Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 08-05-2017
Exécuté par Arnaud (10-05-2017 16:47:33)
Exécuté depuis C:\Users\Arnaud\Desktop
Windows 10 Pro Version 1607 (X64) (2017-02-11 22:57:07)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3267324551-2537453020-2449305945-500 - Administrator - Disabled)
Arnaud (S-1-5-21-3267324551-2537453020-2449305945-1001 - Administrator - Enabled) => C:\Users\Arnaud
DefaultAccount (S-1-5-21-3267324551-2537453020-2449305945-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3267324551-2537453020-2449305945-1000 - Limited - Disabled) => C:\Users\defaultuser0
HomeGroupUser$ (S-1-5-21-3267324551-2537453020-2449305945-1005 - Limited - Enabled)
Invité (S-1-5-21-3267324551-2537453020-2449305945-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
@BIOS B14.1003.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B14.1003.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
3DMark (HKLM-x32\...\{39f8dcb1-5f2e-4057-980e-f463756a0465}) (Version: 2.3.3693.0 - Futuremark)
3DMark (Version: 2.3.3693.0 - Futuremark) Hidden
Action! (HKLM-x32\...\Mirillis Action!) (Version: 2.2.1 - Mirillis)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_1_0) (Version: 14.1.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated)
Adobe Animate CC 2017 (HKLM-x32\...\FLPR_16_1) (Version: 16.1 - Adobe Systems Incorporated)
Adobe Audition CC 2017 (HKLM-x32\...\AUDT_10_0_2) (Version: 10.0.2 - Adobe Systems Incorporated)
Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Character Animator CC (Beta) (HKLM-x32\...\ANMLBETA_1_0_5) (Version: 1.0.5 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2017 (HKLM-x32\...\DRWV_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit CC (HKLM-x32\...\{6297487E-3778-4F72-B458-55690418DB98}) (Version: 4.0.0.0 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.3.2 - Adobe Systems Incorporated)
Adobe Flash Builder 4.7 (64 bits) (HKLM-x32\...\{848DE8E1-521D-4748-A158-517708107EF3}) (Version: 4.7 - Adobe Systems Incorporated)
Adobe Gaming SDK 1.4 (HKLM-x32\...\{2316BC3C-61AD-4289-8702-9DF0DFCA08ED}) (Version: 1.4 - Adobe Systems Incorporated)
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated)
Adobe InCopy CC 2017 (HKLM-x32\...\AICY_12_0_0) (Version: 12.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2017 (HKLM-x32\...\IDSN_12_0_0) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.8 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
Adobe Muse CC 2017 (HKLM-x32\...\MUSE_2017_0_2) (Version: 2017.0.2.60 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Prelude CC 2017 (HKLM-x32\...\PRLD_6_0_2) (Version: 6.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
Adobe Scout CC (HKLM\...\{BA573BFE-83B4-11E3-93D2-D231FEB1DC81}) (Version: 1.1.3.354121 - Adobe Systems Incorporated)
Adobe SpeedGrade CC 2015 (HKLM-x32\...\{8FD7F1DB-7355-469E-A3F2-2118148D8477}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Touch App Plugins (HKLM-x32\...\{1EC083EE-5B76-4A2A-B95A-CAF460AA29D6}) (Version: 1.0 - Adobe Systems Incorporated)
AirDroid 3.4.1.0 (HKLM-x32\...\AirDroid) (Version: 3.4.1.0 - Sand Studio)
AlphaGo (HKLM-x32\...\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}) (Version: 1.2.5 - AlphaGo)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.16.0503 - Gigabyte)
APP Center (x32 Version: 1.16.0503 - Gigabyte) Hidden
Arc-Regular (HKLM\...\Arc-Regular) (Version: - neiio)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.35.1 - Asmedia Technology)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version: - Ubisoft)
Assassin's Creed Unity Dead Kings DLC (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - )
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.49.52296 - Electronic Arts)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.13.0911.1 - GIGABYTE)
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Catalyst Control Center Next Localization BR (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
Chivalry: Medieval Warfare (HKLM\...\Steam App 219640) (Version: - Torn Banner Studios)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z Gigabyte 1.78 (HKLM\...\CPUID CPU-Z Gigabyte_is1) (Version: 1.78 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
DAEMON Tools Ultra (HKLM\...\DAEMON Tools Ultra) (Version: 5.0.1.0551 - Disc Soft Ltd)
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.9.1 - DB Browser for SQLite Team)
Defiance (HKLM\...\Steam App 224600) (Version: - Trion Worlds, Inc.)
Discord (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Driver Booster 4.3 (HKLM-x32\...\Driver Booster_is1) (Version: 4.3.0 - IObit)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0626 - GIGABYTE)
EasyTune (x32 Version: 1.15.0626 - GIGABYTE) Hidden
EZSetup B15.0623.1 (HKLM-x32\...\InstallShield_{9EAB60B6-70FE-4EC7-8DF4-54773E4EAC05}) (Version: 1.00.0000 - GIGABYTE)
EZSetup B15.0623.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.15.0626 - GIGABYTE)
Fast Boot (x32 Version: 1.15.0626 - GIGABYTE) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
FreeMouseAutoClicker 3.8.5 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version: - Advanced Mouse Auto Clicker ltd.)
Futuremark SystemInfo (HKLM-x32\...\{6583B359-134F-480D-9B31-9B94EFFAFE40}) (Version: 5.0.609.0 - Futuremark)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Killer Bandwidth Control Filter Driver (Version: 1.1.65.1357 - Rivet Networks) Hidden
Killer E240x Drivers (Version: 1.1.65.1357 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.65.1357 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{75269D5A-2CE7-48D1-8169-5744C83C574F}) (Version: 1.1.65.1357 - Rivet Networks)
LibreOffice 5.2.6.2 (HKLM-x32\...\{443795BA-BBA0-46CF-A07F-DB5B461785F7}) (Version: 5.2.6.2 - The Document Foundation)
Logitech - Assistant pour jeux vidéo 8.92 (HKLM\...\Logitech Gaming Software) (Version: 8.92.67 - Logitech Inc.)
Malwarebytes Anti-Malware versione 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
METAL GEAR SOLID V: GROUND ZEROES (HKLM\...\Steam App 311340) (Version: - Kojima Productions)
Microsoft OneDrive (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Moonbase Alpha (HKLM\...\Steam App 39000) (Version: - Virtual Heroes)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
ON_OFF Charge 2 B14.0217.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B14.0217.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenIV (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\OpenIV) (Version: 2.9.905 - .black/OpenIV Team)
OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation)
Oracle VM VirtualBox 5.1.22 (HKLM\...\{8D5E4D4D-5E0C-4448-B018-5DDEF1E208D9}) (Version: 5.1.22 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.4.10.43546 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.104.19.0 - Overwolf Ltd.)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Resource Hacker Version 4.5.30 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
ROBLOX Player for Arnaud (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Studio for Arnaud (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix, Inc.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version: - Dragonfly GF Co., LTD)
Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 454 - Massachusetts Institute of Technology)
Scratch 2 Offline Editor (x32 Version: 255 - Massachusetts Institute of Technology) Hidden
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.15.1112 - GIGABYTE)
SIV (x32 Version: 1.15.1112 - GIGABYTE) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Smart TimeLock B14.0731.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B14.0731.1 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
SoundTouch (HKLM-x32\...\{3432B400-67B8-4933-B701-16ED3BF65486}) (Version: 14.0.15.339 - BOSE)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spirit of Gamer Gaming Keyboard Driver (HKLM-x32\...\{68F65E0D-F894-4F5A-B9E9-F3CAB29FB59A}) (Version: 1.0 - ADVANCE)
Spotify (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.10 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.77242 - TeamViewer)
Tomb Raider (HKLM\...\Steam App 203160) (Version: - Crystal Dynamics)
Toribash (HKLM\...\Steam App 248570) (Version: - Nabi Studios)
TWAIN 2.1 DS Sample (HKLM\...\{FA2E386F-BAB5-4625-8322-20AC986E4D99}) (Version: 2.1.3 - TWAIN Working Group)
UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 3.2.1.0 - Manuel Hoefs (Zottel))
Unchecky v1.0.2 (HKLM-x32\...\Unchecky) (Version: 1.0.2 - RaMMicHaeL)
Uplay (HKLM-x32\...\Uplay) (Version: 28.1 - Ubisoft)
UxStyle (HKLM-x32\...\{6bf90d91-c5db-454e-a7b4-81bc6cbbe13f}) (Version: 0.2.4.2 - The Within Network, LLC)
UxStyle (Version: 0.2.4.2 - The Within Network, LLC) Hidden
VEGAS Pro 14.0 (64-bit) (HKLM\...\{99FD8D80-BE54-11E6-98F7-BE9B4130C4C9}) (Version: 14.0.211 - VEGAS)
VMware Workstation (HKLM\...\{A4D1DB40-C6DC-40F8-AF6D-46BD4DD5ACAC}) (Version: 12.5.5 - VMware, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-3) (Version: 1.0.39.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (Version: 1.0.39.1 - LunarG, Inc.) Hidden
WinDirStat 1.1.2 (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\WinDirStat) (Version: - )
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Filmora(Build 8.2.2) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
World of Tanks Blitz (HKLM\...\Steam App 444200) (Version: - Wargaming Group Limited)
Youtubers Life (HKLM-x32\...\Youtubers Life_is1) (Version: - )
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3267324551-2537453020-2449305945-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-35D363130AE4}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3267324551-2537453020-2449305945-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Arnaud\AppData\Local\Roblox\Versions\version-ca61db0aa1b8462c\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-3267324551-2537453020-2449305945-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {04DDBACC-21A8-4FA3-9813-08C82E0CABD2} - \Pafusdress -> Pas de fichier <==== ATTENTION
Task: {13E6D63D-9FE7-4653-98FE-83E702D8B248} - \Persipy -> Pas de fichier <==== ATTENTION
Task: {1A586311-01FC-45C4-9BBD-A63155311A36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {4C896AD0-20E4-48E5-90BA-E99342678256} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-arnaud.wierel@free.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {528C3EC9-0E8C-4087-9632-FFB92364F8B3} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-04-27] (Overwolf LTD)
Task: {5996F892-DF68-4C8D-8949-F7736401BA5D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {7B24A0D6-A69D-4C0F-A4EF-CBABC7174219} - System32\Tasks\{3ADCAE3B-840C-58EC-65A0-02804CC9D4D2} => C:\Users\Arnaud\AppData\Local\Dedeleh\PRODUC~1.EXE [2013-04-12] ()
Task: {878CE333-7E0B-4456-A72A-17869E5C14F3} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-05-02] (Advanced Micro Devices, Inc.)
