Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 23-11-2016 Exécuté par admin (27-11-2016 15:04:01) Exécuté depuis C:\Users\admin\Downloads Windows 10 Home Version 1607 (X64) (2016-08-08 15:25:15) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= admin (S-1-5-21-688666504-630114199-3347291968-1006 - Administrator - Enabled) => C:\Users\admin Administrateur (S-1-5-21-688666504-630114199-3347291968-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-688666504-630114199-3347291968-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-688666504-630114199-3347291968-1004 - Limited - Enabled) Invité (S-1-5-21-688666504-630114199-3347291968-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) „Windows Live Essentials“ (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden µTorrent (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\uTorrent) (Version: 3.4.2.34944 - BitTorrent Inc.) Action! (HKLM-x32\...\Mirillis Action!) (Version: 1.31.3 - Mirillis) Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated) Amnesia: The Dark Descent (HKLM-x32\...\Steam App 57300) (Version: - Frictional Games) Ansel (Version: 372.70 - NVIDIA Corporation) Hidden Application Verifier x64 External Package (Version: 8.100.26936 - Microsoft) Hidden Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive) AutoUpdate (HKLM-x32\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - ) Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1208.0301 - Micro-Star International Co., Ltd.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts) Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts) BlueStacks App Player (HKLM-x32\...\{1AE65157-6E14-49AF-98DF-447927FBC142}) (Version: 0.7.9.844 - BlueStack Systems, Inc.) Brawlhalla (HKLM-x32\...\Steam App 291550) (Version: - Blue Mammoth Games) CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform) Charles 3.11.2 (HKLM\...\{9BAD0978-FA8B-44C5-A3E9-8447C9BA1CC7}) (Version: 3.11.2.3 - XK72 Ltd) Cheat Engine 6.5.1 (HKLM-x32\...\Cheat Engine 6.5.1_is1) (Version: - Cheat Engine) Chivalry: Medieval Warfare (HKLM\...\Steam App 219640) (Version: - Torn Banner Studios) CodeBlocks (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team) Comic Sounds (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Comic Sounds for MorphVOX (HKLM-x32\...\{6fa10c8b-9bbe-4103-9dd8-5747fedbd29b}) (Version: 4.4.41 - Screaming Bee Inc.) Contagion (HKLM-x32\...\Steam App 238430) (Version: - Monochrome, Inc) Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve) CpxRS02 Sync Service (HKLM-x32\...\{ECFA299F-E2EC-4C1C-914E-A6F6F187F5A6}) (Version: 2.0.1 - DJO LLC) CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd) DayZ (HKLM-x32\...\Steam App 221100) (Version: - Bohemia Interactive) Dead Rising 3 (HKLM-x32\...\Steam App 265550) (Version: - Capcom Game Studio Vancouver) Dead Space (HKLM-x32\...\{025A585C-0C66-413D-80D2-4C05CB699771}) (Version: 1.0.0.222 - Electronic Arts) Deep Space Voices (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Deep Space Voices for MorphVOX (HKLM-x32\...\{5fc690e1-05b9-4758-b0c0-881aab99435b}) (Version: 4.4.41 - Screaming Bee Inc.) Discord (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.) DivX Codec (HKLM-x32\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.6.1 - DivX, Inc.) DriversCloud.com (64 bits) (HKLM\...\{6DD6A506-6E23-4AEA-AE00-B32894D81CEE}) (Version: 8.0.1.0 - Cybelsoft) Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD) Fallout 3 (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks) Fantasy Sounds (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Fantasy Sounds for MorphVOX (HKLM-x32\...\{c854b2d2-4cca-4e53-81c3-1264f73c3a30}) (Version: 4.4.41 - Screaming Bee Inc.) Fantasy Voices (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Fantasy Voices for MorphVOX (HKLM-x32\...\{86aac4fd-4cd3-48c5-825b-325c34aa5008}) (Version: 4.4.41 - Screaming Bee Inc.) Fiddler Syntax-Highlighting Addons (HKLM-x32\...\FiddlerSyntaxAddons) (Version: - ) FileZilla Client 3.9.0.6 (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\FileZilla Client) (Version: 3.9.0.6 - Tim Kosse) Fotoattēlu galerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotogalerii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotogalerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Foto-galerija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotogalleri (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotogalleriet (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotoğraf Galerisi (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galeria de Fotografias (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galeria de Fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galerie foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galerija fotografija (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.) Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden HxD Hex Editor version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz) Hybrid Power (HKLM-x32\...\InstallShield_{C07F934A-3253-4740-86B8-22BA5F571E6E}) (Version: 1.0.1304.0301 - Micro-Star International Co., Ltd.) Hybrid Power (x32 Version: 1.0.1304.0301 - Micro-Star International Co., Ltd.) Hidden IDA Pro Free v5.0 (HKLM-x32\...\IDA Pro Free_is1) (Version: - Hex-Rays SA) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Just Cause 2 (HKLM-x32\...\Steam App 8190) (Version: - Avalanche Studios) Just Cause 2: Multiplayer Mod (HKLM-x32\...\Steam App 259080) (Version: - Avalanche Studios) KB9X Radio Switch Driver (HKLM\...\5AADE1068CF70DD983F763B20CF2CAAB72883915) (Version: 1.1.0.0 - ENE TECHNOLOGY INC.) Killer Bandwidth Control Filter Driver (Version: 1.1.57.1679 - Rivet Networks) Hidden Killer E220x Drivers (Version: 1.1.57.1679 - Rivet Networks) Hidden Killer Network Manager (Version: 1.1.57.1679 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{AC40EE4F-E248-42C8-BCBC-5883D3ECC82D}) (Version: 1.1.57.1679 - Rivet Networks) Killer Wireless-N Drivers (Version: 1.1.57.1679 - Rivet Networks) Hidden Kits Configuration Installer (x32 Version: 8.100.25984 - Microsoft) Hidden KLM (HKLM-x32\...