xamasoft)
Sound Blaster Cinema (HKLM-x32\...\{8801CA65-921A-4CCC-9D63-879D1D0BAA97}) (Version: 1.00.05 - Creative Technology Limited)
Sound Blaster Cinema 3 (HKLM-x32\...\{883EEEA5-1C5A-42BD-96C3-796F2ACB9120}) (Version: 1.00.10 - Creative Technology Limited)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Splinter Cell Blacklist (HKLM-x32\...\Uplay Install 91) (Version:  - Ubisoft)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
The Technomancer (HKLM-x32\...\The Technomancer_is1) (Version:  - )
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\The Witcher 2 - Assassins of Kings Enhanced Edition_is1) (Version:  - GOG.com)
theHunter (HKLM\...\Steam App 253710) (Version:  - Expansive Worlds)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.10.1 - Electronic Arts)
TreeSize Personal V6.1.0 (HKLM-x32\...\TreeSize Personal_is1) (Version: 6.1.0 - JAM Software)
Trials Fusion (HKLM-x32\...\Uplay Install 297) (Version:  - Ubisoft)
Trine 3 The Artifacts of Power (HKLM-x32\...\Trine 3 The Artifacts of Power_is1) (Version:  - )
UE4 Prerequisites (x64) (HKLM-x32\...\{b46d36bc-2438-471e-abe8-1fbbd51754ee}) (Version: 1.0.10.0 - Epic Games, Inc.)
UE4 Prerequisites (x64) (Version: 1.0.10.0 - Epic Games, Inc.) Hidden
Unity Web Player (HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\...\UnityWebPlayer) (Version: 5.2.5f1 - Unity Technologies ApS)
Unturned (HKLM\...\Steam App 304930) (Version:  - Smartly Dressed Games)
Uplay (HKLM-x32\...\Uplay) (Version: 18.1 - Ubisoft)
VirtualDJ 8 (HKLM-x32\...\{D06160AD-F524-42BB-AFFC-AA7718666724}) (Version: 8.0.2438.0 - Atomix Productions)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1-4) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.11.1 (Version: 1.0.11.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
VuRoom (HKLM-x32\...\Edison) (Version:  - )
WebM Project Directshow Filters (HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\...\webmdshow) (Version:  - )
WinZip 20.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240EF}) (Version: 20.0.11659 - WinZip Computing, S.L. )
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2792382195-2971463290-2128144674-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2792382195-2971463290-2128144674-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Christian\AppData\Local\Roblox\Versions\version-a5eaf158bd544c4d\RobloxProxy64.dll (ROBLOX Corporation)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0C787928-DF39-4C66-B1BD-346B6BD701AA} - System32\Tasks\{565CD222-32CD-4B87-B5D2-0EAFF1D5F04E} => Firefox.exe hxxp://ui.skype.com/ui/0/7.26.0.101/fr/abandoninstall?page=tsProgressBar
Task: {144886AE-AA3F-489E-81E0-3AC4E9D79502} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-12-09] (Microsoft Corporation)
Task: {2FC9EECC-C0C3-49E9-8BAD-AFBF5C0BCBD7} - System32\Tasks\RtlNetworkGenieVistaStart => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe [2014-04-23] (Realtek Semiconductor)
Task: {32F8E666-BC3A-43C3-BA43-DF538AB927DF} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-12-09] (Microsoft Corporation)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {45B7D5F6-23AB-42BD-9701-C84E0C75DCE6} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {51F10A81-8BD3-4EE9-9C65-C340949CB5DA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {5ACD6785-540F-4D98-AEFD-0FB7FA0B7212} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2015-05-05] (Intel Corporation)
Task: {652CB0A6-31D4-469B-AE37-B08726FB3114} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-10-04] ()
Task: {78E1A491-90AE-49A8-A9FC-0096563263D1} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-12-09] (Microsoft)
Task: {8C2A1394-A56E-4456-9E47-4FBD33651C38} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-12-09] (Microsoft Corporation)
Task: {9FA772C7-1917-4D8C-BCEB-E3DC3980F163} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2016-05-13] (Samsung Electronics.)
Task: {A471FC1D-3CF6-4480-BA09-5A2E506F7DA7} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-03-25] (ASUSTek Computer Inc.)
Task: {C9E189CD-91F4-4DCB-AFA0-E311B5ECFDDA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-09-28] (Piriform Ltd)
Task: {DD8662F5-D15F-4C2C-BD3D-3C0BAFF9F3C1} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-28] (Microsoft Corporation)
Task: {E5D3656D-2964-4BF2-8B3E-48A50E47B246} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-10-12] (Microsoft Corporation)
Task: {EED3FCD8-4706-4948-8A24-837D5839E7F8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-12-09] (Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\RtlNetworkGenieVistaStart.job => C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki/
Shortcut: C:\Users\Christian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com/