Task: {CA4AC885-2166-438E-9773-593DCCFF165E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {FEB9724D-4F1D-46A6-B00F-5F2FACDDDF6B} - System32\Tasks\ifsDKzG7HAgu => ifsdkzg7hagu.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\{3ADCAE3B-840C-58EC-65A0-02804CC9D4D2}.job =>
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION
Shortcut: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7eacadfa43776aec\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.)
ShortcutWithArgument: C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm
ShortcutWithArgument: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\Arnaud\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\4d44b85cb2a18134\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData2
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\Arnaud\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-05-09 22:30 - 2017-04-28 02:49 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-04-14 16:27 - 2015-04-14 16:27 - 00016896 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
2017-05-06 08:19 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-04 12:03 - 2017-03-04 12:03 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-03-04 12:03 - 2017-03-08 12:48 - 00107832 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2017-03-21 19:17 - 2017-03-21 19:17 - 12482024 _____ () A:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
2017-05-09 22:30 - 2017-04-28 02:49 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-10-25 10:57 - 2016-10-25 10:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-11-21 08:01 - 2016-11-21 08:01 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-17 20:59 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-17 20:59 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-17 20:59 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-17 20:59 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-09 22:30 - 2017-04-28 01:36 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-05-09 22:30 - 2017-04-28 01:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-09 22:30 - 2017-04-28 01:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-30 10:52 - 2015-07-30 10:52 - 01244456 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
2017-05-09 22:39 - 2017-05-09 22:39 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-05-09 22:39 - 2017-05-09 22:39 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-09 22:39 - 2017-05-09 22:39 - 43195904 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-05-09 22:39 - 2017-05-09 22:39 - 02457088 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\skypert.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2017-04-06 01:05 - 2017-04-06 01:05 - 01096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2017-04-06 01:05 - 2017-04-06 01:05 - 00241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2017-02-08 04:52 - 2017-02-08 04:52 - 00073728 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2017-03-18 13:57 - 2013-10-24 09:43 - 00479232 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\Monitor.EXE
2017-03-18 13:57 - 2013-09-23 11:16 - 00372736 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\OSD.exe
2016-10-25 10:57 - 2016-10-25 10:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-05-05 19:07 - 2017-05-05 19:08 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-05-05 19:07 - 2017-05-05 19:08 - 26322944 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 00441856 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 02139648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 02901928 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-02-11 21:05 - 2017-02-11 21:05 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 00641024 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2017-05-05 19:13 - 2017-05-05 19:13 - 02167664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17032.10341.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-04-28 19:19 - 2017-04-28 19:19 - 02167664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17032.10331.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-05-08 12:16 - 2017-05-08 12:17 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-08 12:16 - 2017-05-08 12:17 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-05-08 12:16 - 2017-05-08 12:17 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-03-18 07:54 - 2017-05-02 15:54 - 00022928 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2017-04-21 08:47 - 2017-04-21 08:47 - 00115448 _____ () A:\Program Files (x86)\Origin Games\Battlefield 1\amd_ags_x64.dll
2017-04-21 08:47 - 2017-04-21 08:47 - 00014072 _____ () A:\Program Files (x86)\Origin Games\Battlefield 1\Engine.BuildInfo_Win64_retail.dll
2017-04-21 08:47 - 2017-04-21 08:47 - 02371832 _____ () A:\Program Files (x86)\Origin Games\Battlefield 1\Extension.Twinkle.JavaScriptCore_Win64_retail.dll
2017-03-18 07:54 - 2017-04-17 07:23 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2017-03-21 19:17 - 2017-03-21 19:17 - 00173032 _____ () A:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll
2017-03-21 19:17 - 2017-03-21 19:17 - 00199656 _____ () A:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll
2017-03-21 19:17 - 2017-03-21 19:17 - 00396776 _____ () A:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll
2014-01-22 14:53 - 2014-01-22 14:53 - 01607680 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\BDR_info.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\ycc.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\Gigabyte\SIV\ycc.dll
2017-04-08 00:07 - 2017-03-10 02:13 - 00674592 _____ () A:\Program Files (x86)\Steam\SDL2.dll
2017-02-11 20:14 - 2016-09-01 03:02 - 04969248 _____ () A:\Program Files (x86)\Steam\v8.dll
2017-04-28 19:10 - 2017-04-26 01:55 - 02465056 _____ () A:\Program Files (x86)\Steam\video.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 02549760 _____ () A:\Program Files (x86)\Steam\libavcodec-56.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00491008 _____ () A:\Program Files (x86)\Steam\libavformat-56.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00332800 _____ () A:\Program Files (x86)\Steam\libavresample-2.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00442880 _____ () A:\Program Files (x86)\Steam\libavutil-54.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00485888 _____ () A:\Program Files (x86)\Steam\libswscale-3.dll
2017-02-11 20:14 - 2016-09-01 03:02 - 01563936 _____ () A:\Program Files (x86)\Steam\icui18n.dll
2017-02-11 20:14 - 2016-09-01 03:02 - 01195296 _____ () A:\Program Files (x86)\Steam\icuuc.dll
2017-04-28 19:10 - 2017-04-26 01:55 - 00848672 _____ () A:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-02-11 20:13 - 2016-07-05 00:17 - 00266560 _____ () A:\Program Files (x86)\Steam\openvr_api.dll
2017-02-11 21:49 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\Arnaud\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
2017-02-11 21:49 - 2017-02-11 21:49 - 01082880 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
2017-02-11 21:49 - 2017-02-11 21:49 - 03750400 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
2017-02-11 21:49 - 2017-02-11 21:49 - 00914432 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
2017-02-11 21:49 - 2017-02-11 21:49 - 01127424 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
2017-03-17 22:16 - 2017-01-30 23:41 - 68875552 _____ () A:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-04-28 19:10 - 2017-04-26 01:55 - 00383776 _____ () A:\Program Files (x86)\Steam\steam.dll
2017-02-11 21:49 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\Arnaud\AppData\Local\Discord\app-0.0.297\libglesv2.dll
2017-02-11 21:49 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\Arnaud\AppData\Local\Discord\app-0.0.297\libegl.dll
2017-05-10 14:33 - 2017-05-10 14:33 - 00148992 _____ () \\?\C:\Users\Arnaud\AppData\Local\Temp\9673.tmp.node
2017-02-11 21:49 - 2017-04-28 19:09 - 02658296 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
2017-02-11 21:50 - 2017-04-07 20:06 - 02665976 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node
2017-03-18 07:54 - 2017-04-17 07:23 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2017-05-06 03:05 - 2017-05-09 16:40 - 00323584 _____ () C:\Users\Arnaud\AppData\Local\background_fault\bf.dll
2017-05-09 22:30 - 2017-04-28 02:49 - 02681200 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-10-12 07:15 - 2016-10-12 07:15 - 00848896 _____ () \\?\C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\node_modules\sqlite3\lib\binding\node-v46-win32-ia32\node_sqlite3.node
2016-12-09 16:09 - 2016-12-09 16:09 - 52051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-17 02:34 - 2015-03-17 02:34 - 00010240 _____ () W:\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2017-03-18 13:57 - 2013-09-23 10:26 - 00057344 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\lan.dll
2017-03-18 13:57 - 2012-12-13 00:20 - 00061440 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\hiddriver.dll
2017-04-29 23:19 - 2016-10-08 16:48 - 01506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2017-04-29 23:19 - 2016-07-21 10:54 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-12-02 02:54 - 2016-12-02 02:54 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 16:09 - 2016-12-09 16:09 - 00099416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-12-02 02:54 - 2016-12-02 02:54 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2017-05-09 23:40 - 2017-05-09 08:15 - 00139776 _____ () c:\programdata\microsoft onedrive\setup\synctool.dll
2017-05-09 23:40 - 2017-05-09 08:15 - 00139776 _____ () C:\ProgramData\Microsoft OneDrive\setup\SyncTool.dll
2017-05-09 23:40 - 2017-04-19 06:04 - 02864984 _____ () C:\Program Files (x86)\Jamper\Application\libglesv2.dll
2017-05-09 23:40 - 2017-04-19 06:04 - 00087384 _____ () C:\Program Files (x86)\Jamper\Application\libegl.dll
