Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06.10.2018
Exécuté par jseve (10-10-2018 10:16:26)
Exécuté depuis C:\Users\jseve\Desktop
Windows 10 Pro Version 1809 17763.55 (X64) (2018-09-23 13:07:52)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3076523476-1142008452-770512297-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3076523476-1142008452-770512297-503 - Limited - Disabled)
Invité (S-1-5-21-3076523476-1142008452-770512297-501 - Limited - Disabled)
jseve (S-1-5-21-3076523476-1142008452-770512297-1001 - Administrator - Enabled) => C:\Users\jseve
WDAGUtilityAccount (S-1-5-21-3076523476-1142008452-770512297-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20063 - Adobe Systems Incorporated)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2080, 07.07.2018 - AIMP DevTeam)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AOMEI Backupper Technician Plus (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Betternet for Windows 4.1.1 (HKLM-x32\...\{2E77104D-96E1-4A9C-86F2-C7CF8C805999}) (Version: 4.1.1 - Betternet Technologies Inc.)
BitTorrent (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\BitTorrent) (Version: 7.10.4.44633 - BitTorrent Inc.)
Brother MFL-Pro Suite DCP-375CW (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
Click Install if prompted (HKLM-x32\...\{40830C8E-936E-4E08-AE37-240FF3343927}) (Version: 1.0.6.0 - ExpressVpn) Hidden
CompeGPS LAND 7.7.2 (HKLM-x32\...\CompeGPS_is1) (Version: 7.7.2 - CompeGPS TEAM, S.L.)
Corel PaintShop Pro X7 (HKLM-x32\...\_{176F50D6-6857-49CE-B731-65F757EE3F0D}) (Version: 17.0.0.199 - Corel Corporation)
ExpressVPN (HKLM-x32\...\{32631D9F-4985-47BA-82B4-95C24998985C}) (Version: 6.7.3.5554 - ExpressVPN) Hidden
ExpressVPN (HKLM-x32\...\{9eb863a7-ae80-4d4c-8131-c11aca757b46}) (Version: 6.7.3.5554 - ExpressVPN)
FILEminimizer Suite (HKLM-x32\...\FILEminimizer Suite_is1) (Version: - balesio AG)
FolderIco 3.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 2.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 2.0 - teorex)
ICA (HKLM-x32\...\{176F50D6-6857-49CE-B731-65F757EE3F0D}) (Version: 17.0.0.199 - Corel Corporation) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
IPM_PSP_COM64 (HKLM\...\{17704FA2-B1D2-4D5C-A23D-BDA0D2BC9CC7}) (Version: 17.0.0.199 - Corel Corporation) Hidden
LAND 8.1 (HKLM-x32\...\LAND_is1) (Version: 8.1 - CompeGPS TEAM, S.L.)
Mac Blu-ray Player (HKLM-x32\...\Mac Blu-ray Player) (Version: 2.17.2.2614 - Macgo Inc.)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Office Professional Plus 2019 - fr-fr (HKLM\...\Proplus2019Retail - fr-fr) (Version: 16.0.10827.20138 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\OneDriveSetup.exe) (Version: 18.162.0812.0001 - Microsoft Corporation)
Microsoft Project Professionnel 2019 - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.10827.20138 - Microsoft Corporation)
Microsoft Visio Professionnel 2019 - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.10827.20138 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10910.20007 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10910.20007 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.10910.20007 - Microsoft Corporation) Hidden
Patch Heredis 2019 (coolghost) version 19 (HKLM-x32\...\{4E0CBC44-734E-4B10-A2EB-993550EACF63}_is1) (Version: 19 - coolghost)
Postbox 6.1.4 (x86 en-US) (HKLM-x32\...\Postbox 6.1.4 (x86 en-US)) (Version: 6.1.4 - Postbox, Inc.)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.0.0.492 - Bitsum)
PSPPContent (HKLM-x32\...\{17289BF4-5826-447B-A20A-738044D0B3E5}) (Version: 17.0.0.199 - Corel Corporation) Hidden
PSPPHelp (HKLM-x32\...\{1735F0DE-B173-4116-BABC-653A12FB9238}) (Version: 17.0.0.199 - Corel Corporation) Hidden
PSPPro64 (HKLM\...\{17511557-C430-486A-AB5A-87A8134B2613}) (Version: 17.0.0.199 - Corel Corporation) Hidden
Screenpresso (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\Screenpresso) (Version: 1.7.2.48 - Learnpulse)
Setup (HKLM-x32\...\{17088A4E-3CF3-4F12-926D-2A9E8085B8EC}) (Version: 17.0.0.199 - Nom de votre société) Hidden
Split Tunneling Driver (HKLM-x32\...\{F078B0B5-2F41-42C2-9162-B8C628D5E6FE}) (Version: 1.0.0.0 - ExpressVpn) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeraCopy version 3.26 (HKLM\...\TeraCopy_is1) (Version: 3.26 - Code Sector)
TwoNavDownloader version 1.42 (HKLM-x32\...\TwoNavDownloader_is1) (Version: 1.42 - CompeGPS TEAM, S.L.)
