Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20.06.2018
Ran by Nicolas (07-07-2018 21:34:57)
Running from E:\Nicolas\Téléchargements
Windows 8.1 Pro (Update) (X64) (2018-02-06 19:23:55)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3227184247-764142730-1024045993-500 - Administrator - Disabled)
Guest (S-1-5-21-3227184247-764142730-1024045993-501 - Limited - Disabled)
Nicolas (S-1-5-21-3227184247-764142730-1024045993-1001 - Administrator - Enabled) => C:\Users\Nicolas

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3227184247-764142730-1024045993-1001\...\uTorrent) (Version: 3.5.3.44358 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20040 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.113 - Adobe Systems Incorporated)
Application Verifier x64 External Package (HKLM\...\{D9908CED-5ABB-FEE9-FC84-743F4D38637C}) (Version: 10.1.16299.15 - Microsoft) Hidden
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.4.6 - Nikon Corporation)
cFosSpeed v10.25 (HKLM\...\cFosSpeed) (Version: 10.25 - cFos Software GmbH, Bonn)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.8.0.0401 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3227184247-764142730-1024045993-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.11 - NVIDIA Corporation) Hidden
Free Studio (HKLM-x32\...\Free Studio_is1) (Version: 6.6.19.602 - Digital Wave Ltd)
GIMP 2.8.22 (HKLM\...\GIMP-2_is1) (Version: 2.8.22 - The GIMP Team)
Intel(R) Chipset Device Software (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation)
Intel(R) Network Connections 22.9.16.0 (HKLM\...\PROSetDX) (Version: 22.9.16.0 - Intel)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1633.3 - Intel Corporation)
Intel(R) Small Business Advantage (HKLM-x32\...\{6A6D86CD-B004-46b7-8951-7BB75A776F8C}) (Version: 3.1.53.8739 - Intel(R) Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden
Intel(R) Update Manager (HKLM-x32\...\{89E5F369-612A-4A5E-8BF2-7938C76ABF29}) (Version: 3.0.135 - Intel Corporation)
Intel(R) USB 3.0 Host Controller Adaptation Driver (HKLM\...\{9472AEE5-5D4D-4329-8BD8-B282FD33B8E0}) (Version: 2.0.0.11 - Intel Corporation)
Intel® Small Business Advantage (HKLM-x32\...\{C7A82877-2365-4A03-B23F-DFDD629B7F3A}) (Version: 4.0.44 - Intel Corporation)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Kits Configuration Installer (HKLM-x32\...\{86E59C8F-61D5-1782-A3CE-60AE7E4D7791}) (Version: 10.1.16299.15 - Microsoft) Hidden
Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 1.16.1247.518 - Microsoft Corporation)
Mises à jour NVIDIA 31.1.10.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.1.10.0 - NVIDIA Corporation) Hidden
Mozilla Firefox 61.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 61.0.1 (x86 fr)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.1 - Mozilla)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.45 - MSI)
MSI Development Tools (HKLM-x32\...\{973CACA2-E018-065B-0580-F2784802E299}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
MSI DragonEye (HKLM\...\{7116875E-F251-4C33-AB3F-37DE05B15595}_is1) (Version: 0.0.2.6 - MSI)
MSI Fast Boot (HKLM-x32\...\{0F212E7A-65EB-4668-A8D7-749026A64F8E}_is1) (Version: 1.0.1.12 - MSI)
MSI Gaming APP (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 6.2.0.45 - MSI)
MSI Gaming Lan Manager (HKLM-x32\...\{3318282C-D4D6-4B29-BBD5-95FC34B54FF0}_is1) (Version: 1.0.0.60 - MSI)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.27 - MSI)
MSI RAMDisk (HKLM-x32\...\{F29CF050-7278-4CDB-9EF8-2DC6DAA87453}}_is1) (Version: 1.0.0.27 - MSI)
MSI Smart Tool (HKLM-x32\...\{DDCCA038-DAB1-4D09-B85C-848020AA75D6}}_is1) (Version: 1.0.0.25 - MSI)
MSI Super Charger (HKLM-x32\...\{7CDF10DD-A9B5-4DA3-AB95-E193248D4369}_is1) (Version: 1.3.0.20 - MSI)
MSI USB Speed Up (HKLM-x32\...\{79D5FA63-7003-4398-B882-C70ED18778D1}_is1) (Version: 1.0.0.11 - MSI)
Need for Speed™ (HKLM-x32\...\{F8643E83-A868-4EE8-A0B9-389386830453}) (Version: 1.3.0.0 - Electronic Arts)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.3.0 - Nikon Corporation)
NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 398.11 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.37.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.4 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Pilote graphique 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 398.11 - NVIDIA Corporation)
NVIDIA Son virtuel Miracast 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 398.11 - NVIDIA Corporation)
Oculus (HKLM\...\Oculus) (Version: <3 - Oculus VR, LLC)
OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.21.179 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Pack de ciblage redirigé de la documentation Microsoft .NET Framework 4.7.1 (Français) (HKLM-x32\...\{F53864DE-B8A4-4049-9CF8-9764013AC419}) (Version: 4.7.02558 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 398.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 398.11 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.1.2 - pdfforge GmbH)
Picture Control Utility 2 (HKLM\...\{46BEAB85-B86A-4AAB-B085-136ECA032CF4}) (Version: 2.3.1 - Nikon Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8302 - Realtek Semiconductor Corp.)
SDK ARM Additions (HKLM-x32\...\{7922BB77-0B59-840A-AC80-D560A34D75C5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
SDK ARM Redistributables (HKLM-x32\...\{C87DF65C-A672-7E08-A083-E7D48FE8DB70}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteelSeries Engine 3.9.12 (HKLM\...\SteelSeries Engine 3) (Version: 3.9.12 - SteelSeries ApS)
Switch Off (HKLM-x32\...\SwitchOff) (Version: 2.3 - YaSoft)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.3629 - TeamViewer)
Unity (HKLM-x32\...\Unity) (Version: 2018.1.6f1 - Unity Technologies ApS)