==================== Modules chargés (Avec liste blanche) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-09 19:45 - 2016-10-09 19:45 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-09 18:48 - 2016-10-01 21:53 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-13 17:36 - 2016-09-13 17:36 - 01276216 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2012-01-17 11:24 - 2012-01-17 11:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2016-10-09 16:39 - 2016-10-09 16:39 - 06086232 _____ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2015-12-30 22:30 - 2015-12-30 22:30 - 00075136 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe
2016-10-09 19:45 - 2016-10-09 19:45 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-10-09 18:55 - 2016-10-09 18:55 - 01864384 _____ () C:\Users\Christian\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2016-10-09 19:45 - 2016-10-09 19:45 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-12 17:33 - 2016-10-05 11:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-12 17:34 - 2016-10-05 11:21 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-12 17:34 - 2016-10-05 11:13 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-10-12 17:34 - 2016-10-05 11:13 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-12 17:34 - 2016-10-05 11:13 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-10-12 17:34 - 2016-10-05 11:13 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-12 17:34 - 2016-10-05 11:14 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-10-20 18:09 - 2016-10-20 18:10 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-10-20 18:09 - 2016-10-20 18:10 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-20 18:09 - 2016-10-20 18:10 - 35253760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2015-09-19 16:38 - 2016-03-15 13:55 - 00089600 _____ () C:\WINDOWS\SYSTEM32\CmdRtr64.DLL
2015-09-19 16:38 - 2016-03-15 13:54 - 00359424 _____ () C:\WINDOWS\SYSTEM32\APOMgr64.DLL
2016-09-13 17:18 - 2016-09-13 17:18 - 00585240 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2016-05-28 19:05 - 2012-05-20 22:05 - 01728088 _____ () C:\Program Files (x86)\HP Button Manager\BM.exe
2016-09-28 18:26 - 2016-09-28 18:26 - 00069632 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2016-09-13 18:12 - 2016-09-13 18:12 - 04654664 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
2016-09-13 17:33 - 2016-09-13 17:33 - 01510712 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
2016-08-11 14:29 - 2016-08-11 14:29 - 09729272 _____ () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
2016-08-16 14:38 - 2016-08-16 14:38 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-08-16 14:38 - 2016-08-16 14:38 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-03 18:12 - 2016-06-03 18:12 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-03-04 16:57 - 2016-03-04 16:57 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\kpcengine.2.3.dll
2016-05-25 21:37 - 2015-12-28 13:49 - 00629536 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2016-09-11 19:56 - 2005-07-18 13:43 - 00160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2016-10-05 18:03 - 2016-10-05 18:03 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2015-12-06 20:03 - 2014-04-21 16:09 - 00150528 _____ () C:\Program Files (x86)\MSI\NetworkGenie\gep.dll
2015-01-11 20:56 - 2015-01-11 20:56 - 00301568 _____ () C:\Program Files (x86)\ASUS\GPU Tweak\Vender.dll
2015-01-20 17:00 - 2015-01-20 17:00 - 00057344 _____ () C:\Program Files (x86)\ASUS\GPU Tweak\Exeio.dll
2016-09-13 17:17 - 2016-09-13 17:17 - 06068656 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_resources.dll
2016-08-15 11:28 - 2016-08-15 11:28 - 00129968 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2016-09-13 18:07 - 2016-09-13 18:07 - 20652632 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2016-09-13 17:18 - 2016-09-13 17:18 - 00390576 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2016-08-03 15:47 - 2016-08-03 15:47 - 00685488 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2016-09-13 17:17 - 2016-09-13 17:17 - 00048560 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\rpc_client.dll
2016-08-11 14:14 - 2016-08-11 14:14 - 00248752 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2016-06-14 17:24 - 2016-06-14 17:24 - 00444336 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2016-06-22 09:16 - 2016-06-22 09:16 - 00115632 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\expat.dll
2016-07-14 16:00 - 2016-05-13 01:35 - 00021600 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2016-06-22 11:27 - 2016-06-22 11:27 - 00217008 _____ () C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\pcs_io.dll
2016-03-09 10:28 - 2016-03-09 10:28 - 00042416 _____ () C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\winpthreads4.dll
2016-07-02 21:30 - 2016-07-02 21:30 - 00376240 _____ () C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\archive3.dll
2016-09-13 18:08 - 2016-09-13 18:08 - 00753544 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers_proxy.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2013-08-22 15:25 - 2016-10-09 16:40 - 00000861 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 activation.acronis.com 