Ultra RAMDisk (HKLM-x32\...\Ultra RAMDisk) (Version: 1.65 - ieungSoft)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
USB Safely Remove 6.1 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com)
Vivaldi (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\Vivaldi) (Version: 2.0.1309.29 - Vivaldi) <==== ATTENTION
VMware Workstation (HKLM\...\{0F2CF138-26A5-4C91-AE15-D935B5EB369E}) (Version: 12.5.9 - VMware, Inc.)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Zoolz2 (HKLM-x32\...\Zoolz2) (Version: 2.1 - Genie9)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3076523476-1142008452-770512297-1001_Classes\CLSID\{46F0475E-6FFC-178C-C722-557DB0BC4985}\InprocServer32 -> pas de chemin du fichier
CustomCLSID: HKU\S-1-5-21-3076523476-1142008452-770512297-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> "C:\Users\jseve\Desktop\Application\2.0.1309.37\notification_helper.exe" => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3076523476-1142008452-770512297-1001_Classes\CLSID\{E0311F72-196F-6250-C2DC-59DA57D0FA23}\InprocServer32 -> pas de chemin du fichier
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2018-09-28] (Tonec Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2018-09-23] (AIMP DevTeam)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] ()
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2018-09-23] (AIMP DevTeam)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [Folderico] -> {CC0C45C5-EFDE-4B8A-A8B0-9ED733D9E6AC} => C:\Program Files\FolderIco\FolderIco.dll [2014-11-10] (TeoreX)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] ()
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {037F21B4-79ED-495F-900C-AE2ABB9820CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-28] (Microsoft Corporation)
Task: {0DEA5149-DEC1-46E5-A7BB-F0EE2F0B91FD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-09-28] (Microsoft Corporation)
Task: {11B558D7-2E12-4EE1-A673-75D4FE6A1674} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe [2018-10-03] (Bitsum LLC)
Task: {198480EE-E5AA-46FF-8509-890F5F66BEE3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2018-09-28] (Microsoft Corporation)
Task: {4CD843A9-5C81-47E9-B868-FE593D3B7F86} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {577451B6-8161-420F-9B7B-8648ED58EE11} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-13] (Microsoft Corporation)
Task: {57DA9981-62F3-4450-BE27-CE7D14CAE950} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-09-28] (Microsoft Corporation)
Task: {5D260D9F-18F9-4D8C-979B-E61980B9BA26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {6EFEEE04-AC78-49C9-9D79-2361375189AB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_pepper.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {6F5E3D46-43E4-4D5B-80B8-497C071370A3} - System32\Tasks\WUMT2 => G:\Mes Documents\utilitaires\mini tool update\wumt_x64.exe [2016-12-20] (stupid user)
Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {8356D609-1246-40DC-B3E8-23BDE4CA4DD2} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> Pas de fichier <==== ATTENTION
Task: {89CD966D-2293-4F8E-9FA3-C936E70ACAD5} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe [2018-10-03] (Bitsum LLC)
Task: {A2EA9282-26A2-4D11-B38F-7CF46F46E12F} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> Pas de fichier <==== ATTENTION
Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {AED96FF2-6EFB-4FE3-8E08-3416C16A77A4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {BCAF4669-040D-4AE1-BA25-236B51E3CA8B} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-j.sevestre1@laposte.net => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {D110C926-CB32-4D63-B81D-5AAB86FB7D39} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-13] (Microsoft Corporation)
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-10-05] ()
Task: {F2E8EDED-8D8F-44EF-8330-9FA3C7448A3D} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> Pas de fichier <==== ATTENTION
Task: {F7EEAB09-3F07-4B72-9B0C-99EF49645225} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-28] (Microsoft Corporation)
Task: {FFF0A8BF-41E7-4E49-A95E-46F364FB90C4} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> Pas de fichier <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2018-09-24 17:53 - 2005-04-22 13:36 - 000143360 ____N () C:\WINDOWS\system32\BrSNMP64.dll
2018-09-20 12:22 - 2018-09-20 12:22 - 000339168 _____ () C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
2018-09-20 12:23 - 2018-09-20 12:23 - 010014848 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
