Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

No sound, possible TR.Vilsel/TR.Clicker/Whistler Bootkit infection

trojan sound card infection

  • Please log in to reply

#1
Eliam

Eliam

    New Member

  • Member
  • Pip
  • 1 posts

Dear Geeks,

 

Since yesterday it seems that my audio card is not recognized anymore on my Alienware 17 R3 on Windows 10 64bit. No built-in devices are available in Device Manager, updating drivers did not changed anything and executing dxdiag confirms that no audio card is detected. I've heard that it could be caused by infection (http://ccm.net/faq/8...histler-bootkit), and this problem happened the same day I plugged an external drive full of dowloaded content so it might sound a reasonnible theory ^^. I ran FRST but I can't understand the output. Could you give me some help ? Thank you very much :)

 

FRST file :

 

Résultats d'analyse de  Farbar Recovery Scan Tool (FRST) (x64) Version: 04-10-2016
Exécuté par lorri (administrateur) sur DESKTOP-TN9DDQ2 (06-10-2016 23:33:06)
Exécuté depuis C:\Users\lorri\Desktop
Profils chargés: lorri (Profils disponibles: lorri)
Platform: Windows 10 Home Version 1607 (X64) Langue: Français (France)
Internet Explorer Version 11 (Navigateur par défaut: Edge)
Mode d'amorçage: Normal
Tutoriel pour Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processus (Avec liste blanche) =================

(Si un élément est inclus dans le fichier fixlist.txt, le processus sera arrêté. Le fichier ne sera pas déplacé.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Alienware) C:\Program Files\Alienware\Graphics Amplifier\GraphicsAmplifierWindowsService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\KillerService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCServiceController.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareTactXMacroController.exe
(BitTorrent Inc.) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\lorri\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(BitTorrent Inc.) C:\Users\lorri\AppData\Roaming\uTorrent\updates\3.4.8_42576\utorrentie.exe
(Rivet Networks) C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe
(Compal Inc.) C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionController.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
(Alienware) C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher64.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Alienware) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Dell) C:\Users\lorri\AppData\Local\Apps\2.0\N9LDPN92.2E7\6C18Q1RN.N7B\dell..tion_6d0a76327dca4869_0007.0009_d84bde3ab35e468d\DellSystemDetect.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
() C:\Users\lorri\Downloads\MBRCheck.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe


==================== Registre (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Run: [Command Center Controllers] => C:\Program Files\Alienware\Command Center\AWCCStartupOrchestrator.exe [35576 2015-06-30] (Alienware)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\nvspcap64.dll [1860120 2016-01-12] (NVIDIA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3955320 2015-11-13] (Synaptics Incorporated)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322120 2016-04-28] (Intel Corporation)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [AlienwareOn-ScreenDisplay] => C:\Program Files (x86)\Alienware On-Screen Display\AlienwareOn-ScreenDisplay.exe [3746560 2015-04-02] (Compal Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107616 2016-09-12] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [595480 2016-03-20] (Oracle Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [29635712 2016-09-12] (Skype Technologies S.A.)
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\Run: [uTorrent] => C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe [2139840 2016-09-08] (BitTorrent Inc.)
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\Run: [DellSystemDetect] => C:\Users\lorri\AppData\Local\Apps\2.0\N9LDPN92.2E7\6C18Q1RN.N7B\dell..tion_6d0a76327dca4869_0007.0009_d84bde3ab35e468d\DellSystemDetect.exe [313800 2016-10-06] (Dell)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\SEARCH~1\bin\VC64LO~1.DLL => Pas de fichier
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-12] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2015-10-30]
ShortcutTarget: Killer Network Manager.lnk -> C:\Program Files\Killer Networking\Network Manager\NetworkManager.exe (Rivet Networks)
GroupPolicy: Restriction <======= ATTENTION

==================== Internet (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, s'il s'agit d'un élément du Registre, il sera supprimé ou restauré à la valeur par défaut.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{6020c417-5144-49ed-93c1-fa31c197e5d1}: [DhcpNameServer] 89.2.0.1 89.2.0.2
Tcpip\..\Interfaces\{d1de735d-7ca5-4559-ae2c-df9303ee1085}: [DhcpNameServer] 192.168.1.254

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell15.msn.com/?pc=DCTE
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.alienwarearena.com/welcome-fr
HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.alienwarearena.com/welcome-fr
SearchScopes: HKU\S-1-5-21-2934410378-1622550900-2610683576-1001 -> DefaultScope {B919E0CF-B5DA-4B35-8E4F-AA417FACCE0A} URL =
SearchScopes: HKU\S-1-5-21-2934410378-1622550900-2610683576-1001 -> {015DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovi.com/Results.aspx?gd=&ctid=CT3333673&octid=EB_ORIGINAL_CTID&ISID=F69701E1-444D-478F-BDAC-FDE9EC89646A&SearchSource=58&CUI=&UM=8&UP=SP6FA0C1FF-77DE-45B0-A085-722FC25B9C2A&D=111315&q={searchTerms}&SSPV=
SearchScopes: HKU\S-1-5-21-2934410378-1622550900-2610683576-1001 -> {B919E0CF-B5DA-4B35-8E4F-AA417FACCE0A} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2010-03-25] (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-06] (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-02-28] (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-06] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: q1k3e53g.default
FF ProfilePath: C:\Users\lorri\AppData\Roaming\Mozilla\Firefox\Profiles\q1k3e53g.default [2016-10-06]
FF Extension: (Google Scholar Button) - C:\Users\lorri\AppData\Roaming\Mozilla\Firefox\Profiles\q1k3e53g.default\Extensions\[email protected] [2016-04-27]
FF Extension: (United States English Spellchecker) - C:\Users\lorri\AppData\Roaming\Mozilla\Firefox\Profiles\q1k3e53g.default\Extensions\[email protected] [2016-03-18]
FF Extension: (Firefox Hotfix) - C:\Users\lorri\AppData\Roaming\Mozilla\Firefox\Profiles\q1k3e53g.default\Extensions\[email protected] [2016-08-30]
FF Extension: (uBlock Origin) - C:\Users\lorri\AppData\Roaming\Mozilla\Firefox\Profiles\q1k3e53g.default\Extensions\[email protected] [2016-10-06]
FF SearchPlugin: C:\Users\lorri\AppData\Roaming\Mozilla\Firefox\Profiles\q1k3e53g.default\searchplugins\McSiteAdvisor.xml [2016-01-04]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-10-06]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-06]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll [2010-09-12] (Cybelsoft)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-06] (Oracle Corporation)
FF Plugin-x32: @ma-config.com/HardwareDetection -> C:\Program Files\ma-config.com\nphardwaredetection.dll [2010-09-12] (Cybelsoft)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-15] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-15] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)

Chrome:
=======
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR Profile: C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default [2016-10-06]
CHR Extension: (Google Docs) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-01-28]
CHR Extension: (Google Drive) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-01-28]
CHR Extension: (YouTube) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-24]
CHR Extension: (Recherche Google) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-24]
CHR Extension: (Avast Online Security) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-09-12]
CHR Extension: (Avast SafePrice) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-09-13]
CHR Extension: (Google Docs hors connexion) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-31]
CHR Extension: (Avast Online Security) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-09-13]
CHR Extension: (Paiements via le Chrome Web Store) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-12]
CHR Extension: (Gmail) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-24]
CHR Extension: (Chrome Media Router) - C:\Users\lorri\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-13]
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <non trouvé(e)>

==================== Services (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [309328 2015-08-31] (Qualcomm Atheros)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-12] (AVAST Software)
S3 cplspcon; C:\Windows\system32\IntelCpHDCPSvc.exe [603256 2016-03-16] (Intel Corporation)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [137968 2015-09-22] (Dell Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [153960 2016-04-29] (Dell)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-06-23] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-06-23] (Dell Inc.)
R2 esifsvc; C:\Windows\SysWoW64\esif_uf.exe [1385640 2015-05-27] (Intel Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-12] (NVIDIA Corporation)
R2 GraphicsAmplifierWindowsService; C:\Program Files\Alienware\Graphics Amplifier\GraphicsAmplifierWindowsService.exe [36112 2015-07-23] (Alienware)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18504 2016-04-28] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [354936 2016-03-16] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Fichier non signé]
S3 ioloEnergyBooster; C:\Program Files\Alienware\Command Center\ioloEnergyBooster.exe [6145872 2012-11-01] (iolo technologies, LLC)
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-05-19] () [Fichier non signé]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [223520 2015-07-11] (Intel Corporation)
R2 Killer Service V2; C:\Program Files\Killer Networking\Network Manager\KillerService.exe [413696 2015-07-08] (Rivet Networks) [Fichier non signé]
S3 maconfservice; C:\Program Files\ma-config.com\x64\maconfservice.exe [325120 2010-09-12] (CybelSoft) [Fichier non signé]
S3 MsMpiLaunchSvc; C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe [27760 2015-11-06] () [Fichier non signé]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-12] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-12] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-12] (NVIDIA Corporation)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2016-09-09] (Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255096 2015-11-13] (Synaptics Incorporated)
S3 ThunderboltService; c:\Program Files (x86)\Intel\Thunderbolt Software\tbtsvc.exe [1723048 2015-06-11] (Intel Corporation)
S3 VSStandardCollectorService140; C:\Program Files (x86)\Microsoft Visual Studio 14.0\Team Tools\DiagnosticsHub\Collector\StandardCollector.Service.exe [56552 2016-03-22] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 CTAudSvcService; c:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [X]

