Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 29-06-2017 Exécuté par scoob (01-07-2017 15:09:17) Exécuté depuis C:\Users\scoob\Desktop Windows 10 Home Version 1607 (X64) (2016-11-26 19:40:14) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1943273662-72193522-1177828306-500 - Administrator - Enabled) => C:\Users\Administrateur DefaultAccount (S-1-5-21-1943273662-72193522-1177828306-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-1943273662-72193522-1177828306-1003 - Limited - Enabled) Invité (S-1-5-21-1943273662-72193522-1177828306-501 - Limited - Disabled) scoob (S-1-5-21-1943273662-72193522-1177828306-1005 - Administrator - Enabled) => C:\Users\scoob Téoman (S-1-5-21-1943273662-72193522-1177828306-1007 - Administrator - Enabled) => C:\Users\Téoman ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) „Windows Live Essentials“ (HKLM-x32\...\{0821D14F-A0CF-470D-88ED-E255B4535D34}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden µTorrent (HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.233 - Adobe Systems Incorporated) Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated) Adobe Flash Player 26 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.54 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.) Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1405.0701 - Micro-Star International Co., Ltd.) Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Boot Configure (HKLM-x32\...\{5563D674-6B02-43F4-B9D0-C2A944E84F3C}) (Version: 20.014.12127 - Micro-Star International Co., Ltd.) Call of Duty: Black Ops III (HKLM\...\Steam App 311210) (Version: - Treyarch) Call of Duty: Black Ops III (HKLM-x32\...\Steam App 311210) (Version: - Treyarch) CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform) Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve) CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5509.52 - CyberLink Corp.) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0156 - Disc Soft Ltd) Discord (HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.) DoNotSpy10 (HKLM-x32\...\{32D066BD-F94C-4948-8FA8-84653EE9617E}_is1) (Version: 1.1.0.0 - pXc-coding.com) Dragon Gaming Center (HKLM-x32\...\{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1410.1301 - Micro-Star International Co., Ltd.) Hidden Dragon Gaming Center (HKLM-x32\...\InstallShield_{965B16C7-0778-4C45-B7D1-83A59E6FBBCB}) (Version: 1.0.1410.1301 - Micro-Star International Co., Ltd.) Epic Games Launcher (HKLM-x32\...\{2DE76AAC-8061-4D9B-B7BA-A7CFBE0F8048}) (Version: 1.1.86.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Façade (HKLM-x32\...\{24E34264-D483-477C-A9A0-4E53F69834CF}) (Version: 1.1.2 - Procedural Arts) Fallout 4 (HKLM-x32\...\Fallout 4_is1) (Version: - ) FoneEraser 1.0.22 (HKLM-x32\...\{F320BDC7-F9A6-4aeb-9996-6D70E6B903AD}_is1) (Version: 1.0.22 - Aiseesoft Studio) Fotoattēlu galerija (HKLM-x32\...\{FFF8279A-9FFE-4A3B-A7CD-14143B3D67AC}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogaléria (HKLM-x32\...\{5B87607E-E781-49C5-9891-80990E45BCA1}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerie (HKLM-x32\...\{F37D360D-9308-4BB1-8515-DC6B637B9486}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerii (HKLM-x32\...\{3F597A24-BC7C-49AC-B96A-F30934C1AC3F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Foto-galerija (HKLM-x32\...\{4A45C9C7-5EB4-4C25-A0CB-8AD08D642F0A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerija (HKLM-x32\...\{5D5B5672-1A0F-4412-B6A0-3A16706DE82D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalerija (HKLM-x32\...\{78D9B622-3BB0-4A44-B7BF-3FECCA0CC63D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalleri (HKLM-x32\...\{85E3592A-8C11-44F4-AABD-F82EF41167AD}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotogalleriet (HKLM-x32\...\{5FF3045E-4A36-4B98-9F7F-48B49F4469C7}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotoğraf Galerisi (HKLM-x32\...\{B743ABDD-E681-4B32-A33E-6E7F3F845AEA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Fotótár (HKLM-x32\...\{6F19A9AE-85C6-4EBB-BADC-CC1B8B9F3F91}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galeria de Fotografias (HKLM-x32\...\{23079EF2-2617-4BFC-BDFF-E6AE8D79B734}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galería de fotos (HKLM-x32\...\{198CEF22-A27F-4DC7-9B66-2C22A4B1CA09}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galeria de Fotos (HKLM-x32\...\{9EE1AE8B-4872-41CA-8C9A-C33D899523E0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galeria fotografii (HKLM-x32\...\{77655DF6-A143-4A25-A5F8-127C8CE63EDA}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerie foto (HKLM-x32\...\{429BEB2D-4EB8-49E6-A135-823FCB2AAAC5}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Galerija fotografija (HKLM-x32\...\{343C0612-37DC-4914-95A7-0845EE0C8F04}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Garry's Mod (HKLM-x32\...\Steam App 4000) (Version: - Facepunch Studios) GeoGebra 5 (HKLM-x32\...\GeoGebra 5) (Version: 5.0.272.0 - International GeoGebra Institute) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 59.0.3071.115 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden H1Z1: King of the Kill (HKLM\...