2018-09-15 09:28 - 2018-10-05 21:31 - 000834088 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-09-28 17:19 - 2018-09-28 18:50 - 008999192 _____ () C:\Program Files\Microsoft Office\root\Office16\1036\GrooveIntlResource.dll
2018-09-15 09:28 - 2018-10-05 21:32 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-09-15 09:28 - 2018-10-05 21:29 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 000020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2018-10-07 04:50 - 2017-03-14 16:51 - 001714688 _____ () C:\Program Files\TeraCopy\TeraCopy64.dll
2018-09-15 09:28 - 2018-10-05 21:30 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-10 08:29 - 2018-10-02 04:43 - 001287240 _____ () C:\Users\jseve\Desktop\Vivaldi edition portable\Application\2.0.1309.37\ffmpeg.dll
2018-10-10 08:29 - 2018-10-02 04:43 - 005111880 _____ () C:\Users\jseve\Desktop\Vivaldi edition portable\Application\2.0.1309.37\libglesv2.dll
2018-10-10 08:29 - 2018-10-02 04:43 - 000116808 _____ () C:\Users\jseve\Desktop\Vivaldi edition portable\Application\2.0.1309.37\libegl.dll
2018-10-10 09:58 - 2018-10-10 09:58 - 003171200 _____ () C:\Users\jseve\Desktop\ZHPDiag3.exe
2018-09-20 12:23 - 2018-09-20 12:23 - 009534928 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\libxvclient.dll
2018-09-20 12:24 - 2018-09-20 12:24 - 000014976 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.NetworkUtils.dll
2018-09-20 12:22 - 2018-09-20 12:22 - 000303104 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.SplitTunnel.dll
2018-09-20 12:24 - 2018-09-20 12:24 - 000444032 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.FilterManager.dll
==================== Alternate Data Streams (Avec liste blanche) =========
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2018-09-15 09:31 - 2018-09-28 15:15 - 000001029 __RSH C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 www.aomeitech.com
0.0.0.0 activate.bitsum.com
0.0.0.0 apps.corel.com
0.0.0.0 mc.corel.com
127.0.0.1 app.drivereasy.com
149.202.196.40 dow0.drivereasy.com
149.202.196.40 dow1.drivereasy.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3076523476-1142008452-770512297-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jseve\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img-20160612-wa0002.png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "CompeGPSDev"
HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\StartupApproved\Run: => "Vivaldi Update Notifier"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [TCP Query User{F44E2B8C-E1E3-4BDD-B853-0F1439104FD4}G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe] => (Allow) G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe
FirewallRules: [UDP Query User{BA0ADFE8-F566-40C6-90EC-46A33EF2A9F5}G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe] => (Allow) G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe
FirewallRules: [{97C00AAF-92B7-49BB-88D0-C1F60F2FE629}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
FirewallRules: [{2862EA39-E67B-4CB3-A3C4-F63205870EE5}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
FirewallRules: [{45DC9BDF-2522-44ED-8199-8A51210F66C7}] => (Allow) LPort=54925
FirewallRules: [{830F8E7C-960E-4608-A7AC-56F407DBB345}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{80D0CBA2-6961-4974-A67D-D5D257E38B63}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{D0414477-88F1-4E82-8288-5CB4D769352C}G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe] => (Allow) G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe
FirewallRules: [UDP Query User{E28247EC-5090-484A-A45C-47BBA4F8B254}G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe] => (Allow) G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe
FirewallRules: [TCP Query User{8F6CFA78-70BC-43D9-BAA8-E24D67FD0A67}C:\users\jseve\desktop\miniserver-master\files\php\php.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\php\php.exe
FirewallRules: [UDP Query User{5EA07A66-D408-464C-BC61-0653A70B85A4}C:\users\jseve\desktop\miniserver-master\files\php\php.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\php\php.exe
FirewallRules: [TCP Query User{04187D61-971B-4161-8346-F6F400159D43}C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe
FirewallRules: [UDP Query User{159E2F79-7F1D-4718-8ECD-2678E59CE852}C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe
FirewallRules: [{DD2BE059-5409-4F87-93CE-9FCA78D61CEE}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{901B399F-7C9A-422C-A0AE-D63207CBFCD6}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{8B13F796-5C66-4194-93A4-2074CCE10BA2}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{620AB6EB-791A-4EE3-84CE-7EA7B9056910}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{637D3468-57C3-44EE-9EAE-DF2728037FAE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{E748B793-BA94-434E-BFE5-4F75EB459B73}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0F602635-4CFF-4C64-95AE-5C580D787FBB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{47B55C45-54D4-4720-9D08-816699C529CD}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\PxeUi.exe