\InstallShield_{4DEA5B85-6C56-45F3-AE00-FED756B0D3B4}) (Version: 1.0.1304.2201 - Micro-Star International Co., Ltd.) KLM (x32 Version: 1.0.1304.2201 - Micro-Star International Co., Ltd.) Hidden League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games) League of Legends (x32 Version: 4.1.2 - Riot Games) Hidden Left 4 Dead 2 (HKLM-x32\...\Steam App 550) (Version: - Valve) LIMBO (HKLM\...\Steam App 48000) (Version: - Playdead) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Mapwel 2013 (64-bit) (HKLM\...\Mapwel 2013 (64-bit)) (Version: Mapwel 2013 (64-bit) Build 11.0 - © BALARAD) METAL GEAR SOLID V: THE PHANTOM PAIN (HKLM\...\Steam App 287700) (Version: - Konami Digital Entertainment) Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{D1D37853-0004-3E36-A7AA-74F4EEA35F64}) (Version: 4.5.50930 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Mises à jour NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Modern War Sounds (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Modern War Sounds for MorphVOX (HKLM-x32\...\{41475ed8-6303-4a0a-b9ec-9cba01e8ccbd}) (Version: 4.4.41 - Screaming Bee Inc.) MorphVOX Pro (HKLM-x32\...\{4bfc0d50-0417-46a0-ab1e-475fb1a90916}) (Version: 4.4.17.22603 - Screaming Bee) MorphVOX Pro (x32 Version: 4.4.17.22603 - Screaming Bee) Hidden MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com) Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Mozilla Firefox 48.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 fr)) (Version: 48.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla) MSI Development Tools (x32 Version: 8.100.26898 - Microsoft Corporation) Hidden MSI Remind Manager (HKLM-x32\...\{7359585E-A828-4EFC-8177-7D1883DDA0B5}) (Version: 2.12.1003 - MSI) MSI Social Media Collection (HKLM-x32\...\{5EE31A9B-EA26-41EA-B4B6-73910C5E06DC}) (Version: 1.13.0123 - MSI) No Man's Sky (HKLM\...\Steam App 275850) (Version: - Hello Games) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.8.3 - Notepad++ Team) NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 372.70 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation) NVIDIA Pilote graphique 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation) Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - ) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 10.0.1.30272 - Electronic Arts, Inc.) Panneau de configuration NVIDIA 372.70 (Version: 372.70 - NVIDIA Corporation) Hidden PBO Manager v.1.4 beta (HKLM-x32\...\{0E3A79BF-E860-4371-8ABC-7AAEDD68DA0A}) (Version: 1.4.0 - ) PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 459430) (Version: - ) Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Raccolta foto (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.71 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.) RogueKiller version 11 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 11 - Adlice Software) Rust (HKLM-x32\...\Steam App 252490) (Version: - Facepunch Studios) Sci-Fi 2 Sounds (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Sci-Fi 2 Sounds for MorphVOX (HKLM-x32\...\{ee02abc7-7a69-42d6-8349-201de1be2258}) (Version: 4.4.41 - Screaming Bee Inc.) Sci-Fi Sounds (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Sci-Fi Sounds for MorphVOX (HKLM-x32\...\{47ae412e-a6a5-443e-a07b-9763e4bbd516}) (Version: 4.4.41 - Screaming Bee Inc.) Sci-Fi Voices (x32 Version: 4.4.41 - Screaming Bee Inc.) Hidden Sci-Fi Voices for MorphVOX (HKLM-x32\...\{ada560ea-12d7-4fd1-b0e3-79fa36b138c3}) (Version: 4.4.41 - Screaming Bee Inc.) SCM (HKLM\...\{5172DE8A-2640-474E-B89F-A04A90312A74}) (Version: 10.013.04183 - Application) SDK Debuggers (x32 Version: 8.100.26936 - Microsoft Corporation) Hidden Security Task Manager 2.1f (HKLM-x32\...\Security Task Manager) (Version: 2.1f - Neuber Software) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.) Sound Blaster Cinema (HKLM-x32\...\{8801CA65-921A-4CCC-9D63-879D1D0BAA97}) (Version: 1.00.01 - Creative Technology Limited) Space Engineers (HKLM-x32\...\Steam App 244850) (Version: - Keen Software House) Spore (HKLM\...\Steam App 17390) (Version: - Maxis™) Spore: Creepy & Cute Parts Pack (HKLM\...\Steam App 17440) (Version: - Maxis™) Spore: Galactic Adventures (HKLM\...\Steam App 24720) (Version: - EA - Maxis) Stealth Inc 2 (HKLM-x32\...\Steam App 329380) (Version: - Carbon) Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation) Stellaris (HKLM\...\Steam App 281990) (Version: - Paradox Development Studio) Streamline (HKLM\...\Steam App 252850) (Version: - Proletariat Inc.) Super-Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.017 - MSI) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated) System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC) System Requirements Lab Detection (HKLM-x32\...\{193F000C-9E25-452A-ADB5-29624AC3BA62}) (Version: 2.0.0.0 - Husdawg, LLC) System Requirements Lab for Intel (HKLM-x32\...\{04C4B49D-45D9-4A28-9ED1-B45CBD99B8C7}) (Version: 4.5.24.0 - Husdawg, LLC) Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version: - Valve) TeamSpeak 3 Client (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) Telerik Fiddler (HKLM-x32\...\Fiddler2) (Version: 4.6.3.44034 - Telerik) The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios) Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.2 - Tunngle.net GmbH) Unity Web Player (HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\UnityWebPlayer) (Version: 4.5.4f1 - Unity Technologies ApS) Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.0f2 - Unity Technologies ApS) Valokuvavalikoima (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.) Warframe (HKLM-x32\...\Steam App 230410) (Version: - Digital Extremes) Wargame: Red Dragon (HKLM-x32\...