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Christian\AppData\Roaming\Mozilla\Firefox\Fond d’écran.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\StartupFolder: => "FAH.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Notifications de Mises à jour.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WinZip Préchargeur.lnk"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run32: => "Live Update"
HKLM\...\StartupApproved\Run32: => "Sound Blaster Cinema"
HKLM\...\StartupApproved\Run32: => "Fast Boot"
HKLM\...\StartupApproved\Run32: => "Sound Blaster Cinema 3"
HKU\S-1-5-21-2792382195-2971463290-2128144674-1001\...\StartupApproved\Run: => "OneDrive"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{58BAF732-AC3F-4D6C-B2C6-99B08D66F1EA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{4DF2C133-705A-440D-9A59-CC2DCBFC1BBF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{996747C0-FE1F-47CF-A185-1A7E5090C500}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B955C5F2-66C0-4C63-A4E9-833AD28737F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{95BC81AC-89F9-40FB-836B-81B93DE5C0BD}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
FirewallRules: [{7488AA45-0107-4135-9F92-8FBDC3373203}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
FirewallRules: [{F9E33C94-A0DB-4CFA-810B-1F2D8CA14CEE}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{BC3D061E-DE04-4646-B493-B33162B84FD5}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{50535C7B-6835-4B69-80C7-4AAE7A0E1450}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{11E3C91C-A1DD-4023-A73A-61FCC4112F9C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D181F9B5-3713-41F4-A7A4-C069D66D2A83}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1ABFE765-2305-4EDF-9460-F90B30384F0C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{13CA5250-D8C9-49E0-A423-9329C5B1E4E8}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [{2AC2028E-3BEC-480F-B155-C33DDD7671B5}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\theHunter\launcher\launcher.exe
FirewallRules: [UDP Query User{E00B785A-1E18-4CFE-A7F9-2ACE1D247631}D:\programmes jeux\kings quest chapter 4\binaries\win\kingsquest.exe] => (Allow) D:\programmes jeux\kings quest chapter 4\binaries\win\kingsquest.exe
FirewallRules: [TCP Query User{F51C39E2-7D6D-432E-AA37-FB80A7BC3743}D:\programmes jeux\kings quest chapter 4\binaries\win\kingsquest.exe] => (Allow) D:\programmes jeux\kings quest chapter 4\binaries\win\kingsquest.exe
FirewallRules: [UDP Query User{FE56F5A4-5F48-465C-81D1-D89B8B728A4C}D:\programmes jeux\steamlibrary\steamapps\common\thehunter\game\thehunter.exe] => (Block) D:\programmes jeux\steamlibrary\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [TCP Query User{3378FC44-D558-40FD-886C-23B2ECDD248A}D:\programmes jeux\steamlibrary\steamapps\common\thehunter\game\thehunter.exe] => (Block) D:\programmes jeux\steamlibrary\steamapps\common\thehunter\game\thehunter.exe
FirewallRules: [{42CDDB0A-9299-48DE-89B8-F7415F4E75A7}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{A0174F23-8414-4B70-87E0-7C49B00F3996}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{7E80F1D4-C655-4772-B12D-8C3F4FD7A645}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [{5F2D48A8-94E3-4D3E-A258-F20C4F1FF0B7}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\mirrors edge\Binaries\MirrorsEdge.exe