FirewallRules: [TCP Query User{A29B55B4-AE6A-49BB-AF27-2AED9C72F054}Z:\temp\nsocebb.tmp\app\deezloader remix.exe] => (Allow) Z:\temp\nsocebb.tmp\app\deezloader remix.exe
FirewallRules: [UDP Query User{DDD21B4D-B71D-455D-8E73-4A0AFB46DF06}Z:\temp\nsocebb.tmp\app\deezloader remix.exe] => (Allow) Z:\temp\nsocebb.tmp\app\deezloader remix.exe
FirewallRules: [TCP Query User{890470D7-70CA-416B-A768-8AB04C9B9211}C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{A565A627-4A34-4021-92CD-34203B8F4FE5}C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: J:\
Description: Compact Flash
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: ExpressVPN Tap Adapter
Description: ExpressVPN Tap Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ExpressVPN
Service: tapexpressvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: L:\
Description: MS/MS-Pro
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: I:\
Description: SD/MMC
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: K:\
Description: SM/xD-Picture
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Erreurs système:
=============
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Pourcentage de mémoire utilisée: 32%
Mémoire physique - RAM - totale: 16343.07 MB
Mémoire physique - RAM - disponible: 10978.25 MB
Mémoire virtuelle totale: 18775.07 MB
Mémoire virtuelle disponible: 13456.69 MB
==================== Lecteurs ================================
Drive c: (Win 10 17763) (Fixed) (Total:111.79 GB) (Free:73.48 GB) NTFS
Drive d: (Win 10 17134 320) (Fixed) (Total:148.58 GB) (Free:85.37 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive e: (Win 7 SSD) (Fixed) (Total:119.24 GB) (Free:42.2 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive f: (Win 8.1.1) (Fixed) (Total:150 GB) (Free:37.76 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive g: (Données) (Fixed) (Total:1000 GB) (Free:186.16 GB) NTFS
Drive h: (Sauvegardes) (Fixed) (Total:247.26 GB) (Free:48.46 GB) NTFS
Drive n: () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS
Drive z: (RAMDISK) (Fixed) (Total:2 GB) (Free:1.98 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 0001E0D9)
Partition 1: (Active) - (Size=148.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=475 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 4E5890E1)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 83820341)
Partition 1: (Not Active) - (Size=1000 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=247.3 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=150 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Size: 111.8 GB) (Disk ID: D4544EB1)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 4 (Size: 2 GB) (Disk ID: 1DB776BF)
Partition 1: (Not Active) - (Size=2 GB) - (Type=0B)
==================== Fin de Addition.txt ============================
Exécuté par jseve (10-10-2018 10:16:26)
Exécuté depuis C:\Users\jseve\Desktop
Windows 10 Pro Version 1809 17763.55 (X64) (2018-09-23 13:07:52)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3076523476-1142008452-770512297-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3076523476-1142008452-770512297-503 - Limited - Disabled)
Invité (S-1-5-21-3076523476-1142008452-770512297-501 - Limited - Disabled)
jseve (S-1-5-21-3076523476-1142008452-770512297-1001 - Administrator - Enabled) => C:\Users\jseve
WDAGUtilityAccount (S-1-5-21-3076523476-1142008452-770512297-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20063 - Adobe Systems Incorporated)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
AIMP (HKLM-x32\...\AIMP) (Version: v4.51.2080, 07.07.2018 - AIMP DevTeam)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AOMEI Backupper Technician Plus (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
Betternet for Windows 4.1.1 (HKLM-x32\...\{2E77104D-96E1-4A9C-86F2-C7CF8C805999}) (Version: 4.1.1 - Betternet Technologies Inc.)
BitTorrent (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\BitTorrent) (Version: 7.10.4.44633 - BitTorrent Inc.)
Brother MFL-Pro Suite DCP-375CW (HKLM-x32\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 1.0.1.0 - Brother Industries, Ltd.)
Click Install if prompted (HKLM-x32\...\{40830C8E-936E-4E08-AE37-240FF3343927}) (Version: 1.0.6.0 - ExpressVpn) Hidden
CompeGPS LAND 7.7.2 (HKLM-x32\...\CompeGPS_is1) (Version: 7.7.2 - CompeGPS TEAM, S.L.)