===================== Pilotes (Avec liste blanche) ======================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-12] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-12] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-12] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-12] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-12] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-13] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-12] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-12] (AVAST Software)
R1 BfLwf; C:\Windows\system32\DRIVERS\bwcW10x64.sys [114736 2015-07-07] (Rivet Networks, LLC.)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2016-01-05] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2016-01-05] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
S3 DellWAL; C:\Program Files\Dell\DellDataVault\DDDriver64Dcsa.sys [32464 2016-06-23] (Dell Computer Corporation)
R3 dptf_acpi; C:\Windows\System32\drivers\dptf_acpi.sys [47096 2015-05-27] (Intel Corporation)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [43000 2015-05-27] (Intel Corporation)
R0 EMSC; C:\Windows\System32\drivers\EMSC.SYS [36424 2015-07-13] ()
R0 EMSC; C:\Windows\SysWOW64\drivers\EMSC.SYS [33864 2015-07-13] ()
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [251384 2015-05-27] (Intel Corporation)
R3 KillerEth; C:\Windows\System32\drivers\e2xw10x64.sys [170128 2016-02-05] (Qualcomm Atheros, Inc.)
R3 kiox_ff_driver; C:\Windows\System32\drivers\kiox_ff_driver.sys [32736 2014-10-10] (Kionix, Inc.)
R0 kxdiskprot; C:\Windows\System32\DRIVERS\kxdiskprot.sys [30664 2014-10-10] (Kionix, Inc.)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-12] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
S3 Qcamain; C:\Windows\System32\drivers\Qcamainx64.sys [2276352 2015-07-10] (Qualcomm Atheros, Inc.) [Fichier non signé]
R3 Qcamain10x64; C:\Windows\System32\drivers\Qcamain10x64.sys [2336768 2016-07-16] (Qualcomm Atheros, Inc.)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [752856 2015-11-13] (Realsil Semiconductor Corporation)
R3 SensorsSimulatorDriver; C:\Windows\System32\drivers\WUDFRd.sys [216064 2016-07-16] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [51320 2015-11-13] (Synaptics Incorporated)
R1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [192352 2016-04-28] (Oracle Corporation)
S3 VBoxUSB; C:\Windows\System32\Drivers\VBoxUSB.sys [135768 2016-04-28] (Oracle Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 cthda; \SystemRoot\system32\drivers\cthda.sys [X]