\Steam App 433850) (Version: - Daybreak Game Company) Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment) Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto) Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.5.0.1056 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{28354A14-8AE0-4B6F-83F0-4F44D03A8D9A}) (Version: 17.1.1529.1620 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.1.1449.356) (HKLM\...\{302600C1-6BDF-4FD1-1411-148929CC1385}) (Version: 17.1.1411.0506 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{a9888f41-68ae-43df-bd7d-d93405a44106}) (Version: 17.13.11 - Intel Corporation) iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.) Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.15 - Oracle Corporation) KB9X Radio Switch Driver (HKLM\...\5AADE1068CF70DD983F763B20CF2CAAB72883915) (Version: 1.1.0.0 - ENE TECHNOLOGY INC.) Killer Bandwidth Control Filter Driver (HKLM\...\{9284A948-C653-479E-8E2E-2312B708CC4F}) (Version: 1.1.53.1479 - Rivet Networks) Hidden Killer E220x Drivers (HKLM\...\{DCE83FA8-283D-4544-AF30-013AB1BC1C77}) (Version: 1.1.53.1479 - Rivet Networks) Hidden Killer Network Manager (HKLM\...\{198991E1-4D30-4E1A-96F6-A45F6C4196B7}) (Version: 1.1.53.1479 - Rivet Networks) Hidden Killer Performance Suite (HKLM-x32\...\{91B464FF-ADEC-402C-BF4A-C6EEEC93F797}) (Version: 1.1.53.1479 - Qualcomm Atheros) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKLM-x32\...\{3E75652D-99B1-417E-B163-BEF33CAD3F16}) (Version: 3.0.1 - Riot Games) Hidden League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden LogMeIn Hamachi (HKLM-x32\...\{E59194A0-A215-4C44-8B92-40780387EBE0}) (Version: 2.2.0.578 - LogMeIn, Inc.) Hidden LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.578 - LogMeIn, Inc.) Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes) Microsoft .NET Framework 4.6 Targeting Pack (Français) (HKLM-x32\...\{c7fd1038-17b4-4432-9e52-65ccaf6e605f}) (Version: 4.6.81 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.8201.2102 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\OneDriveSetup.exe) (Version: 17.3.6917.0607 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Mises à jour NVIDIA 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Mortal Kombat X (HKLM-x32\...\TW9ydGFsS29tYmF0WA==_is1) (Version: 1 - ) Movie Maker (HKLM-x32\...\{0A0C9DBA-5AB2-43F1-9932-A60DAA6EBEFC}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{0CD05078-D4F3-4006-8726-B01E10A89B28}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{178984AA-ABE7-4DD1-934B-E2BB45DD7B88}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{1FA9CD0B-A51B-405F-9F25-D83D36F89404}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{26E474C7-E63A-4EC2-A08C-909B996AA75D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{312F7EE7-37D0-484D-B974-0CE1B8560C79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{3777096E-85F8-426B-A4C7-0935B22D3F99}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{3B5AAF87-531E-4163-BE79-8989FC249173}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{3D2CF65C-B544-4308-B996-700D3E5F6C4C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{57430A7B-EB42-41ED-88F8-ACB2DEDB8416}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{5B3D4718-9146-45CB-8989-C4E87B239B3A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{5D3B997B-DF28-4BC1-82E6-E6C29A53AF6E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{97B23646-3F2F-4E3F-AE0A-763BA2ECB8A2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{9C82436F-F19C-42A4-B476-F87A28A95BF9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{A27180D0-17BB-498B-89FF-A72656B85978}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{AC20CAEC-CC13-4877-A7DC-30BC97936645}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{B44E699A-94F8-406C-9A1B-C2574F5863CB}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{B653D7B1-41B5-4982-9A25-E91FF46D131A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{C05F4139-CB6B-4272-A0BF-861FEB667F27}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DAE8CC57-EBF5-4D46-8572-9A0C769D6F16}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DC5E5027-65E8-41CB-815C-9AAB48BFB8E2}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD3880DF-4CA8-4523-A354-7F8F5A4EB3DC}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{E668DD34-04FA-4A11-B07A-8CBA2119401B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{F215DDB5-BE2A-4453-BABF-8790434F65D0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{F78F19A8-F3F5-4407-B98B-F23ACC82DBF5}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{FDF7A21E-3AEF-46AB-AC22-2BDFF8C9B553}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden MSI Remind Manager (HKLM-x32\...\{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1412.1801 - Micro-Star International Co., Ltd.) Hidden MSI Remind Manager (HKLM-x32\...\InstallShield_{3E23F267-3E35-40F9-B6BF-BC034D214717}) (Version: 1.0.1412.1801 - Micro-Star International Co., Ltd.) MSI Social Media Collection (HKLM-x32\...\{7ADEC426-BE95-48EF-84D4-086BD0F4D331}) (Version: 1.14.2251 - Micro-Star International Co., Ltd.) Nahimic APO (HKLM-x32\...\{B9D50A57-0C95-41E9-BB17-44AD7AFBBD23}) (Version: 1.0.401 - Nahimic) Hidden Nahimic for MSI (HKLM\...\{536602B0-6DB5-4889-85BF-E9730BA42C44}) (Version: 1.0.401 - Nahimic) Hidden Nahimic for MSI (HKLM-x32\...\{d790cc66-b17a-4c88-96a8-cb6506bfdfe4}) (Version: 1.0.4 - Nahimic) NahimicSettingsConfigurator (HKLM\...\{A4FC7407-910B-4FF6-A8BA-54723C5B00EB}) (Version: 1.0.401 - Nahimic) Hidden NVIDIA CUDA Samples 7.