\Steam App 251060) (Version: - Eugen Systems) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation) Windows Software Development Kit for Windows 8.1 (HKLM-x32\...\{ed3a6e6d-9661-4357-abe4-fcc03dc57a07}) (Version: 8.100.26936 - Microsoft Corporation) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) Wireshark 2.0.3 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.3 - The Wireshark developer community, hxxps://www.wireshark.org) World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment) WPT Redistributables (x32 Version: 8.100.26936 - Microsoft) Hidden WPTx64 (x32 Version: 8.100.26936 - Microsoft) Hidden Xfire 2.0 (HKLM-x32\...\{43ADAE00-A4ED-4379-A76D-A1FF5D9D334A}_is1) (Version: 2.0 - Xfire, Inc.) Xfire Codec (remove only) (HKLM-x32\...\XfireCodec) (Version: - ) XSplit Broadcaster (HKLM-x32\...\{FAE9B826-2BD1-4D4E-9FEF-E7036F1305FF}) (Version: 2.7.1512.2130 - SplitmediaLabs) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) Συλλογή φωτογραφιών (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Основи Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Фотоальбом (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Фотогалерия (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Фотографии (общедоступная версия) (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Фотоколекція (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden גלריית התמונות (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-688666504-630114199-3347291968-1006_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-688666504-630114199-3347291968-1006_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-688666504-630114199-3347291968-1006_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-688666504-630114199-3347291968-1006_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-688666504-630114199-3347291968-1006_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-688666504-630114199-3347291968-1006_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {07C890F9-B6FB-41D4-A15D-F8F0B419C125} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {0EC8615E-EDBD-44C0-8D26-45FF072A4FF2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {166722D5-D7A2-4DAA-AEF4-669539F2FCE9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.) Task: {1A24F9B9-039B-49E1-9406-4A9CEAA65635} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {2825BBD9-2CBD-480A-AB03-616A478AA718} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe Task: {2BD7DD3B-F103-4C10-B13B-35EED6F07B47} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {2C33DBD0-CE6E-40A9-B9EB-51F544A80E61} - System32\Tasks\Norton Anti-Theft\Norton Error Processor => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {53E8EE31-EBE6-413B-BC48-379771635DF8} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {5C5FF3E7-3E0D-4185-9839-A4279DC2626B} - System32\Tasks\{154859CD-6382-47FA-9AAD-CD1B28754DBB} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{DF446558-ADF7-4884-9B2D-281979CCE71F}\setup.exe" -c -runfromtemp -l0x0409 -removeonly Task: {7F5D8CD9-68B5-4163-BE86-5817D0C3F14A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {7F9AC121-49A7-479A-A76B-52811AA6AB99} - System32\Tasks\{6B6842F9-137E-427E-A370-D93DFE18E721} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=enGB --uid=battle.net "--displayname=Battle.net" Task: {8A4C8BA0-1940-41DD-BE8C-C7FECABE22FA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {8E93D7E5-C757-4D4B-9982-27086967B1DB} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {907A526F-C388-4292-ADFB-B0108C6391FD} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation) Task: {90D65E1C-59FD-41C5-BABB-8989C986503A} - System32\Tasks\Norton Anti-Theft\Norton Error Analyzer => C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\SymErr.exe Task: {99A64759-71B7-42CB-B40B-8E6FABADE23A} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {9FE51DEB-9851-4327-BB10-53A50C2F868C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {BB3E76C6-4304-4A5C-AF7D-60E2555B46AF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd) Task: {C99B17ED-E7C5-437C-9173-A328AE7641FE} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated) Task: {D46A137C-9A74-40E2-AD1E-75874B2B88A1} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-cod58@live.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe Task: {D53E3A33-C06B-463C-8CE2-F4260EFF94C4} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {D87B21D1-3DDD-4111-B216-EB347CBFCC07} - System32\Tasks\{E734B2F7-1CC7-4E6B-B60B-F3FE9D2072CD} => pcalua.exe -a "E:\Program Files (x86)\osm2garmin_1.2\uninstall.exe" Task: {DC912261-8B38-472B-A1ED-8EACF6881E52} - System32\Tasks\{6A5D6A5F-FBEA-4255-85FA-CF55DD40CEF2} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.20.0.104/fr/abandoninstall?page=tsProgressBar Task: {F343FC71-318B-48A0-BB63-CEDF82E08971} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {F6F8854D-333A-499A-83FB-14E9695648CF} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2016-10-15 22:30 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-08-08 16:16 - 2016-08-25 22:12 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-03-08 20:34 - 2016-06-14 21:03 - 00367552 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll 2015-12-21 16:01 - 2016-06-14 21:03 - 00288192 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll 2016-03-08 20:34 - 2016-06-14 21:03 - 03611584 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll 2016-04-26 14:27 - 2016-06-14 21:03 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll 2014-06-01 07:19 - 2014-12-18 21:51 - 00076152 _____ () C:\WINDOWS\SysWoW64\PnkBstrA.exe 2016-04-26 14:27 - 2016-06-14 21:03 - 02665920 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll 2016-04-26 14:27 - 2016-06-14 21:03 - 01988544 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll 2016-04-26 14:27 - 2016-06-14 21:03 - 01840576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll 2016-01-27 21:09 - 2016-06-14 21:03 - 00207296 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll 2016-10-15 22:30 - 2016-09-15 18:25 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll 2016-08-26 13:15 - 2016-08-26 13:15 - 01864384 _____ () C:\Users\admin\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll 2014-05-01 20:29 - 2014-05-01 20:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll 2016-07-16 12:42 - 2016-07-16 12:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll 2015-04-15 21:13 - 2015-04-15 21:13 - 00222720 _____ () E:\Notepad++\NppShell_06.dll 2016-04-26 14:27 - 2016-06-14 21:03 - 00034240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll 2016-04-26 14:27 - 2016-06-14 21:03 - 00920000 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll 2016-09-24 20:45 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2016-10-15 22:30 - 2016-10-05 10:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2016-10-15 22:29 - 2016-10-05 10:21 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-10-15 22:29 - 2016-10-05 10:13 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-10-15 22:29 - 2016-10-05 10:13 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2016-10-15 22:29 - 2016-10-05 10:13 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll 2016-10-15 22:29 - 2016-10-05 10:13 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-10-15 22:29 - 2016-10-05 10:14 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2016-11-26 19:30 - 2016-11-26 19:31 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2016-11-26 19:30 - 2016-11-26 19:31 - 00178688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2016-11-26 19:30 - 2016-11-26 19:31 - 41609728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.261.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2013-05-07 01:57 - 2012-11-01 19:21 - 00325120 _____ () C:\Windows\SYSTEM32\APOMgr64.DLL 2016-11-15 21:49 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll 2016-11-15 21:49 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\ma-config.com -> hxxp://ma-config.com IE trusted site: HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\ma-config.com -> hxxps://ma-config.com IE trusted site: HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\touslesdrivers.com -> hxxp://touslesdrivers.com ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 14:25 - 2013-12-12 18:19 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-688666504-630114199-3347291968-1006\Control Panel\Desktop\\Wallpaper -> C:\Users\admin\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{0e3e3c25-a738-44f7-a8ad-8557062f7559}.jpeg DNS Servers: 192.168.43.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == HKLM\...\StartupApproved\StartupFolder: => "Qualcomm Atheros Killer Network Manager.lnk" HKLM\...\StartupApproved\Run: => "Nvtmru" HKLM\...\StartupApproved\Run: => "EvtMgr6" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\StartupApproved\Run: => "DAEMON Tools Lite" HKU\S-1-5-21-688666504-630114199-3347291968-1006\...\StartupApproved\Run: => "1" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{F59798F0-53E6-47AA-B028-02A36BA5BD4E}] => (Allow) E:\Steam\SteamApps\common\Stellaris\stellaris.exe FirewallRules: [{E59D4069-36BA-4779-B2DA-3C0FBDA8A7CF}] => (Allow) E:\Steam\SteamApps\common\Stellaris\stellaris.exe FirewallRules: [{97E5F62A-9812-4F2B-99D5-42D409B6CD00}] => (Allow) E:\Steam\SteamApps\common\Limbo\limbo.exe FirewallRules: [{5AA39923-B78B-4A7C-B761-F03DB893B1B3}] => (Allow) E:\Steam\SteamApps\common\Limbo\limbo.exe FirewallRules: [UDP Query User{1ADEC4E6-A618-4FDC-AE00-E57FA6E84F0A}E:\cheat engine 6.5.1\cheatengine-x86_64.exe] => (Block) E:\cheat engine 6.5.1\cheatengine-x86_64.exe FirewallRules: [TCP Query User{4B53BC42-A837-4E9B-975D-EE294AD8FDC1}E:\cheat engine 6.5.1\cheatengine-x86_64.exe] => (Block) E:\cheat engine 6.5.1\cheatengine-x86_64.exe FirewallRules: [{8461D6C4-EEB2-4A9D-906B-C0B827E4F03B}] => (Allow) E:\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe FirewallRules: [{ADD5E80F-712B-4E04-A495-A3D3256AA0E1}] => (Allow) E:\Steam\SteamApps\common\chivalrymedievalwarfare\ChivLauncher.exe FirewallRules: [{826F5E9B-4C18-4EBF-9E4A-80EEB22157E3}] => (Allow) E:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe FirewallRules: [{C6514B7F-D1FC-4CBC-B9E0-BC974B474C14}] => (Allow) E:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe FirewallRules: [{490F5358-C62F-4F9B-970C-ED591FF1417B}] => (Allow) E:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe FirewallRules: [{A67DFDC5-9B7B-4B61-9EDE-00C32D6B6E26}] => (Allow) E:\Steam\SteamApps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe FirewallRules: [{DFEB581F-D318-42A9-87D8-CA185B0F3130}] => (Allow) E:\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe FirewallRules: [{A2A07A38-D3E6-4679-869B-F8CE70D4BD2B}] => (Allow) E:\Steam\SteamApps\common\MGS_TPP\mgsvtpp.exe FirewallRules: [UDP Query User{D6FAE743-79BE-4828-9564-DDEBD093C574}E:\call of duty 4 multiplayer\iw3mp.exe] => (Allow) E:\call of duty 4 multiplayer\iw3mp.exe FirewallRules: [TCP Query User{8B8ECA37-AF46-499E-836F-3FFE1C79C3A1}E:\call of duty 4 multiplayer\iw3mp.exe] => (Allow) E:\call of duty 4 multiplayer\iw3mp.exe FirewallRules: [{C6D85874-B459-4B88-90ED-9FD459899865}] => (Block) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [{7A52C2C6-27CD-41EE-BA4A-D8BFE2DC79A4}] => (Block) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{9300502E-241E-4513-B16D-0DB84E07BC2C}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [TCP Query User{FA79DA22-D87C-4DF5-B33E-E0111583C711}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{CEA4ACF0-13A5-4EA1-A933-4E8D786D6363}E:\origin games\dead space\dead space.exe] => (Allow) E:\origin games\dead space\dead space.exe FirewallRules: [TCP Query User{79598FA2-572D-4767-A6B0-62A414703FD6}E:\origin games\dead space\dead space.exe] => (Allow) E:\origin games\dead space\dead space.exe