==================== NetSvcs (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Un mois - Créés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-10-06 23:33 - 2016-10-06 23:33 - 00025589 _____ C:\Users\lorri\Desktop\FRST.txt
2016-10-06 23:32 - 2016-10-06 23:33 - 00000000 ____D C:\FRST
2016-10-06 23:32 - 2016-10-06 23:32 - 02405376 _____ (Farbar) C:\Users\lorri\Desktop\FRST64.exe
2016-10-06 23:31 - 2016-10-06 23:31 - 02405376 _____ (Farbar) C:\Users\lorri\Downloads\FRST64.exe
2016-10-06 23:22 - 2016-10-06 23:22 - 00019197 _____ C:\Users\lorri\Desktop\MBRCheck_10.06.16_23.22.17.txt
2016-10-06 23:19 - 2016-10-06 23:20 - 00019032 _____ C:\Users\lorri\Desktop\MBRCheck_10.06.16_23.19.56.txt
2016-10-06 23:19 - 2016-10-06 23:19 - 00080384 _____ C:\Users\lorri\Downloads\MBRCheck.exe
2016-10-06 23:09 - 2016-10-06 23:09 - 00000000 ____D C:\ProgramData\78b272bb-dcaa-43c7-8440-651bafe77b0a
2016-10-06 22:48 - 2016-10-06 22:48 - 00000000 ____D C:\ProgramData\aee85d00-221c-4e67-8b04-dcf5ca2bd4cf
2016-10-06 22:36 - 2016-10-06 22:36 - 00000000 ____D C:\ProgramData\eb86828f-d295-4f5c-93a3-f38bb46037c8
2016-10-06 22:35 - 2016-10-06 22:35 - 00000000 ____D C:\ProgramData\b93484cc-0b6f-41e3-8d8d-bc32aaec7d2f
2016-10-06 22:27 - 2016-10-06 22:27 - 00000000 ____D C:\ProgramData\51669a84-e338-4124-b2e9-fa0db021e2aa
2016-10-06 22:23 - 2016-10-06 22:27 - 56414440 _____ (Dell Inc.) C:\Users\lorri\Downloads\Audio_Driver_K32CX_WN32_1.1.9_A03.EXE
2016-10-06 22:17 - 2016-10-06 22:39 - 00000000 ____D C:\Users\lorri\AppData\LocalLow\uTorrent
2016-10-06 22:16 - 2016-10-06 22:16 - 00441756 _____ C:\WINDOWS\Minidump\100616-68859-01.dmp
2016-10-06 22:16 - 2016-10-06 22:16 - 00000000 ____D C:\WINDOWS\Minidump
2016-10-06 22:16 - 2016-10-06 22:16 - 00000000 _____ C:\WINDOWS\system32\GfxValDisplayLog.bin
2016-10-06 22:15 - 2016-10-06 22:15 - 00000568 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-10-06 22:15 - 2016-10-06 22:15 - 00000486 _____ C:\WINDOWS\system32\{86F549EB-A66B-4D6C-958D-CDDD66410751}.bat
2016-10-06 22:13 - 2016-10-06 22:13 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2016-10-06 22:13 - 2016-10-06 22:13 - 00000000 ____D C:\ProgramData\6e14c64f-bcfa-432c-a8bb-00c5b31fecbd
2016-10-06 22:09 - 2016-10-06 22:09 - 00000000 ____D C:\Users\lorri\Documents\Dell Downloads
2016-10-06 21:50 - 2016-10-06 21:50 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dell
2016-10-06 21:50 - 2016-10-06 21:50 - 00000000 ____D C:\Users\lorri\AppData\LocalLow\PCDr
2016-10-06 21:48 - 2016-10-06 21:50 - 00000000 ____D C:\Users\lorri\AppData\Local\Deployment
2016-10-06 21:48 - 2016-10-06 21:48 - 00013560 _____ C:\Users\lorri\Downloads\DellSystemDetectLauncher.Application
2016-10-06 21:48 - 2016-10-06 21:48 - 00000000 ____D C:\Users\lorri\AppData\Local\Apps\2.0
2016-10-06 21:23 - 2016-10-06 21:25 - 62036952 _____ (Dell Inc.) C:\Users\lorri\Downloads\Audio_Driver_G340X_WN32_1.00.05_A01.EXE
2016-10-06 21:10 - 2016-09-12 23:36 - 00391496 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-10-06 20:52 - 2016-10-06 20:52 - 00000000 ___HD C:\$SysReset
2016-10-05 23:18 - 2016-10-05 23:18 - 00021160 _____ C:\Users\lorri\AppData\Local\recently-used.xbel
2016-10-03 20:11 - 2016-10-06 21:17 - 00000000 __HDC C:\ProgramData\{A328A61B-C332-4C8C-A740-42F7F71DC398}
2016-09-30 15:52 - 2016-09-30 15:52 - 00169983 ____R C:\Users\lorri\Desktop\MANTES_LA_JOLIE-ROUEN_RIVE_DROITE_30-09-16_CHARRIER_LORRIS_UXOBEB_DNm8f0aJXorwDq7urbS0.pdf
2016-09-30 15:24 - 2016-09-30 15:25 - 89464832 _____ C:\Users\lorri\Downloads\blender-2.78-windows64.msi
2016-09-30 13:23 - 2016-09-30 12:39 - 00000000 ___DC C:\WINDOWS\Panther
2016-09-30 13:21 - 2016-09-30 13:21 - 00000000 ____D C:\Windows.old
2016-09-30 13:20 - 2016-09-30 13:20 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2016-09-30 13:20 - 2016-09-30 13:20 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2016-09-30 13:20 - 2016-09-30 13:20 - 00000000 ____D C:\Program Files\Reference Assemblies
2016-09-30 13:20 - 2016-09-30 13:20 - 00000000 ____D C:\Program Files\MSBuild
2016-09-30 13:20 - 2016-09-30 13:20 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2016-09-30 13:20 - 2016-09-30 12:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2016-09-30 13:20 - 2016-05-25 15:31 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2016-09-30 13:20 - 2016-05-25 15:31 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2016-09-30 13:20 - 2016-05-25 15:31 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2016-09-30 13:20 - 2016-05-25 12:03 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2016-09-30 13:20 - 2016-05-25 12:03 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2016-09-30 13:20 - 2016-05-25 12:03 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2016-09-30 12:43 - 2016-09-30 12:43 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2016-09-30 12:42 - 2016-09-30 12:42 - 00000000 ____D C:\ProgramData\USOShared
2016-09-30 12:41 - 2016-10-03 20:07 - 00000000 ____D C:\Users\lorri\AppData\Local\ConnectedDevicesPlatform
2016-09-30 12:41 - 2016-09-30 12:41 - 00000020 ___SH C:\Users\lorri\ntuser.ini
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Voisinage réseau
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Voisinage d'impression
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Modèles
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Mes documents
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Menu Démarrer
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Documents\Mes vidéos
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Documents\Mes images
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\Documents\Ma musique
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historique
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default User\Documents\Mes vidéos
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default User\Documents\Mes images
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default User\Documents\Ma musique
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2016-09-30 12:39 - 2016-09-30 12:39 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historique
2016-09-30 12:38 - 2016-10-06 22:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-09-30 12:38 - 2016-10-06 22:22 - 00004046 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1466190890
2016-09-30 12:38 - 2016-10-06 21:34 - 00003580 _____ C:\WINDOWS\System32\Tasks\PCDEventLauncherTask
2016-09-30 12:38 - 2016-10-06 21:19 - 00004562 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-09-30 12:38 - 2016-10-06 21:10 - 00004004 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-09-30 12:38 - 2016-09-30 12:38 - 00007623 _____ C:\WINDOWS\diagwrn.xml
2016-09-30 12:38 - 2016-09-30 12:38 - 00007623 _____ C:\WINDOWS\diagerr.xml
2016-09-30 12:38 - 2016-09-30 12:38 - 00003894 _____ C:\WINDOWS\System32\Tasks\PCDoctorBackgroundMonitorTask
2016-09-30 12:38 - 2016-09-30 12:38 - 00003620 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2016-09-30 12:38 - 2016-09-30 12:38 - 00003396 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-09-30 12:38 - 2016-09-30 12:38 - 00003320 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{8A112748-DE59-49E5-89EE-18A40CB31C61}
2016-09-30 12:38 - 2016-09-30 12:38 - 00003276 _____ C:\WINDOWS\System32\Tasks\Dell SupportAssistAgent AutoUpdate
2016-09-30 12:38 - 2016-09-30 12:38 - 00003216 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-09-30 12:38 - 2016-09-30 12:38 - 00003114 _____ C:\WINDOWS\System32\Tasks\PCDDataUploadTask
2016-09-30 12:38 - 2016-09-30 12:38 - 00002994 _____ C:\WINDOWS\System32\Tasks\SystemToolsDailyTest
2016-09-30 12:38 - 2016-09-30 12:38 - 00002824 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task
2016-09-30 12:38 - 2016-09-30 12:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\OfficeSoftwareProtectionPlatform
2016-09-30 12:38 - 2016-09-30 12:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2016-09-30 12:38 - 2016-09-30 12:38 - 00000000 ____D C:\WINDOWS\System32\Tasks\Intel
2016-09-30 12:34 - 2016-09-30 12:34 - 00001576 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-09-30 12:27 - 2016-09-30 12:34 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2016-09-30 12:26 - 2016-10-06 22:43 - 01801492 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-09-30 12:26 - 2016-10-06 22:39 - 00000000 ____D C:\Users\lorri
2016-09-30 12:26 - 2016-09-30 12:26 - 01567484 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Voisinage réseau
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Voisinage d'impression
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Modèles
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Mes documents
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Menu Démarrer
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Documents\Mes vidéos
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Documents\Mes images
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\Documents\Ma musique
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
2016-09-30 12:26 - 2016-09-30 12:26 - 00000000 _SHDL C:\Users\lorri\AppData\Local\Historique
2016-09-30 12:25 - 2016-10-06 22:39 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2016-09-30 12:25 - 2016-10-06 22:38 - 00000000 ____D C:\ProgramData\NVIDIA
2016-09-30 12:25 - 2016-10-06 22:15 - 00000200 _____ C:\WINDOWS\system32\{EC94D02F-D200-4428-9531-05AF7F9799CB}.bat
2016-09-30 12:25 - 2016-10-06 22:13 - 00000000 ____D C:\Program Files\Intel
2016-09-30 12:25 - 2016-10-06 21:01 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-09-30 12:25 - 2016-09-30 12:29 - 00000000 ____D C:\Users\Public\Creative
2016-09-30 12:25 - 2016-09-30 12:29 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-09-30 12:25 - 2016-09-30 12:25 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01011.Wdf
2016-09-30 12:25 - 2016-09-30 12:25 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2016-09-30 12:25 - 2016-09-30 12:25 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2016-09-30 12:25 - 2016-09-30 12:25 - 00000000 ____D C:\Program Files\Synaptics
2016-09-30 12:25 - 2016-07-16 13:41 - 02716672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 06358648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 02983216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 02554672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 00938616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-09-30 12:25 - 2015-11-05 17:08 - 00523384 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 00385328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 00074872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-09-30 12:25 - 2015-10-28 15:49 - 06027430 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-09-30 12:25 - 2015-07-26 05:16 - 00086528 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2016-09-30 12:25 - 2015-07-26 05:16 - 00082432 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2016-09-30 12:23 - 2016-10-06 22:16 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-09-30 12:23 - 2016-10-06 21:09 - 00345848 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-09-30 12:23 - 2016-09-30 12:29 - 00000000 ____D C:\Program Files (x86)\Intel
2016-09-30 12:23 - 2016-09-30 12:23 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_esif_umdf2_02_00_00.Wdf
2016-09-30 12:23 - 2016-09-30 12:23 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2016-09-29 21:32 - 2016-09-29 21:32 - 00000000 ____D C:\ProgramData\PC-Doctor for Windows
2016-09-28 00:13 - 2016-09-28 00:13 - 00275194 _____ C:\Users\lorri\Downloads\U2NBmini.pdf
2016-09-28 00:13 - 2016-09-28 00:13 - 00271879 _____ C:\Users\lorri\Downloads\URMSNBmini.pdf
2016-09-28 00:13 - 2016-09-28 00:13 - 00130194 _____ C:\Users\lorri\Downloads\HENBmini.pdf
2016-09-25 15:43 - 2016-09-25 15:51 - 00000000 ____D C:\ProgramData\DassaultSystemes
2016-09-25 15:43 - 2016-09-25 15:43 - 00000000 ____D C:\Users\lorri\AppData\Roaming\DassaultSystemes
2016-09-25 15:43 - 2016-09-25 15:43 - 00000000 ____D C:\Users\lorri\AppData\Local\Tecplot
2016-09-25 15:43 - 2016-09-25 15:43 - 00000000 ____D C:\Users\lorri\AppData\Local\DassaultSystemes
2016-09-25 15:43 - 2016-09-25 15:43 - 00000000 ____D C:\ProgramData\Reprise
2016-09-25 15:40 - 2016-09-30 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tecplot 360 EX 2016 R2
2016-09-25 15:40 - 2016-09-25 15:40 - 00000000 ____D C:\Program Files\Tecplot
2016-09-25 15:40 - 2016-09-25 15:40 - 00000000 ____D C:\Program Files\Microsoft MPI
2016-09-25 15:37 - 2016-09-25 15:39 - 146357024 _____ C:\Users\lorri\Downloads\tecplot360ex_win64.exe
2016-09-25 15:23 - 2016-09-30 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeXstudio
2016-09-25 15:23 - 2016-09-29 18:39 - 00000000 ____D C:\Users\lorri\AppData\Roaming\texstudio
2016-09-25 15:22 - 2016-09-25 15:23 - 00000000 ____D C:\Program Files (x86)\TeXstudio
2016-09-25 15:21 - 2016-09-25 15:22 - 39430552 _____ (Benito van der Zander ) C:\Users\lorri\Downloads\texstudio-2.11.0-win-qt5.5.1.exe
2016-09-25 15:17 - 2016-09-28 11:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-09-16 21:48 - 2016-09-16 21:48 - 00341722 _____ C:\Users\lorri\Downloads\p800534_A1b.pdf
2016-09-15 21:24 - 2016-09-15 21:24 - 00020924 _____ C:\Users\lorri\Downloads\xkcd-Regular(1).otf
2016-09-15 21:18 - 2016-09-15 21:18 - 00020924 _____ C:\Users\lorri\Downloads\xkcd-Regular.otf
2016-09-15 21:16 - 2016-09-30 12:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FontForge
2016-09-15 21:16 - 2016-09-15 21:19 - 00000000 ____D C:\Users\lorri\AppData\Roaming\FontForge
2016-09-15 21:15 - 2016-09-15 21:16 - 16589800 _____ (FontForgeBuilds ) C:\Users\lorri\Downloads\FontForge-2016-04-04-Windows-r2.exe
2016-09-15 21:08 - 2016-09-15 21:08 - 00882238 _____ C:\Users\lorri\Documents\xkcd.sfd
2016-09-15 00:55 - 2016-09-07 06:28 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1debug3.dll
2016-09-15 00:55 - 2016-09-07 06:27 - 04533760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VsGraphicsDesktopEngine.exe
2016-09-13 22:02 - 2016-09-13 22:02 - 00048684 _____ C:\Users\lorri\Downloads\deadpool-2016-1080p-bluray-x264-sparks-rarbg-english-83738.zip
2016-09-12 23:36 - 2016-10-06 21:10 - 00001981 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Antivirus Gratuit.lnk
2016-09-12 23:36 - 2016-10-06 21:10 - 00001969 _____ C:\Users\Public\Desktop\Avast Antivirus Gratuit.lnk
2016-09-12 23:36 - 2016-09-12 23:36 - 00053208 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-09-07 22:43 - 2016-09-07 23:35 - 00000000 _____ C:\WINDOWS\SysWOW64\last.dump

==================== Un mois - Modifiés - fichiers et dossiers ========

(Si un élément est inclus dans le fichier fixlist.txt, le fichier/dossier sera déplacé.)