2017-05-09 23:50 - 2017-05-01 12:59 - 17779192 _____ () C:\Users\Arnaud\AppData\Local\Jamper\User Data\PepperFlash\25.0.0.171\pepflashplayer.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\Arnaud:Heroes & Generals [38]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Resources\Themes\Arc\Wallpapers\firewatch_ARC.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\StartupApproved\Run: => "Spotify"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{0C083807-87B8-44C9-8256-0CBB881AE420}] => (Allow) A:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{11C20DB4-0FDD-4AB6-BBC5-73E4F8882953}] => (Allow) A:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{346953F0-4C0C-4DF5-B83B-C58E70916624}] => (Allow) A:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6D3C45ED-A629-42FC-8212-738715BCF3A7}] => (Allow) A:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{007E7B87-C67F-4459-B19E-A446AB482FA9}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{9762FF70-2885-4AF9-BBD6-E2102922249A}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{0DE0ED91-91D0-4865-9CC9-A60E9AAD7795}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{CEDD1FC9-7CC0-41FE-B268-B0D6893DC586}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{0C2A7D51-6195-471B-B3D4-6FEFB819D0D6}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{394F6748-4339-4451-B3F7-90C0D6191F30}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{72C71F8F-7AB0-4800-B712-5A49912422B9}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{53B1C0A6-4E24-4E8B-9BAF-77E1543E59B5}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{C8C1D107-431A-4361-8432-9048D192BAC8}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{5918EF48-020F-4C22-B757-1A45B6453254}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{910AC8AE-AC9C-477B-8124-EC073F94E264}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{0F838A90-3EF8-4DCB-A0D7-7EA9DAEA3678}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{A5CA0B0C-2175-49A9-81C5-97F7D641190E}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{F4EBEB41-3F7F-4C68-9CA3-B3C36039547C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [TCP Query User{4F5C2797-29E3-432F-963D-528712D62183}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe
FirewallRules: [UDP Query User{54C85D11-CAD3-4E52-B320-96113DE7D9E4}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe
FirewallRules: [TCP Query User{C5453843-7BF8-4726-BA56-B81138B5398A}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{CE54CC76-3F57-482F-9757-FD8E781B493E}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{7801BBC5-D28E-42A9-AF0D-141505ED3395}] => (Allow) C:\Program Files (x86)\SoundTouch\SoundTouch.exe
FirewallRules: [{7B6934D4-1C50-4FD7-8181-458B554230AF}] => (Allow) C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch Music Server.exe
FirewallRules: [{EE653190-6F41-4CBA-8C3A-755DA5916714}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{F5DA8092-D190-45A6-8607-79C51AAB50C3}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{54B7544D-0589-4F04-A6D3-6A91299712FB}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{A86F4F53-D50E-4313-9B75-31EB19634E5C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [{52A2ED0F-1844-4822-B7EB-5F37B08DB10B}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [TCP Query User{26B80A4F-1FFC-4807-9671-6D6FEDB82612}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{83637082-F8D3-49F0-B945-83E93EAA2FDE}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E8236629-8392-45C1-87B3-768B26E4CFCD}] => (Allow) W:\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
FirewallRules: [{3F02A8B9-D60C-41CB-841C-A5F050DB4F42}] => (Allow) W:\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
FirewallRules: [{94A422B5-A72E-4384-B292-09F8273B45C8}] => (Allow) LPort=7935
FirewallRules: [{A6C54B0E-6FEF-4FDB-84E8-2055433A01A8}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Metal Gear Solid Ground Zeroes\MgsGroundZeroes.exe
FirewallRules: [{95922E98-E6E2-42DC-9E11-D952CBA80BC6}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Metal Gear Solid Ground Zeroes\MgsGroundZeroes.exe
FirewallRules: [{03BBF517-A7E9-468D-833F-CA3A0E94E4AC}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe
FirewallRules: [{D55322FA-2FCE-46C8-B8D6-1C5C45CAB690}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe
FirewallRules: [{9948A7FD-98F8-4C7D-9695-80E8128FE7A0}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe
FirewallRules: [{026C5118-2362-4A71-8210-35ECE5386CB6}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe
FirewallRules: [TCP Query User{337F4AD0-E4F1-4C30-94DE-ABAB3D94EFAD}A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe] => (Allow) A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe
FirewallRules: [UDP Query User{768502BA-CB3F-488F-9CEE-3D13FD083899}A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe] => (Allow) A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe
FirewallRules: [{92D31B82-222E-45F3-9271-8FCB8CE3EBF6}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6113361C-84C3-4DE8-9F02-EA31CB6381AD}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4A4FD482-806F-4C22-9DEF-B9ABBF917A50}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Moon Base Alpha\Binaries\Win32\MoonBaseAlphaGame.exe
FirewallRules: [{D260122F-3F63-4A62-A067-C07B49160D5F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Moon Base Alpha\Binaries\Win32\MoonBaseAlphaGame.exe
FirewallRules: [{36174942-BCF0-4C45-865B-718077AC66D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{FAF57D9B-C289-4118-AE3F-D0A5303A3DC6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{219BBB6F-64BA-4625-9A32-71F0BB80EF72}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6C1812D8-1AD4-44CB-9892-2369DA4890DF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{7B52ABC1-C4A9-450D-B126-4ACA0E9F6FAA}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{92280CD9-0F90-4CEF-B498-E3B2C613E7A6}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [{83596F51-01FE-46D0-A104-B069DFBFD693}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{CE0867AF-AD01-42BE-A5B2-3D6BE7D11E14}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{3907C36D-AD82-42C7-8454-72EFF9CCE039}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{1BEBA558-59F1-4327-9B94-17861FD70177}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [TCP Query User{FD4AE240-591C-4E1D-9F95-EEEB79AE28F8}A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe
FirewallRules: [UDP Query User{1CBC7741-5316-41E9-B171-C64EF80A142D}A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe
FirewallRules: [{D6F1BD75-5062-4579-A2FF-E851A6728AF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{089221BE-3F58-4D69-A031-590854D67B94}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{0DDC08E5-AF0D-4C19-A15B-528EE5647951}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{25733617-EE93-4259-972D-F6401714AA9B}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{83D33AC7-10EA-4903-B34A-2574FD37D25D}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [TCP Query User{0BF76888-E1EA-4D2D-9BBF-2B2C1180FCB6}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{DDAF9F46-2FF9-4EEA-B055-5EE96704B03D}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [{4C2F7CE8-1929-4BCD-AD0F-0A6CC0F48634}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E7BAEC4E-72D5-422A-B18F-F596161EB590}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9FFC2FE1-DDBD-4BEF-8090-26045403AB75}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{4A8D9951-0B22-46A9-9FEF-B80BF7AEB807}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [{384BF379-A2FF-492E-9013-11AF3C073FBC}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{C87699F2-93A0-4B91-8D9A-3D8A008F3F63}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{952C2F1F-8184-46BF-8FD4-A14E9911795A}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{FA8748BC-C97A-4C11-BDE3-E13759BB06F3}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{7DFE074A-45B8-4A2C-B131-E224F8A5519E}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{76842978-9F60-4FAE-B9B7-76C495CD8C76}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{D3A4F790-3B20-4835-9984-B8F19DB5F695}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{7686BC08-6D45-420A-9703-E1976F5673BA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{95FE25E6-2821-4BE1-963D-E2F49552FDCB}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{9D591ECC-DBB3-44DF-B3F8-898C33EA866B}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{7519CB58-044F-4810-A231-151B523C2948}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{FEC06ADF-61DD-4BE4-BCBE-9D4E7901443B}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{4B7380B8-8F92-442B-9FD9-26547A610AFB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{87B42C58-D020-4E11-BD44-1419014F0BF8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{43EE2C20-7D2E-4000-87F1-B5309D634C03}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7E0AEAA7-3266-4085-8B58-08C142483337}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5FAF02BA-195F-458A-8577-8180EB1776D8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe
FirewallRules: [{38F7B638-3CDD-4924-A2F8-6D98C49C7598}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe
FirewallRules: [{6699908B-EEE6-4BD6-BE6F-D81CD3E29FDB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe
FirewallRules: [{1A11B033-E70D-4B1A-977A-2DF3A58764A6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe
FirewallRules: [{DA467CA6-B974-4C31-88B3-8684F61D533F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe
FirewallRules: [{D018DB5F-217C-47C8-A902-8CCAAFA0915D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe
FirewallRules: [TCP Query User{7DC70CE9-A57E-4AC4-9D63-D9442D11650D}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{817D2BDA-5981-4562-9A99-6990C6587AFD}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{8910F2E2-8D56-4643-B646-AB72FE4F843E}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{F4D5BECB-4BDF-4084-82CF-C0814F36DD63}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{17B2E987-477E-44DE-B792-EB4080061162}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{C5B86FBC-B73B-4227-8DDE-5A504487B6F8}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{ACC4BF00-C783-4F75-A7E5-5A05CC5321F5}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{63896EB6-0BB7-4105-8B58-5352F55A1A28}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{A6CF4AFB-7FBD-4349-8F83-269246656717}] => (Allow) C:\Program Files (x86)\Jamper\Application\chrome.exe