Universal CRT Extension SDK (HKLM-x32\...\{A5FA2886-1925-133F-0D41-B9A8ECEA0A2D}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Headers Libraries and Sources (HKLM-x32\...\{B739B4C5-EEEC-8E70-0276-38C4779AF398}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Redistributable (HKLM-x32\...\{A9D6F52C-694E-3E41-7AB8-5BEB644742A5}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x64 (HKLM\...\{E053089E-7953-3219-814F-F485FC151C54}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal CRT Tools x86 (HKLM-x32\...\{B9424F08-0617-C4F6-A798-5A9250C1A738}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Universal General MIDI DLS Extension SDK (HKLM-x32\...\{D261CEA1-AB8D-9CFA-4407-BCEFC78661AC}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
vcpp_crt.redist.clickonce (HKLM-x32\...\{F46E13F9-A902-4F56-B7A9-9370923AF899}) (Version: 14.14.26405 - Microsoft Corporation) Hidden
Vegas Pro 13.0 (64-bit) (HKLM\...\{D2CE062E-6A9B-11E4-A8C6-F04DA23A5C58}) (Version: 13.0.428 - Sony)
Visual Studio Community 2017 (HKLM-x32\...\6d583ddd) (Version: 15.7.27703.2035 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
VS Script Debugging Common (HKLM\...\{48C2D1FA-9F23-40E1-9F16-6A3CA6A78915}) (Version: 16.0.94.0 - Microsoft Corporation) Hidden
vs_communitymsi (HKLM-x32\...\{5DFEB1ED-29B8-44F0-8615-DE758242B0E2}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_communitymsires (HKLM-x32\...\{1A7B945D-ACF2-447F-AF55-A9351F2A70AB}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_devenvmsi (HKLM-x32\...\{BFFA2FFB-1095-4ADD-A352-368806D2412B}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_filehandler_amd64 (HKLM-x32\...\{B6600254-A9D1-4265-826B-28B0E28C1F37}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_filehandler_x86 (HKLM-x32\...\{EF15DAFE-8E43-48E6-AE94-CBA196675318}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_FileTracker_Singleton (HKLM-x32\...\{8EB2C670-04C2-482D-BACD-B4095E27FD39}) (Version: 15.6.27309 - Microsoft Corporation) Hidden
vs_minshellinteropmsi (HKLM-x32\...\{9B1DD088-CF09-46A1-8B42-18D231B19E39}) (Version: 15.7.27604 - Microsoft Corporation) Hidden
vs_minshellmsi (HKLM-x32\...\{F5BCAD30-D22C-4B08-A581-1EBE3A35C6B1}) (Version: 15.7.27617 - Microsoft Corporation) Hidden
vs_minshellmsires (HKLM-x32\...\{853FD6F3-0BC9-414A-986B-90EF538DBAA1}) (Version: 15.0.26621 - Microsoft Corporation) Hidden
vs_tipsmsi (HKLM-x32\...\{1AC6CC3D-7724-4D84-9270-798A2191AB1C}) (Version: 15.0.27005 - Microsoft Corporation) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WinAppDeploy (HKLM-x32\...\{9690D51C-4435-1C20-7819-66CCAB0F03F9}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
Windows SDK AddOn (HKLM-x32\...\{350F0ECD-0783-4529-8797-98F0AD33EAC0}) (Version: 10.1.0.0 - Microsoft Corporation)
Windows Software Development Kit - Windows 10.0.16299.15 (HKLM-x32\...\{6195c203-b53c-4bb7-983a-6070a902e704}) (Version: 10.1.16299.15 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WinRT Intellisense Desktop - en-us (HKLM-x32\...\{385A1387-A488-9E90-3635-086129610034}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Desktop - Other Languages (HKLM-x32\...\{D7DD3171-DA58-52A1-95B2-4769640855AF}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - en-us (HKLM-x32\...\{7336279F-8F8F-5530-A543-3BE963846C0A}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense IoT - Other Languages (HKLM-x32\...\{E414A474-0A87-4F66-C409-A4D9857CFD34}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense Mobile - en-us (HKLM-x32\...\{CE760B86-975B-F514-5673-0ED4332B801B}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - en-us (HKLM-x32\...\{5E67F8BE-D8D2-257F-CE19-419A2D5125C7}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense PPI - Other Languages (HKLM-x32\...\{A2AA063E-AF50-A1F5-8925-A06EB1556644}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - en-us (HKLM-x32\...\{7D4C7F4A-02A9-E434-6451-C8787DF28C1F}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden
WinRT Intellisense UAP - Other Languages (HKLM-x32\...\{BC467065-9374-5345-DA3F-FCF073304A25}) (Version: 10.1.16299.15 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3227184247-764142730-1024045993-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3227184247-764142730-1024045993-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3227184247-764142730-1024045993-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3227184247-764142730-1024045993-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3227184247-764142730-1024045993-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3227184247-764142730-1024045993-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\system32\mscoree.dll [2013-08-22] (Microsoft Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programmes\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programmes\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\Programmes\DAEMON Tools Lite\DTShl64.dll [2018-03-21] (Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\Programmes\DAEMON Tools Lite\DTShl64.dll [2018-03-21] (Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programmes\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-06-01] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Programmes\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-09] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Programmes\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Programmes\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {024CD5B6-C47B-4E8F-8924-C9016C420409} - System32\Tasks\vicissitudes_paulos => C:\Users\Nicolas\AppData\Local\Dissent.exe
Task: {02ABA68B-D614-4C3B-8BCB-050B40453F6E} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-03-14] (NVIDIA Corporation)
Task: {14F85EAE-9039-4A7A-A053-4BDA78598DB8} - System32\Tasks\implants prudhomme ongimplants prudhomme ong => C:\Users\Nicolas\AppData\Local\Exonerate.exe
Task: {16CEB848-0B7B-43DB-BFB5-9289BD984899} - System32\Tasks\coria consecratingcoria consecrating => C:\Program Files (x86)\Bonaventure\Dissent.exe