2016-10-06 23:32 - 2016-04-25 17:51 - 00000000 ____D C:\Users\lorri\AppData\Roaming\uTorrent
2016-10-06 23:00 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-10-06 22:49 - 2016-01-06 21:02 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Skype
2016-10-06 22:43 - 2016-07-17 00:40 - 00661042 _____ C:\WINDOWS\system32\perfh00C.dat
2016-10-06 22:43 - 2016-07-17 00:40 - 00134474 _____ C:\WINDOWS\system32\perfc00C.dat
2016-10-06 22:39 - 2015-11-13 20:22 - 00000000 __SHD C:\Users\lorri\IntelGraphicsProfiles
2016-10-06 22:37 - 2016-07-16 08:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2016-10-06 22:27 - 2015-10-30 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Creative
2016-10-06 22:27 - 2015-10-30 14:47 - 00000000 ____D C:\Program Files (x86)\Creative
2016-10-06 22:22 - 2016-06-17 21:14 - 00001090 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-10-06 22:14 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2016-10-06 22:14 - 2015-10-30 14:35 - 00000000 ____D C:\Intel
2016-10-06 21:26 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2016-10-06 21:26 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-10-06 21:25 - 2015-10-30 15:22 - 00000000 ____D C:\ProgramData\Dell
2016-10-06 21:17 - 2015-11-17 01:04 - 00000000 ____D C:\ProgramData\SupportAssistAgent
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\Nui
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\F12
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\Nui
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\F12
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\dsc
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\et-EE
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\es-MX
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\en-GB
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\setup
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lv-LV
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\lt-LT
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\et-EE
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\es-MX
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\en-GB
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\DDFs
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Provisioning
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-10-06 21:07 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\L2Schemas
2016-10-06 21:07 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2016-10-06 21:07 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-10-06 21:07 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\system32\Dism
2016-10-06 21:07 - 2015-11-18 21:01 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blender
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\SysWOW64\Configuration
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ___SD C:\WINDOWS\system32\Configuration
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Globalization
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows Defender
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2016-10-06 21:06 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2016-10-06 21:06 - 2016-07-16 08:04 - 00000000 ____D C:\WINDOWS\servicing
2016-10-06 21:06 - 2016-05-31 21:50 - 00000000 ____D C:\Users\lorri\Documents\Overwatch
2016-10-06 21:06 - 2016-05-30 22:38 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Battle.net
2016-10-06 21:06 - 2016-03-23 23:05 - 00000000 ____D C:\Program Files\Boot2Docker for Windows
2016-10-06 21:06 - 2016-01-06 22:37 - 00000000 ____D C:\Users\lorri\AppData\Roaming\vlc
2016-10-06 21:06 - 2015-11-23 14:37 - 00000000 ____D C:\Users\lorri\AppData\Local\gtk-2.0
2016-10-06 21:06 - 2015-10-30 15:22 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-06 21:05 - 2016-05-30 22:51 - 00000000 ____D C:\Program Files (x86)\Overwatch
2016-10-06 21:05 - 2016-05-30 22:41 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-10-06 21:02 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\registration
2016-10-06 21:01 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\rescache
2016-10-06 21:01 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\appcompat
2016-10-06 21:01 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-10-06 21:01 - 2015-11-18 21:01 - 00000000 ____D C:\Program Files\Blender Foundation
2016-10-06 20:56 - 2016-01-02 14:27 - 00000000 ____D C:\Users\lorri\AppData\Local\ElevatedDiagnostics
2016-10-06 20:13 - 2016-05-30 22:48 - 00000000 ____D C:\Users\lorri\AppData\Local\Battle.net
2016-10-05 23:19 - 2015-11-19 00:46 - 00000000 ____D C:\Users\lorri\.gimp-2.8
2016-09-30 13:31 - 2016-03-23 23:14 - 00000000 ____D C:\Users\lorri\.VirtualBox
2016-09-30 13:23 - 2016-07-16 13:47 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2016-09-30 13:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2016-09-30 13:20 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\MUI
2016-09-30 13:20 - 2016-07-16 13:43 - 00471040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00395264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2016-09-30 13:20 - 2016-07-16 13:43 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2016-09-30 13:20 - 2016-07-16 13:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2016-09-30 13:20 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnlobby.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnaddr.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnlobby.dll
2016-09-30 13:20 - 2016-07-16 13:43 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnaddr.dll
2016-09-30 12:58 - 2015-11-13 20:22 - 00000000 ____D C:\Users\lorri\AppData\Local\Packages
2016-09-30 12:44 - 2015-11-13 20:24 - 00002413 _____ C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-09-30 12:44 - 2015-11-13 20:24 - 00000000 ___RD C:\Users\lorri\OneDrive
2016-09-30 12:42 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\USOPrivate
2016-09-30 12:39 - 2016-07-16 13:47 - 00000000 ____D C:\Program Files\Windows NT
2016-09-30 12:39 - 2016-04-20 22:59 - 00000290 __RSH C:\ProgramData\ntuser.pol
2016-09-30 12:38 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2016-09-30 12:38 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2016-09-30 12:37 - 2016-07-16 13:47 - 00000000 __RHD C:\Users\Public\Libraries
2016-09-30 12:37 - 2016-01-05 01:46 - 00023208 _____ C:\WINDOWS\system32\emptyregdb.dat
2016-09-30 12:34 - 2016-08-24 23:26 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Docker
2016-09-30 12:34 - 2016-08-24 23:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Git
2016-09-30 12:34 - 2016-08-02 15:29 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outil de téléchargement USB DVD Windows 7
2016-09-30 12:34 - 2016-07-16 13:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-09-30 12:34 - 2016-06-23 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-09-30 12:34 - 2016-06-23 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-09-30 12:34 - 2016-06-01 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
2016-09-30 12:34 - 2016-05-30 23:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2016-09-30 12:34 - 2016-05-26 22:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-09-30 12:34 - 2016-05-26 22:42 - 00000000 ____D C:\WINDOWS\SysWOW64\1036
2016-09-30 12:34 - 2016-05-26 22:42 - 00000000 ____D C:\WINDOWS\SysWOW64\1033
2016-09-30 12:34 - 2016-05-26 22:42 - 00000000 ____D C:\WINDOWS\system32\1033
2016-09-30 12:34 - 2016-05-26 22:39 - 00000000 ____D C:\WINDOWS\system32\1036
2016-09-30 12:34 - 2016-05-26 19:39 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.6
2016-09-30 12:34 - 2016-04-09 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ManiaPlanet
2016-09-30 12:34 - 2016-03-24 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simFlow
2016-09-30 12:34 - 2016-03-23 23:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Docker
2016-09-30 12:34 - 2016-01-31 01:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinHTTrack
2016-09-30 12:34 - 2016-01-30 19:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre 64bit - E-book Management
2016-09-30 12:34 - 2016-01-06 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2016-09-30 12:34 - 2015-12-01 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-09-30 12:34 - 2015-11-30 22:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2016-09-30 12:34 - 2015-11-29 20:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2016-09-30 12:34 - 2015-11-27 16:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ParaView 5.0.0-RC1
2016-09-30 12:34 - 2015-11-22 20:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiKTeX 2.9
2016-09-30 12:34 - 2015-11-22 19:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-09-30 12:34 - 2015-11-22 19:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JabRef
2016-09-30 12:34 - 2015-11-13 21:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpaceEngine
2016-09-30 12:34 - 2015-11-13 21:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Driver Update Utility
2016-09-30 12:34 - 2015-11-13 21:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-09-30 12:34 - 2015-11-13 21:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ma-config.com
2016-09-30 12:34 - 2015-11-13 20:44 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-09-30 12:34 - 2015-10-30 21:03 - 00000000 ____D C:\WINDOWS\ShellNew
2016-09-30 12:34 - 2015-10-30 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2016-09-30 12:34 - 2015-10-30 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Thunderbolt™ Software
2016-09-30 12:34 - 2015-10-30 14:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alienware
2016-09-30 12:34 - 2015-10-30 08:28 - 00000000 ____D C:\Users\Default.migrated
2016-09-30 12:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2016-09-30 12:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-09-30 12:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\spool
2016-09-30 12:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-09-30 12:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-09-30 12:29 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-09-30 12:29 - 2016-05-26 22:49 - 00000000 ____D C:\Program Files\IIS
2016-09-30 12:29 - 2016-05-26 22:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Expression
2016-09-30 12:29 - 2016-05-26 22:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2015
2016-09-30 12:29 - 2016-03-24 22:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\enGits
2016-09-30 12:29 - 2016-01-27 23:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kobo
2016-09-30 12:29 - 2016-01-06 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2016-09-30 12:29 - 2015-12-03 21:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImTOO
2016-09-30 12:29 - 2015-10-30 14:51 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-09-30 12:29 - 2015-10-30 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Killer Networking
2016-09-30 12:27 - 2015-11-22 16:37 - 00000000 ____D C:\Users\lorri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Texmaker
2016-09-30 12:27 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-09-30 12:26 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\PrintDialog
2016-09-30 12:26 - 2016-07-16 13:47 - 00000000 ___RD C:\WINDOWS\MiracastView
2016-09-30 12:25 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\Help
2016-09-30 12:13 - 2016-07-17 01:55 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-30 12:12 - 2016-01-01 21:46 - 00001108 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-30 12:11 - 2015-10-30 14:54 - 00000000 ____D C:\Program Files (x86)\Steam
2016-09-30 11:44 - 2015-11-17 00:34 - 00001002 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-09-29 21:31 - 2015-10-30 14:54 - 00000000 ____D C:\ProgramData\PCDr
2016-09-29 14:26 - 2015-11-22 18:10 - 00000000 ____D C:\Users\lorri\AppData\Local\Microsoft Help
2016-09-28 15:53 - 2016-02-07 23:43 - 00000000 ____D C:\Users\lorri\AppData\Local\CrashDumps
2016-09-28 11:45 - 2016-01-01 21:46 - 00001104 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-28 11:43 - 2015-11-13 22:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-09-25 16:22 - 2016-05-26 23:01 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 11.0
2016-09-25 16:22 - 2016-05-26 22:47 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 12.0
2016-09-25 16:22 - 2016-05-26 22:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio 14.0
2016-09-25 15:41 - 2015-10-30 14:43 - 00000000 ____D C:\ProgramData\Package Cache
2016-09-25 13:56 - 2016-01-06 21:01 - 00000000 ____D C:\ProgramData\Skype
2016-09-22 23:36 - 2016-01-01 21:46 - 00513632 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-09-17 13:13 - 2016-01-01 21:47 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-17 13:13 - 2016-01-01 21:47 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-09-15 07:22 - 2015-11-13 22:36 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-09-15 01:09 - 2015-11-13 22:36 - 144199024 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-09-15 00:24 - 2015-10-30 09:19 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqsnap.dll
2016-09-15 00:24 - 2015-10-30 09:19 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mqcertui.dll
2016-09-13 23:36 - 2016-01-01 21:46 - 00969184 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-09-12 23:36 - 2016-06-16 21:12 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-09-12 23:36 - 2016-01-01 21:46 - 00292704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-09-12 23:36 - 2016-01-01 21:46 - 00163416 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-09-12 23:36 - 2016-01-01 21:46 - 00108816 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-09-12 23:36 - 2016-01-01 21:46 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-09-12 23:36 - 2016-01-01 21:46 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-09-12 23:36 - 2016-01-01 21:46 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys

==================== Fichiers à la racine de certains dossiers =======

2014-07-10 08:16 - 2014-07-10 08:16 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll
2016-10-05 23:18 - 2016-10-05 23:18 - 0021160 _____ () C:\Users\lorri\AppData\Local\recently-used.xbel

==================== Bamital & volsnap ======================

(Il n'y a pas de correction automatique pour les fichiers qui ne satisfont pas à la vérification.)