FirewallRules: [{8F9271C0-6FA2-418D-A334-71397F2E5435}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{D7443F5D-011E-4A94-97D9-A7DD9713C613}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{DB079102-ACDE-4A40-A261-1C762EAE60D8}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{EA4A7875-D7CD-49C1-BDFA-44596CC67AA0}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{8612BCF4-E5DB-49F4-A521-B358905D180C}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{B8D0D44E-CBA6-4C9B-AD74-FDF38F28B219}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{5D353D9A-E7DD-437E-BDF5-BA74A58CFEC0}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{6BE90D99-EFB0-4C6B-91CE-F51B7BD82A09}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{81138498-08B3-4A2B-8718-46FF6B6F4624}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Defiance\Patcher.exe
FirewallRules: [{DCC81D11-B68F-4267-97C8-AB2D8D0D815F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Defiance\Patcher.exe
==================== Points de restauration =========================
29-04-2017 18:56:05 Driver Booster : Intel(R) 100 Series/C230 Series Chipset Family LPC Controller - A145
05-05-2017 19:06:57 Windows Update
09-05-2017 22:31:21 Windows Update
09-05-2017 22:31:28 Windows Update
10-05-2017 09:04:12 JRT Pre-Junkware Removal
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (05/10/2017 12:00:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante QQIme.exe, version : 1.0.21.1, horodatage : 0x59085876
Nom du module défaillant : QQIme.exe, version : 1.0.21.1, horodatage : 0x59085876
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00006c54
ID du processus défaillant : 0x233c
Heure de début de l’application défaillante : 0x01d2c9742a09ae13
Chemin d’accès de l’application défaillante : C:\Users\Arnaud\AppData\Local\background_fault\QQIme.exe
Chemin d’accès du module défaillant: C:\Users\Arnaud\AppData\Local\background_fault\QQIme.exe
ID de rapport : 11f96b53-bda4-4894-b473-42b0a0d79ea3
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (05/10/2017 11:58:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ctfmon.exe, version : 10.0.14393.0, horodatage : 0x57899148
Nom du module défaillant : InputService.dll, version : 10.0.14393.1066, horodatage : 0x58d9f10c
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00057f66
ID du processus défaillant : 0x2210
Heure de début de l’application défaillante : 0x01d2c95b409318bd
Chemin d’accès de l’application défaillante : C:\Windows\SysWOW64\ctfmon.exe
Chemin d’accès du module défaillant: C:\Windows\system32\InputService.dll
ID de rapport : fa404eea-6716-4250-91fa-56b9c53d72b7
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (05/10/2017 11:58:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ctfmon.exe, version : 10.0.14393.0, horodatage : 0x57899148
Nom du module défaillant : InputService.dll, version : 10.0.14393.1066, horodatage : 0x58d9f10c
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00057f66
ID du processus défaillant : 0x2058
Heure de début de l’application défaillante : 0x01d2c95b40251a90
Chemin d’accès de l’application défaillante : C:\Windows\SysWOW64\ctfmon.exe
Chemin d’accès du module défaillant: C:\Windows\system32\InputService.dll
ID de rapport : fea8f5ed-6e72-41ff-be39-1ceb5385e25f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (05/10/2017 11:56:33 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:44:19 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:33:09 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:32:58 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:32:44 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:17:26 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:07:15 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Erreurs système:
=============
Error: (05/10/2017 02:43:10 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/10/2017 02:35:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.
Error: (05/10/2017 02:32:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Unchecky n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.
Error: (05/10/2017 02:32:58 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (05/10/2017 02:32:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service VMware Workstation Server s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.
Error: (05/10/2017 02:32:31 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/10/2017 02:32:18 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
Error: (05/10/2017 02:32:18 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
Error: (05/10/2017 02:32:13 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
Error: (05/10/2017 02:32:13 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
CodeIntegrity:
===================================
Date: 2017-05-10 14:32:18.211
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:18.210
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:13.489
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:13.488
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:13.283
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 13:43:46.578
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.560
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.533
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.528
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.523
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 52%
Mémoire physique - RAM - totale: 16333.23 MB
Mémoire physique - RAM - disponible: 7689.54 MB
Mémoire virtuelle totale: 18765.23 MB
Mémoire virtuelle disponible: 4797.98 MB
==================== Lecteurs ================================
Drive a: (BOOM) (Fixed) (Total:931.39 GB) (Free:613.25 GB) NTFS
Drive c: (BAAM) (Fixed) (Total:223.02 GB) (Free:136.89 GB) NTFS
Drive w: (BIIM) (Fixed) (Total:465.76 GB) (Free:370.84 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 374ECED5)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par Arnaud (10-05-2017 16:47:33)
Exécuté depuis C:\Users\Arnaud\Desktop
Windows 10 Pro Version 1607 (X64) (2017-02-11 22:57:07)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3267324551-2537453020-2449305945-500 - Administrator - Disabled)
Arnaud (S-1-5-21-3267324551-2537453020-2449305945-1001 - Administrator - Enabled) => C:\Users\Arnaud
DefaultAccount (S-1-5-21-3267324551-2537453020-2449305945-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3267324551-2537453020-2449305945-1000 - Limited - Disabled) => C:\Users\defaultuser0
HomeGroupUser$ (S-1-5-21-3267324551-2537453020-2449305945-1005 - Limited - Enabled)
Invité (S-1-5-21-3267324551-2537453020-2449305945-501 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
@BIOS B14.1003.1 (HKLM-x32\...\InstallShield_{C9D46F25-5F9D-4E25-B24F-BC00E9EDF529}) (Version: 3.00.0000 - GIGABYTE)
@BIOS B14.1003.1 (x32 Version: 3.00.0000 - GIGABYTE) Hidden
3DMark (HKLM-x32\...\{39f8dcb1-5f2e-4057-980e-f463756a0465}) (Version: 2.3.3693.0 - Futuremark)
3DMark (Version: 2.3.3693.0 - Futuremark) Hidden
Action! (HKLM-x32\...\Mirillis Action!) (Version: 2.2.1 - Mirillis)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_1_0) (Version: 14.1.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated)
Adobe Animate CC 2017 (HKLM-x32\...\FLPR_16_1) (Version: 16.1 - Adobe Systems Incorporated)
Adobe Audition CC 2017 (HKLM-x32\...\AUDT_10_0_2) (Version: 10.0.2 - Adobe Systems Incorporated)
Adobe Bridge CC 2017 (HKLM-x32\...\KBRG_7_0) (Version: 7.0 - Adobe Systems Incorporated)
Adobe Character Animator CC (Beta) (HKLM-x32\...\ANMLBETA_1_0_5) (Version: 1.0.5 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2017 (HKLM-x32\...\DRWV_17_0_1) (Version: 17.0.1 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit CC (HKLM-x32\...\{6297487E-3778-4F72-B458-55690418DB98}) (Version: 4.0.0.0 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.3.2 - Adobe Systems Incorporated)
Adobe Flash Builder 4.7 (64 bits) (HKLM-x32\...\{848DE8E1-521D-4748-A158-517708107EF3}) (Version: 4.7 - Adobe Systems Incorporated)
Adobe Gaming SDK 1.4 (HKLM-x32\...\{2316BC3C-61AD-4289-8702-9DF0DFCA08ED}) (Version: 1.4 - Adobe Systems Incorporated)
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_2) (Version: 21.0.2 - Adobe Systems Incorporated)
Adobe InCopy CC 2017 (HKLM-x32\...\AICY_12_0_0) (Version: 12.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2017 (HKLM-x32\...\IDSN_12_0_0) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.8 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
Adobe Muse CC 2017 (HKLM-x32\...\MUSE_2017_0_2) (Version: 2017.0.2.60 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Prelude CC 2017 (HKLM-x32\...\PRLD_6_0_2) (Version: 6.0.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
Adobe Scout CC (HKLM\...\{BA573BFE-83B4-11E3-93D2-D231FEB1DC81}) (Version: 1.1.3.354121 - Adobe Systems Incorporated)
Adobe SpeedGrade CC 2015 (HKLM-x32\...\{8FD7F1DB-7355-469E-A3F2-2118148D8477}) (Version: 9.1.0 - Adobe Systems Incorporated)
Adobe Touch App Plugins (HKLM-x32\...\{1EC083EE-5B76-4A2A-B95A-CAF460AA29D6}) (Version: 1.0 - Adobe Systems Incorporated)
AirDroid 3.4.1.0 (HKLM-x32\...\AirDroid) (Version: 3.4.1.0 - Sand Studio)
AlphaGo (HKLM-x32\...\{B7CB7055-EFAE-4CD2-928A-15DB5F4FF7C7}) (Version: 1.2.5 - AlphaGo)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.16.0503 - Gigabyte)
APP Center (x32 Version: 1.16.0503 - Gigabyte) Hidden
Arc-Regular (HKLM\...\Arc-Regular) (Version: - neiio)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.35.1 - Asmedia Technology)
Assassin's Creed III (HKLM-x32\...\Uplay Install 54) (Version: - Ubisoft)
Assassin's Creed Unity Dead Kings DLC (HKLM-x32\...\QXNzYXNzaW5zQ3JlZWRVbml0eQ==_is1) (Version: 1 - )
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Battlefield™ 1 (HKLM-x32\...\{335B50BC-6130-4BAF-9A6A-F1561270587B}) (Version: 1.0.49.52296 - Electronic Arts)
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
BUSB (HKLM-x32\...\{0AADC50C-C4F8-49A7-8699-AFE46875CA67}) (Version: 1.13.0911.1 - GIGABYTE)
Call of Duty(R) - World at War(TM) (HKLM-x32\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Call of Duty(R) - World at War(TM) (x32 Version: 1.0 - Activision) Hidden
Catalyst Control Center Next Localization BR (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (Version: 2017.0502.1417.23881 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
Chivalry: Medieval Warfare (HKLM\...\Steam App 219640) (Version: - Torn Banner Studios)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z Gigabyte 1.78 (HKLM\...\CPUID CPU-Z Gigabyte_is1) (Version: 1.78 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
DAEMON Tools Ultra (HKLM\...\DAEMON Tools Ultra) (Version: 5.0.1.0551 - Disc Soft Ltd)
DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.9.1 - DB Browser for SQLite Team)
Defiance (HKLM\...\Steam App 224600) (Version: - Trion Worlds, Inc.)