FirewallRules: [UDP Query User{D097FE4E-D00B-4256-9073-20176EDCAFC1}D:\programmes jeux\igg-scrap.mechanic.beta.v0.1.25\release\scrapmechanic.exe] => (Allow) D:\programmes jeux\igg-scrap.mechanic.beta.v0.1.25\release\scrapmechanic.exe
FirewallRules: [TCP Query User{FC15D521-FFCA-4DCF-9558-BF47A09E4BD6}D:\programmes jeux\igg-scrap.mechanic.beta.v0.1.25\release\scrapmechanic.exe] => (Allow) D:\programmes jeux\igg-scrap.mechanic.beta.v0.1.25\release\scrapmechanic.exe
FirewallRules: [UDP Query User{3084F416-6DB3-4F41-9771-C2984FC32ABF}D:\programmes jeux\scrap mechanic v0.1.13\release\scrapmechanic.exe] => (Allow) D:\programmes jeux\scrap mechanic v0.1.13\release\scrapmechanic.exe
FirewallRules: [TCP Query User{E4700F1E-F173-411F-91BE-0E6889842036}D:\programmes jeux\scrap mechanic v0.1.13\release\scrapmechanic.exe] => (Allow) D:\programmes jeux\scrap mechanic v0.1.13\release\scrapmechanic.exe
FirewallRules: [{E1C4BD6F-DF68-4E03-92F4-0C37B2BD6E30}] => (Allow) D:\programmes jeux\Trials Fusion\datapack\trials_fusion.exe
FirewallRules: [{D89002B1-4D8D-4B50-8736-FC3108C8B868}] => (Allow) D:\programmes jeux\Trials Fusion\datapack\trials_fusion.exe
FirewallRules: [{EE0B33D7-11D0-48DC-997B-2CC11F8C335F}] => (Allow) D:\programmes jeux\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{1385DAEE-81CF-4360-9EBB-CA1C71C036E4}] => (Allow) D:\programmes jeux\Splinter Cell Blacklist\src\SYSTEM\Blacklist_DX11_game.exe
FirewallRules: [{08741AC2-9095-4508-AEFA-F4B06BEE4715}] => (Allow) D:\programmes jeux\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{ED1EFC71-F55F-45C6-AF1C-E65B06A24500}] => (Allow) D:\programmes jeux\Splinter Cell Blacklist\src\SYSTEM\Blacklist_game.exe
FirewallRules: [{25703E2C-E0A2-44B5-BE64-92DEF25BFE81}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{F2E93474-B165-448D-9A48-17A9D094C4DD}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [UDP Query User{58104D9F-2131-49BE-A401-39A670BAA93E}C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [TCP Query User{4BD30D3A-AD1D-4C1F-A5D0-FBCE9ABBA7D2}C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) C:\program files (x86)\gog.com\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{50F5F5B7-3E18-4FC2-9885-8099FAC65ACF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A6C823EC-8D85-4CDD-A230-D87D242EB6D4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{37595373-55D7-4506-BCD7-A18E552EA15C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{91FE69F5-B8D2-48D6-A774-311C3F1EC0A6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2E7110CB-EAE5-4095-B5B8-51D0CFED446F}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe
FirewallRules: [{3A0D39CE-E71F-48EF-88B8-73D86429550E}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\LEGO Marvel Super Heroes\LEGOMARVEL.exe
FirewallRules: [UDP Query User{279FF7B6-6908-4B51-BB9A-0960F382EBFE}D:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe] => (Block) D:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe
FirewallRules: [TCP Query User{809ABFFC-161F-46B9-B61C-E3AE99E70426}D:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe] => (Block) D:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe
FirewallRules: [UDP Query User{50988113-2936-47F9-9F62-DA0366C35308}D:\programmes jeux\trine 3 the artifacts of power\trine3_32bit.exe] => (Block) D:\programmes jeux\trine 3 the artifacts of power\trine3_32bit.exe
FirewallRules: [TCP Query User{21C7554A-5F92-457B-ADA8-42C8A1A60BF1}D:\programmes jeux\trine 3 the artifacts of power\trine3_32bit.exe] => (Block) D:\programmes jeux\trine 3 the artifacts of power\trine3_32bit.exe