Corel PaintShop Pro X7 (HKLM-x32\...\_{176F50D6-6857-49CE-B731-65F757EE3F0D}) (Version: 17.0.0.199 - Corel Corporation)
ExpressVPN (HKLM-x32\...\{32631D9F-4985-47BA-82B4-95C24998985C}) (Version: 6.7.3.5554 - ExpressVPN) Hidden
ExpressVPN (HKLM-x32\...\{9eb863a7-ae80-4d4c-8131-c11aca757b46}) (Version: 6.7.3.5554 - ExpressVPN)
FILEminimizer Suite (HKLM-x32\...\FILEminimizer Suite_is1) (Version: - balesio AG)
FolderIco 3.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
FolderIco Cats Pack 2.0 (HKLM\...\{21F0BA4E-17C4-49A7-999D-5275100CF678}_is1) (Version: 2.0 - teorex)
ICA (HKLM-x32\...\{176F50D6-6857-49CE-B731-65F757EE3F0D}) (Version: 17.0.0.199 - Corel Corporation) Hidden
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
IPM_PSP_COM64 (HKLM\...\{17704FA2-B1D2-4D5C-A23D-BDA0D2BC9CC7}) (Version: 17.0.0.199 - Corel Corporation) Hidden
LAND 8.1 (HKLM-x32\...\LAND_is1) (Version: 8.1 - CompeGPS TEAM, S.L.)
Mac Blu-ray Player (HKLM-x32\...\Mac Blu-ray Player) (Version: 2.17.2.2614 - Macgo Inc.)
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Office Professional Plus 2019 - fr-fr (HKLM\...\Proplus2019Retail - fr-fr) (Version: 16.0.10827.20138 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\OneDriveSetup.exe) (Version: 18.162.0812.0001 - Microsoft Corporation)
Microsoft Project Professionnel 2019 - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.10827.20138 - Microsoft Corporation)
Microsoft Visio Professionnel 2019 - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.10827.20138 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.10910.20007 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.10910.20007 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.10910.20007 - Microsoft Corporation) Hidden
Patch Heredis 2019 (coolghost) version 19 (HKLM-x32\...\{4E0CBC44-734E-4B10-A2EB-993550EACF63}_is1) (Version: 19 - coolghost)
Postbox 6.1.4 (x86 en-US) (HKLM-x32\...\Postbox 6.1.4 (x86 en-US)) (Version: 6.1.4 - Postbox, Inc.)
Process Lasso (HKLM-x32\...\ProcessLasso) (Version: 9.0.0.492 - Bitsum)
PSPPContent (HKLM-x32\...\{17289BF4-5826-447B-A20A-738044D0B3E5}) (Version: 17.0.0.199 - Corel Corporation) Hidden
PSPPHelp (HKLM-x32\...\{1735F0DE-B173-4116-BABC-653A12FB9238}) (Version: 17.0.0.199 - Corel Corporation) Hidden
PSPPro64 (HKLM\...\{17511557-C430-486A-AB5A-87A8134B2613}) (Version: 17.0.0.199 - Corel Corporation) Hidden
Screenpresso (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\Screenpresso) (Version: 1.7.2.48 - Learnpulse)
Setup (HKLM-x32\...\{17088A4E-3CF3-4F12-926D-2A9E8085B8EC}) (Version: 17.0.0.199 - Nom de votre société) Hidden
Split Tunneling Driver (HKLM-x32\...\{F078B0B5-2F41-42C2-9162-B8C628D5E6FE}) (Version: 1.0.0.0 - ExpressVpn) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeraCopy version 3.26 (HKLM\...\TeraCopy_is1) (Version: 3.26 - Code Sector)
TwoNavDownloader version 1.42 (HKLM-x32\...\TwoNavDownloader_is1) (Version: 1.42 - CompeGPS TEAM, S.L.)