C:\WINDOWS\system32\winlogon.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\wininit.exe => Le fichier est signé numériquement
C:\WINDOWS\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\explorer.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\svchost.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\services.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\User32.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\userinit.exe => Le fichier est signé numériquement
C:\WINDOWS\system32\rpcss.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\SysWOW64\dnsapi.dll => Le fichier est signé numériquement
C:\WINDOWS\system32\Drivers\volsnap.sys => Le fichier est signé numériquement


LastRegBack: 2016-09-30 12:23

==================== Fin de FRST.txt ============================

 

Addition file :

 

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04-10-2016
Exécuté par lorri (06-10-2016 23:33:31)
Exécuté depuis C:\Users\lorri\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-30 10:39:39)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2934410378-1622550900-2610683576-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2934410378-1622550900-2610683576-503 - Limited - Disabled)
Invité (S-1-5-21-2934410378-1622550900-2610683576-501 - Limited - Disabled)
lorri (S-1-5-21-2934410378-1622550900-2610683576-1001 - Administrator - Enabled) => C:\Users\lorri

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
7-Zip 15.12 (x64) (HKLM\...\7-Zip) (Version: 15.12 - Igor Pavlov)
Active Directory Authentication Library pour SQL Server (Version: 13.0.1100.286 - Microsoft Corporation) Hidden
Active Directory Authentication Library pour SQL Server (x86) (x32 Version: 13.0.1100.286 - Microsoft Corporation) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Alienware Command Center (HKLM-x32\...\InstallShield_{D5BC2B54-1297-4765-ABF5-FE43ED0067DD}) (Version: 4.5.16.0 - Dell Inc.)
Alienware Command Center (Version: 4.5.16.0 - Dell Inc.) Hidden
Alienware Customer Connect (HKLM-x32\...\{124DE80C-9BFE-4D04-A8D9-69C5019DEEBF}) (Version: 1.3.28.0 - Dell Inc.)
Alienware Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)
Alienware Graphics Amplifier Software Installer (HKLM-x32\...\InstallShield_{6AAC93BE-2E1D-4E49-8DDD-2DDF00AB4B33}) (Version: 2.0.16.0 - Dell Inc.)
Alienware Graphics Amplifier Software Installer (Version: 2.0.16.0 - Dell Inc.) Hidden
Alienware On-Screen Display (HKLM-x32\...\InstallShield_{0D69462F-99CC-4F8D-942E-666E21CE59F8}) (Version: 0.33.0.19C - )
Alienware On-Screen Display (x32 Version: 0.33.0.19C - ) Hidden
Application Insights Tools for Visual Studio 2015 (HKLM-x32\...\{981F324E-98F4-4784-B76F-04E92039F3F6}) (Version: 5.2.60328.3 - Microsoft Corporation)
Applications hybrides multi-appareils en C# - Modèles - FRA (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Assemblys du Kit de développement logiciel (SDK) Windows Phone 8.0 pour Visual Studio 2015 - FRA (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
Avast Antivirus Gratuit (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Azure AD Authentication Connected Service (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
AzureTools.Notifications (x32 Version: 2.7.30611.1601 - Microsoft Corporation) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\{D593042C-8739-488D-93B8-E6B202013E57}) (Version: 2.76.1 - Blender Foundation)
Boot2Docker for Windows version 1.6.2 (HKLM\...\{05BD04E9-4AB5-46AC-891E-60EA8FD57D56}_is1) (Version: 1.6.2 - Docker Inc)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
calibre 64bit (HKLM\...\{16C27752-8C33-4DF5-9C6C-947E018A5248}) (Version: 2.50.1 - Kovid Goyal)
Composants requis pour SSDT  (HKLM-x32\...\{FAFA0B40-AF76-4158-9DFA-1D2052CD0963}) (Version: 12.0.2000.8 - Microsoft Corporation)
Composants requis pour SSDT RC0 (HKLM-x32\...\{927D0263-3C15-469C-A144-402D09450030}) (Version: 13.0.1100.286 - Microsoft Corporation)
Concepteur XAML Microsoft Visual Studio 2015 - FRA (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
Dell Data Vault (Version: 4.3.9.0 - Dell Inc.) Hidden
Dell Foundation Services (HKLM\...\{C1C53DA1-9497-4ABB-A3D6-A63039820B37}) (Version: 3.3.7200.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{27130E51-9555-408B-8134-7BFF54EDE27B}) (Version: 1.3.0.72 - Dell)
Dell System Detect (HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\58d94f3ce2c27db0) (Version: 7.9.0.10 - Dell)
Docker Toolbox version 1.11.2 (HKLM\...\{FC4417F0-D7F3-48DB-BCE1-F5ED5BAFFD91}_is1) (Version: 1.11.2 - Docker)
Dotfuscator and Analytics Community Edition 5.19.1 (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden
EMSC (x32 Version: 0.0.0.28 - Compal Electronics, Inc.) Hidden
enGrid 1.4.0 (HKLM\...\enGrid) (Version: 1.4.0 - enGits GmbH)
Entity Framework 6.1.3 Tools  for Visual Studio 2015 Update 1 (HKLM-x32\...\{2A56910C-69C8-495D-8ED8-9080F0A14E58}) (Version: 14.0.41103.0 - Microsoft Corporation)
FontForge version 07-04-2016 (HKLM-x32\...\{56748B9C-19AE-4689-B8C5-5A45AE0A993A}_is1) (Version: 07-04-2016 - FontForgeBuilds)
Free Fall Data Protection (HKLM\...\{5141F653-8707-4B96-9349-247C66319C11}) (Version: 1.1.2.8 - Kionix, Inc.)
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Git version 2.8.1 (HKLM\...\Git_is1) (Version: 2.8.1 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
IIS 10.0 Express (HKLM\...\{7A28A2B0-458B-4A58-84AC-C90D2D4B79FB}) (Version: 10.0.1735 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{08274920-8908-45c2-9258-8ad67ff77b09}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{ad846bae-d44b-4722-abad-f7420e08bcd9}.sdb) (Version:  - )
ImTOO Video Converter Ultimate (HKLM-x32\...\ImTOO Video Converter Ultimate) (Version: 7.8.7.20150209 - ImTOO)
Intel Driver Update Utility (HKLM-x32\...\{fe92d390-13ee-4660-a2f8-39a066fdffe0}) (Version: 2.2.0.5 - Intel)
Intel® Driver Update Utility 2.2.0.5 (x32 Version: 2.2.0.1 - Intel) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10600.147 - Intel Corporation)
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4256 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.9.1053 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
JabRef 2.11.1 (HKLM-x32\...\JabRef 2.11.1) (Version: 2.11.1 - JabRef Team)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Kerbal Space Program (HKLM-x32\...\Steam App 220200) (Version:  - Squad)
Killer Bandwidth Control Filter Driver (Version: 1.1.54.1220 - Rivet Networks) Hidden
Killer E240x Drivers (Version: 1.1.54.1220 - Rivet Networks) Hidden
Killer Network Manager (Version: 1.1.54.1220 - Rivet Networks) Hidden
Killer Network Manager Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.54.1220 - Rivet Networks)
Killer Wireless Drivers (HKLM-x32\...\{18B7FD2F-D20D-42EC-BBC3-1D5C82783459}) (Version: 1.1.54.1220 - Rivet Networks)
Killer Wireless-AC 1535 Drivers (Version: 1.1.54.1220 - Rivet Networks) Hidden
Kit de développement logiciel (SDK) Microsoft .NET Framework 4.6.1 (Français) (HKLM-x32\...\{9369E1F2-44C9-4864-843E-159725E660CB}) (Version: 4.6.01055 - Microsoft Corporation)
Kobo (HKLM-x32\...\Kobo) (Version: 3.19.3765 - Rakuten Kobo Inc.)
Logiciel pour périphérique à chipset Intel® (x32 Version: 10.1.1.7 - Intel® Corporation) Hidden
Ma-Config.com (64 bits) (HKLM\...\{9EA21438-935A-48F9-88D4-A0341406E12A}) (Version: 4.0.323 - Cybelsoft)
ManiaPlanet (HKLM-x32\...\ManiaPlanet_is1) (Version:  - Nadeo)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (Français) (HKLM-x32\...\{15A5D4D5-6435-322E-9435-C21252920944}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Français) (HKLM-x32\...\{5F951DA6-8F50-4E55-B2A3-DCE78BF3D185}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (Français) (HKLM-x32\...\{4C742A71-01FC-391A-972B-87DAFB8C46DD}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 Multi-Targeting Pack (HKLM-x32\...\{19E8AE59-4D4A-3534-B567-6CC08FA4102E}) (Version: 4.5.51651 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (Français) (HKLM-x32\...\{224757CE-5740-4E20-84CB-670D8D593A1C}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 SDK (HKLM-x32\...\{B5915D37-0637-4A26-A3AA-C5DC9F856370}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (HKLM-x32\...\{2CC6A4A7-AAC2-46C9-9DBB-3727B5954F65}) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 SDK (HKLM-x32\...\{2F0ECC80-B9E4-4485-8083-CD32F22ABD92}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (ENU) (HKLM-x32\...\{8EEB28EE-5141-411C-9CF0-9952264FE4AF}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (HKLM-x32\...\{8BC3EEC9-090F-4C53-A8DA-1BEC913040F9}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6 Targeting Pack (Français) (HKLM-x32\...\{71A096E4-A48D-42FA-88BB-96B996580DC4}) (Version: 4.6.00127 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 Targeting Pack (Français) (HKLM-x32\...\{AD054CB0-F527-48AD-832B-E65D46237C88}) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Version Manager (x64) 1.0.0-beta5 (HKLM\...\{c5a4aba3-1aba-3ef8-b2d5-c3fa37f59738}) (Version: 1.0.10609.0 - Microsoft Corporation)
Microsoft Help Viewer 2.2 (HKLM-x32\...\Microsoft Help Viewer 2.2) (Version: 2.2.25123 - Microsoft Corporation)
Microsoft MPI (7.0.12437.6) (HKLM\...\{8499ACD3-C1E3-45AB-BF96-DA491727EBE1}) (Version: 7.0.12437.6 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20513.0 - Microsoft Corporation)
Microsoft SQL Server 2016 LocalDB RC0 (HKLM\...\{449AB79F-00F5-4AE1-A5C8-FC0BFD9F70DC}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects RC0 (HKLM-x32\...\{350759AB-531E-485B-9FD9-22E9299F43C7}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server 2016 Management Objects RC0 (x64) (HKLM\...\{19BB20A8-BD4B-4D81-85D8-359A3A9C55BA}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server 2016 T-SQL ScriptDom RC0 (HKLM\...\{BE9CBEB3-04D2-47F9-8B77-CB9A2DFDBF54}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 FRA (HKLM\...\{0D4447E0-A261-43A4-AEBC-F76E983901F0}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - FRA (14.0.60311.1) (HKLM-x32\...\{55DE1A9D-695E-4354-AB65-60094CBBE41A}) (Version: 14.0.60311.1 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{67F01854-264E-44E4-9434-1107741573AA}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects  (HKLM-x32\...\{9CD2AD15-115E-4F44-90A8-435B9537973B}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Management Objects (x64) (HKLM\...\{296D0B70-F8D8-4D58-9E55-C86B3E82DB7C}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom  (HKLM\...\{855F1729-ECA5-4BF8-A8E4-9E521BB36E10}) (Version: 12.0.2000.8 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM\...\{FC3BB979-AA54-4B60-BBA3-2C4DA6E08D80}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2014 (HKLM-x32\...\{091CE6AA-2753-4F6E-AD1C-0E875744EB54}) (Version: 12.0.2402.29 - Microsoft Corporation)
Microsoft System CLR Types pour SQL Server 2016 RC0 (HKLM\...\{3AB4B3A5-84F4-4E5F-AEBD-EA8352603AE6}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft System CLR Types pour SQL Server 2016 RC0 (HKLM-x32\...\{C7661733-43D1-4551-8DD4-09B0CB36BFA9}) (Version: 13.0.1100.286 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{1af6dc7d-ee8d-4bf8-aea0-07c6969a7170}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{18637763-c8e5-4c49-ba8a-b854367f6b55}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio Community 2015 avec Update 2 (HKLM-x32\...\{e95b083c-ccc4-4c58-b74d-b91319f5768d}) (Version: 14.0.25123.0 - Microsoft Corporation)
Microsoft Web Deploy 3.6 (HKLM\...\{94E1227C-08A9-4962-B388-1F05D89AEA75}) (Version: 3.1238.1962 - Microsoft Corporation)
MiKTeX 2.9 (HKLM-x32\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mises à jour NVIDIA 2.9.1.22 (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