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDASamples_7.0) (Version: 7.0 - NVIDIA Corporation) NVIDIA CUDA Toolkit 7.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAToolkit_7.0) (Version: 7.0 - NVIDIA Corporation) NVIDIA CUDA Visual Studio Integration 7.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAVisualStudioIntegration_7.0) (Version: 7.0 - NVIDIA Corporation) NVIDIA GPU Deployment Kit 347.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GDK) (Version: 347.62 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Nsight Visual Studio Edition 4.5.0.15036 (HKLM\...\{DA371382-CABC-44B3-9BB4-14B5081B6446}) (Version: 4.5.0.15036 - NVIDIA Corporation) NVIDIA Pilote graphique 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 376.54 - NVIDIA Corporation) NVIDIA Tools Extension SDK (NVTX) - 64 bit (HKLM\...\{4D983759-07FC-4571-BB59-58C9BBADECC5}) (Version: 1.00.00.00 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8201.2102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8201.2102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8201.2102 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.8201.2075 - Microsoft Corporation) Hidden OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Origin (HKLM-x32\...\Origin) (Version: 9.10.2.4863 - Electronic Arts, Inc.) Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios) Panneau de configuration NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden Podstawowe programy Windows Live (HKLM-x32\...\{8FFD72FC-4FFA-472D-9F76-AEC85F602F9D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Raccolta foto (HKLM-x32\...\{86A1CEAD-EF47-47BB-AE79-DA8C09E15382}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.3.19.0 - Razer Inc.) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.39062 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7427 - Realtek Semiconductor Corp.) SCM (HKLM\...\{9BC0C4F3-ACBB-42DF-9559-93175E3B4095}) (Version: 13.014.11068 - Application) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Sizing Options (HKLM-x32\...\{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 2.0.1412.1501 - Application) Hidden Sizing Options (HKLM-x32\...\InstallShield_{DFAB6DE8-E45F-4D5D-95C0-E54C58993F9F}) (Version: 2.0.1412.1501 - Application) Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) SteelSeries DTS Headphone X (HKLM\...\SteelSeries DTS Headphone X) (Version: 1.0.0.2 - SteelSeries) SteelSeries Engine 3.7.1 (HKLM\...\SteelSeries Engine 3) (Version: 3.7.1 - SteelSeries ApS) SUPER CHARGER (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.2.024 - MSI) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.4.184 - Synaptics Incorporated) Valokuvavalikoima (HKLM-x32\...\{B315ABA6-8217-484E-9AC5-38806E265664}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH) Συλλογή φωτογραφιών (HKLM-x32\...\{2D5C287A-1D2D-46BA-8EF8-D2747575DB6E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Основи Windows Live (HKLM-x32\...\{F8B795A7-CF9A-4B32-8E77-2E9D74A6900F}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Основные компоненты Windows Live (HKLM-x32\...\{D177E45E-2BA3-42C1-8570-CCA2217B958C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотоальбом (HKLM-x32\...\{B27EB36C-9860-42FD-AA90-23648E49F15C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотогалерия (HKLM-x32\...\{3AAB928E-40E9-4DC5-A9CC-FB979E1B2C03}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотографии (общедоступная версия) (HKLM-x32\...\{7D6C9057-7F50-4CAB-A557-A68A7932B48E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Фотоколекція (HKLM-x32\...\{3DB06CA5-1CB0-4A0C-8814-7F04B9969809}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden גלריית התמונות (HKLM-x32\...\{F1BEEA80-1419-45EE-A4C7-41FD4450ED92}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0047C3C3-D43B-4B0F-B730-5D7FEE51E762} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Pas de fichier <==== ATTENTION Task: {12B8B73D-6BCA-4078-B6CA-E7995F295CE9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION Task: {21AD8BBE-834E-441B-BF5F-A18442DC1ED6} - System32\Tasks\NahimicMSIsvc32Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIsvc32.exe [2015-01-16] () Task: {23D00F90-5CDD-4ED2-9255-3EC8A139597A} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION Task: {2716C4A3-37C3-4515-8543-8D5FB1B95906} - System32\Tasks\NahimicMSIsvc64Run => C:\Program Files\Nahimic\NahimicMSI\UserInterface\x64\NahimicMSIsvc64.exe [2015-01-16] () Task: {2C139182-4DB9-4014-832B-E90AEA1CCB30} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-06-20] (Microsoft Corporation) Task: {3394E416-A6E8-40D2-8B1C-18363042AA51} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {39716B82-1A70-411D-872C-9454778CCBD6} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-06-20] () Task: {42BD8F18-E72E-4F22-B993-BA13304326B9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-17] (Adobe Systems Incorporated) Task: {4D77164D-FF94-419B-B7DB-9F218A3C34EA} - \WPD\SqmUpload_S-1-5-21-1943273662-72193522-1177828306-1001 -> Pas de fichier <==== ATTENTION Task: {51B45DF1-64FF-4A15-94D7-A1C743E661C7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION Task: {543F9B8D-E842-441B-88C4-D7E94761EF45} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-06-10] (Microsoft Corporation) Task: {8026F3D7-BB80-4A05-8D1E-67EE6D25DAD8} - System32\Tasks\{512CE77A-4155-451C-9F06-9B5C2228722F} => pcalua.exe -a C:\ProgramData\BreakingNewsAlert\uninstall.exe -c /kb=y /ic=1 Task: {811737FF-38C9-4104-B48E-89A8FEFD0172} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION Task: {813BBBBC-B7A6-411D-AD13-DAADE4DE825A} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION Task: {8BA0609F-A308-4F1F-B2DE-93C6D3611E6A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION Task: {8BE200C8-E35E-46A4-97EC-BA1DB3597FDC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION Task: {98E2F31C-1C9A-44D1-A582-487A1BC7D58E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-13] (Google Inc.) Task: {9B912D4B-AC3E-4D52-B4C7-7416F5EA2708} - System32\Tasks\{B7BAB069-5DB7-4D8B-A117-0B01D39FF72F} => Chrome.exe hxxp://ui.skype.com/ui/0/7.12.0.101/fr/abandoninstall?page=tsProgressBar Task: {AD4421AF-E39E-4416-90AC-2A15BD9314E9} - System32\Tasks\NahimicMSIUILauncherRun => C:\Program Files\Nahimic\NahimicMSI\UserInterface\NahimicMSIUILauncher.exe [2015-01-16] () Task: {B0FB1464-8C69-4F4F-AF4D-FB9633908D7D} - System32\Tasks\MSI_Dragon Gaming Center => C:\Program Files (x86)\MSI\Dragon Gaming Center\mDispatch.exe [2014-01-24] (TODO: <公司名稱>) Task: {B28ACB47-12AC-4738-8784-8ECD2D0F2331} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.) Task: {C92830CE-0D5D-431B-B167-9C73ABE26B7B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-06-13] (Google Inc.) Task: {CDFC05EF-0929-4F51-BB34-A40C749AC494} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-06-20] () Task: {CEFD9061-CD2E-4654-9B9A-042F2B4AFA8A} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION Task: {D0F15AAD-CB69-4213-A033-2C12DD7008EA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_ERROR_HB => C:\WINDOWS\system32\MRT.exe [2016-02-11] (Microsoft Corporation) Task: {E1A7D90A-265F-4DE8-A1DB-A22C730B3079} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd) Task: {E3D916F5-A3D1-4738-BF82-8AB50F7E4C9F} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_26_0_0_131_pepper.exe [2017-06-17] (Adobe Systems Incorporated) Task: {E551D706-6A20-47E5-B0C9-CFF48D28ECA9} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2017-05-16] (Synaptics Incorporated) Task: {F2AB20D0-4079-4957-9722-53B62361C449} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION Task: {F75A95FD-063D-49EB-89A6-E674DFEED713} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-06-10] (Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe Task: C:\WINDOWS\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901}.job => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2016-09-01 19:12 - 2016-09-01 19:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2016-11-17 02:28 - 2016-11-17 02:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2017-05-14 14:49 - 2017-04-28 02:49 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-11-26 21:00 - 2016-12-29 15:16 - 00134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2016-11-02 00:05 - 2016-11-02 00:05 - 00401896 _____ () C:\WINDOWS\system32\igfxTray.exe 2016-11-26 20:42 - 2016-11-26 20:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll 2017-03-14 21:07 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll 2017-03-14 21:08 - 2017-03-04 08:30 - 00693248 _____ () C:\Windows\ShellExperiences\MtcUvc.dll 2017-03-14 21:09 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2017-03-14 21:09 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2017-03-14 21:08 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll 2017-05-14 14:49 - 2017-04-28 01:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2017-05-14 14:49 - 2017-04-28 01:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2017-06-23 19:17 - 2017-06-23 19:18 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe 2017-06-23 19:17 - 2017-06-23 19:18 - 00203264 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll 2017-06-23 19:17 - 2017-06-23 19:18 - 43454464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkyWrap.dll 2017-06-23 19:17 - 2017-06-23 19:18 - 02437120 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\skypert.dll 2014-01-22 20:44 - 2014-01-22 20:44 - 00075912 _____ () C:\Program Files (x86)\MSI\Dragon Gaming Center\WinIo64.dll 2017-06-29 13:44 - 2017-06-23 05:21 - 03807064 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libglesv2.dll 2017-06-29 13:44 - 2017-06-23 05:21 - 00100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\59.0.3071.115\libegl.dll 2017-06-17 14:43 - 2017-06-17 14:43 - 31133184 _____ () C:\WINDOWS\system32\Macromed\Flash\pepflashplayer64_26_0_0_131.dll 2014-11-10 22:12 - 2014-11-10 22:12 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-07-25 15:27 - 2016-06-14 22:03 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-08-16 22:13 - 2017-05-17 03:54 - 00678176 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-08-16 22:13 - 2016-09-01 03:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-08-16 22:13 - 2017-06-08 07:42 - 02485536 _____ () C:\Program Files (x86)\Steam\video.dll 2015-08-16 22:13 - 2016-01-27 09:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-08-16 22:13 - 2016-01-27 09:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-08-16 22:13 - 2016-01-27 09:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-08-16 22:13 - 2016-01-27 09:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-08-16 22:13 - 2016-01-27 09:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-08-16 22:13 - 2016-09-01 03:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-08-16 22:13 - 2016-09-01 03:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-08-16 22:13 - 2017-06-08 07:42 - 00877856 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2016-03-23 21:18 - 2016-07-05 00:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll 2017-06-10 14:32 - 2017-05-17 03:54 - 00678176 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\SDL2.dll 2017-03-31 19:11 - 2017-05-08 21:45 - 69516064 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll 2015-08-16 22:13 - 2017-06-08 07:42 - 00385312 _____ () C:\Program Files (x86)\Steam\steam.dll 2015-08-16 22:13 - 2015-09-25 01:52 - 00119208 _____ () C:\Program Files (x86)\Steam\winh264.