Discord (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Driver Booster 4.3 (HKLM-x32\...\Driver Booster_is1) (Version: 4.3.0 - IObit)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0626 - GIGABYTE)
EasyTune (x32 Version: 1.15.0626 - GIGABYTE) Hidden
EZSetup B15.0623.1 (HKLM-x32\...\InstallShield_{9EAB60B6-70FE-4EC7-8DF4-54773E4EAC05}) (Version: 1.00.0000 - GIGABYTE)
EZSetup B15.0623.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
Fast Boot (HKLM-x32\...\InstallShield_{FA8FB4F2-F524-48E1-A06C-45602FBF26CD}) (Version: 1.15.0626 - GIGABYTE)
Fast Boot (x32 Version: 1.15.0626 - GIGABYTE) Hidden
Fraps (HKLM-x32\...\Fraps) (Version: - )
FreeMouseAutoClicker 3.8.5 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version: - Advanced Mouse Auto Clicker ltd.)
Futuremark SystemInfo (HKLM-x32\...\{6583B359-134F-480D-9B31-9B94EFFAFE40}) (Version: 5.0.609.0 - Futuremark)
Garry's Mod (HKLM\...\Steam App 4000) (Version: - Facepunch Studios)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM\...\Steam App 271590) (Version: - Rockstar North)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Guild Wars 2 (HKLM\...\Guild Wars 2) (Version: - NCsoft Corporation, Ltd.)
Heroes & Generals (HKLM\...\Steam App 227940) (Version: - Reto-Moto)
Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Killer Bandwidth Control Filter Driver (Version: 1.1.65.1357 - Rivet Networks) Hidden
Killer E240x Drivers (Version: 1.1.65.1357 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.65.1357 - Rivet Networks) Hidden
Killer Performance Suite (HKLM-x32\...\{75269D5A-2CE7-48D1-8169-5744C83C574F}) (Version: 1.1.65.1357 - Rivet Networks)
LibreOffice 5.2.6.2 (HKLM-x32\...\{443795BA-BBA0-46CF-A07F-DB5B461785F7}) (Version: 5.2.6.2 - The Document Foundation)
Logitech - Assistant pour jeux vidéo 8.92 (HKLM\...\Logitech Gaming Software) (Version: 8.92.67 - Logitech Inc.)
Malwarebytes Anti-Malware versione 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
METAL GEAR SOLID V: GROUND ZEROES (HKLM\...\Steam App 311340) (Version: - Kojima Productions)
Microsoft OneDrive (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Moonbase Alpha (HKLM\...\Steam App 39000) (Version: - Virtual Heroes)
MSI Afterburner 4.3.0 (HKLM-x32\...\Afterburner) (Version: 4.3.0 - MSI Co., LTD)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
ON_OFF Charge 2 B14.0217.1 (HKLM-x32\...\InstallShield_{6B4ED6F7-BB88-4945-B0C6-01410E1BAC3A}) (Version: 1.00.0000 - GIGABYTE)
ON_OFF Charge 2 B14.0217.1 (x32 Version: 1.00.0000 - GIGABYTE) Hidden
OpenIV (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\OpenIV) (Version: 2.9.905 - .black/OpenIV Team)
OpenOffice 4.1.3 (HKLM-x32\...\{3E1679DA-5081-44AA-B4C2-BF8EE7E107E0}) (Version: 4.13.9783 - Apache Software Foundation)
Oracle VM VirtualBox 5.1.22 (HKLM\...\{8D5E4D4D-5E0C-4448-B018-5DDEF1E208D9}) (Version: 5.1.22 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.4.10.43546 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.104.19.0 - Overwolf Ltd.)
PAYDAY 2 (HKLM\...\Steam App 218620) (Version: - OVERKILL - a Starbreeze Studio.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.8 - Power Software Ltd)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Resource Hacker Version 4.5.30 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
ROBLOX Player for Arnaud (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Studio for Arnaud (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
Rocket League (HKLM\...\Steam App 252950) (Version: - Psyonix, Inc.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
S.K.I.L.L. - Special Force 2 (HKLM\...\Steam App 286940) (Version: - Dragonfly GF Co., LTD)
Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 454 - Massachusetts Institute of Technology)
Scratch 2 Offline Editor (x32 Version: 255 - Massachusetts Institute of Technology) Hidden
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version: - Firaxis Games)
Sid Meier's Civilization V (HKLM-x32\...\steam app 8930) (Version: - 2K Games, Inc.)
SIV (HKLM-x32\...\InstallShield_{AAA057C3-10DC-4EB9-A3D6-8208C1BB7411}) (Version: 1.15.1112 - GIGABYTE)
SIV (x32 Version: 1.15.1112 - GIGABYTE) Hidden
Skype™ 7.32 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.32.104 - Skype Technologies S.A.)
Smart TimeLock B14.0731.1 (HKLM-x32\...\InstallShield_{5D93E30A-78A3-4890-962F-56B61A5873DD}) (Version: 1.00.0001 - GIGABYTE)
Smart TimeLock B14.0731.1 (x32 Version: 1.00.0001 - GIGABYTE) Hidden
SoundTouch (HKLM-x32\...\{3432B400-67B8-4933-B701-16ED3BF65486}) (Version: 14.0.15.339 - BOSE)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spirit of Gamer Gaming Keyboard Driver (HKLM-x32\...\{68F65E0D-F894-4F5A-B9E9-F3CAB29FB59A}) (Version: 1.0 - ADVANCE)
Spotify (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB)
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: 12.0.0.10 - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader 2 (HKLM-x32\...\Stronghold Crusader 2_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.1.4 - TeamSpeak Systems GmbH)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.77242 - TeamViewer)
Tomb Raider (HKLM\...\Steam App 203160) (Version: - Crystal Dynamics)
Toribash (HKLM\...\Steam App 248570) (Version: - Nabi Studios)
TWAIN 2.1 DS Sample (HKLM\...\{FA2E386F-BAB5-4625-8322-20AC986E4D99}) (Version: 2.1.3 - TWAIN Working Group)
UltraUXThemePatcher (HKLM-x32\...\UltraUXThemePatcher) (Version: 3.2.1.0 - Manuel Hoefs (Zottel))
Unchecky v1.0.2 (HKLM-x32\...\Unchecky) (Version: 1.0.2 - RaMMicHaeL)
Uplay (HKLM-x32\...\Uplay) (Version: 28.1 - Ubisoft)
UxStyle (HKLM-x32\...\{6bf90d91-c5db-454e-a7b4-81bc6cbbe13f}) (Version: 0.2.4.2 - The Within Network, LLC)
UxStyle (Version: 0.2.4.2 - The Within Network, LLC) Hidden
VEGAS Pro 14.0 (64-bit) (HKLM\...\{99FD8D80-BE54-11E6-98F7-BE9B4130C4C9}) (Version: 14.0.211 - VEGAS)
VMware Workstation (HKLM\...\{A4D1DB40-C6DC-40F8-AF6D-46BD4DD5ACAC}) (Version: 12.5.5 - VMware, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-3) (Version: 1.0.39.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (Version: 1.0.39.1 - LunarG, Inc.) Hidden
WinDirStat 1.1.2 (HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\WinDirStat) (Version: - )
WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
Wondershare Filmora(Build 8.2.2) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
World of Tanks Blitz (HKLM\...\Steam App 444200) (Version: - Wargaming Group Limited)
Youtubers Life (HKLM-x32\...\Youtubers Life_is1) (Version: - )
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3267324551-2537453020-2449305945-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-35D363130AE4}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3267324551-2537453020-2449305945-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\Arnaud\AppData\Local\Roblox\Versions\version-ca61db0aa1b8462c\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-3267324551-2537453020-2449305945-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {04DDBACC-21A8-4FA3-9813-08C82E0CABD2} - \Pafusdress -> Pas de fichier <==== ATTENTION
Task: {13E6D63D-9FE7-4653-98FE-83E702D8B248} - \Persipy -> Pas de fichier <==== ATTENTION
Task: {1A586311-01FC-45C4-9BBD-A63155311A36} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {4C896AD0-20E4-48E5-90BA-E99342678256} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-arnaud.wierel@free.fr => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {528C3EC9-0E8C-4087-9632-FFB92364F8B3} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-04-27] (Overwolf LTD)
Task: {5996F892-DF68-4C8D-8949-F7736401BA5D} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {7B24A0D6-A69D-4C0F-A4EF-CBABC7174219} - System32\Tasks\{3ADCAE3B-840C-58EC-65A0-02804CC9D4D2} => C:\Users\Arnaud\AppData\Local\Dedeleh\PRODUC~1.EXE [2013-04-12] ()
Task: {878CE333-7E0B-4456-A72A-17869E5C14F3} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-05-02] (Advanced Micro Devices, Inc.)