Module linguistique de Dotfuscator and Analytics Community Edition 5.19.1 fr-FR (x32 Version: 5.19.1.3091 - PreEmptive Solutions) Hidden
Module linguistique de la visionneuse d'aide Microsoft 2.2 - FRA (x32 Version: 2.2.25123 - Microsoft Corporation) Hidden
Module linguistique des composants partagés Microsoft Azure pour Visual Studio 2015 (FRA) - v1.7 (x32 Version: 1.7.40113.5 - Microsoft Corporation) Hidden
Module linguistique des outils de test de Microsoft Visual Studio 2015 - FRA (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Module linguistique du Kit de développement logiciel (SDK) de Microsoft Visual Studio 2015 - FRA (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Module linguistique Microsoft Azure Mobile Services Tools pour Visual Studio - v1.4 (x32 Version: 1.4.30611.1601 - Microsoft Corporation) Hidden
Module linguistique Microsoft Help Viewer 2.2 - FRA (HKLM-x32\...\Module linguistique de la visionneuse d'aide Microsoft 2.2 - FRA) (Version: 2.2.25123 - Microsoft Corporation)
Mozilla Firefox 47.0 (x64 fr) (HKLM\...\Mozilla Firefox 47.0 (x64 fr)) (Version: 47.0 - Mozilla)
Mozilla Firefox 49.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 49.0.1 (x86 fr)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MSBuild/NuGet Integration 14.0 (x86) (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
NVIDIA CUDA Samples 7.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDASamples_7.5) (Version: 7.5 - NVIDIA Corporation)
NVIDIA CUDA Toolkit 7.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAToolkit_7.5) (Version: 7.5 - NVIDIA Corporation)
NVIDIA CUDA Visual Studio Integration 7.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_CUDAVisualStudioIntegration_7.5) (Version: 7.5 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.9.1.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.9.1.22 - NVIDIA Corporation)
NVIDIA GPU Deployment Kit 353.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GDK) (Version: 353.90 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Nsight Visual Studio Edition 4.7.0.15181 (HKLM\...\{E8E7186E-0E60-4BDA-8F89-A50513758600}) (Version: 4.7.0.15181 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 353.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.90 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Pilote graphique 353.90 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.90 - NVIDIA Corporation)
NVIDIA Tools Extension SDK (NVTX) - 64 bit (HKLM\...\{4D983759-07FC-4571-BB59-58C9BBADECC5}) (Version: 1.00.00.00 - NVIDIA Corporation)
OpenFOAM4Windows (HKLM-x32\...\ESI-OpenCFD OpenFOAM4Windows) (Version: "v1606.0" - "ESI-OpenCFD")
Oracle VM VirtualBox 5.0.20 (HKLM\...\{8209969B-9A31-4021-B0D8-E6F719F7F995}) (Version: 5.0.20 - Oracle Corporation)
Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Panneau de configuration NVIDIA 358.91 (Version: 358.91 - NVIDIA Corporation) Hidden
ParaView 5.0.0-RC1 (HKLM-x32\...\ParaView 5.0.0-RC1) (Version: 5.0.0-RC1 - Kitware, Inc.)
Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)
PreEmptive Analytics Client French Language Pack (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.2.5134.1 - PreEmptive Solutions) Hidden
Python 2.7.11 (Miniconda2 4.0.5 64-bit) (HKLM\...\Python 2.7.11 (Miniconda2 4.0.5 64-bit)) (Version: 4.0.5 - Continuum Analytics, Inc.)
Python 3.6.0a1 (64-bit) (HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\{8c9bd47d-9194-41d9-9b51-e59c505a15bc}) (Version: 3.6.101.0 - Python Software Foundation)
Python 3.6.0a1 Add to Path (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Core Interpreter (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Development Libraries (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Documentation (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Executables (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Launcher (32-bit) (HKLM-x32\...\{446767A1-0B6E-4C45-BAFC-2D01A5855001}) (Version: 3.6.100.0 - Python Software Foundation)
Python 3.6.0a1 pip Bootstrap (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Standard Library (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Tcl/Tk Support (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Test Suite (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Python 3.6.0a1 Utility Scripts (64-bit) (Version: 3.6.101.0 - Python Software Foundation) Hidden
Qualcomm Atheros QCA6174_9377 Bluetooth Suite (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.137 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.102 - Realtek Semiconductor Corp.)
Ressources de Microsoft Visual Studio 2015 Shell (minimum) (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Ressources des affichages web du débogueur de performances de Microsoft Visual Studio 2015 Update 2 - FRA (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
Ressources Devenv de Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Rocksmith (HKLM-x32\...\Steam App 205190) (Version:  - Ubisoft - San Francisco)
Roslyn Language Services - x86 (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
Roslyn Language Services - x86 (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Service de langage T-SQL Microsoft SQL Server 2016 RC0 (HKLM-x32\...\{91E92AF1-5E30-43A1-A082-8E4B8991539C}) (Version: 13.0.12000.52 - Microsoft Corporation)
Service de langage T-SQL Microsoft SQL Server 2014  (HKLM-x32\...\{4152D9BF-6975-4653-B993-5CA882638A72}) (Version: 12.0.2000.8 - Microsoft Corporation)
SHIELD Streaming (Version: 4.1.0260 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.9.1.22 - NVIDIA Corporation) Hidden
simFlow version 2.2 (HKLM\...\simFlow-x64_is1) (Version: 2.2 - )
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Sound Blaster Recon3Di Extras (HKLM-x32\...\{C45E715E-442E-4D82-BD46-A08A0870957C}) (Version: 1.0 - Creative Technology Limited)
SpaceEngine version 0.9.7.2 (HKLM-x32\...\{E65FD500-9218-44EC-9586-D39FAB4DFDAF}_is1) (Version: 0.9.7.2 - SpaceEngine)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Star Citizen Launcher (HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\...\Star Citizen Launcher) (Version: 00.01.00.00 - Cloud Imperium Games)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Team Explorer for Microsoft Visual Studio 2015 Update 2 (x32 Version: 14.95.25118 - Microsoft) Hidden
Tecplot 360 EX 2016 R2 (HKLM-x32\...\Tecplot 360 EX 2016 R2) (Version: 2016 R2 - Tecplot, Inc.)
Test Tools for Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Texmaker (HKLM-x32\...\Texmaker) (Version:  - )
TeXstudio 2.11.0 (HKLM-x32\...\TeXstudio_is1) (Version: 2.11.0 - Benito van der Zander)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version:  - Bethesda Game Studios)
Thunderbolt™ Software (HKLM-x32\...\{E265C71F-14DA-462C-A06A-CBA776B695F1}) (Version: 15.2.32.250 - Intel Corporation)
Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.15 - Synaptics Incorporated)
TypeScript Power Tool (x32 Version: 1.8.9.0 - Microsoft Corporation) Hidden
TypeScript Tools for Microsoft Visual Studio 2015 (x32 Version: 1.8.31.0 - Microsoft Corporation) Hidden
Update for  (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Utilitaires ligne de comm. Microsoft SQL Server 2012  (HKLM\...\{3835543E-37BA-4CE3-91BE-608DA8827675}) (Version: 11.1.3000.0 - Microsoft Corporation)
Version préparatoire de Microsoft Visual Studio 2015 (x32 Version: 14.0.23107 - Microsoft Corporation) Hidden
Visual Studio 2015 Update 2 (KB3022398) (HKLM-x32\...\{78c1b501-a6eb-4f29-88c5-84189564827e}) (Version: 14.0.25123 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
VS Update core components (x32 Version: 14.0.25123 - Microsoft Corporation) Hidden
vs_update2notification (x32 Version: 14.0.25132 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 FRA Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services 5.6.4 Runtime (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2015 FRA Language Pack (x32 Version: 5.6.62175.4 - Microsoft Corporation) Hidden
Windows Driver Package - Kionix, Inc. (kiox_ff_driver) Sensor I/O devices  (10/09/2014 1.1.2.8) (HKLM\...\8DF797456310A45326D5CA27FA380061A19FA127) (Version: 10/09/2014 1.1.2.8 - Kionix, Inc.)
Windows Driver Package - Kionix, Inc. kxdiskprot DiskDrive  (10/09/2014 1.1.2.8) (HKLM\...\7115C5B3174715E634D96D0883A6ACF1B11140A8) (Version: 10/09/2014 1.1.2.8 - Kionix, Inc.)
WinHTTrack Website Copier 3.48-21 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.48.21 - HTTrack)
WinHTTrack Website Copier 3.48-22 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.48.22 - HTTrack)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2934410378-1622550900-2610683576-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\lorri\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileCoAuth.exe (Microsoft Corporation)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0B1C6CEE-0C5F-4DDD-93DF-A8715C9E8F78} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION
Task: {11FC26D3-BB05-461F-BFDE-366507A10A36} - System32\Tasks\Microsoft\VisualStudio\VSIX Auto Update 14 => C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\VSIXAutoUpdate.exe [2016-05-15] (Microsoft Corporation)
Task: {1A20EB0A-01A2-4D7A-AC07-85D263906A67} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Alienware\SupportAssist\uaclauncher.exe [2016-09-13] (PC-Doctor, Inc.)
Task: {347F5B4E-D647-4543-AE32-4BF95D5DA19B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {4A40DDB1-ABC6-4661-B4EA-47D30EAADC7E} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => Thunderbolt.exe
Task: {5EF3FC90-AD2F-4E86-9EBA-FA20C1A93003} - System32\Tasks\SafeZone scheduled Autoupdate 1466190890 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {679A7F6B-6F6B-4BB3-89C8-415157685F2A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-12] (AVAST Software)
Task: {77634CA3-35A1-45E6-9203-A10DC2050E3A} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-09-09] (Dell Inc.)
Task: {965AD8F0-20EC-4FC0-B517-EEE5C15D3635} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => start ThunderboltService
Task: {9A4C03DF-D3DE-4C89-9037-B5F8693DF31C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-16] (Adobe Systems Incorporated)
Task: {9C09BD17-DBF6-49EB-B5CD-9A2AE6DBF72E} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {A0565C07-2D3D-4479-B393-45C2909F2371} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-01] (Google Inc.)
Task: {A0F8A2B5-D1C9-4C9E-A047-4B06EEE96D60} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\lorri\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-25] (Microsoft Corporation)
Task: {A3209717-D90E-4E4F-A5FE-BFBE70BC4DF6} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Alienware\SupportAssist\sessionchecker.exe [2016-09-13] (PC-Doctor, Inc.)
Task: {A4989CA8-D808-4031-9AFB-DD31F71C298A} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => tbtsvc.exe
Task: {B0981E01-7549-4C42-8F03-FB27D2D4668A} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {CDE1AE40-AF6B-49E4-9DB1-27086451BEA3} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-09-15] (Microsoft Corporation)
Task: {DA9F078D-22E5-4B78-A831-E0D881D5DADE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-01-01] (Google Inc.)
Task: {E3731081-8C66-4BB0-8513-4F9C4C3601E5} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => Thunderbolt.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\Public\Desktop\OF_Env_Create.lnk -> C:\Program Files (x86)\ESI\OpenFOAM\1606\Windows\Scripts\create_OF.bat ()
Shortcut: C:\Users\Public\Desktop\OpenFOAM_Start.lnk -> C:\Program Files (x86)\ESI\OpenFOAM\1606\Windows\Scripts\start_OF.bat ()