Task: {1785F2B9-53F5-4696-A7F2-C0DC067E051A} - System32\Tasks\coria consecrating => C:\Program Files (x86)\Bonaventure\Dissent.exe
Task: {198E8E81-5173-4CF5-975D-C84E1DFA7850} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {1A25C53E-61B9-46DB-A834-EB5CD9C8993B} - System32\Tasks\MSIOSDx86_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\MsiGamingOSD_x86.exe [2017-09-05] (Micro-Star INT'L CO., LTD.)
Task: {1E24D6E9-4078-46B2-B048-69058FD7FA88} - System32\Tasks\MSISW_Host => C:\Windows\SysWOW64\muachost.exe [2015-08-18] (MSI)
Task: {20A5FA8B-F4F8-4327-854D-5D5B5357A174} - System32\Tasks\granola => C:\Program Files (x86)\dabbed\dabbed.exe
Task: {21DBB7A3-A665-43ED-8FD9-11E692B30E4F} - System32\Tasks\granolagranola => C:\Program Files (x86)\dabbed\dabbed.exe
Task: {225FFFD2-25BC-496B-BADD-517C340A9486} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-03-14] (NVIDIA Corporation)
Task: {2A629691-3BAF-4AD2-9B7E-DEC32C9BD47E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-05-29] ()
Task: {3228F4BB-0548-42FA-9EB7-39A23750DD3F} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-03-14] (NVIDIA Corporation)
Task: {35CFAFEC-0689-4AEF-9347-EE7123BAB765} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {3B5C0CE2-FBEF-4D60-9DDD-EA4115CCD634} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2018-02-06] ()
Task: {3D49031A-F5DA-4DA0-A24A-DFD4918D4D4E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_113_Plugin.exe [2018-06-07] (Adobe Systems Incorporated)
Task: {43DD4B9A-21C8-42F2-9BFB-FB99604EDF9F} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {4651ABC2-51A3-4F63-A5FA-5878A228939E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation)
Task: {52C3B1B2-59E0-45C9-9751-B87DC549623E} - System32\Tasks\spaced-dellspaced-dell => C:\Program Files (x86)\centrepiece\Dissent.exe
Task: {56C87A5F-BE63-4122-854B-E61868B553A2} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2015-05-29] ()
Task: {5CDEB19F-ADD4-4DFC-B28D-66C9DC81FC37} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-06-07] (Adobe Systems Incorporated)
Task: {5D136383-550B-4238-A768-D59D985E72CD} - System32\Tasks\operatorsoperators => C:\Program Files (x86)\Appraisals\Exonerate.exe
Task: {7002B39F-1130-4BB9-BB30-7E23F7EA948F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-03-14] (NVIDIA Corporation)
Task: {73EAF053-8B90-4CEE-886C-62EFFDAE00A8} - System32\Tasks\gridley => C:\Program Files (x86)\Courteney\crackpots.exe
Task: {74AA454B-2CED-4582-ADA9-2024A6EEBC7D} - System32\Tasks\omissions_combativeomissions_combative => C:\Program Files (x86)\Bonaventure\Exonerate.exe
Task: {7F0A01B8-E096-4FB7-B9EC-2029FD9F244F} - System32\Tasks\spaced-dell => C:\Program Files (x86)\centrepiece\Dissent.exe
Task: {A91D47F8-2FB8-4CA7-B8FD-497E8CD34EF8} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation)
Task: {A9F9E06A-E95D-4C56-9D8D-3CFD642782B7} - System32\Tasks\vicissitudes_paulosvicissitudes_paulos => C:\Users\Nicolas\AppData\Local\Dissent.exe
Task: {AB05A795-592D-47CF-BD42-E141D9861EEE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {AD604FD0-5F05-45B8-AFF3-2AD05012EF03} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation)
Task: {B44E8E7C-8EBE-4BF1-824D-F3DCFCCAA791} - System32\Tasks\implants prudhomme ong => C:\Users\Nicolas\AppData\Local\Exonerate.exe
Task: {BBFEFF17-04FC-4A26-9B2A-1793792A5EB1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {C435CED7-AE4E-4234-8F4C-492C514FF82F} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {CC462CD1-0D90-43F7-80E5-F5CBE7643401} - System32\Tasks\operators => C:\Program Files (x86)\Appraisals\Exonerate.exe
Task: {D636B33E-DADF-48C2-BA99-AB639020C8C8} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-09-21] (Intel(R) Corporation)
Task: {E5D78BFA-CA3D-4523-8802-1A93481FCCE9} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-03-14] (NVIDIA Corporation)
Task: {EC828870-4028-4943-9274-186BF43C00A0} - System32\Tasks\gridleygridley => C:\Program Files (x86)\Courteney\crackpots.exe
Task: {F03A0742-C7D8-4A38-9159-CB06581373AB} - System32\Tasks\MSIOSDx64_Host => C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\MsiGamingOSD_x64.exe [2017-09-05] (Micro-Star INT'L CO., LTD.)
Task: {F2B015FA-4818-4551-BF09-D44EB5CC4690} - System32\Tasks\omissions_combative => C:\Program Files (x86)\Bonaventure\Exonerate.exe
Task: {F492EDCB-C08B-40CC-A8E1-E7F671D5D099} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {F9791A34-33B2-427A-AA3B-2A710F8803E5} - System32\Tasks\MSIGH_Host => C:\Program Files (x86)\MSI\Gaming APP\GamingHotkey.exe [2017-11-01] (Micro-Star INT'L CO., LTD.)
Task: {FEC95883-7090-4A42-BE78-E82FDCE7664B} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-03-14] (NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-02-06 21:53 - 2018-03-14 15:05 - 001267648 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-07-07 20:56 - 2018-07-07 20:59 - 002493648 _____ () D:\PROGRAMMES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2018-07-07 20:56 - 2018-07-07 20:59 - 002297040 _____ () D:\PROGRAMMES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-10-26 16:21 - 2017-10-26 16:21 - 000419328 ____R () C:\Program Files\Intel\Wired Networking\NCS2\Agent\AdapterAgnt.DLL
2018-04-22 19:45 - 2018-06-20 10:29 - 000406456 _____ () C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
2018-02-06 21:43 - 2016-06-14 17:35 - 000187392 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x64\D3D11FontDraw.dll
2018-07-07 18:41 - 2018-07-07 18:41 - 000049439 _____ () C:\Program Files (x86)\ranting\retaliated.exe
2018-02-13 20:50 - 2016-06-02 16:27 - 000110952 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2018-02-13 20:50 - 2016-06-02 16:27 - 000104296 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2018-02-13 20:50 - 2016-06-02 16:27 - 000020328 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2018-02-13 20:50 - 2016-06-02 16:27 - 000044392 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2018-02-06 21:40 - 2005-07-18 14:43 - 000160256 _____ () C:\Program Files (x86)\MSI\Live Update\unrar.dll