Task: {CA4AC885-2166-438E-9773-593DCCFF165E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {FEB9724D-4F1D-46A6-B00F-5F2FACDDDF6B} - System32\Tasks\ifsDKzG7HAgu => ifsdkzg7hagu.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\{3ADCAE3B-840C-58EC-65A0-02804CC9D4D2}.job =>
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI_ActiveScriptEventConsumer_ASEC: <===== ATTENTION
Shortcut: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7eacadfa43776aec\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\360c22b137d62ce9\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.)
ShortcutWithArgument: C:\Users\Arnaud\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm
ShortcutWithArgument: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\Arnaud\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/
ShortcutWithArgument: C:\Users\Arnaud\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\4d44b85cb2a18134\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData2
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Jamper\Application\chrome.exe (Google Inc.) -> --load-extension="C:\Users\Arnaud\AppData\Local\kemgadeojglibflomicgnfeopkdfflnk" hxxp://www.yeadesktop.com/
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2017-05-09 22:30 - 2017-04-28 02:49 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-04-14 16:27 - 2015-04-14 16:27 - 00016896 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
2017-05-06 08:19 - 2017-03-22 10:24 - 02271520 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-04 12:03 - 2017-03-04 12:03 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2017-03-04 12:03 - 2017-03-08 12:48 - 00107832 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2017-03-21 19:17 - 2017-03-21 19:17 - 12482024 _____ () A:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
2017-05-09 22:30 - 2017-04-28 02:49 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-10-25 10:57 - 2016-10-25 10:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-11-21 08:01 - 2016-11-21 08:01 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-03-17 20:59 - 2017-03-04 08:31 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-03-17 20:59 - 2017-03-04 08:12 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-03-17 20:59 - 2017-03-04 08:05 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-03-17 20:59 - 2017-03-04 08:05 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-05-09 22:30 - 2017-04-28 01:36 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-05-09 22:30 - 2017-04-28 01:36 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-05-09 22:30 - 2017-04-28 01:37 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-30 10:52 - 2015-07-30 10:52 - 01244456 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
2017-05-09 22:39 - 2017-05-09 22:39 - 00074752 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-05-09 22:39 - 2017-05-09 22:39 - 00201728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-05-09 22:39 - 2017-05-09 22:39 - 43195904 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-05-09 22:39 - 2017-05-09 22:39 - 02457088 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.15.597.0_x64__kzf8qxf38zg5c\skypert.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00739840 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00014336 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00071168 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00011776 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 02013696 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-06-29 20:13 - 2016-06-29 20:13 - 00191488 _____ () C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2017-04-06 01:05 - 2017-04-06 01:05 - 01096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 02:07 - 2015-03-07 02:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2017-04-06 01:05 - 2017-04-06 01:05 - 00241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2017-02-08 04:52 - 2017-02-08 04:52 - 00073728 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2017-03-18 13:57 - 2013-10-24 09:43 - 00479232 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\Monitor.EXE
2017-03-18 13:57 - 2013-09-23 11:16 - 00372736 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\OSD.exe
2016-10-25 10:57 - 2016-10-25 10:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-05-05 19:07 - 2017-05-05 19:08 - 00020480 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2017-05-05 19:07 - 2017-05-05 19:08 - 26322944 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 00441856 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.AGM.Native.Windows.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 02139648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 02901928 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 00046080 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.Edit.Services.dll
2017-02-11 21:05 - 2017-02-11 21:05 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 00641024 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.RichMedia.Ink.Controls.dll
2017-05-05 19:07 - 2017-05-05 19:08 - 01062400 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_17.425.10010.0_x64__8wekyb3d8bbwe\Microsoft.Sharing.dll
2017-05-05 19:13 - 2017-05-05 19:13 - 02167664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.17032.10341.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-04-28 19:19 - 2017-04-28 19:19 - 02167664 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.17032.10331.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-05-08 12:16 - 2017-05-08 12:17 - 10601984 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-05-08 12:16 - 2017-05-08 12:17 - 02640384 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-05-08 12:16 - 2017-05-08 12:17 - 00765440 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11703.1001.45.0_x64__8wekyb3d8bbwe\WinStore.Vui.dll
2017-03-18 07:54 - 2017-05-02 15:54 - 00022928 _____ () C:\Program Files (x86)\Origin\QtWebEngineProcess.exe
2017-04-21 08:47 - 2017-04-21 08:47 - 00115448 _____ () A:\Program Files (x86)\Origin Games\Battlefield 1\amd_ags_x64.dll
2017-04-21 08:47 - 2017-04-21 08:47 - 00014072 _____ () A:\Program Files (x86)\Origin Games\Battlefield 1\Engine.BuildInfo_Win64_retail.dll
2017-04-21 08:47 - 2017-04-21 08:47 - 02371832 _____ () A:\Program Files (x86)\Origin Games\Battlefield 1\Extension.Twinkle.JavaScriptCore_Win64_retail.dll
2017-03-18 07:54 - 2017-04-17 07:23 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2017-03-21 19:17 - 2017-03-21 19:17 - 00173032 _____ () A:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll
2017-03-21 19:17 - 2017-03-21 19:17 - 00199656 _____ () A:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll
2017-03-21 19:17 - 2017-03-21 19:17 - 00396776 _____ () A:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll
2014-01-22 14:53 - 2014-01-22 14:53 - 01607680 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\BDR_info.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\Gigabyte\AppCenter\ycc.dll
2015-02-16 11:47 - 2015-02-16 11:47 - 00105472 _____ () C:\Program Files (x86)\Gigabyte\SIV\ycc.dll
2017-04-08 00:07 - 2017-03-10 02:13 - 00674592 _____ () A:\Program Files (x86)\Steam\SDL2.dll
2017-02-11 20:14 - 2016-09-01 03:02 - 04969248 _____ () A:\Program Files (x86)\Steam\v8.dll
2017-04-28 19:10 - 2017-04-26 01:55 - 02465056 _____ () A:\Program Files (x86)\Steam\video.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 02549760 _____ () A:\Program Files (x86)\Steam\libavcodec-56.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00491008 _____ () A:\Program Files (x86)\Steam\libavformat-56.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00332800 _____ () A:\Program Files (x86)\Steam\libavresample-2.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00442880 _____ () A:\Program Files (x86)\Steam\libavutil-54.dll
2017-02-11 20:13 - 2016-01-27 09:49 - 00485888 _____ () A:\Program Files (x86)\Steam\libswscale-3.dll
2017-02-11 20:14 - 2016-09-01 03:02 - 01563936 _____ () A:\Program Files (x86)\Steam\icui18n.dll
2017-02-11 20:14 - 2016-09-01 03:02 - 01195296 _____ () A:\Program Files (x86)\Steam\icuuc.dll
2017-04-28 19:10 - 2017-04-26 01:55 - 00848672 _____ () A:\Program Files (x86)\Steam\bin\chromehtml.DLL
2017-02-11 20:13 - 2016-07-05 00:17 - 00266560 _____ () A:\Program Files (x86)\Steam\openvr_api.dll
2017-02-11 21:49 - 2017-01-04 15:28 - 01958912 _____ () C:\Users\Arnaud\AppData\Local\Discord\app-0.0.297\ffmpeg.dll
2017-02-11 21:49 - 2017-02-11 21:49 - 01082880 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_voice\discord_voice.node
2017-02-11 21:49 - 2017-02-11 21:49 - 03750400 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_voice\libdiscord.dll
2017-02-11 21:49 - 2017-02-11 21:49 - 00914432 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_utils\discord_utils.node
2017-02-11 21:49 - 2017-02-11 21:49 - 01127424 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_toaster\discord_toaster.node
2017-03-17 22:16 - 2017-01-30 23:41 - 68875552 _____ () A:\Program Files (x86)\Steam\bin\cef\cef.win7\libcef.dll
2017-04-28 19:10 - 2017-04-26 01:55 - 00383776 _____ () A:\Program Files (x86)\Steam\steam.dll
2017-02-11 21:49 - 2017-01-04 15:28 - 02278912 _____ () C:\Users\Arnaud\AppData\Local\Discord\app-0.0.297\libglesv2.dll
2017-02-11 21:49 - 2017-01-04 15:28 - 00096768 _____ () C:\Users\Arnaud\AppData\Local\Discord\app-0.0.297\libegl.dll
2017-05-10 14:33 - 2017-05-10 14:33 - 00148992 _____ () \\?\C:\Users\Arnaud\AppData\Local\Temp\9673.tmp.node
2017-02-11 21:49 - 2017-04-28 19:09 - 02658296 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_rpc\discord_rpc.node
2017-02-11 21:50 - 2017-04-07 20:06 - 02665976 _____ () \\?\C:\Users\Arnaud\AppData\Roaming\discord\0.0.297\modules\discord_contact_import\discord_contact_import.node
2017-03-18 07:54 - 2017-04-17 07:23 - 00012288 _____ () C:\Program Files (x86)\Origin\libEGL.DLL