==================== Modules chargés (Avec liste blanche) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-30 12:25 - 2015-11-05 17:08 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-02-07 23:18 - 2016-01-12 06:43 - 00291264 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-30 12:43 - 2016-09-30 12:43 - 01864384 _____ () C:\Users\lorri\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\amd64\ClientTelemetry.dll
2010-01-30 02:40 - 2010-01-30 02:40 - 04254560 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-03-24 21:38 - 2010-03-24 21:38 - 08794976 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2016-07-16 13:42 - 2016-07-16 13:42 - 00130048 _____ () C:\WINDOWS\SYSTEM32\CHARTV.dll
2015-10-30 15:23 - 2016-03-16 14:55 - 00384120 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-07-16 13:42 - 2016-07-16 13:42 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-07-16 13:43 - 2016-07-16 13:43 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 09761280 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 01400320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 02438144 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-07-16 13:43 - 2016-07-17 00:45 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-30 13:17 - 2016-09-30 13:18 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-09-30 13:17 - 2016-09-30 13:18 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-09-30 13:17 - 2016-09-30 13:18 - 35250688 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.190.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-10-06 23:19 - 2016-10-06 23:19 - 00080384 _____ () C:\Users\lorri\Downloads\MBRCheck.exe
2016-09-12 23:36 - 2016-09-12 23:36 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-06 21:14 - 2016-10-06 21:14 - 03118360 _____ () C:\Program Files\AVAST Software\Avast\defs\16100602\algo.dll
2016-09-12 23:36 - 2016-09-12 23:36 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-11-13 21:14 - 2016-01-12 06:43 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-09-30 12:43 - 2016-09-30 12:43 - 01383616 _____ () C:\Users\lorri\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\ClientTelemetry.dll
2010-01-30 02:41 - 2010-01-30 02:41 - 04254560 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-03-24 21:17 - 2010-03-24 21:17 - 08794464 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2016-09-30 12:43 - 2016-09-30 12:43 - 00118976 _____ () C:\Users\lorri\AppData\Local\Microsoft\OneDrive\17.3.6517.0809_1\FileSyncViews.dll
2014-05-31 01:34 - 2014-05-31 01:34 - 00939008 _____ () C:\WINDOWS\SYSTEM32\EMSC.dll
2016-07-02 03:05 - 2016-07-02 03:05 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-07-11 08:37 - 2015-07-11 08:37 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-07-10 13:04 - 2015-07-10 13:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2934410378-1622550900-2610683576-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lorri\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img13.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==