Ultra RAMDisk (HKLM-x32\...\Ultra RAMDisk) (Version: 1.65 - ieungSoft)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
USB Safely Remove 6.1 (HKLM-x32\...\USB Safely Remove_is1) (Version: - SafelyRemove.com)
Vivaldi (HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\Vivaldi) (Version: 2.0.1309.29 - Vivaldi) <==== ATTENTION
VMware Workstation (HKLM\...\{0F2CF138-26A5-4C91-AE15-D935B5EB369E}) (Version: 12.5.9 - VMware, Inc.)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
Zoolz2 (HKLM-x32\...\Zoolz2) (Version: 2.1 - Genie9)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3076523476-1142008452-770512297-1001_Classes\CLSID\{46F0475E-6FFC-178C-C722-557DB0BC4985}\InprocServer32 -> pas de chemin du fichier
CustomCLSID: HKU\S-1-5-21-3076523476-1142008452-770512297-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> "C:\Users\jseve\Desktop\Application\2.0.1309.37\notification_helper.exe" => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3076523476-1142008452-770512297-1001_Classes\CLSID\{E0311F72-196F-6250-C2DC-59DA57D0FA23}\InprocServer32 -> pas de chemin du fichier
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2018-09-28] (Tonec Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2018-09-23] (AIMP DevTeam)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] ()
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2018-09-23] (AIMP DevTeam)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [Folderico] -> {CC0C45C5-EFDE-4B8A-A8B0-9ED733D9E6AC} => C:\Program Files\FolderIco\FolderIco.dll [2014-11-10] (TeoreX)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] ()
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (Alexander Roshal)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {037F21B4-79ED-495F-900C-AE2ABB9820CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-28] (Microsoft Corporation)
Task: {0DEA5149-DEC1-46E5-A7BB-F0EE2F0B91FD} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-09-28] (Microsoft Corporation)
Task: {11B558D7-2E12-4EE1-A673-75D4FE6A1674} - System32\Tasks\Process Lasso Core Engine Only => C:\Program Files\Process Lasso\processgovernor.exe [2018-10-03] (Bitsum LLC)
Task: {198480EE-E5AA-46FF-8509-890F5F66BEE3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2018-09-28] (Microsoft Corporation)
Task: {4CD843A9-5C81-47E9-B868-FE593D3B7F86} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe /NOUACCHECK
Task: {577451B6-8161-420F-9B7B-8648ED58EE11} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-13] (Microsoft Corporation)
Task: {57DA9981-62F3-4450-BE27-CE7D14CAE950} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-09-28] (Microsoft Corporation)
Task: {5D260D9F-18F9-4D8C-979B-E61980B9BA26} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {6EFEEE04-AC78-49C9-9D79-2361375189AB} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_pepper.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {6F5E3D46-43E4-4D5B-80B8-497C071370A3} - System32\Tasks\WUMT2 => G:\Mes Documents\utilitaires\mini tool update\wumt_x64.exe [2016-12-20] (stupid user)
Task: {7A35A2E3-3CB4-4E28-B98D-832C02003592} - System32\Tasks\Microsoft\Windows\Flighting\OneSettings\RefreshCache
Task: {8356D609-1246-40DC-B3E8-23BDE4CA4DD2} - \Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan -> Pas de fichier <==== ATTENTION
Task: {89CD966D-2293-4F8E-9FA3-C936E70ACAD5} - System32\Tasks\Process Lasso Management Console (GUI) => C:\Program Files\Process Lasso\processlasso.exe [2018-10-03] (Bitsum LLC)
Task: {A2EA9282-26A2-4D11-B38F-7CF46F46E12F} - \Microsoft\Windows\Windows Defender\Windows Defender Cleanup -> Pas de fichier <==== ATTENTION
Task: {AD4E8AFB-A48C-4E13-BE83-B8D87600CFB4} - System32\Tasks\Microsoft\Windows\WlanSvc\CDSSync
Task: {AED96FF2-6EFB-4FE3-8E08-3416C16A77A4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {BCAF4669-040D-4AE1-BA25-236B51E3CA8B} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-j.sevestre1@laposte.net => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {BD21C377-5B30-4E5A-B6F2-37D2086885E5} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker Encrypt All Drives
Task: {D110C926-CB32-4D63-B81D-5AAB86FB7D39} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-13] (Microsoft Corporation)
Task: {E39F8E32-F4B6-44B2-B8AF-D84A6CFEB7B8} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-10-05] ()
Task: {F2E8EDED-8D8F-44EF-8330-9FA3C7448A3D} - \Microsoft\Windows\Windows Defender\Windows Defender Verification -> Pas de fichier <==== ATTENTION
Task: {F7EEAB09-3F07-4B72-9B0C-99EF49645225} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-09-28] (Microsoft Corporation)
Task: {FFF0A8BF-41E7-4E49-A95E-46F364FB90C4} - \Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance -> Pas de fichier <==== ATTENTION