FirewallRules: [UDP Query User{E00C3080-4BF6-484A-8A12-E49FE0A58AC8}E:\origin games\battlefield 4\bf4.exe] => (Allow) E:\origin games\battlefield 4\bf4.exe FirewallRules: [TCP Query User{60FE5AFA-3612-4509-836E-B549F0379069}E:\origin games\battlefield 4\bf4.exe] => (Allow) E:\origin games\battlefield 4\bf4.exe FirewallRules: [{36C70BE2-9AD4-40EE-B1C6-A1BB9C5936B3}] => (Allow) E:\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{BCF7918A-16E6-4E19-8C7A-27242EBE8976}] => (Allow) E:\Origin Games\Battlefield 4\BF4X86WebHelper.exe FirewallRules: [{CAB2139D-942D-42B9-93E8-6CF3D473E30B}] => (Allow) E:\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{A00BB85F-48E4-4FA7-9BE9-8A258BC1B084}] => (Allow) E:\Origin Games\Battlefield 4\BF4WebHelper.exe FirewallRules: [{B0FA2238-74B9-4AB9-BE72-27FA1520A4A5}] => (Allow) E:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [{CF1D7BCB-432C-4CCC-B4FC-41FBACA0780B}] => (Allow) E:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe FirewallRules: [UDP Query User{725CAC8C-00FA-4B93-B081-924773CE4410}E:\charles\charles.exe] => (Allow) E:\charles\charles.exe FirewallRules: [TCP Query User{03C69B98-C247-4AF2-8269-116D12EB821F}E:\charles\charles.exe] => (Allow) E:\charles\charles.exe FirewallRules: [{0CD6327F-C2AA-455A-8169-5572A03A2FB4}] => (Allow) E:\Steam\SteamApps\common\Rust\Rust.exe FirewallRules: [{4CFCB648-2F4C-496F-BEA3-323D0755D17F}] => (Allow) E:\Steam\SteamApps\common\Rust\Rust.exe FirewallRules: [{DCE982FA-A8BB-48CA-85E4-4E6F40E170FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9BC7EF8A-0D8F-4767-9564-9918E4AAD54C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{77E673AC-9EBC-4D32-A1C4-894DB56F7701}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{1A8EEFD9-EE2A-4AFD-BF82-092A69CE8799}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{7749EBBB-4454-406E-B53D-4DC459D55A3B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{3EA78A0A-D8CC-4B0B-B93A-11834883B84E}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{48B9A71F-4542-47EC-A889-B3E5A98AAD60}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{FF8311D5-4A71-478A-AB45-96F776F7EE85}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{289241DC-3C5B-4003-AAE7-96133154B86B}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{64BF9898-DFC0-4E07-8FE7-ECD84911CC9F}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{6F40E4D9-C55E-48D1-B446-135BA97372C5}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{0E5F1917-F98B-4AFA-BEAD-B84D391FB050}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\RemoteCrashSender.exe FirewallRules: [{A7B89A49-7CC6-4688-B4CF-AC0F54D4B8BE}] => (Allow) E:\Steam\steamapps\common\Warframe\Tools\Launcher.exe FirewallRules: [{3DF11EF1-D6B5-40E2-8201-A7398FA8D59D}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{288FB994-11AF-424C-84E3-9CC0694AAFA8}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{FC353422-226D-4E5F-9CE1-0B18F2ADBD5A}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.x64.exe FirewallRules: [{03CBAD21-B55A-40AA-8657-2470B121A1FF}] => (Allow) E:\Steam\steamapps\common\Warframe\Warframe.exe FirewallRules: [{9B588B70-EBB9-4E28-BC88-32E9703411B2}] => (Allow) E:\Origin Games\Dead Space\Dead Space.exe FirewallRules: [{0C065B9C-6A6D-4F8C-BCF0-B74CE499BD89}] => (Allow) E:\Origin Games\Dead Space\Dead Space.exe FirewallRules: [{E8D79945-B5E6-4ED8-ABC3-3B87DEF6EEFE}] => (Allow) E:\Origin Games\Battlefield 4\bf4.exe FirewallRules: [{F952BBF3-C161-4E64-ABF5-D9FBBF6789DB}] => (Allow) E:\Origin Games\Battlefield 4\bf4.exe FirewallRules: [{4B767CFF-EEF0-4697-BFF8-17836157A62C}] => (Allow) E:\Origin Games\Battlefield 4\bf4_x86.exe FirewallRules: [{B098BA7A-80EE-4F01-B070-FE7510EC1CC4}] => (Allow) E:\Origin Games\Battlefield 4\bf4_x86.exe FirewallRules: [UDP Query User{134CB0FE-8842-4E67-9AC5-7515BB26FEAA}E:\steam\steamapps\common\rust\rustclient.exe] => (Allow) E:\steam\steamapps\common\rust\rustclient.exe FirewallRules: [TCP Query User{8A2CFD9B-A6B8-47D6-A8C6-B48B4C5778A1}E:\steam\steamapps\common\rust\rustclient.exe] => (Allow) E:\steam\steamapps\common\rust\rustclient.exe FirewallRules: [{7404882C-EA73-450B-9411-C4EB031A0664}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{630DD640-38F1-420E-817A-36492C6EFD07}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{71AC3361-182F-4F64-B3EC-9505F007CC66}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{64289233-9318-4C40-A417-382030622C5B}] => (Allow) C:\Program Files (x86)\Tunngle\Tunngle.exe FirewallRules: [{F589E803-C2CE-42D5-9308-AA05E29ED936}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{C5D6F45C-2A85-472D-BEA5-243463696C76}] => (Allow) C:\Program Files (x86)\Tunngle\TnglCtrl.exe FirewallRules: [{704377A6-D236-4E63-8432-081990BFFD47}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{38E3AD60-F76C-47E3-9784-BC1EFEF554BA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [UDP Query User{1896005E-E7DC-49AB-942F-4CC69CC5F606}E:\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\steam\steamapps\common\arma 3\arma3server.exe FirewallRules: [TCP Query User{ABE607EA-0FAC-4AE0-A598-3B3354234A71}E:\steam\steamapps\common\arma 3\arma3server.exe] => (Allow) E:\steam\steamapps\common\arma 3\arma3server.exe FirewallRules: [{DB43B76D-9403-41FB-A986-8753E9A88CE8}] => (Allow) E:\Steam\SteamApps\common\Contagion\contagionds.exe FirewallRules: [{C37F6C46-3A02-40FF-BD60-265B1CF02B23}] => (Allow) E:\Steam\SteamApps\common\Contagion\contagionds.exe FirewallRules: [{F0C00971-256A-44A2-8309-8368336F10CD}] => (Allow) E:\Steam\SteamApps\common\Contagion\contagion.exe FirewallRules: [{DB5FB97D-5900-4ED2-953B-B5C320888A65}] => (Allow) E:\Steam\SteamApps\common\Contagion\contagion.exe FirewallRules: [{5E47D7DD-CA6E-467E-B9C5-D7AEF0EB5407}] => (Allow) E:\Steam\SteamApps\common\Wargame Red Dragon\WarGame3.exe FirewallRules: [{24577CDA-0AA9-48C8-A5EA-2B91E8DBC3C2}] => (Allow) E:\Steam\SteamApps\common\Wargame Red