2017-09-25 14:28 - 2017-09-25 14:28 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2018-02-06 21:53 - 2018-03-14 15:05 - 001041344 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-02-06 21:43 - 2016-06-14 17:35 - 000163328 _____ () C:\Program Files (x86)\MSI\Gaming APP\OSD\x86\D3D11FontDraw.dll
2018-02-06 21:43 - 2017-08-02 15:48 - 000237568 _____ () C:\Program Files (x86)\MSI\Gaming APP\LEDControl.dll
2018-02-06 21:53 - 2018-03-14 15:04 - 081563584 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-03-22 18:41 - 2018-03-14 15:04 - 002478016 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libglesv2.dll
2018-03-22 18:41 - 2018-03-14 15:04 - 000125376 _____ () C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\swiftshader\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2018-07-07 20:44 - 000000850 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3227184247-764142730-1024045993-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKLM\...\StartupApproved\StartupFolder: => "SteelSeries Engine 3.lnk"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "Live Update"
HKLM\...\StartupApproved\Run32: => "USB_Speed_Up"
HKLM\...\StartupApproved\Run32: => "Command Center"
HKLM\...\StartupApproved\Run32: => "Fast Boot"
HKLM\...\StartupApproved\Run32: => "Super Charger"
HKU\S-1-5-21-3227184247-764142730-1024045993-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{EEEC04AC-19DA-45DC-BB0A-7050E3ED761F}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{76A4B629-659C-4CBF-8FAC-75464D8A1DFA}] => (Allow) C:\Program Files\KMSpico\KMSELDI.exe
FirewallRules: [{9A394406-0EAA-4AE4-924C-6CA61C143A61}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{13C0CED8-3846-47B9-AF00-0118215E0F88}] => (Allow) C:\Program Files\KMSpico\AutoPico.exe
FirewallRules: [{76BF34A7-575C-4AF0-9885-4B71EE9DEE84}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{E397B083-E992-44CB-AC56-6C3710CE837E}] => (Allow) C:\Program Files\KMSpico\Service_KMS.exe
FirewallRules: [{9A1AB874-C007-4696-BF8A-9BAF3EF2FE9D}] => (Allow) C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\Sba.exe
FirewallRules: [{CCE79841-6B87-4430-815B-27DF5171CC72}] => (Allow) LPort=1688
FirewallRules: [{3CF45AC0-A2C0-4926-BA96-95CD31539A4C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1DDD516C-2807-4575-BFC0-CEC77523F7C2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{1637FA3B-6BF4-48FB-905C-909D0497968D}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{BB9543FD-134A-43C6-B16C-3F35B43E53B2}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{B27BFB7B-E1C0-4AFB-A4E1-DF598AC63EC2}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{C0830AE9-2334-4D74-9571-E9E8393DA299}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{15475CDF-3ED2-49BE-9EE4-F86C18E054BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{ED4DEC0C-B958-4D31-A7AD-D9BEE27D37C7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{B8F85FF3-105E-4ED6-B343-4CD0B560AE89}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{6711D117-FE09-439D-A536-F23A706F1295}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{E4C68109-7A1B-4657-B9CD-033EABA5DADB}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{76987BF0-8952-42F9-9917-2E998CC5D688}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{2B1AA703-3A0A-4273-AF2C-2FA480E5B8FA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A3033B59-6C80-4134-863A-7F48032CE758}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F7144E8F-D10C-4DB1-9836-8E45D5E1C381}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{5D2A747D-832F-4BD8-BE2B-12888CBE9A6A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\GarrysMod\hl2.exe
FirewallRules: [{34FEAB2D-4FAF-4DF3-A2F7-5CF4C0D619F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe
FirewallRules: [{AB52F25A-67E0-4925-B61B-0241F99C0F71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\assettocorsa\AssettoCorsa.exe
FirewallRules: [{0124FDB4-73C8-4AE3-BBC8-8B9AB31248D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe
FirewallRules: [{D875CB23-4401-47C1-B335-92112C9ADC31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\bin\win32\vrstartup.exe
FirewallRules: [{76A0583F-EAC6-43FA-8A77-C26717E975B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe
FirewallRules: [{CF310F54-6DF8-4196-9C67-0A012E950A58}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtours.exe
FirewallRules: [{45B70F24-53BD-4E39-BF83-242D68F63C80}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe
FirewallRules: [{963C468C-EDE1-4A46-A53B-00A0478FB1F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\SteamVR\tools\steamvr_environments\game\bin\win64\steamtourscfg.exe
FirewallRules: [TCP Query User{DB823C3D-380C-4EDE-AEEE-B7D8ADAF69F4}C:\programdata\oracle\java\javapath_target_5009718\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_5009718\java.exe
FirewallRules: [UDP Query User{661F2234-4916-4952-9101-6BBBB8FFC7D4}C:\programdata\oracle\java\javapath_target_5009718\java.exe] => (Allow) C:\programdata\oracle\java\javapath_target_5009718\java.exe
FirewallRules: [TCP Query User{F4BF3098-54BD-4D3E-87D4-1C8881575C00}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_161\bin\javaw.exe
FirewallRules: [UDP Query User{4CC68A10-A543-4E0C-9C9D-9F821A0BE387}C:\program files\java\jre1.8.0_161\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_161\bin\javaw.exe