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2018-09-24 17:53 - 2005-04-22 13:36 - 000143360 ____N () C:\WINDOWS\system32\BrSNMP64.dll
2018-09-20 12:22 - 2018-09-20 12:22 - 000339168 _____ () C:\Program Files (x86)\ExpressVPN\bootstrap\AMD64\nssm.exe
2018-09-20 12:23 - 2018-09-20 12:23 - 010014848 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\xvpnd.exe
2018-09-15 09:28 - 2018-10-05 21:31 - 000834088 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-09-28 17:19 - 2018-09-28 18:50 - 008999192 _____ () C:\Program Files\Microsoft Office\root\Office16\1036\GrooveIntlResource.dll
2018-09-15 09:28 - 2018-10-05 21:32 - 000474624 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-09-15 09:28 - 2018-10-05 21:29 - 002801152 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 000020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2018-10-07 04:50 - 2017-03-14 16:51 - 001714688 _____ () C:\Program Files\TeraCopy\TeraCopy64.dll
2018-09-15 09:28 - 2018-10-05 21:30 - 001740288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-10 08:29 - 2018-10-02 04:43 - 001287240 _____ () C:\Users\jseve\Desktop\Vivaldi edition portable\Application\2.0.1309.37\ffmpeg.dll
2018-10-10 08:29 - 2018-10-02 04:43 - 005111880 _____ () C:\Users\jseve\Desktop\Vivaldi edition portable\Application\2.0.1309.37\libglesv2.dll
2018-10-10 08:29 - 2018-10-02 04:43 - 000116808 _____ () C:\Users\jseve\Desktop\Vivaldi edition portable\Application\2.0.1309.37\libegl.dll
2018-10-10 09:58 - 2018-10-10 09:58 - 003171200 _____ () C:\Users\jseve\Desktop\ZHPDiag3.exe
2018-09-20 12:23 - 2018-09-20 12:23 - 009534928 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\libxvclient.dll
2018-09-20 12:24 - 2018-09-20 12:24 - 000014976 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.NetworkUtils.dll
2018-09-20 12:22 - 2018-09-20 12:22 - 000303104 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.SplitTunnel.dll
2018-09-20 12:24 - 2018-09-20 12:24 - 000444032 _____ () C:\Program Files (x86)\ExpressVPN\xvpnd\windows\ExpressVPN.FilterManager.dll
==================== Alternate Data Streams (Avec liste blanche) =========
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2018-09-15 09:31 - 2018-09-28 15:15 - 000001029 __RSH C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 www.aomeitech.com
0.0.0.0 activate.bitsum.com
0.0.0.0 apps.corel.com
0.0.0.0 mc.corel.com
127.0.0.1 app.drivereasy.com
149.202.196.40 dow0.drivereasy.com
149.202.196.40 dow1.drivereasy.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3076523476-1142008452-770512297-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\jseve\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img-20160612-wa0002.png
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "CompeGPSDev"
HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\StartupApproved\Run: => "IDMan"
HKU\S-1-5-21-3076523476-1142008452-770512297-1001\...\StartupApproved\Run: => "Vivaldi Update Notifier"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [Microsoft-Windows-DeviceManagement-CertificateInstall-TCP-Out] => (Allow) %SystemRoot%\system32\dmcertinst.exe
FirewallRules: [Microsoft-Windows-DeviceManagement-OmaDmClient-TCP-Out] => (Allow) %SystemRoot%\system32\omadmclient.exe
FirewallRules: [TCP Query User{F44E2B8C-E1E3-4BDD-B853-0F1439104FD4}G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe] => (Allow) G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe
FirewallRules: [UDP Query User{BA0ADFE8-F566-40C6-90EC-46A33EF2A9F5}G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe] => (Allow) G:\mes documents\utilitaires\bittorrent pro 7.10.3 (build-44429)\bittorrent (7.10.3 build 44429) - portable\bittorrent.exe
FirewallRules: [{97C00AAF-92B7-49BB-88D0-C1F60F2FE629}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
FirewallRules: [{2862EA39-E67B-4CB3-A3C4-F63205870EE5}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe
FirewallRules: [{45DC9BDF-2522-44ED-8199-8A51210F66C7}] => (Allow) LPort=54925
FirewallRules: [{830F8E7C-960E-4608-A7AC-56F407DBB345}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{80D0CBA2-6961-4974-A67D-D5D257E38B63}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{D0414477-88F1-4E82-8288-5CB4D769352C}G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe] => (Allow) G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe
FirewallRules: [UDP Query User{E28247EC-5090-484A-A45C-47BBA4F8B254}G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe] => (Allow) G:\mes documents\utilitaires\version portables\heredies 2019 edition portable\heredis19.exe