2017-05-06 03:05 - 2017-05-09 16:40 - 00323584 _____ () C:\Users\Arnaud\AppData\Local\background_fault\bf.dll
2017-05-09 22:30 - 2017-04-28 02:49 - 02681200 _____ () C:\Windows\System32\CoreUIComponents.dll
2016-10-12 07:15 - 2016-10-12 07:15 - 00848896 _____ () \\?\C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\node_modules\sqlite3\lib\binding\node-v46-win32-ia32\node_sqlite3.node
2016-12-09 16:09 - 2016-12-09 16:09 - 52051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-03-17 02:34 - 2015-03-17 02:34 - 00010240 _____ () W:\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2017-03-18 13:57 - 2013-09-23 10:26 - 00057344 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\lan.dll
2017-03-18 13:57 - 2012-12-13 00:20 - 00061440 _____ () C:\Program Files (x86)\ADVANCE\Spirit of Gamer Gaming Keyboard\hiddriver.dll
2017-04-29 23:19 - 2016-10-08 16:48 - 01506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2017-04-29 23:19 - 2016-07-21 10:54 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2016-12-02 02:54 - 2016-12-02 02:54 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 02:54 - 2016-12-02 02:54 - 00124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 16:09 - 2016-12-09 16:09 - 00099416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-12-02 02:54 - 2016-12-02 02:54 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2017-05-09 23:40 - 2017-05-09 08:15 - 00139776 _____ () c:\programdata\microsoft onedrive\setup\synctool.dll
2017-05-09 23:40 - 2017-05-09 08:15 - 00139776 _____ () C:\ProgramData\Microsoft OneDrive\setup\SyncTool.dll
2017-05-09 23:40 - 2017-04-19 06:04 - 02864984 _____ () C:\Program Files (x86)\Jamper\Application\libglesv2.dll
2017-05-09 23:40 - 2017-04-19 06:04 - 00087384 _____ () C:\Program Files (x86)\Jamper\Application\libegl.dll
2017-05-09 23:50 - 2017-05-01 12:59 - 17779192 _____ () C:\Users\Arnaud\AppData\Local\Jamper\User Data\PepperFlash\25.0.0.171\pepflashplayer.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\Arnaud:Heroes & Generals [38]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Resources\Themes\Arc\Wallpapers\firewatch_ARC.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run32: => "PWRISOVM.EXE"
HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-3267324551-2537453020-2449305945-1001\...\StartupApproved\Run: => "Spotify"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{0C083807-87B8-44C9-8256-0CBB881AE420}] => (Allow) A:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{11C20DB4-0FDD-4AB6-BBC5-73E4F8882953}] => (Allow) A:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{346953F0-4C0C-4DF5-B83B-C58E70916624}] => (Allow) A:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6D3C45ED-A629-42FC-8212-738715BCF3A7}] => (Allow) A:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{007E7B87-C67F-4459-B19E-A446AB482FA9}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{9762FF70-2885-4AF9-BBD6-E2102922249A}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{0DE0ED91-91D0-4865-9CC9-A60E9AAD7795}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{CEDD1FC9-7CC0-41FE-B268-B0D6893DC586}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{0C2A7D51-6195-471B-B3D4-6FEFB819D0D6}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{394F6748-4339-4451-B3F7-90C0D6191F30}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{72C71F8F-7AB0-4800-B712-5A49912422B9}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{53B1C0A6-4E24-4E8B-9BAF-77E1543E59B5}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{C8C1D107-431A-4361-8432-9048D192BAC8}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{5918EF48-020F-4C22-B757-1A45B6453254}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\World of Tanks Blitz\wotblitz.exe
FirewallRules: [{910AC8AE-AC9C-477B-8124-EC073F94E264}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{0F838A90-3EF8-4DCB-A0D7-7EA9DAEA3678}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Heroes & Generals\hngsteamlauncher.exe
FirewallRules: [{A5CA0B0C-2175-49A9-81C5-97F7D641190E}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{F4EBEB41-3F7F-4C68-9CA3-B3C36039547C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Tomb Raider\TombRaider.exe
FirewallRules: [TCP Query User{4F5C2797-29E3-432F-963D-528712D62183}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe
FirewallRules: [UDP Query User{54C85D11-CAD3-4E52-B320-96113DE7D9E4}C:\program files (x86)\gigabyte\appcenter\gbupdate.exe] => (Allow) C:\program files (x86)\gigabyte\appcenter\gbupdate.exe
FirewallRules: [TCP Query User{C5453843-7BF8-4726-BA56-B81138B5398A}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{CE54CC76-3F57-482F-9757-FD8E781B493E}A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{7801BBC5-D28E-42A9-AF0D-141505ED3395}] => (Allow) C:\Program Files (x86)\SoundTouch\SoundTouch.exe
FirewallRules: [{7B6934D4-1C50-4FD7-8181-458B554230AF}] => (Allow) C:\Program Files (x86)\SoundTouch\SoundTouchMusicServer\SoundTouch Music Server.exe
FirewallRules: [{EE653190-6F41-4CBA-8C3A-755DA5916714}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{F5DA8092-D190-45A6-8607-79C51AAB50C3}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{54B7544D-0589-4F04-A6D3-6A91299712FB}A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) A:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{A86F4F53-D50E-4313-9B75-31EB19634E5C}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [{52A2ED0F-1844-4822-B7EB-5F37B08DB10B}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Toribash\toribash.exe
FirewallRules: [TCP Query User{26B80A4F-1FFC-4807-9671-6D6FEDB82612}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{83637082-F8D3-49F0-B945-83E93EAA2FDE}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E8236629-8392-45C1-87B3-768B26E4CFCD}] => (Allow) W:\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
FirewallRules: [{3F02A8B9-D60C-41CB-841C-A5F050DB4F42}] => (Allow) W:\Adobe\Adobe Flash Builder 4.7 (64 Bit)\FlashBuilder.exe
FirewallRules: [{94A422B5-A72E-4384-B292-09F8273B45C8}] => (Allow) LPort=7935
FirewallRules: [{A6C54B0E-6FEF-4FDB-84E8-2055433A01A8}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Metal Gear Solid Ground Zeroes\MgsGroundZeroes.exe
FirewallRules: [{95922E98-E6E2-42DC-9E11-D952CBA80BC6}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Metal Gear Solid Ground Zeroes\MgsGroundZeroes.exe
FirewallRules: [{03BBF517-A7E9-468D-833F-CA3A0E94E4AC}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe
FirewallRules: [{D55322FA-2FCE-46C8-B8D6-1C5C45CAB690}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3SP.exe
FirewallRules: [{9948A7FD-98F8-4C7D-9695-80E8128FE7A0}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe
FirewallRules: [{026C5118-2362-4A71-8210-35ECE5386CB6}] => (Allow) A:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed III\AC3MP.exe
FirewallRules: [TCP Query User{337F4AD0-E4F1-4C30-94DE-ABAB3D94EFAD}A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe] => (Allow) A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe
FirewallRules: [UDP Query User{768502BA-CB3F-488F-9CEE-3D13FD083899}A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe] => (Allow) A:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iii\ac3sp.exe
FirewallRules: [{92D31B82-222E-45F3-9271-8FCB8CE3EBF6}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{6113361C-84C3-4DE8-9F02-EA31CB6381AD}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4A4FD482-806F-4C22-9DEF-B9ABBF917A50}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Moon Base Alpha\Binaries\Win32\MoonBaseAlphaGame.exe
FirewallRules: [{D260122F-3F63-4A62-A067-C07B49160D5F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Moon Base Alpha\Binaries\Win32\MoonBaseAlphaGame.exe
FirewallRules: [{36174942-BCF0-4C45-865B-718077AC66D0}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{FAF57D9B-C289-4118-AE3F-D0A5303A3DC6}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{219BBB6F-64BA-4625-9A32-71F0BB80EF72}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6C1812D8-1AD4-44CB-9892-2369DA4890DF}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{7B52ABC1-C4A9-450D-B126-4ACA0E9F6FAA}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{92280CD9-0F90-4CEF-B498-E3B2C613E7A6}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [{83596F51-01FE-46D0-A104-B069DFBFD693}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{CE0867AF-AD01-42BE-A5B2-3D6BE7D11E14}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{3907C36D-AD82-42C7-8454-72EFF9CCE039}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{1BEBA558-59F1-4327-9B94-17861FD70177}] => (Allow) A:\Program Files (x86)\Star Wars-The Old Republic\launcher.exe
FirewallRules: [TCP Query User{FD4AE240-591C-4E1D-9F95-EEEB79AE28F8}A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe
FirewallRules: [UDP Query User{1CBC7741-5316-41E9-B171-C64EF80A142D}A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe] => (Allow) A:\program files (x86)\steam\steamapps\common\grand theft auto v\server\gtaserver.exe
FirewallRules: [{D6F1BD75-5062-4579-A2FF-E851A6728AF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{089221BE-3F58-4D69-A031-590854D67B94}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{0DDC08E5-AF0D-4C19-A15B-528EE5647951}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{25733617-EE93-4259-972D-F6401714AA9B}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{83D33AC7-10EA-4903-B34A-2574FD37D25D}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [TCP Query User{0BF76888-E1EA-4D2D-9BBF-2B2C1180FCB6}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{DDAF9F46-2FF9-4EEA-B055-5EE96704B03D}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [{4C2F7CE8-1929-4BCD-AD0F-0A6CC0F48634}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{E7BAEC4E-72D5-422A-B18F-F596161EB590}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{9FFC2FE1-DDBD-4BEF-8090-26045403AB75}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{4A8D9951-0B22-46A9-9FEF-B80BF7AEB807}C:\users\arnaud\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\arnaud\appdata\roaming\spotify\spotify.exe