FirewallRules: [{6268D30E-BD88-4102-85A9-08BAF61D214B}] => (Allow) D:\Programmes\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{532D495D-1DE8-4964-BB7B-63D5466989B0}] => (Allow) D:\Programmes\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{290F895F-91B0-4543-B610-43B8DA8AC355}] => (Allow) C:\Users\Nicolas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0FA833D5-71BF-4BDE-A9DB-0B31B951097B}] => (Allow) C:\Users\Nicolas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6689126E-BF23-4C9C-9906-065832B0F683}] => (Allow) C:\Users\Nicolas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{38C4C4FE-508D-428B-AC05-CF0B2D3D087D}] => (Allow) C:\Users\Nicolas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D43BAFC5-4133-41AB-90CC-C0EC8B7A95C2}] => (Allow) C:\Users\Nicolas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BA4A9C2A-29B3-4F7C-837A-A3B482B17D09}] => (Allow) C:\Users\Nicolas\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{73E3BE41-D5E4-4812-805C-D203F9EF841D}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\Dragon's Wake\Dragon.exe
FirewallRules: [{DB51F91E-4161-4C4E-AC08-CF383ACE02F6}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\Dragon's Wake\Dragon.exe
FirewallRules: [{5A4DE321-8558-49EB-824A-348D643415E2}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\VRChat\VRChat.exe
FirewallRules: [{B764079D-5E15-4F13-A6E6-FF1BEB10145E}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\VRChat\VRChat.exe
FirewallRules: [TCP Query User{DCD070D3-944B-4DFB-90A4-7A29A49F394C}D:\games\beamng.drive.v0.10\bin64\beamng.drive.x64.exe] => (Allow) D:\games\beamng.drive.v0.10\bin64\beamng.drive.x64.exe
FirewallRules: [UDP Query User{9D843810-EE35-4BD9-9353-4B5D1ED30CD0}D:\games\beamng.drive.v0.10\bin64\beamng.drive.x64.exe] => (Allow) D:\games\beamng.drive.v0.10\bin64\beamng.drive.x64.exe
FirewallRules: [TCP Query User{F323DEED-772E-418A-87F9-CFB6ED438D60}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe
FirewallRules: [UDP Query User{07627818-5714-4DB4-B95F-5AF474D53C5F}C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\assettocorsa\acs.exe
FirewallRules: [{3008B507-BAAC-4E21-B6B8-264AB398B012}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\vegas130.exe
FirewallRules: [{82872A56-C5C5-4FF2-BF45-ADF0E298382E}] => (Block) %ProgramFiles%\Sony\Vegas Pro 13.0\vegas130.exe
FirewallRules: [{208C7814-D47E-49E6-BFE9-913FAE2C723E}] => (Allow) %ProgramFiles%\Sony\Vegas Pro 13.0\ErrorReportClient.exe
FirewallRules: [{9F4302E4-3D5B-4B7C-941F-46094C19563D}] => (Allow) D:\Programmes\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
FirewallRules: [{17FCA90A-9F94-45CE-A626-CA7EEB5B4A4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{59A5E6D6-DFA7-4890-82A6-0213D07B9B84}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{F9B1DE88-DE54-43B2-97B3-AAD3F3AE8A8E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{B1B6CCEA-280A-46C6-9B60-600251D7DFFC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4A118D3E-2F20-49D8-82E0-0BD8A9A11F0E}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
FirewallRules: [{2677A093-76CE-4BDE-8F7B-ADA411077955}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRRedir.exe
FirewallRules: [{7AFF1BE1-5E56-4CE1-BFC6-BDEEA1153DB0}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
FirewallRules: [{98980239-40A3-4404-B91E-51AAFF30AEE7}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServiceLauncher.exe
FirewallRules: [{9AE0E8C4-0EB9-4942-BBC4-066BF96B9252}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
FirewallRules: [{8CC1658F-D722-49F5-8986-9533B04EAD4B}] => (Allow) C:\Program Files\Oculus\Support\oculus-runtime\OVRServer_x64.exe
FirewallRules: [{098EC8A0-984D-4F28-9599-51C1836065E1}] => (Allow) C:\Program Files\Oculus\Support\oculus-home\OculusVR.exe
FirewallRules: [{91BC5280-D48D-4D22-90E9-CE17177E2E93}] => (Allow) C:\Program Files\Oculus\Support\oculus-home\OculusVR.exe
FirewallRules: [{CB548BDF-49CB-4091-9944-765E771E6EF3}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe
FirewallRules: [{B4C1B3B2-B75C-4285-929A-351960C1C620}] => (Allow) C:\Program Files\Oculus\Support\oculus-client\OculusClient.exe
FirewallRules: [{5501DC69-4269-4EC0-A79D-8845F2C1106C}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\bin\OculusDash.exe
FirewallRules: [{3C87B1F5-6BF1-4E19-A1AA-0AABBB779034}] => (Allow) C:\Program Files\Oculus\Support\oculus-dash\bin\OculusDash.exe
FirewallRules: [{91F18CD3-3D79-493B-B294-53DD17E16DE8}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe
FirewallRules: [{BF031602-4F21-45AE-93B9-CAED5AE15682}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2.exe
FirewallRules: [{CECF0B70-C677-43A2-8DB3-2C7BA8135C78}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe
FirewallRules: [{FB805422-FD80-450F-9336-6AA8D868AAA1}] => (Allow) C:\Program Files\Oculus\Support\oculus-worlds\Home2\Binaries\Win64\Home2-Win64-Shipping.exe
FirewallRules: [TCP Query User{493D0031-631A-4502-A68E-49C834502A95}D:\program files (x86)\steamlibrary\steamapps\common\the lab\robotrepair\bin\win64\vr.exe] => (Allow) D:\program files (x86)\steamlibrary\steamapps\common\the lab\robotrepair\bin\win64\vr.exe
FirewallRules: [UDP Query User{227B8B8A-5622-4AE6-9539-428434E26B55}D:\program files (x86)\steamlibrary\steamapps\common\the lab\robotrepair\bin\win64\vr.exe] => (Allow) D:\program files (x86)\steamlibrary\steamapps\common\the lab\robotrepair\bin\win64\vr.exe
FirewallRules: [{32BD947B-F286-4E5C-AA5C-9C8B3C366A8E}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\RecRoom\Recroom_Release.exe
FirewallRules: [{8738E65C-6B5B-45E7-A1F6-C9F466EE87DA}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\RecRoom\Recroom_Release.exe
FirewallRules: [{F8E3AB39-26E3-4A32-8D69-95748233AC11}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\BsSndRpt64.exe
FirewallRules: [{F5730AA1-D5F9-4739-AB90-CBE363E23E16}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\BsSndRpt64.exe
FirewallRules: [{74520B17-2D38-4BE9-9174-324E84A44C39}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\EchoArena.exe
FirewallRules: [{9EF94611-0E72-4A55-8FD5-65E9185461D2}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\EchoArena.exe
FirewallRules: [{732A93CB-412C-44D6-8A5C-D41D07A3132B}] => (Allow) D:\Games\Need for Speed\NFS16.exe
FirewallRules: [{511CCE44-063C-4903-AB54-F38F53E7A858}] => (Allow) D:\Games\Need for Speed\NFS16.exe
FirewallRules: [{E333C3D2-6D74-4E52-B441-80681F17DDA5}] => (Allow) D:\Games\Need for Speed\NFS16_trial.exe
FirewallRules: [{E5512FE7-66BF-4495-A5D5-8CC0C8C25888}] => (Allow) D:\Games\Need for Speed\NFS16_trial.exe
FirewallRules: [{A58CECD5-C720-4795-83E1-C2F072D80FF4}] => (Allow) LPort=26789
FirewallRules: [{FCA0938F-6898-4E6F-A884-24E5D7730B81}] => (Allow) D:\Program Files (x86)\team-viewer\TeamViewer.exe
FirewallRules: [{81BC62E8-A839-4FFF-A68D-CC64241FF11B}] => (Allow) D:\Program Files (x86)\team-viewer\TeamViewer.exe
FirewallRules: [{B4C298DC-99E6-42F8-8DDC-3443BA7FEAC4}] => (Allow) D:\Program Files (x86)\team-viewer\TeamViewer_Service.exe
FirewallRules: [{BEC9E6D8-6EAA-4630-94DA-1134D7FDF97E}] => (Allow) D:\Program Files (x86)\team-viewer\TeamViewer_Service.exe
FirewallRules: [{9CF16692-377F-49F5-A844-C200DF277A6C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{B74EA294-EE14-4EC4-95D0-19556B1B37F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe
FirewallRules: [{5B64D66D-BE6B-4A9B-A2C1-DB427AA1B67F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe
FirewallRules: [{33DA9617-EF82-4C25-9624-408CFB2BB72B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe
FirewallRules: [TCP Query User{95779E29-30B4-40CC-A5C8-916967654CEC}C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrserver.exe
FirewallRules: [UDP Query User{A962ACB2-35A3-4EA3-9664-F877141F5C67}C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrserver.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrserver.exe
FirewallRules: [TCP Query User{3C8B2FD4-6407-4425-A980-596818CA3246}C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe
FirewallRules: [UDP Query User{F6B3374F-4D4D-4D95-8A14-FB9A9E9DE3CC}C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\steamvr\bin\win64\vrmonitor.exe
FirewallRules: [TCP Query User{3CC5421F-6058-4498-B53E-2682EC009183}F:\fruitninjavr\fruitninjavr\fruitninjavr.exe] => (Allow) F:\fruitninjavr\fruitninjavr\fruitninjavr.exe
FirewallRules: [UDP Query User{9567BE2F-FA87-4159-8413-307526DE43DB}F:\fruitninjavr\fruitninjavr\fruitninjavr.exe] => (Allow) F:\fruitninjavr\fruitninjavr\fruitninjavr.exe
FirewallRules: [TCP Query User{96B0B201-8A60-47D4-906E-919483579DC9}C:\program files (x86)\steam\steamapps\common\steamvr\bin\win32\vrdashboard.exe] => (Block) C:\program files (x86)\steam\steamapps\common\steamvr\bin\win32\vrdashboard.exe
FirewallRules: [UDP Query User{0FC15135-ABF2-4D54-B2E5-442AE2FCEE05}C:\program files (x86)\steam\steamapps\common\steamvr\bin\win32\vrdashboard.exe] => (Block) C:\program files (x86)\steam\steamapps\common\steamvr\bin\win32\vrdashboard.exe
FirewallRules: [{23EBB106-9A9D-4B47-9426-F724D3301164}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\The Lab\TheLab\win64\TheLab.exe
FirewallRules: [{CCF20495-71ED-4A0E-888A-2B44445897B4}] => (Allow) D:\Program Files (x86)\SteamLibrary\steamapps\common\The Lab\TheLab\win64\TheLab.exe
FirewallRules: [{5E721FE0-9C4C-4948-8AC4-90A973B9E55B}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\BsSndRpt64.exe
FirewallRules: [{2B79C3A3-7741-4549-8E59-0C6D442BCA21}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\BsSndRpt64.exe
FirewallRules: [{04F66C78-AEA8-433C-9322-6B2BD5D47862}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\echovr.exe
FirewallRules: [{CA6E8A6C-1F7A-4A75-8B1E-B55D04E3AC14}] => (Allow) D:\Oculus Apps\Software\ready-at-dawn-echo-arena\bin\win7\echovr.exe
FirewallRules: [{B3A42552-CC8E-4919-BD20-046A9257F4CB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{E126BE74-7FD5-408F-B01D-D66CE2537E61}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe
FirewallRules: [{3C16EF1A-BD2A-48AB-9E8E-1D5879530A39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{855B3690-3782-4A62-8286-6B6649B3C38C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{DE2F21BE-60AF-4784-9498-BAFE6CE5084B}] => (Allow) D:\Program Files (x86)\Unity\Editor\Unity.exe
FirewallRules: [{A2EE9D65-77DC-4003-807F-D34BA6ABB8B1}] => (Block) D:\Program Files (x86)\Unity\Editor\Unity.exe
FirewallRules: [TCP Query User{B05CE829-68E4-4A3E-BE75-3E7C40F1923D}D:\program files (x86)\unity\editor\unity.exe] => (Allow) D:\program files (x86)\unity\editor\unity.exe
FirewallRules: [UDP Query User{1D710C0F-95F9-4186-A041-2E1D69A55A07}D:\program files (x86)\unity\editor\unity.exe] => (Allow) D:\program files (x86)\unity\editor\unity.exe
FirewallRules: [TCP Query User{455ABD47-EED8-4674-9B60-5A971DAE1192}C:\program files (x86)\common files\oracle\java\javapath_target_230744437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_230744437\java.exe
FirewallRules: [UDP Query User{B6B42DEB-084C-45A4-BDB5-F3501BF2A584}C:\program files (x86)\common files\oracle\java\javapath_target_230744437\java.exe] => (Allow) C:\program files (x86)\common files\oracle\java\javapath_target_230744437\java.exe
FirewallRules: [TCP Query User{7B3ECB10-CECA-43B1-A8B4-98F73E9DA5B5}C:\program files\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\javaw.exe
FirewallRules: [UDP Query User{0383A5DB-629E-426E-8039-9E0635616EE3}C:\program files\java\jre1.8.0_171\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_171\bin\javaw.exe
FirewallRules: [{87EAE34B-ED60-4AF2-84B8-60B9162B7B88}] => (Allow) F:\Microsoft.Office\Microsoft_Toolkit_v2.5.2.exe
FirewallRules: [{873E6415-5DE7-4F05-AAC9-70EFEFCD761B}] => (Allow) F:\Microsoft.Office\Microsoft_Toolkit_v2.5.2.exe
FirewallRules: [{FF4DD709-8575-44FE-9F97-AA352ACD1713}] => (Allow) C:\Program Files (x86)\Appraisals\Exonerate.exe
FirewallRules: [{AB8ADB15-1068-44F7-99B5-AECF4FC60367}] => (Allow) C:\Program Files (x86)\Bonaventure\Exonerate.exe
FirewallRules: [{5C3F7BF0-72D4-40AB-94AD-70E6FD455AC5}] => (Allow) C:\Program Files (x86)\centrepiece\Dissent.exe
FirewallRules: [{8C6915F2-8198-49DD-B9C6-0C946D7E08E0}] => (Allow) C:\Program Files (x86)\Bonaventure\Dissent.exe

==================== Restore Points =========================

14-06-2018 10:14:28 Windows Update
23-06-2018 19:15:13 Scheduled Checkpoint
29-06-2018 15:41:07 Programme d’installation pour les modules Windows

==================== Faulty Device Manager Devices =============

Name: Clavier standard PS/2
Description: Clavier standard PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Claviers standard)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Souris Microsoft PS/2
Description: Souris Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/07/2018 09:29:56 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=TimerEvent

Error: (07/07/2018 09:27:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x800706BE
Arguments de la ligne de commande :
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (07/07/2018 09:23:08 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007139F
Arguments de la ligne de commande :
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkQuarantineRetry

Error: (07/07/2018 09:17:53 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0x8007139F
Arguments de la ligne de commande :
RuleId=dca14e37-0c5c-444f-9b35-1e2f161f5ac3;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (07/07/2018 09:16:48 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/07/2018 09:16:17 PM) (Source: OVRServiceLauncher) (EventID: 0) (User: )
Description: Event-ID 0

Error: (07/07/2018 09:14:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MsMpEng.exe, version : 4.10.209.0, horodatage : 0x582a94a1
Nom du module défaillant : mpsvc.dll, version : 4.10.209.0, horodatage : 0x582a94bb
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000077b8
ID du processus défaillant : 0x2750
Heure de début de l’application défaillante : 0x01d41626c92d8733
Chemin d’accès de l’application défaillante : C:\Program Files\Windows Defender\MsMpEng.exe
Chemin d’accès du module défaillant: C:\Program Files\Windows Defender\mpsvc.dll
ID de rapport : 098f7de7-821a-11e8-827e-d8cb8acd5e7f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (07/07/2018 09:09:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MsMpEng.exe, version : 4.10.209.0, horodatage : 0x582a94a1
Nom du module défaillant : mpsvc.dll, version : 4.10.209.0, horodatage : 0x582a94bb
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000077b8
ID du processus défaillant : 0x2394
Heure de début de l’application défaillante : 0x01d4162615eddbaf
Chemin d’accès de l’application défaillante : C:\Program Files\Windows Defender\MsMpEng.exe
Chemin d’accès du module défaillant: C:\Program Files\Windows Defender\mpsvc.dll
ID de rapport : 557e100e-8219-11e8-827e-d8cb8acd5e7f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :


System errors:
=============
Error: (07/07/2018 09:17:46 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service GamingApp_Service est en attente de démarrage.

Error: (07/07/2018 09:16:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Windows Defender Service n’a pas pu démarrer en raison de l’erreur :
Windows ne peut pas vérifier la signature numérique de ce fichier. Il est possible qu’une modification matérielle ou logicielle récente ait installé un fichier endommagé ou dont la signature est incorrecte, ou qu’il s’agisse d’un logiciel malveillant provenant d’une source inconnue.