==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{CC75332D-F78B-4E41-AFD0-9A470C1EDEAD}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe
FirewallRules: [{86B7E7FD-60B3-47A1-8286-16B2B79AF2EB}] => (Allow) C:\Program Files\Microsoft MPI\Bin\smpd.exe
FirewallRules: [{057EE20D-2D18-45D0-BC70-4EDC66595CA6}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe
FirewallRules: [{98632165-2ADC-41BC-BEA2-6DE60EBFB09D}] => (Allow) C:\Program Files\Microsoft MPI\Bin\mpiexec.exe
FirewallRules: [{FF2DF974-EAF4-49AB-A7D3-2A16C1D72ACC}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe
FirewallRules: [{5504F1CC-CC80-4184-8F4B-89070E1F969F}] => (Allow) C:\Program Files\Microsoft MPI\Bin\msmpilaunchsvc.exe
FirewallRules: [{680526B4-1F20-4E7C-B83B-7A217CE5A494}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [UDP Query User{95CD8CC6-50B9-42CE-9C88-C4F855C89430}D:\softs\fontforgebuilds\bin\vcxsrv\vcxsrv.exe] => (Allow) D:\softs\fontforgebuilds\bin\vcxsrv\vcxsrv.exe
FirewallRules: [TCP Query User{2BF67337-9074-4CCA-A64C-4F034E05BC47}D:\softs\fontforgebuilds\bin\vcxsrv\vcxsrv.exe] => (Allow) D:\softs\fontforgebuilds\bin\vcxsrv\vcxsrv.exe
FirewallRules: [UDP Query User{C3C1AB52-D822-47AE-A379-E131F654611B}C:\users\lorri\appdata\roaming\utorrent\updates\3.4.8_42449.exe] => (Allow) C:\users\lorri\appdata\roaming\utorrent\updates\3.4.8_42449.exe
FirewallRules: [TCP Query User{815A2FA2-16B7-44A0-B795-52F1322E2099}C:\users\lorri\appdata\roaming\utorrent\updates\3.4.8_42449.exe] => (Allow) C:\users\lorri\appdata\roaming\utorrent\updates\3.4.8_42449.exe
FirewallRules: [{93B1573E-2E51-4278-A092-1586220DA457}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0252C4EF-6FCE-441A-BB6E-C2816E4EEF77}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{6050125C-1A0A-4C38-86CF-4342C7644C03}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{04140E18-C024-438B-8636-0C523A6EF359}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [UDP Query User{340D7A8C-51FC-4DBF-AD7D-5B55D80B3254}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [TCP Query User{D5FD087C-88FB-423B-A941-7C44C62769DE}C:\program files (x86)\overwatch\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\overwatch.exe
FirewallRules: [{89FFF876-31F3-4F6F-823E-EDDEF6017FDC}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 14.0\Common7\IDE\devenv.exe
FirewallRules: [{8BC36D23-6847-4A87-A1CB-B6EE062B198B}] => (Allow) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{A22BB801-85DB-4C79-BB6C-C3C206DF60F1}] => (Allow) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5330B674-0764-4B5C-B767-BC2FB6A3ACA4}] => (Allow) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{84F60218-4A6D-4EEC-AEB3-5A5CCFE58401}] => (Allow) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6AA1D68C-A27E-4154-9F6E-A2F597166636}] => (Allow) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{95D11D8B-6C22-4B8F-9444-E2CF029E4EA8}] => (Allow) C:\Users\lorri\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2628D490-DB43-4AB9-8804-2E73310D8265}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [{265E7BA3-CDAB-4361-8865-5AE134837231}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP_x64.exe
FirewallRules: [UDP Query User{DF373D45-D456-43F6-90E0-5961E799404D}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe
FirewallRules: [TCP Query User{BC0A93AC-DE5E-434E-BE41-422FDF4C8E2B}C:\program files (x86)\maniaplanet\maniaplanet.exe] => (Allow) C:\program files (x86)\maniaplanet\maniaplanet.exe
FirewallRules: [UDP Query User{968B22B6-F00B-42B7-A53C-9F74E2B57F34}C:\users\lorri\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\users\lorri\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [TCP Query User{001F3138-35E7-445E-AF8D-3959109D43A4}C:\users\lorri\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) C:\users\lorri\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{89064ABD-9E72-45F6-80A6-C442E0403CAA}C:\users\lorri\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\users\lorri\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{9478488B-1A8C-4F25-B598-D44B62BE24A6}C:\users\lorri\cloud imperium games\patcher\cigpatcher.exe] => (Allow) C:\users\lorri\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [{1EFDBA8E-75B4-4C3F-81DE-853B9190B361}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{30B44781-8B30-4A58-B5CA-84B43CCF129E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DA571853-E285-4EEC-B807-9A806EA1C0DD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A9E6F47F-3863-4169-B934-CC6AD7392582}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{A88AE473-D6D3-44C0-9FE4-04BA6CA35F76}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8313F439-EF4F-457F-BF43-EE2A8B762586}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{6D518B28-0348-42CC-9116-491AC2309185}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Kerbal Space Program\KSP.exe
FirewallRules: [{0DE64E76-609F-4B04-915A-23F37BE94540}] => (Allow) LPort=48113
FirewallRules: [{01B482F0-4909-498D-BA9D-9CF83A3CD00D}] => (Allow) LPort=48113
FirewallRules: [{A1BD3D67-670C-46A9-8878-3192A8556ED9}] => (Allow) C:\Program Files\ma-config.com\x64\maconfservice.exe
FirewallRules: [{CDE4FBE8-6FB1-4FCF-8E39-4FABD0101C76}] => (Allow) C:\Program Files\ma-config.com\x64\maconfservice.exe
FirewallRules: [{D66EC711-3C8F-46C5-B2BF-37D6D63AE1FB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{6A921959-2D25-474F-851F-DA612A583C88}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{738A1C4D-A987-4914-9C62-5AE6D3A93FF1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{062781A2-09FC-4468-8E35-03933DA1DEBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{C4F5E7BC-DADC-4C5B-9A6B-9C1C7B0606EC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{4B1BC399-6DFE-424F-AF79-937B18D25001}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{49AFEB3C-F653-4C59-A006-677C5EEEFFA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{80907962-8139-468C-9014-1A5C4BEA0108}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{920AB62A-5C66-48B3-B7F6-9DEEBBB6E7EC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{ECD732CA-9074-4C13-97C7-EE772EE9954E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2FA1AEDA-89B2-43A3-9C4F-C3AF171B2A65}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8FF693AA-A143-48BA-9537-C7446693F367}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{3AED42C7-6852-425B-AF95-099903BBDB65}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{1904527C-5949-4431-AD39-513C0E08FFFE}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{8403D168-CD28-4484-AE19-65937C9A68A4}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{040841A2-DEAD-4228-B56E-DC4ED4DC472C}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rocksmith\Rocksmith.exe
FirewallRules: [{6D205C9C-1FBE-498C-84BD-C09064604844}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Rocksmith\Rocksmith.exe
FirewallRules: [{D91FF85E-1FBA-45D7-B4FA-0891D3289677}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{2CBA503B-5932-4729-9447-0B9C48A9C207}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{A6BB2250-6C1A-49EF-AD05-8F961E533BA2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E362A16F-9FF3-4A9F-A859-B2D69DE53EBE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Points de restauration =========================

30-09-2016 15:25:57 Installed Blender
06-10-2016 20:59:55 Opération de restauration

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (10/06/2016 10:38:54 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 144
Executing Function:  ConfigTdpPolicy::onBindDomain
Message:  cTDP control not found in set.
Participant:  TCPU [5]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (10/06/2016 10:38:54 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 322
Executing Function:  ConfigTdpPolicy::synchronizeConfigTdpPlatformSettings
Message:  cTDP control not found in set.
Policy:  ConfigTDP Policy [0]

Error: (10/06/2016 10:38:53 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 673
Executing Function:  PolicyBase::takeControlOfOsc
Message:  Failed to acquire OSC: Failure during execution of _OSC:
DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 473
Executing Function:  EsifServices::primitiveExecuteSet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  SET_OPERATING_SYSTEM_CAPABILITIES [93]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]


Policy:  Passive Policy [2]

Error: (10/06/2016 10:38:53 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\..\Sources\Policies\PolicyLib\PolicyBase.cpp @ line 673
Executing Function:  PolicyBase::takeControlOfOsc
Message:  Failed to acquire OSC: Failure during execution of _OSC:
DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\Sources\Manager\EsifServices.cpp @ line 473
Executing Function:  EsifServices::primitiveExecuteSet
Message:  Error returned from ESIF services interface function call
Participant:  NoParticipant
Domain:  NoDomain
ESIF Primitive:  SET_OPERATING_SYSTEM_CAPABILITIES [93]
ESIF Instance:  255
ESIF Return Code:  ESIF_E_UNSUPPORTED_ACTION_TYPE [1202]


Policy:  Critical Policy [1]

Error: (10/06/2016 10:16:56 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Échec de l’énumération de sessions utilisateur en vue de générer des pools de filtre.

Détails :
    (HRESULT : 0x80040210) (0x80040210)

Error: (10/06/2016 10:16:56 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Échec de l’énumération de sessions utilisateur en vue de générer des pools de filtre.

Détails :
    (HRESULT : 0x80040210) (0x80040210)

Error: (10/06/2016 10:16:56 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Échec de l’énumération de sessions utilisateur en vue de générer des pools de filtre.

Détails :
    (HRESULT : 0x80040210) (0x80040210)

Error: (10/06/2016 10:16:56 PM) (Source: Windows Search Service) (EventID: 3104) (User: )
Description: Échec de l’énumération de sessions utilisateur en vue de générer des pools de filtre.

Détails :
    (HRESULT : 0x80040210) (0x80040210)

Error: (10/06/2016 10:16:54 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 144
Executing Function:  ConfigTdpPolicy::onBindDomain
Message:  cTDP control not found in set.
Participant:  TCPU [5]
Domain:  PKG [0]
Policy:  ConfigTDP Policy [0]

Error: (10/06/2016 10:16:54 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10600.147) TYPE: ERROR

DPTF Build Version:  8.1.10600.147
DPTF Build Date:  May 26 2015 13:35:22
Source File:  ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 322
Executing Function:  ConfigTdpPolicy::synchronizeConfigTdpPlatformSettings
Message:  cTDP control not found in set.
Policy:  ConfigTDP Policy [0]


Erreurs système:
=============
Error: (10/06/2016 10:39:33 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/06/2016 10:39:33 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/06/2016 10:39:33 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/06/2016 10:38:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CTAudSvcService n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.

Error: (10/06/2016 10:37:44 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: ACPI5

Error: (10/06/2016 10:17:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/06/2016 10:17:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/06/2016 10:17:20 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/06/2016 10:16:54 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x000000d1 (0xfffff80774bea724, 0x0000000000000002, 0x0000000000000008, 0xfffff80774bea724). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : fce2fb08-111f-4095-9574-c3c855ca0389.

Error: (10/06/2016 10:16:53 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 21:50:00 le ‎06/‎10/‎2016 n’était pas prévu.


CodeIntegrity:
===================================
  Date: 2016-10-06 21:08:29.499
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\usbvideo.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-06 21:08:29.385
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\BTHUSB.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-06 21:08:29.280
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\hidusb.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-06 21:08:29.113
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\hidusb.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-06 21:08:29.103
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\hidusb.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-06 21:07:26.015
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\hidclass.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-10-06 21:07:25.951
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\Windows\System32\drivers\WdiWiFi.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Infos Mémoire ===========================

Processeur: Intel® Core™ i7-6820HK CPU @ 2.70GHz
Pourcentage de mémoire utilisée: 23%
Mémoire physique - RAM - totale: 16283.51 MB
Mémoire physique - RAM - disponible: 12538.08 MB
Mémoire virtuelle totale: 19227.51 MB
Mémoire virtuelle disponible: 15466.69 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:224.98 GB) (Free:24.09 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.39 GB) (Free:503.97 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: F276C8E0)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 7522881C)

Partition: GPT.

==================== Fin de Addition.txt ============================

 

 

Sorry for being in French :/

 

EDIT : I also tried a system recovery from last week and the problem did not disappeared, but I did not even moved or touched my laptop since yesterday and it was unplugged so I doubt it's an hardware issue. Also, jack output/mic input do not work (of course with audio card unavailable)


Edited by Eliam, 06 October 2016 - 04:05 PM.

  • 0

Advertisements







Similar Topics


Also tagged with one or more of these keywords: trojan, sound, card, infection

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP