Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 16-02-2020
Exécuté par Asus (17-02-2020 18:25:25)
Exécuté depuis C:\Users\Asus\Desktop
Windows 10 Home Version 1909 18363.657 (X64) (2019-07-02 16:58:42)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-669981407-1910887726-3317193812-500 - Administrator - Disabled)
Asus (S-1-5-21-669981407-1910887726-3317193812-1001 - Administrator - Enabled) => C:\Users\Asus
DefaultAccount (S-1-5-21-669981407-1910887726-3317193812-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-669981407-1910887726-3317193812-1000 - Limited - Enabled) => C:\Users\defaultuser0
Enfants (S-1-5-21-669981407-1910887726-3317193812-1009 - Limited - Enabled) => C:\Users\Enfants
famil (S-1-5-21-669981407-1910887726-3317193812-1005 - Limited - Disabled)
Invité (S-1-5-21-669981407-1910887726-3317193812-501 - Limited - Disabled)
J G (S-1-5-21-669981407-1910887726-3317193812-1008 - Limited - Enabled) => C:\Users\J G
joset (S-1-5-21-669981407-1910887726-3317193812-1004 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-669981407-1910887726-3317193812-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: G DATA INTERNET SECURITY (Enabled - Up to date) {306EF9D4-90EF-3FB7-151E-73C2982F8C0E}
AV: G DATA INTERNET SECURITY (Disabled - Up to date) {A9C56A9B-ECCD-57EA-78F6-92511DA1C885}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G DATA INTERNET SECURITY (Enabled) {085578F1-DA80-3EEF-3E41-DAF766FCCB75}
FW: G DATA INTERNET SECURITY (Disabled) {91FEEBBE-A6A2-56B2-53A9-3B64E3728FFE}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.006.20034 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.330 - Adobe)
AM-DeadLink 4.8 (HKLM-x32\...\aignesamdeadlink_is1) (Version: 4.8 - www.aignes.com)
AOMEI Partition Assistant Standard Edition 7.5.1 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.5.24 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.4.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.9 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.14.0006 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS)
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.101 - ICEpower a/s)
AVerMedia C039 USB Capture Card 10.2.64.103 (HKLM-x32\...\AVerMedia C039 USB Capture Card) (Version: 10.2.64.103 - AVerMedia TECHNOLOGIES, Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: 1.5.4.4 - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.7.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Télécopieur Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 5.5.0 - Canon Inc.)
Canon MG5700 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5700_series) (Version: 1.00 - Canon Inc.)
Canon MG5700 series On-screen Manual (HKLM-x32\...\Canon MG5700 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.62 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.94.50 - Conexant)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
CyberLink ColorDirector 5 (HKLM-x32\...\{293B15F9-91A8-44D4-ACBB-E13E8E2EC97D}) (Version: 5.0.7931.0 - CyberLink Corp.)
CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.3408.0 - CyberLink Corp.)
CyberLink PowerDirector Content Pack Essential (HKLM-x32\...\{F2D0453E-3783-490D-9D48-7CC648C4ADFB}) (Version: 1.0 - CyberLink Corp.)
CyberLink PowerDirector Content Pack Premium 1 (HKLM-x32\...\{1B3E7144-6051-455B-809F-50E3CF913869}) (Version: 1 - CyberLink Corp.)
CyberLink PowerDirector Content Pack Premium 2 (HKLM-x32\...\{CF520E54-7DB7-4402-B581-FC0D6734D0C6}) (Version: 2 - CyberLink Corp.)
CyberLink PowerDirector Content Pack Premium 3 (HKLM-x32\...\{BBC15949-913F-461A-93D7-D226716FBEA2}) (Version: 3 - CyberLink Corp.)
CyberLink Travel Pack 6 (HKLM-x32\...\{C9C828C1-8467-4F48-9BD6-BEE4CEF5E4D5}) (Version: 6 - CyberLink Corp.)
CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 9921 - CyberLink Corp.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.5 - ASUSTek COMPUTER INC.)