FirewallRules: [{384BF379-A2FF-492E-9013-11AF3C073FBC}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{C87699F2-93A0-4B91-8D9A-3D8A008F3F63}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1Trial.exe
FirewallRules: [{952C2F1F-8184-46BF-8FD4-A14E9911795A}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{FA8748BC-C97A-4C11-BDE3-E13759BB06F3}] => (Allow) A:\Program Files (x86)\Origin Games\Battlefield 1\bf1.exe
FirewallRules: [{7DFE074A-45B8-4A2C-B131-E224F8A5519E}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [{76842978-9F60-4FAE-B9B7-76C495CD8C76}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe
FirewallRules: [TCP Query User{D3A4F790-3B20-4835-9984-B8F19DB5F695}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{7686BC08-6D45-420A-9703-E1976F5673BA}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{95FE25E6-2821-4BE1-963D-E2F49552FDCB}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{9D591ECC-DBB3-44DF-B3F8-898C33EA866B}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [TCP Query User{7519CB58-044F-4810-A231-151B523C2948}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{FEC06ADF-61DD-4BE4-BCBE-9D4E7901443B}A:\program files (x86)\skype\phone\skype.exe] => (Allow) A:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{4B7380B8-8F92-442B-9FD9-26547A610AFB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{87B42C58-D020-4E11-BD44-1419014F0BF8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{43EE2C20-7D2E-4000-87F1-B5309D634C03}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7E0AEAA7-3266-4085-8B58-08C142483337}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{5FAF02BA-195F-458A-8577-8180EB1776D8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe
FirewallRules: [{38F7B638-3CDD-4924-A2F8-6D98C49C7598}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DriverBooster.exe
FirewallRules: [{6699908B-EEE6-4BD6-BE6F-D81CD3E29FDB}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe
FirewallRules: [{1A11B033-E70D-4B1A-977A-2DF3A58764A6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\DBDownloader.exe
FirewallRules: [{DA467CA6-B974-4C31-88B3-8684F61D533F}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe
FirewallRules: [{D018DB5F-217C-47C8-A902-8CCAAFA0915D}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.3.0\AutoUpdate.exe
FirewallRules: [TCP Query User{7DC70CE9-A57E-4AC4-9D63-D9442D11650D}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{817D2BDA-5981-4562-9A99-6990C6587AFD}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{8910F2E2-8D56-4643-B646-AB72FE4F843E}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{F4D5BECB-4BDF-4084-82CF-C0814F36DD63}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\SKILL\DFUBG.exe
FirewallRules: [{17B2E987-477E-44DE-B792-EB4080061162}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{C5B86FBC-B73B-4227-8DDE-5A504487B6F8}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{ACC4BF00-C783-4F75-A7E5-5A05CC5321F5}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{63896EB6-0BB7-4105-8B58-5352F55A1A28}] => (Allow) A:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{A6CF4AFB-7FBD-4349-8F83-269246656717}] => (Allow) C:\Program Files (x86)\Jamper\Application\chrome.exe
FirewallRules: [{8F9271C0-6FA2-418D-A334-71397F2E5435}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{D7443F5D-011E-4A94-97D9-A7DD9713C613}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\Sid Meier's Civilization V\Launcher.exe
FirewallRules: [{DB079102-ACDE-4A40-A261-1C762EAE60D8}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{EA4A7875-D7CD-49C1-BDFA-44596CC67AA0}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{8612BCF4-E5DB-49F4-A521-B358905D180C}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{B8D0D44E-CBA6-4C9B-AD74-FDF38F28B219}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{5D353D9A-E7DD-437E-BDF5-BA74A58CFEC0}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{6BE90D99-EFB0-4C6B-91CE-F51B7BD82A09}] => (Allow) W:\Program Files (x86)\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{81138498-08B3-4A2B-8718-46FF6B6F4624}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Defiance\Patcher.exe
FirewallRules: [{DCC81D11-B68F-4267-97C8-AB2D8D0D815F}] => (Allow) A:\Program Files (x86)\Steam\steamapps\common\Defiance\Patcher.exe
==================== Points de restauration =========================
29-04-2017 18:56:05 Driver Booster : Intel(R) 100 Series/C230 Series Chipset Family LPC Controller - A145
05-05-2017 19:06:57 Windows Update
09-05-2017 22:31:21 Windows Update
09-05-2017 22:31:28 Windows Update
10-05-2017 09:04:12 JRT Pre-Junkware Removal
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (05/10/2017 12:00:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante QQIme.exe, version : 1.0.21.1, horodatage : 0x59085876
Nom du module défaillant : QQIme.exe, version : 1.0.21.1, horodatage : 0x59085876
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00006c54
ID du processus défaillant : 0x233c
Heure de début de l’application défaillante : 0x01d2c9742a09ae13
Chemin d’accès de l’application défaillante : C:\Users\Arnaud\AppData\Local\background_fault\QQIme.exe
Chemin d’accès du module défaillant: C:\Users\Arnaud\AppData\Local\background_fault\QQIme.exe
ID de rapport : 11f96b53-bda4-4894-b473-42b0a0d79ea3
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (05/10/2017 11:58:23 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ctfmon.exe, version : 10.0.14393.0, horodatage : 0x57899148
Nom du module défaillant : InputService.dll, version : 10.0.14393.1066, horodatage : 0x58d9f10c
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00057f66
ID du processus défaillant : 0x2210
Heure de début de l’application défaillante : 0x01d2c95b409318bd
Chemin d’accès de l’application défaillante : C:\Windows\SysWOW64\ctfmon.exe
Chemin d’accès du module défaillant: C:\Windows\system32\InputService.dll
ID de rapport : fa404eea-6716-4250-91fa-56b9c53d72b7
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (05/10/2017 11:58:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ctfmon.exe, version : 10.0.14393.0, horodatage : 0x57899148
Nom du module défaillant : InputService.dll, version : 10.0.14393.1066, horodatage : 0x58d9f10c
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00057f66
ID du processus défaillant : 0x2058
Heure de début de l’application défaillante : 0x01d2c95b40251a90
Chemin d’accès de l’application défaillante : C:\Windows\SysWOW64\ctfmon.exe
Chemin d’accès du module défaillant: C:\Windows\system32\InputService.dll
ID de rapport : fea8f5ed-6e72-41ff-be39-1ceb5385e25f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (05/10/2017 11:56:33 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:44:19 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:33:09 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:32:58 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:32:44 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:17:26 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Error: (05/10/2017 11:07:15 AM) (Source: ATIeRecord) (EventID: 16387) (User: )
Description:
Erreurs système:
=============
Error: (05/10/2017 02:43:10 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/10/2017 02:35:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.
Error: (05/10/2017 02:32:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Unchecky n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.
Error: (05/10/2017 02:32:58 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.
Error: (05/10/2017 02:32:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service VMware Workstation Server s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.
Error: (05/10/2017 02:32:31 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (05/10/2017 02:32:18 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
Error: (05/10/2017 02:32:18 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
Error: (05/10/2017 02:32:13 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
Error: (05/10/2017 02:32:13 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\Arnaud\AppData\Local\Temp\catchme.sys
CodeIntegrity:
===================================
Date: 2017-05-10 14:32:18.211
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:18.210
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:13.489
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:13.488
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 14:32:13.283
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Users\Arnaud\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-05-10 13:43:46.578
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.560
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.533
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.528
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
Date: 2017-05-10 13:43:46.523
Description: Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume7\Windows\System32\uxtheme.dll that did not meet the Store signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-6600K CPU @ 3.50GHz
Pourcentage de mémoire utilisée: 52%
Mémoire physique - RAM - totale: 16333.23 MB
Mémoire physique - RAM - disponible: 7689.54 MB
Mémoire virtuelle totale: 18765.23 MB
Mémoire virtuelle disponible: 4797.98 MB
==================== Lecteurs ================================
Drive a: (BOOM) (Fixed) (Total:931.39 GB) (Free:613.25 GB) NTFS
Drive c: (BAAM) (Fixed) (Total:223.02 GB) (Free:136.89 GB) NTFS
Drive w: (BIIM) (Fixed) (Total:465.76 GB) (Free:370.84 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 374ECED5)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt ============================