Dragon\WarGame3.exe FirewallRules: [{38FFF98F-1FEA-42E3-B594-12A5149733AC}] => (Allow) E:\Steam\SteamApps\common\SpaceEngineers\Bin64\SpaceEngineers.exe FirewallRules: [{29404EAF-D261-4157-A764-F1DF882A3A02}] => (Allow) E:\Steam\SteamApps\common\SpaceEngineers\Bin64\SpaceEngineers.exe FirewallRules: [{77FA7E69-CD58-48F1-848A-BAE4BD510044}] => (Allow) E:\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe FirewallRules: [{1C1E781A-095F-4D33-95BA-D591D7511F89}] => (Allow) E:\Steam\SteamApps\common\Just Cause 2 - Multiplayer Mod\JcmpLauncher.exe FirewallRules: [{9FCB16FF-654B-4305-B366-6F23894FB299}] => (Allow) E:\Steam\SteamApps\common\Just Cause 2\JustCause2.exe FirewallRules: [{472F9940-7EA7-4F4E-8CC0-0F0641EEDFCE}] => (Allow) E:\Steam\SteamApps\common\Just Cause 2\JustCause2.exe FirewallRules: [{35824FB9-4FB8-4358-BD75-5D4834CD2DAC}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{898AA251-D443-46FE-938A-B14AC9FCEED7}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{EE7BDF1E-9FF7-41FB-9FED-718693719C6C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{2821FCD7-E20B-4A85-94B7-D5707C34FE56}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{934CEBAD-C006-4C43-B047-0AE00357F279}] => (Allow) E:\Steam\SteamApps\common\DayZ\DayZ_BE.exe FirewallRules: [{05A285C7-EE73-4905-B7AA-C05FE461192A}] => (Allow) E:\Steam\SteamApps\common\DayZ\DayZ_BE.exe FirewallRules: [{02495398-5FF7-477A-A004-E6E5B86DBB67}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{96C452D0-95D6-4750-8A6F-7915911FAA96}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{5D3CEDEB-54EF-4E74-B3EE-8B08741F8E58}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{81F36376-76E6-4FFF-86D9-D2DF90BB897D}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{D20BE692-0FAC-46E5-BFC8-C6739F1F3BD4}] => (Allow) E:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{909A743D-B840-4AA6-9DDF-254289B01F95}] => (Allow) E:\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe FirewallRules: [{994A2829-09B8-4FF4-915C-0091EE7652D5}] => (Allow) E:\Steam\SteamApps\common\deadrising3\deadrising3.exe FirewallRules: [{5554B3B0-218F-410B-94E9-E3359FA10FFF}] => (Allow) E:\Steam\SteamApps\common\deadrising3\deadrising3.exe FirewallRules: [{ADB21C7B-A97A-48B1-805C-EDE2EC9DB02B}] => (Allow) E:\Steam\SteamApps\common\Arma 3\arma3launcher.exe FirewallRules: [{325F4D6B-C9F5-4699-9851-6A032DD5EFAA}] => (Allow) E:\Steam\SteamApps\common\Arma 3\arma3launcher.exe FirewallRules: [{15CF9529-B33A-462B-8260-E07536FA7A57}] => (Allow) E:\Steam\SteamApps\common\Arma 3\arma3.exe FirewallRules: [{5CE0C4DC-CF3B-456E-9CB2-25149B7A38BD}] => (Allow) E:\Steam\SteamApps\common\Arma 3\arma3.exe FirewallRules: [UDP Query User{C053010D-F9FE-435A-8C58-F2711C0AF649}E:\call of duty 4 multiplayer\iw3mp.exe] => (Allow) E:\call of duty 4 multiplayer\iw3mp.exe FirewallRules: [TCP Query User{EC655358-DFE7-4097-B032-B47244DD8D1D}E:\call of duty 4 multiplayer\iw3mp.exe] => (Allow) E:\call of duty 4 multiplayer\iw3mp.exe FirewallRules: [UDP Query User{CA7096E0-92B8-4CB4-BF85-A5EA91A11E2D}E:\xfire2\xfire.exe] => (Allow) E:\xfire2\xfire.exe FirewallRules: [TCP Query User{70C7335A-E6F3-4CDD-A03C-4F06DC4999F3}E:\xfire2\xfire.exe] => (Allow) E:\xfire2\xfire.exe FirewallRules: [{B9A997A7-3BC1-4F06-9BBB-A7526E7BA6E8}] => (Allow) E:\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{F627B00C-AF59-454B-9AEA-8602C6E89881}] => (Allow) E:\Origin Games\Battlefield 3\bf3.exe FirewallRules: [{0642571B-A3FA-4BD9-AD4C-1AA776A420DA}] => (Allow) E:\Steam\SteamApps\common\GarrysMod\hl2.exe FirewallRules: [{87A8E2F0-64B8-4AEC-A23B-E71081D81E90}] => (Allow) E:\Steam\SteamApps\common\GarrysMod\hl2.exe FirewallRules: [{263BB6C8-4F10-493E-A648-C73F0D35BB63}] => (Allow) E:\Steam\SteamApps\common\Team Fortress 2\hl2.exe FirewallRules: [{C675F6C9-419C-41BB-98D0-510DD49216F4}] => (Allow) E:\Steam\SteamApps\common\Team Fortress 2\hl2.exe FirewallRules: [UDP Query User{D20CA379-3042-4E6D-8E2F-C4C1819AF551}E:\arma 2\arma2oaserver.exe] => (Allow) E:\arma 2\arma2oaserver.exe FirewallRules: [TCP Query User{3F949A48-7BB3-40CF-BE5B-7610C5FC5E4F}E:\arma 2\arma2oaserver.exe] => (Allow) E:\arma 2\arma2oaserver.exe FirewallRules: [UDP Query User{33722A0F-1F0A-411B-B899-CC09035FE0AB}E:\arma 2\expansion\beta\arma2oaserver.exe] => (Allow) E:\arma 2\expansion\beta\arma2oaserver.exe FirewallRules: [TCP Query User{7119CD0D-8282-4764-AC1B-F7EE6592169F}E:\arma 2\expansion\beta\arma2oaserver.exe] => (Allow) E:\arma 2\expansion\beta\arma2oaserver.exe FirewallRules: [UDP Query User{C6100059-14AD-44C1-A257-A97BE4AA756B}E:\arma 2\xampp\mysql\bin\mysqld.exe] => (Allow) E:\arma 2\xampp\mysql\bin\mysqld.exe FirewallRules: [TCP Query User{957ECC07-561C-4A59-AA9C-C87E0857FCD3}E:\arma 2\xampp\mysql\bin\mysqld.exe] => (Allow) E:\arma 2\xampp\mysql\bin\mysqld.exe FirewallRules: [UDP Query User{999A0977-29D0-4A2B-B814-F39E2D7352F5}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{AA136CA5-69BF-4EB9-8415-1B82DB0AD468}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{0114705B-16E0-402A-B1F8-101A9185F10B}] => (Allow) E:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{83BD1333-F1C1-4AEE-B7BE-386B4E50B278}] => (Allow) E:\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe FirewallRules: [{DA812734-0E82-40F9-A671-B874BC0891CC}] => (Allow) E:\Steam\SteamApps\common\DayZ\DayZ.exe FirewallRules: [{1EC4F466-A0E2-4A2E-AE5F-933B4E10FCBC}] => (Allow) E:\Steam\SteamApps\common\DayZ\DayZ.exe FirewallRules: [{7295D41A-B680-42CA-965D-8B022E91FB2B}] => (Allow) C:\Program Files (x86)\ManyCam\ManyCam.exe FirewallRules: [{1C936548-877D-4E47-B5D2-AC36E7B58B63}] => (Allow) C:\Program Files (x86)\ManyCam\ManyCam.exe FirewallRules: [UDP Query User{57E8633F-7E31-42C5-9A8B-3E9E3CAEE18E}E:\arma 2\expansion\beta\arma2oa.exe] => (Allow) E:\arma 2\expansion\beta\arma2oa.exe FirewallRules: [TCP Query User{50F74A98-B8B2-41AB-AB34-011DB069D135}E:\arma 2\expansion\beta\arma2oa.exe] => (Allow) E:\arma 