FirewallRules: [TCP Query User{8F6CFA78-70BC-43D9-BAA8-E24D67FD0A67}C:\users\jseve\desktop\miniserver-master\files\php\php.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\php\php.exe
FirewallRules: [UDP Query User{5EA07A66-D408-464C-BC61-0653A70B85A4}C:\users\jseve\desktop\miniserver-master\files\php\php.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\php\php.exe
FirewallRules: [TCP Query User{04187D61-971B-4161-8346-F6F400159D43}C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe
FirewallRules: [UDP Query User{159E2F79-7F1D-4718-8ECD-2678E59CE852}C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe] => (Allow) C:\users\jseve\desktop\miniserver-master\files\aria2c\aria2c.exe
FirewallRules: [{DD2BE059-5409-4F87-93CE-9FCA78D61CEE}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{901B399F-7C9A-422C-A0AE-D63207CBFCD6}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{8B13F796-5C66-4194-93A4-2074CCE10BA2}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{620AB6EB-791A-4EE3-84CE-7EA7B9056910}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{637D3468-57C3-44EE-9EAE-DF2728037FAE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{E748B793-BA94-434E-BFE5-4F75EB459B73}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{0F602635-4CFF-4C64-95AE-5C580D787FBB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{47B55C45-54D4-4720-9D08-816699C529CD}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\PxeUi.exe
FirewallRules: [TCP Query User{A29B55B4-AE6A-49BB-AF27-2AED9C72F054}Z:\temp\nsocebb.tmp\app\deezloader remix.exe] => (Allow) Z:\temp\nsocebb.tmp\app\deezloader remix.exe
FirewallRules: [UDP Query User{DDD21B4D-B71D-455D-8E73-4A0AFB46DF06}Z:\temp\nsocebb.tmp\app\deezloader remix.exe] => (Allow) Z:\temp\nsocebb.tmp\app\deezloader remix.exe
FirewallRules: [TCP Query User{890470D7-70CA-416B-A768-8AB04C9B9211}C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe
FirewallRules: [UDP Query User{A565A627-4A34-4021-92CD-34203B8F4FE5}C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe] => (Allow) C:\users\jseve\appdata\roaming\bittorrent\bittorrent.exe
==================== Points de restauration =========================
ATTENTION: La Restauration système est désactivée
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: J:\
Description: Compact Flash
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: ExpressVPN Tap Adapter
Description: ExpressVPN Tap Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ExpressVPN
Service: tapexpressvpn
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: L:\
Description: MS/MS-Pro
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: I:\
Description: SD/MMC
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
Name: K:\
Description: SM/xD-Picture
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Generic-
Service: WUDFWpdFs
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Erreurs système:
=============
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Pourcentage de mémoire utilisée: 32%
Mémoire physique - RAM - totale: 16343.07 MB
Mémoire physique - RAM - disponible: 10978.25 MB
Mémoire virtuelle totale: 18775.07 MB
Mémoire virtuelle disponible: 13456.69 MB
==================== Lecteurs ================================
Drive c: (Win 10 17763) (Fixed) (Total:111.79 GB) (Free:73.48 GB) NTFS
Drive d: (Win 10 17134 320) (Fixed) (Total:148.58 GB) (Free:85.37 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive e: (Win 7 SSD) (Fixed) (Total:119.24 GB) (Free:42.2 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive f: (Win 8.1.1) (Fixed) (Total:150 GB) (Free:37.76 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive g: (Données) (Fixed) (Total:1000 GB) (Free:186.16 GB) NTFS
Drive h: (Sauvegardes) (Fixed) (Total:247.26 GB) (Free:48.46 GB) NTFS
Drive n: () (Fixed) (Total:0.46 GB) (Free:0.07 GB) NTFS
Drive z: (RAMDISK) (Fixed) (Total:2 GB) (Free:1.98 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 0001E0D9)
Partition 1: (Active) - (Size=148.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=475 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 4E5890E1)
Partition 1: (Active) - (Size=119.2 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 83820341)
Partition 1: (Not Active) - (Size=1000 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=247.3 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=150 GB) - (Type=07 NTFS)
========================================================
Disk: 3 (Size: 111.8 GB) (Disk ID: D4544EB1)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)
========================================================
Disk: 4 (Size: 2 GB) (Disk ID: 1DB776BF)
Partition 1: (Not Active) - (Size=2 GB) - (Type=0B)
==================== Fin de Addition.txt ============================