FirewallRules: [{5CA44107-FC69-4CCE-A0BE-98EF3C4572A8}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{B9E29D98-4993-4805-BABB-67B96D9F1D0B}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{4BDEA043-C6C5-4D5B-8A5A-3F0C041342C1}] => (Allow) LPort=48113
FirewallRules: [{C9693C13-F1CE-4591-98B8-34F9B2E254D1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{ADCCAB5B-8FA4-497A-99DA-FA6BB5482BD7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{83216020-C859-46E6-AEA2-A2ADC9FD6309}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0CD03CDF-CA13-48A1-BE0A-4E7092EC8BD6}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{B34F95FE-0F17-4F6A-95B5-D2425CF102C7}D:\programmes jeux\saints row iv\saintsrowiv.exe] => (Allow) D:\programmes jeux\saints row iv\saintsrowiv.exe
FirewallRules: [UDP Query User{4674E9AC-281D-431A-8A4D-E6EAF8DAF9BF}D:\programmes jeux\saints row iv\saintsrowiv.exe] => (Allow) D:\programmes jeux\saints row iv\saintsrowiv.exe
FirewallRules: [TCP Query User{E6DA4E82-5FA5-4DCB-8E12-B58A00E01F1A}D:\programmes jeux\saints row iv\saints row iv\saintsrowiv.exe] => (Allow) D:\programmes jeux\saints row iv\saints row iv\saintsrowiv.exe
FirewallRules: [UDP Query User{8782512C-7709-4988-86D9-E236431526AD}D:\programmes jeux\saints row iv\saints row iv\saintsrowiv.exe] => (Allow) D:\programmes jeux\saints row iv\saints row iv\saintsrowiv.exe
FirewallRules: [{44C36BCB-05CE-406D-BBB9-BE844701EEB9}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [{F625D30A-586C-49F8-BD9C-B827C0A816EF}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\GoatSimulator\Binaries\Win32\GoatGame-Win32-Shipping.exe
FirewallRules: [{5975B327-7AF3-4129-826E-E0576FC6CC4E}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{5D76ED5F-692B-43DC-B6D1-047D46C44D07}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{78FFF803-72F3-4F82-BDD2-27CFA75F8668}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\Piercing Blow\PiercingBlow.exe
FirewallRules: [{4EE49EF7-3108-4D84-8967-48DD95EF8CDD}] => (Allow) D:\programmes jeux\SteamLibrary\steamapps\common\Piercing Blow\PiercingBlow.exe
FirewallRules: [{8CEA1050-1DEA-4BFE-81AF-2F6F41DC0095}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{56CA5786-3240-4D83-9084-88FC01F5A23F}D:\romstation\games\pc\counter-strike 2d - 39815\counterstrike2d.exe] => (Allow) D:\romstation\games\pc\counter-strike 2d - 39815\counterstrike2d.exe
FirewallRules: [UDP Query User{0CDA1937-9375-45BF-AC76-9D4EB630C816}D:\romstation\games\pc\counter-strike 2d - 39815\counterstrike2d.exe] => (Allow) D:\romstation\games\pc\counter-strike 2d - 39815\counterstrike2d.exe
FirewallRules: [{660F1DE9-0AA7-4789-AC36-2B18A3F7D42C}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{722BABF2-6695-42B9-9828-A59AF3599FB0}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{5B58DA62-1552-4DFC-8BAD-07766C3F7B45}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe
FirewallRules: [{07B712EE-31C0-4DE8-BA76-8E345BC0BC14}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe
FirewallRules: [TCP Query User{204D98EC-9CAB-4B97-B686-C50EEB827E60}D:\programmes jeux\quantum break\dx11\quantumbreak.exe] => (Allow) D:\programmes jeux\quantum break\dx11\quantumbreak.exe
FirewallRules: [UDP Query User{8273C007-562B-45A1-B395-EEE38B6FAF26}D:\programmes jeux\quantum break\dx11\quantumbreak.exe] => (Allow) D:\programmes jeux\quantum break\dx11\quantumbreak.exe

==================== Points de restauration =========================

26-10-2016 18:15:18 Supprimé Prince of Persia The Forgotten Sands™

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (10/26/2016 07:22:51 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour de l’état  vers SECURITY_PRODUCT_STATE_OFF (erreur %3).

Error: (10/26/2016 07:22:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service AXtxj2195TiocFb4xd1f5w==._http._tcp.local. port 58082.

Error: (10/26/2016 07:20:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_Dnscache, version : 10.0.14393.0, horodatage : 0x57899b1c
Nom du module défaillant : ntdll.dll, version : 10.0.14393.206, horodatage : 0x57dac931
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000002f21b
ID du processus défaillant : 0x728
Heure de début de l’application défaillante : 0x01d22fad4a168f49
Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\svchost.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 5152c029-e898-4ca3-8213-9bda59d86d95
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (10/26/2016 07:19:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « d:\programmes jeux\steamlibrary\steamapps\common\thehunter\launcher\launcher.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_2d0f50fcbdb171b8.manifest.
Composant 2 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.0_none_74bc87d3d22d9abe.manifest.

Error: (10/26/2016 06:15:19 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.

System Error:
Accès refusé.
.

Error: (10/26/2016 06:07:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante bcastdvr.exe, version : 10.0.14393.187, horodatage : 0x57cf9d28
Nom du module défaillant : nvEncMFTH264.dll, version : 21.21.13.7306, horodatage : 0x57f005fb
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000003524
ID du processus défaillant : 0x2268
Heure de début de l’application défaillante : 0x01d22fa31003b4f1
Chemin d’accès de l’application défaillante : C:\Windows\System32\bcastdvr.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\nvEncMFTH264.dll
ID de rapport : 3464851f-d580-464f-bd7c-c75c75ab332b
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (10/26/2016 12:38:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante bcastdvr.exe, version : 10.0.14393.187, horodatage : 0x57cf9d28
Nom du module défaillant : nvEncMFTH264.dll, version : 21.21.13.7306, horodatage : 0x57f005fb
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000003524
ID du processus défaillant : 0x364
Heure de début de l’application défaillante : 0x01d22f75068c9e34
Chemin d’accès de l’application défaillante : C:\Windows\System32\bcastdvr.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\nvEncMFTH264.dll
ID de rapport : 30bcf441-7c05-4e0d-8d2c-c885417a042a
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (10/26/2016 12:32:34 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour de l’état  vers SECURITY_PRODUCT_STATE_OFF (erreur %3).

Error: (10/26/2016 12:32:33 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application registered 2 identical instances of service AXtxj2195TiocFb4xd1f5w==._http._tcp.local. port 58082.

Error: (10/26/2016 12:30:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_Dnscache, version : 10.0.14393.0, horodatage : 0x57899b1c
Nom du module défaillant : ntdll.dll, version : 10.0.14393.206, horodatage : 0x57dac931
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000002f21b
ID du processus défaillant : 0x714
Heure de début de l’application défaillante : 0x01d22f73f9e67992
Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\svchost.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 18e2cb50-85dd-4dd7-87cf-28da2a142801
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (10/26/2016 07:35:48 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 et l’APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/26/2016 07:22:49 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Client DNS, mais cette action a échoué en raison de l’erreur suivante : 
Une instance du service s’exécute déjà.

Error: (10/26/2016 07:21:49 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Services de chiffrement, mais cette action a échoué en raison de l’erreur suivante : 
Une instance du service s’exécute déjà.

Error: (10/26/2016 07:21:49 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Station de travail, mais cette action a échoué en raison de l’erreur suivante : 
Une instance du service s’exécute déjà.

Error: (10/26/2016 07:20:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Connaissance des emplacements réseau s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 100 millisecondes : Redémarrer le service.

Error: (10/26/2016 07:20:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Station de travail s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (10/26/2016 07:20:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Client DNS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (10/26/2016 07:20:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Services de chiffrement s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (10/26/2016 07:19:58 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\CHRIST~1\AppData\Local\Temp\catchme.sys

Error: (10/26/2016 07:19:58 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\CHRIST~1\AppData\Local\Temp\catchme.sys


CodeIntegrity:
===================================
  Date: 2016-10-26 19:19:58.410
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-26 19:19:58.410
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-26 19:19:58.133
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-26 19:19:58.133
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-26 19:19:57.867
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-26 19:19:57.867
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-25 19:06:40.073
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-25 19:06:40.072
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-25 19:06:39.787
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-25 19:06:39.787
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Christian\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-4690 CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 21%
Mémoire physique - RAM - totale: 16332.84 MB
Mémoire physique - RAM - disponible: 12871.04 MB
Mémoire virtuelle totale: 16532.84 MB
Mémoire virtuelle disponible: 12859.93 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:228.69 GB) (Free:109.09 GB) NTFS
Drive d: (disque dur) (Fixed) (Total:1863.01 GB) (Free:1499.75 GB) NTFS
Drive e: (  disque sauvegarde pc) (Fixed) (Total:931.51 GB) (Free:375.23 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: FCB5204B)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=228.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=9 GB) - (Type=84)
Partition 4: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3330E0E2)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0C38C90F)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================