2\expansion\beta\arma2oa.exe FirewallRules: [{4850B9D2-0731-4911-B5E4-712BA95C41DD}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{2A94EA7E-5B1E-4A62-8530-9EC62F121C4E}] => (Allow) E:\Steam\Steam.exe FirewallRules: [{380EFCE1-3A72-4D14-B3C7-EF27EB916800}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{7567B761-9269-4407-8648-6BC7B7220FF1}] => (Allow) C:\Users\admin\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{73DACE86-23B8-4288-944C-D3A93FC96383}] => (Allow) LPort=48114 FirewallRules: [{A1F5FA3A-7981-4B41-BE12-56B207AAC9F6}] => (Allow) LPort=48113 FirewallRules: [{DFC72D1A-FBFA-4D13-A7C2-88B0A052B4D5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{8EB4ABCE-5C75-4755-9696-AC9560B5A57C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe FirewallRules: [{ACDD03A4-DE8C-4ADB-A593-C06D9D1075B3}] => (Allow) LPort=2869 FirewallRules: [{7E2A1FB2-3A97-46C0-A481-692241FDE678}] => (Allow) LPort=1900 FirewallRules: [{535A0696-751D-48D2-BEE9-9B3C2643C4CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe FirewallRules: [{EFD0ECE0-A0F5-4772-BE0C-7623D4433752}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe FirewallRules: [{0B8019B5-4A6B-45A6-ADF6-495C251E7923}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe FirewallRules: [{77264794-FB11-42CB-B88C-60E0FEFD3C4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2514\Agent.exe FirewallRules: [{F73C0B14-0437-4A60-AA6E-EECABABB48CC}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{8B34A9F0-ECD9-4538-A3B4-716B026E3917}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{0AD8789E-D955-49CF-8B59-93F80AD02848}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{7DC04BB0-7344-45ED-B194-17D2F4E110C3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{9526FDB2-C2FF-4CAE-A94A-100218AAE4FB}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{5F8C8330-D9F7-440E-A64D-9867D09885AF}] => (Allow) LPort=2869 FirewallRules: [{15C402AA-B342-4FC0-AE32-4459FE86065D}] => (Allow) LPort=1900 FirewallRules: [{7887AE3B-AE1B-499E-AA5E-BF6EBF9C3CE0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{7A1858EE-974A-4412-9282-0A8D1A777AE7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{CD17537B-ECCE-41C4-8C31-8FFCC1E75DC9}] => (Allow) LPort=48113 FirewallRules: [{CDD3DD18-F4A0-43E7-A475-A7047E564281}] => (Allow) LPort=48114 FirewallRules: [{40E3A697-CEF0-46E5-A92B-11B72855C17F}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{D1E9806F-E592-4AB9-A7DF-A14172257587}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{3E51689D-864F-4B99-9B41-8C49C654AF34}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{2E17F43A-521A-40D4-BF1C-03EF2D0F4027}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{73A09C1A-7DCE-4444-B933-1E76ACB249CD}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{B544B5E0-4A7B-486B-B370-AB135461D0F0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{66D3910F-5CFD-4513-B7B8-89075AE7CA7E}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe FirewallRules: [{DB14F0A8-B21A-4434-A910-9AD1E50B8EFA}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe FirewallRules: [{D4B23848-037E-4A4E-B9D4-C716DDD76E03}] => (Allow) E:\Steam\SteamApps\common\Stealth Inc 2\settings\settings.exe FirewallRules: [{D7961438-9E96-48D8-9D28-AE8F994AEFEF}] => (Allow) E:\Steam\SteamApps\common\Stealth Inc 2\settings\settings.exe FirewallRules: [{C9764F8B-280B-47F4-B6C6-7E506D602795}] => (Allow) E:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{F7E21F95-4F43-42C0-ADED-4A1C88D5BA39}] => (Allow) E:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{E39279A1-CEFD-421D-93FA-70757CE82185}] => (Allow) E:\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe FirewallRules: [{33BE8A55-85E8-45C1-AF49-39ED6BE48F3B}] => (Allow) E:\Steam\SteamApps\common\Amnesia The Dark Descent\Amnesia.exe FirewallRules: [{27A04211-2D5E-4818-9E01-A78C24897629}] => (Allow) E:\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe FirewallRules: [{3A49F9FA-74A3-4A87-92E7-A2ED899FB34D}] => (Allow) E:\Steam\SteamApps\common\Amnesia The Dark Descent\Launcher.exe FirewallRules: [TCP Query User{4A6A83BD-AB94-498F-B7FE-7C709C0A6981}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{967745F2-73DE-4C7B-907E-6B2DEFA2631F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{C572D130-07A3-46E7-A4FA-6D97FA58EB02}] => (Allow) E:\Steam\SteamApps\common\No Man's Sky\Binaries\NMS.exe FirewallRules: [{AAC50A60-5B42-4E6F-BEB7-2D8360D7FEE6}] => (Allow) E:\Steam\SteamApps\common\No Man's Sky\Binaries\NMS.exe FirewallRules: [{2EFAA278-CF5F-48C5-803D-F3C829B698BF}] => (Allow) E:\Steam\SteamApps\common\Spore\SporeBin\SporeApp.exe FirewallRules: [{E4FB7610-9D90-49E7-AF70-139F62B50334}] => (Allow) E:\Steam\SteamApps\common\Spore\SporeBin\SporeApp.exe FirewallRules: [{225D747D-5C00-42D1-AABD-5CDDF0847872}] => (Allow) E:\Steam\SteamApps\common\Spore\SporebinEP1\SporeApp.exe FirewallRules: [{B203CECB-8F3F-4F19-9A94-6FC0599D68D7}] => (Allow) E:\Steam\SteamApps\common\Spore\SporebinEP1\SporeApp.exe FirewallRules: [{9B3ACB03-A10D-4D52-80C8-F8A86A1A16C7}] => (Allow) E:\Steam\SteamApps\common\Spore\runme.exe FirewallRules: [{EBE7C4F6-D3A5-471C-8B2F-DE68783BE64A}] => (Allow) E:\Steam\SteamApps\common\Spore\runme.exe FirewallRules: [{5442985D-9392-4E55-9DA9-3CAF123F9993}] => (Allow) E:\Fiddler2\Fiddler.exe FirewallRules: [{DE13EBD1-16DB-469B-B837-05EB76836877}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Intel(R) Active Management Technology - SOL (COM3) Description: Intel(R) Active Management Technology - SOL Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Service: Serial Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (11/26/2016 08:57:15 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamNetworkService.exe, version : 7.1.2084.9592, horodatage : 0x57605ac0 Nom du module défaillant : NvMdnsPlugin.dll_unloaded, version : 0.0.0.0, horodatage : 