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2017-06-23 20:42 - 00000054 _____ C:\WINDOWS\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1943273662-72193522-1177828306-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\scoob\Desktop\Wq2bieX.png DNS Servers: 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: MBAMScheduler => 2 MSCONFIG\Services: MBAMService => 2 MSCONFIG\Services: Orange update Core Service => 2 MSCONFIG\Services: Razer Game Scanner Service => 2 MSCONFIG\Services: RzKLService => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: wercplsupport => 3 MSCONFIG\Services: WerSvc => 3 HKLM\...\StartupApproved\StartupFolder: => "Killer Network Manager.lnk" HKLM\...\StartupApproved\StartupFolder: => "Sidebar.lnk" HKLM\...\StartupApproved\StartupFolder: => "RocketDock.lnk" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "ShadowPlay" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "BTMTrayAgent" HKLM\...\StartupApproved\Run: => "SCM" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Cm108Sound" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run32: => "RemoteControl10" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui" HKLM\...\StartupApproved\Run32: => "RazerCortex" HKLM\...\StartupApproved\Run32: => "BlueStacks Agent" HKLM\...\StartupApproved\Run32: => "gmsd_fr_028010046" HKLM\...\StartupApproved\Run32: => "Discord" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\StartupFolder: => "kmsk.url" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "DPI Service" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "hoeyuz" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "mg6HG+a61E.exe" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "XQx2GgskN.exe" HKU\S-1-5-21-1943273662-72193522-1177828306-1005\...\StartupApproved\Run: => "YSONk97SDnAhj.exe" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{8C6FD8DA-DD94-43CC-B495-BA58C1EDBC44}] => (Allow) C:\WINDOWS\system32\rundll32.exe FirewallRules: [{BE078DB4-0062-40D0-87FE-C577B952BF4F}] => (Block) C:\users\scoob\desktop\pokefarmer\pokefarmer.exe FirewallRules: [{C995FEFC-BDF7-4BF8-B9E3-1042479E157F}] => (Block) C:\users\scoob\desktop\pokefarmer\pokefarmer.exe FirewallRules: [UDP Query User{10C81724-1195-4DEA-8E52-A59E263DAD72}C:\users\scoob\desktop\pokefarmer\pokefarmer.exe] => (Allow) C:\users\scoob\desktop\pokefarmer\pokefarmer.exe FirewallRules: [TCP Query User{A47DDF29-A586-4323-9072-DF76257D61A9}C:\users\scoob\desktop\pokefarmer\pokefarmer.exe] => (Allow) C:\users\scoob\desktop\pokefarmer\pokefarmer.exe FirewallRules: [{CCDBF5CB-FFBA-4F5D-A36F-CC0DC0810C5A}] => (Block) C:\users\scoob\desktop\pokefarmer\pokefarmer.patched.exe FirewallRules: [{4D44375B-8FFD-45B6-9AA1-99553242FBFA}] => (Block) C:\users\scoob\desktop\pokefarmer\pokefarmer.patched.exe FirewallRules: [UDP Query User{5B723AC4-63BB-4A06-B52E-9A0C7DB3C184}C:\users\scoob\desktop\pokefarmer\pokefarmer.patched.exe] => (Allow) C:\users\scoob\desktop\pokefarmer\pokefarmer.patched.exe FirewallRules: [TCP Query User{B0FB34A9-DB5A-4A60-A2B1-D07B0AD9E77A}C:\users\scoob\desktop\pokefarmer\pokefarmer.patched.exe] => (Allow) C:\users\scoob\desktop\pokefarmer\pokefarmer.patched.exe FirewallRules: [{265B4417-B9BE-4EFE-952A-57C17C866567}] => (Block) C:\users\scoob\desktop\release\necrobot.exe FirewallRules: [{0275680F-7884-41C8-ABD1-CD6512D7D75C}] => (Block) C:\users\scoob\desktop\release\necrobot.exe FirewallRules: [UDP Query User{990120D8-4AF4-4811-B397-5E1EC61F862B}C:\users\scoob\desktop\release\necrobot.exe] => (Allow) C:\users\scoob\desktop\release\necrobot.exe FirewallRules: [TCP Query User{F87BCE3D-9B0D-4190-A03E-A3EDFE529A1B}C:\users\scoob\desktop\release\necrobot.exe] => (Allow) C:\users\scoob\desktop\release\necrobot.exe FirewallRules: [UDP Query User{93B4E33C-E542-4595-98B6-274EE7CEA0EB}D:\doom-beta\doomx64.exe] => (Allow) D:\doom-beta\doomx64.exe FirewallRules: [TCP Query User{D4225BD1-442A-4637-B78E-08C809E1D062}D:\doom-beta\doomx64.exe] => (Allow) D:\doom-beta\doomx64.exe FirewallRules: [{AC0D2BAC-4DD3-4EF6-A386-4F9B34EC4B85}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{5935BEC2-BDBA-45E6-8702-8E26DAEC91A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe FirewallRules: [{87D4CE69-5481-43DD-9EA2-54DBB867DEF6}] => (Block) C:\users\scoob\desktop\tjoc- r beta 0.1.0\windowsnoeditor\engine\binaries\win64\ue4game-win64-shipping.exe FirewallRules: [{6FD59C62-057A-4A42-9F0D-16CFABD559EE}] => (Block) C:\users\scoob\desktop\tjoc- r beta 0.1.0\windowsnoeditor\engine\binaries\win64\ue4game-win64-shipping.exe FirewallRules: [UDP Query User{973AECA6-6C0E-45A6-BB85-353159221481}C:\users\scoob\desktop\tjoc- r beta 0.1.0\windowsnoeditor\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\users\scoob\desktop\tjoc- r beta 0.1.0\windowsnoeditor\engine\binaries\win64\ue4game-win64-shipping.exe FirewallRules: [TCP Query User{ACCA64BB-F75C-4AB6-8E7D-0E415D7D9CFE}C:\users\scoob\desktop\tjoc- r beta 0.1.0\windowsnoeditor\engine\binaries\win64\ue4game-win64-shipping.exe] => (Allow) C:\users\scoob\desktop\tjoc- r beta 0.1.0\windowsnoeditor\engine\binaries\win64\ue4game-win64-shipping.exe FirewallRules: [UDP Query User{F5009CB4-914A-4C48-A92D-E49D2B1C15DE}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [TCP Query User{134F6B2F-7C55-426B-BE25-DBE30C43E24D}C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\javaw.exe FirewallRules: [UDP Query User{A1F002FA-A13F-4EB9-8BB6-B81F7D59C835}C:\program files (x86)\java\jre1.8.0_91\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\java.exe FirewallRules: [TCP Query User{20097F65-AED3-4498-8ED6-34FAAC6BF622}C:\program files (x86)\java\jre1.8.0_91\bin\java.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_91\bin\java.exe FirewallRules: [{A97BBACA-CD69-4F42-BAE7-1B1BD262CD22}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe FirewallRules: [{A809079E-5501-49D1-AC9E-1CABB006EADA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe FirewallRules: [{1A4BA414-784A-4823-97A3-BDCA6EEEF68C}] => (Allow) C:\Users\scoob\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{C8DD5E8F-5C99-470A-9247-6CAB7D6C0AB4}] => (Allow) C:\Users\scoob\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5E1663EC-D5EB-4B77-8AE3-581F02FA3A36}] => (Allow) C:\Users\scoob\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{1213D269-EE05-4407-AAF3-7444F19CFC07}] => (Allow) C:\Users\scoob\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{FB11AC98-AEB5-4EBD-A729-5CFAF58D8521}] => (Allow) C:\Users\scoob\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{289D19B7-92D0-469D-8A13-FF7B25AF68A4}] => (Allow) C:\Users\scoob\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{14E7BE5F-6ECE-4A3B-88BA-704A270A115A}] => (Block) C:\Windows\explorer.exe FirewallRules: [{D3705640-9BE2-452E-9709-B84FF4039FCC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{47FA0291-5F8E-4E3C-B8C3-FFA3EA150C3E}] => (Allow) LPort=2869 FirewallRules: [{D5E09FDF-A598-42C9-9FB5-C9A1118C0DFD}] => (Allow) LPort=1900 FirewallRules: [{5DA5A31A-F314-4C52-BD98-99E35F6F7EF8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{C42BD9A3-F485-4DDA-B01A-FB685D2FAAF9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{BD84DEB2-7C1D-4F0D-A9E7-0F16E6019833}] => (Allow) LPort=48113 FirewallRules: [{B9272B5B-EA49-4A83-A623-FD09FE737731}] => (Allow) LPort=48113 FirewallRules: [TCP Query User{696D926A-4CE7-4FE7-9F58-9AEC56106CC4}C:\program files (x86)\alien isolation\ai.exe] => (Allow) C:\program files (x86)\alien isolation\ai.exe FirewallRules: [UDP Query User{3BC71678-91F4-43A3-A2FC-05E90A65B9DA}C:\program files (x86)\alien isolation\ai.exe] => (Allow) C:\program files (x86)\alien isolation\ai.exe FirewallRules: [TCP Query User{D2C3F0B1-171B-441B-908B-C9074246509E}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [UDP Query User{D7765A29-D419-4196-9454-D74E15E0915D}C:\program files (x86)\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\grand theft auto v\gta5.exe FirewallRules: [{E901E2D2-C33C-4C8F-A256-378D3FD6B4F5}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{1EC9C6F8-7990-4E10-930E-5A546DC6DAFC}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe FirewallRules: [{F61D3080-B4F7-45D1-9ACA-C6F45E606AEF}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [{8B486CB8-C3B7-4B6F-8A09-92C775230357}] => (Allow) C:\Program Files (x86)\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{0AE57247-8822-4F12-9782-BCBFA409C70A}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [UDP Query User{B18FB67B-D106-4E4A-A6B5-80821D7B05B0}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe FirewallRules: [{0EE46F91-F35C-49AB-9277-393FB12A810E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0CC0ED35-BF72-4A97-8E82-E2FF75EE48BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{FACA5CB1-C1AF-4076-BC82-EE21915E47B5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{3140C7BA-0D2F-40D8-BB46-25B1EA22573E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F950CE48-6642-498C-B755-3B37642CC2E6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [TCP Query User{2AC41DDE-5CFC-42E7-8BC6-1DBBD853B493}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{BA44C7CD-486E-4806-B18C-B911DEA3C62F}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [TCP Query User{59523058-4E38-49A9-9343-17954FECE2EB}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [UDP Query User{67684BA3-A360-4BD0-88F3-8579316A69B8}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe FirewallRules: [TCP Query User{6106DAC0-27CA-4766-94DC-1DC845F62FC7}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [UDP Query User{B7C7E800-E27A-4D1C-8940-35F6DA1F80CB}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe FirewallRules: [{7D51DAE2-993F-456A-8833-35C0958EA3B8}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe FirewallRules: [{FF4F8EB1-53E2-49AB-AB4C-334E334DE4D6}] => (Allow) C:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe FirewallRules: [TCP Query User{71C65B1C-4EB9-4621-AD53-BFD5973DDDC9}C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{675FC161-3971-4FA5-AFA9-A66A0F61E9CF}C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe FirewallRules: [{245A083B-A3D1-4DCD-AB71-B9DAA9F00768}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{522CC49D-3A77-40AE-84D8-6AC8AFE1885D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{F9FFCCB6-F484-4EAA-A89A-841290EF04D2}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{5F30A489-B2B6-4CA1-A733-931DA8415E80}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{CF1A3B56-BF53-4A4A-B23E-BBD02A3F4AEA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{FF66A3F7-6534-4120-AFAA-160BE5D0AD99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe FirewallRules: [{4B26E18F-919C-402E-9A1F-FC079B82371B}] => (Allow) C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe FirewallRules: [{7C482AD7-00AC-462F-BEC7-BF0D679495EB}] => (Allow) C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe FirewallRules: [{5DF64025-CB4E-4EB9-AB9A-3779E112FBAA}] => (Allow) C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe FirewallRules: [{91CB1127-CCAB-4214-A0A7-9B834B9AD2EE}] => (Allow) C:\Program Files\MotioninJoy\ds3\DS3_Tool.exe FirewallRules: [TCP Query User{490AD617-AE46-4DF0-B318-5085F5333ED8}C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe FirewallRules: [UDP Query User{1B04448E-D83A-4B4B-9AF2-FDA68EB377F5}C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe] => (Allow) C:\program files (x86)\ubisoft\far cry 4\bin\farcry4.exe FirewallRules: [{38F843F5-1E6D-4027-95D6-1C6CA2FCFC6B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{0600A0E3-47B9-4A14-AB4B-D83C6A856CC4}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{2DB4CEF5-DD1E-490C-A7E9-DD9465E0DB92}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [{0E85AAB8-A544-4817-BFF7-9BD6AC803550}] => (Allow) C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe FirewallRules: [TCP Query User{27B4BFE8-772F-450F-B0DA-24282B2BEAD8}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [UDP Query User{552DA287-B9E0-4629-8BFA-DDC12F308B7F}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{337BFA5D-AD62-4650-AC52-5DAEF36FD90B}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [{4A191D9A-0069-4B42-BC76-0CEF9CAB77F1}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe FirewallRules: [TCP Query User{43A5847D-A512-4222-A46C-5E2B683F0C9B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [UDP Query User{D2663658-CDF0-478E-BC92-63913CC352F4}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{0523D331-0F4A-4561-8C7C-0B308CC6D170}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{08E7FECB-EE7A-41A4-B2BE-2BCE7485A93E}] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe FirewallRules: [{BB194252-9BC9-4E1E-BEDB-079FFD512D5D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5BB8B668-6195-4086-940C-28EB05C3FC89}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{DCD6E672-8DED-425C-B094-6F154FAFB0A2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{DC726A0E-4725-4413-9AD4-2B1870B6AF0F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{7B10D22B-FBC9-46E7-BAFA-DE9FBB5D974C}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [TCP Query User{865BE158-73DD-4763-8CED-9C6E304224DB}C:\users\scoob\desktop\oxygen.not.included.build.208689.eng.fixed\oxygennotincluded.exe] => (Allow) C:\users\scoob\desktop\oxygen.not.included.build.208689.eng.fixed\oxygennotincluded.exe FirewallRules: [UDP Query User{4E94AC21-95CF-4E69-A8B8-E9112C29E0AD}C:\users\scoob\desktop\oxygen.not.included.build.208689.eng.fixed\oxygennotincluded.exe] => (Allow) C:\users\scoob\desktop\oxygen.not.included.build.208689.eng.fixed\oxygennotincluded.exe FirewallRules: [{696BAF53-D07C-4031-85AD-DBC0A02372D0}] => (Block) C:\users\scoob\desktop\oxygen.not.included.build.208689.eng.fixed\oxygennotincluded.exe FirewallRules: [{53525FF7-FE8D-4BBF-9FD2-5E48DD8A4AD8}] => (Block) C:\users\scoob\desktop\oxygen.not.included.build.208689.eng.fixed\oxygennotincluded.exe FirewallRules: [{C2748113-2EAF-4C47-84E5-F4AA2D5B7F56}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{5867E410-0AE0-4253-A6A3-603AAE5B569E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{92CDE5F7-09D6-4FEE-8E0F-66F1907100A0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops III\BlackOps3.exe FirewallRules: [{288E73CE-A754-42E5-90A5-467338AC46A7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Call of Duty Black Ops III\BlackOps3.exe FirewallRules: [{EB149A72-0341-4308-AFE3-E801FC68A926}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{879C408C-4D8F-4C34-BB83-F564DBCB9785}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe FirewallRules: [{F918ED9D-1300-49F0-AE98-331A00012895}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\H1Z1 King of the Kill\LaunchPad.exe FirewallRules: [TCP Query User{BC338AA0-DC52-4AD3-8C80-0CA482C8BEBC}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe FirewallRules: [UDP Query User{330DD917-EF14-45A1-AE19-45B1BC735A91}C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\h1z1 king of the kill\h1z1.exe FirewallRules: [{49B642B9-E46F-4796-B1A0-9294B8B147A8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [{E759C835-B8D9-4175-A9C4-98DBB959D325}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe FirewallRules: [TCP Query User{3D78DA1B-572E-4184-9774-7938B5724EF2}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [UDP Query User{A05B606C-A822-4F6D-9F98-1A993E7742E6}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe FirewallRules: [{4B308E3F-6E49-43CD-9A8E-A61FFE7A4ECA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 24-06-2017 14:01:58 Windows Update 28-06-2017 15:43:49 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (07/01/2017 01:44:14 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (07/01/2017 01:42:44 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (07/01/2017 01:37:51 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (07/01/2017 01:36:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (07/01/2017 02:18:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000030bdd ID du processus défaillant : 0x1788 Heure de début de l’application défaillante : 0x01d2f2641b9f3814 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : f7e1f7d9-4fbf-465f-9f35-762311ace059 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/01/2017 02:18:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000030bdd ID du processus défaillant : 0x1aa8 Heure de début de l’application défaillante : 0x01d2f26415ea3516 Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : 907336d7-632d-4dfa-b86b-6b351f5dd956 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/01/2017 02:17:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000030bdd ID du processus défaillant : 0x1d14 Heure de début de l’application défaillante : 0x01d2f264104ca27e Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : bc4d6711-4bb0-4dd0-b082-0b7f70b8aad9 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (07/01/2017 02:17:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamUserAgent.exe, version : 7.1.2084.9592, horodatage : 0x57605c64 Nom du module défaillant : ntdll.dll, version : 10.0.14393.479, horodatage : 0x5825887f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000030bdd ID du processus défaillant : 0x1ad4 Heure de début de l’application défaillante : 0x01d2f26404daaa1d Chemin d’accès de l’application défaillante : C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll ID de rapport : bca3fa83-d3ad-4b02-8d39-7f802323586e Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (06/30/2017 09:04:37 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 15547 Error: (06/30/2017 09:04:37 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 15547 Erreurs système: ============= Error: (07/01/2017 02:37:47 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : 2017-06 Mise à jour cumulative pour Windows 10 Version 1607 pour les systèmes x64 (KB4022715). Error: (07/01/2017 02:23:45 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (07/01/2017 02:23:45 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (07/01/2017 02:23:45 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (07/01/2017 02:22:15 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (07/01/2017 02:17:03 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {8D8F4F83-3594-4F07-8369-FC3C3CAE4919} et l’APPID {F72671A9-012C-4725-9D2F-2A4D32D65169} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (07/01/2017 02:17:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (07/01/2017 02:17:02 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {6B3B8D23-FA8D-40B9-8DBD-B950333E2C52} et l’APPID {4839DDB7-58C2-48F5-8283-E1D1807D0D7D} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/30/2017 09:04:13 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (06/30/2017 07:01:41 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : 2017-06 Mise à jour cumulative pour Windows 10 Version 1607 pour les systèmes x64 (KB4022715). CodeIntegrity: =================================== Date: 2017-05-15 16:28:37.887 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-04-26 19:16:30.522 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-04-01 21:47:26.984 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-16 19:00:30.625 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-13 19:21:36.160 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-06 21:27:06.723 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-03-04 21:41:09.005 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmiwu.inf_amd64_01856dcc82b1034f\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-02-03 20:21:12.897 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_9e209d3a1cc855ae\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2017-01-11 21:27:27.454 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_9e209d3a1cc855ae\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2016-12-24 16:08:04.156 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_9e209d3a1cc855ae\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-4720HQ CPU @ 2.60GHz Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 8114.06 MB Mémoire physique - RAM - disponible: 4838.25 MB Mémoire virtuelle totale: 9394.06 MB Mémoire virtuelle disponible: 6078.2 MB ==================== Lecteurs ================================ Drive c: (OS_Install) (Fixed) (Total:571.57 GB) (Free:27.15 GB) NTFS Drive d: (Data) (Fixed) (Total:337.8 GB) (Free:39.98 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F608B4B9) Partition: GPT. ==================== Fin de Addition.txt ============================