Error: (07/07/2018 09:14:58 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Windows Defender Service s’est terminé de façon inattendue pour la 2ème fois.

Error: (07/07/2018 09:09:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Defender Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 100 millisecondes : Run the configured recovery program.

Error: (07/07/2018 08:46:36 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service GamingApp_Service est en attente de démarrage.

Error: (07/07/2018 08:43:31 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Defender Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 100 millisecondes : Run the configured recovery program.

Error: (07/01/2018 10:52:12 PM) (Source: DCOM) (EventID: 10010) (User: ULTIMATE-PC)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/01/2018 07:21:58 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service GamingApp_Service est en attente de démarrage.


Windows Defender:
===================================
Date: 2018-07-07 20:39:45.794
Description:
Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
http://go.microsoft.com/fwlink/?linkid=37020&name=TrojanDropper:Win32/Kaymundler.C&threatid=2147709830&enterprise=0
Nom : TrojanDropper:Win32/Kaymundler.C
ID : 2147709830
Gravité : Severe
Catégorie : Trojan Dropper
Chemin : file:_E:\Nicolas\Téléchargements\Microsoft Toolkit Final.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : ULTIMATE-PC\Nicolas
Nom du processus : D:\Programmes\Winrar\WinRAR.exe
Version de la signature : AV: 1.271.664.0, AS: 1.271.664.0, NIS: 119.0.0.0
Version du moteur : AM: 1.1.15000.2, NIS: 2.1.14600.4

Date: 2018-07-07 20:25:39.893
Description:
Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Nom : HackTool:Win32/Keygen
ID : 2147593794
Gravité : High
Catégorie : Tool
Chemin : containerfile:_D:\SAUV\SAUV CORSAR\Logiciels\Microsoft\Office 2010 Toolkit.exe;file:_D:\SAUV\SAUV CORSAR\Logiciels\Microsoft\Office 2010 Toolkit.exe->[MSILRES:OfficeToolkit.Properties.Resources.resources]#1
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : ULTIMATE-PC\Nicolas
Nom du processus : C:\Windows\explorer.exe
Version de la signature : AV: 1.271.664.0, AS: 1.271.664.0, NIS: 119.0.0.0
Version du moteur : AM: 1.1.15000.2, NIS: 2.1.14600.4

Date: 2018-07-07 20:25:34.950
Description:
Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Nom : HackTool:Win32/Keygen
ID : 2147593794
Gravité : High
Catégorie : Tool
Chemin : file:_D:\SAUV\SAUV CORSAR\Logiciels\Microsoft\Office 2010 Toolkit.exe->[MSILRES:OfficeToolkit.Properties.Resources.resources]#1
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : ULTIMATE-PC\Nicolas
Nom du processus : C:\Windows\explorer.exe
Version de la signature : AV: 1.271.664.0, AS: 1.271.664.0, NIS: 119.0.0.0
Version du moteur : AM: 1.1.15000.2, NIS: 2.1.14600.4

Date: 2018-07-07 20:12:54.337
Description:
Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
http://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Vigorf.A&threatid=2147714397&enterprise=0
Nom : HackTool:Win32/Vigorf.A
ID : 2147714397
Gravité : High
Catégorie : Tool
Chemin : file:_F:\Microsoft.Office\Microsoft_Toolkit_v2.5.2.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : ULTIMATE-PC\Nicolas
Nom du processus : C:\Windows\explorer.exe
Version de la signature : AV: 1.271.601.0, AS: 1.271.601.0, NIS: 119.0.0.0
Version du moteur : AM: 1.1.15000.2, NIS: 2.1.14600.4

Date: 2018-07-05 16:32:04.123
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {63820EBB-D786-4AEC-B425-E82407AEFA8B}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : NT AUTHORITY\SYSTEM

Date: 2018-07-07 21:14:58.531
Description:
Le moteur Windows Defender s’est arrêté en raison d’une erreur inattendue.
Type d’échec : Incident
Code d’exception : 0xc0000005
Ressource :

Date: 2018-07-07 21:09:56.374
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Système d’inspection réseau
Code d’erreur : 0x80070006
Description de l’erreur : The handle is invalid.
Raison : Le pilote de filtre a été déchargé de façon inattendue.

Date: 2018-07-07 21:09:56.374
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Analyse du comportement
Code d’erreur : 0x80070006
Description de l’erreur : The handle is invalid.
Raison : Le pilote de filtre a été déchargé de façon inattendue.

Date: 2018-07-07 21:09:56.374
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x80070006
Description de l’erreur : The handle is invalid.
Raison : Le pilote de filtre a été déchargé de façon inattendue.

Date: 2018-07-07 21:09:56.367
Description:
Le moteur Windows Defender s’est arrêté en raison d’une erreur inattendue.
Type d’échec : Incident
Code d’exception : 0xc0000005
Ressource :

CodeIntegrity:
===================================

Date: 2018-07-07 21:16:53.035
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2018-07-06 11:15:47.097
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-07-02 08:22:39.205
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-29 11:46:40.979
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-28 18:49:19.217
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-27 12:32:42.207
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-26 12:17:16.601
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-06-24 15:45:53.362
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume7\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-6700K CPU @ 4.00GHz
Percentage of memory in use: 15%
Total physical RAM: 16327.69 MB
Available physical RAM: 13837.04 MB
Total Virtual: 18759.69 MB
Available Virtual: 15633.42 MB

==================== Drives ================================

Drive b: (RAMDisk) (Fixed) (Total:0.25 GB) (Free:0.25 GB) FAT
Drive c: () (Fixed) (Total:223.05 GB) (Free:45.73 GB) NTFS
Drive d: (Data) (Fixed) (Total:466.39 GB) (Free:274.78 GB) NTFS
Drive e: (Utilisateur) (Fixed) (Total:465 GB) (Free:66.93 GB) NTFS

\\?\Volume{834b2fdf-171d-44e2-9999-73891634cf45}\ (Recovery) (Fixed) (Total:0.29 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================