0x57605fbb Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000d45a0 ID du processus défaillant : 0x1238 Heure de début de l’application défaillante : 0x01d245c374e1b407 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe Chemin d’accès du module défaillant: NvMdnsPlugin.dll ID de rapport : 9ba23f8e-575d-474b-822f-1628d733236c Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/26/2016 07:12:58 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (11/24/2016 05:45:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.206, horodatage : 0x57dac931 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000003061d ID du processus défaillant : 0x2928 Heure de début de l’application défaillante : 0x01d246722eef8d83 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 9be32d05-7e82-4e31-961c-ba7df2c702bb Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/24/2016 05:45:28 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.206, horodatage : 0x57dac931 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000003061d ID du processus défaillant : 0x1548 Heure de début de l’application défaillante : 0x01d24672296827a8 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 315190e3-8a9d-4d8a-b0d2-110b50ccf4ba Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/23/2016 05:35:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Échec de l’extraction de la liste racine tierce depuis le fichier CAB de mise à jour automatique à : avec l’erreur : Données non valides. . Error: (11/23/2016 05:35:26 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4107) (User: ) Description: Échec de l’extraction de la liste racine tierce depuis le fichier CAB de mise à jour automatique à : avec l’erreur : Données non valides. . Error: (11/22/2016 11:10:23 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.206, horodatage : 0x57dac931 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000003061d ID du processus défaillant : 0x285c Heure de début de l’application défaillante : 0x01d244a8a375acfd Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 3a6ce78d-8de3-426b-aa1a-7763cac8a9a9 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/20/2016 02:03:53 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur. Error: (11/19/2016 01:13:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ShellExperienceHost.exe, version : 10.0.14393.187, horodatage : 0x57cf9d73 Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.14393.187, horodatage : 0x57cf9d04 Code d’exception : 0xc000027b Décalage d’erreur : 0x00000000006d638b ID du processus défaillant : 0x16ac Heure de début de l’application défaillante : 0x01d2425de4c0bf1d Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe Chemin d’accès du module défaillant: C:\Windows\System32\Windows.UI.Xaml.dll ID de rapport : 3208b5cd-84e5-455e-87d1-f377a77d8067 Nom complet du package défaillant : Microsoft.Windows.ShellExperienceHost_10.0.14393.206_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : App Error: (11/19/2016 01:13:08 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: FLORENT) Description: Échec de l’activation de l’application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel. Erreurs système: ============= Error: (11/27/2016 02:15:31 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 02:12:52 PM) (Source: Serial) (EventID: 45) (User: ) Description: Le pilote série a détecté un échec matériel sur le périphérique \Device\Serial0 et désactivera ce périphérique. Error: (11/27/2016 02:12:30 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (11/27/2016 02:12:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service BstHdDrv n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/27/2016 02:12:22 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service BstHdAndroidSvc dépend du service BstHdDrv qui n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/27/2016 02:12:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service BstHdDrv n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (11/27/2016 02:11:02 PM) (Source: DCOM) (EventID: 10010) (User: FLORENT) Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/27/2016 02:10:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) ME Service s’est terminé de façon inattendue pour la 1ème fois. Error: (11/27/2016 02:10:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois. Error: (11/27/2016 02:10:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Disc Soft Lite Bus Service s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2016-11-26 19:09:28.226 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-21 13:57:26.600 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-20 14:03:37.099 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-15 22:59:19.234 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-14 19:00:11.681 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-13 22:58:11.494 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-11 21:50:39.564 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-07 16:02:00.386 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-11-01 13:31:31.890 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-10-30 20:11:32.883 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_8bdc1daefc713cb0\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4700MQ CPU @ 2.40GHz Pourcentage de mémoire utilisée: 33% Mémoire physique - RAM - totale: 8079.3 MB Mémoire physique - RAM - disponible: 5351.75 MB Mémoire virtuelle totale: 9359.3 MB Mémoire virtuelle disponible: 6494.42 MB ==================== Lecteurs ================================ Drive c: (OS_Install) (Fixed) (Total:98.36 GB) (Free:32.73 GB) NTFS Drive e: (Jeux et Logiciel) (Fixed) (Total:703.12 GB) (Free:287.56 GB) NTFS Drive f: (Films et musiques) (Fixed) (Total:228.26 GB) (Free:226.86 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: FC66F4A5) Partition: GPT. ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt ============================