DriversCloud.com (64 bits) (HKLM\...\{BD4AC883-4AF5-40BB-91F0-31A061F9588E}) (Version: 10.0.11.0 - Cybelsoft)
Duplicate Cleaner Free 4.1.2 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.1.2 - DigitalVolcano Software Ltd) <==== ATTENTION
EaseUS Todo Backup Free 12.0 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 12.0 - CHENGDU YIWO Tech Development Co., Ltd)
Enregistrement utilisateur de Canon MG5700 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG5700 series) (Version: - Canon Inc.)
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
FormatFactory 4.5.5.0 (HKLM-x32\...\FormatFactory) (Version: 4.5.5.0 - Free Time)
G DATA INTERNET SECURITY (HKLM-x32\...\G DATA INTERNET SECURITY) (Version: 25.5.5.43 - G DATA Software AG)
GameFirst IV (HKLM-x32\...\{795A0031-3DD5-43F1-BCBA-AEBA756D0FBB}) (Version: 1.5.23 - ASUS) Hidden
GameFirst IV (HKLM-x32\...\GameFirst IV 1.5.23) (Version: 1.5.23 - ASUS)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 80.0.3987.106 - Google LLC)
Google Earth Pro (HKLM-x32\...\{402FF39A-CF32-42F6-B480-BAF2B1B0096B}) (Version: 7.3.2.5495 - Google)
Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Image Resizer for Windows (64 bit) (HKLM\...\{617CA6E9-D5FB-4017-8130-82E68C56C34D}) (Version: 3.0.4802.35565 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)
Intel(R) Chipset Device Software (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1169 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4771 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{588DA478-D4FF-48E3-8290-49F8C4B21283}) (Version: 18.1.1527.1551 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{bc883058-299e-461f-8e52-4f1dbb355f86}) (Version: 19.0.1 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
IZArc 4.3 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 4.3 - Ivan Zahariev)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Manager (HKLM-x32\...\{BF3644FF-E4CA-4B2F-B664-09C9869376AD}) (Version: 5.0.29.838 - 2017 pdfforge GmbH. All rights reserved) Hidden
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{C058FC5D-565F-4360-A562-0527A3D993DC}) (Version: 2.3.2211 - Microsoft Corporation)
Microsoft Office XP Professional avec FrontPage (HKLM-x32\...\{9028040C-6000-11D3-8CFE-0050048383C9}) (Version: 10.0.4330.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0005 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Mises à jour NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.4.1 - Mozilla)
Mozilla Thunderbird 68.5.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 68.5.0 (x86 fr)) (Version: 68.5.0 - Mozilla)
MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.19 - NVIDIA Corporation)
OpenOffice 4.1.7 (HKLM-x32\...\{A9222889-1CDA-42BD-B11B-113E7C91C1C7}) (Version: 4.17.9800 - Apache Software Foundation)
Panneau de configuration NVIDIA 442.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 442.19 - NVIDIA Corporation) Hidden
PDF Architect 7 Create Module (HKLM\...\{B600CC13-8F68-4D44-8867-93490894FAE5}) (Version: 7.1.14.4969 - pdfforge GmbH) Hidden
PDF Architect 7 Edit Module (HKLM\...\{BA2C2671-B379-4101-A21C-4C549671FC8D}) (Version: 7.1.14.4969 - pdfforge GmbH) Hidden
PDF Architect 7 View Module (HKLM\...\{E947A304-6110-4CFE-98AD-E6909072E87D}) (Version: 7.1.14.4969 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{00010FEF-82A2-497E-983A-7105A0166FA7}) (Version: 4.0.2 - pdfforge GmbH)
PhotoFiltre 7 (HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\PhotoFiltre 7) (Version: - )
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.115.3 - proDAD GmbH)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)
ROG Gaming Center (HKLM-x32\...\{CC182DBF-FC67-4F79-9930-6A2682E60BDD}) (Version: 1.0.7 - ASUS)
Security Task Manager 2.3d (HKLM-x32\...\Security Task Manager) (Version: 2.3d - Neuber Software)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 9.2.39.0 - 2BrightSparks)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.1.1548 - TeamViewer)
TrayStatus 4.2 (HKLM-x32\...\d6b74f60-2e9d-4c60-a8b7-b7d737c44ad4_is1) (Version: 4.2.0.0 - Binary Fortress Software)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
Utilitaire d'identification du processeur Intel(R) (HKLM-x32\...\{A92A4DB0-CD37-42D1-BE1D-603D53C24328}) (Version: 1.0.0.0 - Intel Corporation)
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Windows Driver Package - ASUS (AsusSGDrv) Mouse (10/21/2015 8.0.0.19) (HKLM\...\DE393C6A9AB085F9E19765D003555C3D360497DB) (Version: 10/21/2015 8.0.0.19 - ASUS)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
Wise Memory Optimizer 3.6.6 (HKLM-x32\...\Wise Memory Optimizer_is1) (Version: 3.6.6 - WiseCleaner.com, Inc.)
Wise Registry Cleaner 10.2.7 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.2.7 - WiseCleaner.com, Inc.)
XSplit Gamecaster (HKLM-x32\...\{0E12BEC0-F2EE-43FA-AEA0-24B5E9F80167}) (Version: 2.5.1507.3011 - SplitmediaLabs)
Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.5.8.0_x86__kgqvnymyfvs32 [2020-02-08] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.157.400.0_x86__kgqvnymyfvs32 [2020-02-08] (king.com)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-01-03] (Microsoft Corporation)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_4.8.1.3_x86__h6adky7gbf63m [2020-02-15] (Gameloft.)
Dragon Mania Legends -> C:\Program Files\WindowsApps\A278AB0D.DragonManiaLegends_5.0.5.3_x86__h6adky7gbf63m [2020-01-09] (Gameloft.)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-07-11] (Microsoft Corporation)
Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-26] (Microsoft Corporation)
G DATA WebProtection -> C:\Program Files\WindowsApps\GDataSoftwareAG.GDATAWebProtection_1.8.1.0_x86__mkd7srqxnyzpm [2019-06-08] (G Data Software AG)
Hidden City : Jeu d’objets cachés -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.33.3303.0_x86__ytsefhwckbdv6 [2020-02-15] (G5 Entertainment AB)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.6.0.11_x86__h6adky7gbf63m [2020-02-12] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
Microsoft Midi gm.dls -> C:\Program Files\WindowsApps\Microsoft.Midi.GmDls_1.0.1.0_neutral__8wekyb3d8bbwe [2019-09-15] (Microsoft Platform Extensions)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.6.1224.0_x64__8wekyb3d8bbwe [2020-02-05] (Microsoft Studios) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-04-27] (ASUSTeK COMPUTER INC.) [Startup Task]
RECOIL -> C:\Program Files\WindowsApps\9998PiotrFusik.RECOIL_5.0.0.0_x64__5dbjqw3zx3tpw [2019-11-12] (Piotr Fusik)
Royal Revolt 2 -> C:\Program Files\WindowsApps\flaregamesGmbH.RoyalRevolt2_5.4.0.0_x86__g0q0z3kw54rap [2020-01-22] (flaregames GmbH)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.9.53.0_x64__43tkc6nmykmb6 [2020-01-01] (Ookla)
Spybot Identity Monitor -> C:\Program Files\WindowsApps\0B776BFA.SpybotIdentityMonitor_3.4.0.0_x86__vfa2pmx4tgtj4 [2019-12-07] (Safer-Networking Ltd.)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-669981407-1910887726-3317193812-1001_Classes\CLSID\{F09690BD-582D-4439-B6ED-5C2545D2F424}\InprocServer32 -> C:\WINDOWS\system32\kernel32.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2019-12-02] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2013-02-23] (Brice Lambson) [Fichier non signé]
ContextMenuHandlers1: [IZArcCM] -> {BC593DF5-466F-44EC-8FFD-C4DBC603B917} => C:\Program Files (x86)\IZArc\IZArcCM64.dll [2012-07-20] () [Fichier non signé]
ContextMenuHandlers1: [PDFArchitect7_ManagerExt] -> {21989F59-B260-4302-90C3-E51740E03639} => C:\Program Files\PDF Architect 7\context-menu.dll -> Pas de fichier
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2019-11-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit Information Technology -> IObit)
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2019-12-02] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers4: [IZArcCM] -> {BC593DF5-466F-44EC-8FFD-C4DBC603B917} => C:\Program Files (x86)\IZArc\IZArcCM64.dll [2012-07-20] () [Fichier non signé]
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2019-11-15] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2a96639878ff96cd\igfxDTCM.dll [2017-08-29] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2019-12-02] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2019-12-02] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit Information Technology -> IObit)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [vidc.pDAD] => c:\windows\system32\prodad-codec.dll [607256 2018-08-09] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [VIDC.MPG4] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.MP42] => C:\Windows\SysWOW64\mpg4c32.dll [427520 2000-06-02] (Microsoft Corporation) [Fichier non signé]
HKLM\...\Drivers32: [msacm.msaudio1] => C:\Windows\SysWOW64\msaud32.acm [305152 2000-06-02] (Microsoft Corporation) [Fichier non signé]
HKLM\...\Drivers32: [msacm.sl_anet] => C:\Windows\SysWOW64\sl_anet.acm [102400 2000-06-02] (Sipro Lab Telecom Inc.) [Fichier non signé]
==================== Raccourcis & WMI ========================
==================== Modules chargés (Avec liste blanche) =============
2020-02-01 14:23 - 2020-02-01 14:23 - 000372736 _____ ( ) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\ab52d9c34c1e91178181a099412c8162\Interop.CxHDAudioAPILib.ni.dll
2020-02-01 14:23 - 2020-02-01 14:23 - 000018944 _____ ( ) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\44285ee32e8308897e01c3fd271f82a9\Interop.CxUtilSvcLib.ni.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 001937408 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\ffmpeg.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 000079360 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\libegl.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 002177536 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\libglesv2.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 003561984 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\node.dll
2015-12-02 19:01 - 2015-12-02 19:01 - 000124928 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2015-12-02 19:01 - 2015-12-02 19:01 - 000027648 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-12-02 19:01 - 2015-12-02 19:01 - 000029184 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\VideoEnhance.dll
2020-02-02 12:15 - 2019-06-28 11:09 - 001291264 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2020-02-02 12:15 - 2019-06-28 11:09 - 000055808 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2018-07-27 16:28 - 2012-07-20 13:39 - 002469888 _____ () [Fichier non signé] C:\Program Files (x86)\IZArc\IZArcCM64.dll
2019-11-29 10:07 - 2017-01-04 09:55 - 001044480 _____ () [Fichier non signé] C:\Program Files (x86)\TrayStatus\x64\e_sqlite3.dll
2015-12-02 19:01 - 2015-12-02 19:01 - 001676288 _____ (ASUS TeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll
2015-12-02 19:01 - 2015-12-02 19:01 - 000178176 _____ (ASUS TeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll
2015-12-02 19:01 - 2015-12-02 19:01 - 000164864 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll
2013-02-23 11:47 - 2013-02-23 11:47 - 000166400 _____ (Brice Lambson) [Fichier non signé] C:\Program Files\Image Resizer for Windows\ShellExtensions.dll
2018-04-25 09:13 - 2015-01-09 07:45 - 000008704 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_FRA.DLL
2018-04-25 09:13 - 2015-01-09 07:44 - 000104960 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_IMG.dll
2018-02-24 17:33 - 2014-03-18 05:00 - 000406016 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMLMCA.DLL
2018-04-20 16:01 - 2015-03-17 07:51 - 000375296 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL
2018-02-24 17:39 - 2014-03-18 05:00 - 000408576 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMXLMCA.DLL
2018-02-05 15:32 - 2018-03-13 09:21 - 001173504 _____ (Conexant Systems, Inc.) [Fichier non signé] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll
2020-02-02 12:15 - 2019-06-28 11:09 - 000892928 _____ (Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2020-02-09 11:18 - 2020-02-09 11:18 - 000116736 _____ (pdfforge GmbH) [Fichier non signé] C:\WINDOWS\System32\pdfcmon.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 073507840 _____ (The NWJS Community) [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\nw.dll
2017-07-03 10:51 - 2017-07-03 10:51 - 000124928 _____ (The NWJS Community) [Fichier non signé] C:\Program Files (x86)\ASUS\Giftbox\nw_elf.dll
2020-02-02 12:15 - 2019-10-09 09:05 - 001359872 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\LIBEAY32.dll
2020-02-02 12:15 - 2019-10-09 09:05 - 000365056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\SSLEAY32.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WmsSelfHealing => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\hvsifltr => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WmsSelfHealing => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer sites de confiance/sensibles ==========
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\localhost -> localhost
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> c:\program files (x86)\intel\icls client\;c:\program files\intel\icls client\;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;c:\program files (x86)\intel\intel(r) management engine components\dal;c:\program files\intel\intel(r) management engine components\dal;c:\program files (x86)\intel\intel(r) management engine components\ipt;c:\program files\intel\intel(r) management engine components\ipt;c:\program files\intel\wifi\bin\;c:\program files\common files\intel\wirelesscommon\;%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;%systemroot%\system32\windowspowershell\v1.0\;%systemroot%\system32\openssh\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-669981407-1910887726-3317193812-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Asus\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\StartupFolder: => "Microsoft Office.lnk"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "cAudioFilterAgent"
HKLM\...\StartupApproved\Run: => "AvastUI.exe"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "UpdatePPShortCut"
HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\StartupApproved\Run: => "Delete Cached Update Binary"
HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\StartupApproved\Run: => "Uninstall 19.152.0801.0007"
HKU\S-1-5-21-669981407-1910887726-3317193812-1001\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{5BAF036E-4024-4B0B-866E-DBFD18F49958}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D05F4E3-103F-4C7E-85A8-5970F4E7FFAA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{86D7649D-AA46-4A99-9CF4-E8F44E656FF9}] => (Allow) C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 7.5.1\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{1AE2B6BE-7078-43ED-98A6-BA3B73B6BC93}] => (Allow) C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 7.5.1\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{D763BEB5-2C2A-4DEB-8C24-CF111B2EE6F4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B2B3E38C-820C-4EC5-894C-05F6B0F6D4F5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{EC06FEA8-A5A1-4905-B456-9A9B00588552}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{6E52CA23-372F-47DD-AC9A-9112CC99355A}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D5179226-777E-45B4-B6DB-1D8F3DF7AFE0}] => (Allow) C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 7.5.1\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{6C7CC7FB-628B-4EE1-BE34-5B541946880F}] => (Allow) C:\Program Files (x86)\AOMEI Partition Assistant Standard Edition 7.5.1\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{7894F64D-8C1D-42CF-8295-6C05CA2F1374}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B02696BE-ED31-4140-88D3-2387C44ADC1B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{56A1E9A1-FF59-4737-8E9D-0E742B2AAF1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D80EA94C-06B4-4965-808D-9A325DBD3229}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{C3ACFC6F-C66F-4513-A012-B161C10653CA}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{92885191-9F8F-442B-ABA8-41A9B63E92C9}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{DFA50744-73E1-4BE9-BC5D-79283B0A0B27}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{D13FB24D-3DC6-4D7B-9744-F40157A9827A}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{7DEFA576-FFC4-4594-A5B4-CDE86DEC5671}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{89077D98-8D94-4BBA-BCA7-CBDB217F95C9}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{A3877251-9A4C-4C53-B221-DA9F9D3B6688}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{78AD1C9E-CBFE-44B2-B60E-AB9F778705EA}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{0774E0F7-D7E1-42C8-986E-2882C044B405}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A50DE035-6B6D-4978-B1B1-CB53BC186D47}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{1802ED41-B4D8-489B-8D38-41A9CAF169A0}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
==================== Points de restauration =========================
12-02-2020 09:40:42 Point de contrôle planifié
16-02-2020 18:26:22 Opération de restauration
17-02-2020 15:44:54 nt instal MBAM
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (02/17/2020 06:24:48 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12224,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 06:12:31 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11076,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 06:03:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12296,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 05:45:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2992,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 05:36:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (820,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 05:22:41 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6588,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 05:17:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (132,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (02/17/2020 04:54:05 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4672,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Erreurs système:
=============
Error: (02/17/2020 04:01:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service PDF Architect 7 Update Service n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (02/17/2020 04:00:45 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Windows Defender:
===================================
Date: 2019-11-19 17:26:54.669
Description:
L'apport de modification par C:\Program Files (x86)\Security Task Manager\TaskMan.exe à %userprofile%\Desktop a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2019-11-19T16:26:54.668Z
Utilisateur : DESKTOP-K15CCUD\Asus
Chemin d'accès : %userprofile%\Desktop
Nom du processus : C:\Program Files (x86)\Security Task Manager\TaskMan.exe
Version de la veille de sécurité : 1.305.2424.0
Version du moteur : 1.1.16500.1
Version du produit : 4.18.1910.4
Date: 2019-11-19 17:26:42.977
Description:
L'apport de modification par C:\Users\Asus\AppData\Local\Temp\WZSE0.TMP\Setup.exe à %common_desktop%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2019-11-19T16:26:42.976Z
Utilisateur : DESKTOP-K15CCUD\Asus
Chemin d'accès : %common_desktop%\
Nom du processus : C:\Users\Asus\AppData\Local\Temp\WZSE0.TMP\Setup.exe
Version de la veille de sécurité : 1.305.2424.0
Version du moteur : 1.1.16500.1
Version du produit : 4.18.1910.4
Date: 2019-11-19 16:31:46.982
Description:
L'accès contrôlé aux dossiers a empêché C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe de modifier la mémoire.
Heure de détection : 2019-11-19T15:31:46.981Z
Utilisateur : AUTORITE NT\Système
Chemin d'accès : \Device\Harddisk0\DR0
Nom du processus : C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
Version de la veille de sécurité : 1.305.2424.0
Version du moteur : 1.1.16500.1
Version du produit : 4.18.1910.4
Date: 2019-11-19 16:23:40.866
Description:
L'apport de modification par C:\ProgramData\G Data\Setups\CommonUpdate\G DATA INTERNET SECURITY\setup.exe à %common_desktop%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2019-11-19T15:23:40.866Z
Utilisateur : DESKTOP-K15CCUD\Asus
Chemin d'accès : %common_desktop%\
Nom du processus : C:\ProgramData\G Data\Setups\CommonUpdate\G DATA INTERNET SECURITY\setup.exe
Version de la veille de sécurité : 1.305.2424.0
Version du moteur : 1.1.16500.1
Version du produit : 4.18.1907.4
Date: 2019-09-13 11:04:03.699
Description:
L'apport de modification par C:\ProgramData\G Data\Setups\CommonUpdate\G DATA INTERNET SECURITY\setup.exe à %common_desktop%\ a été bloqué par l'Accès contrôlé aux dossiers.
Heure de la détection : 2019-09-13T09:04:03.698Z
Utilisateur : DESKTOP-K15CCUD\Asus
Chemin d'accès : %common_desktop%\
Nom du processus : C:\ProgramData\G Data\Setups\CommonUpdate\G DATA INTERNET SECURITY\setup.exe
Version de la veille de sécurité : 1.301.1191.0
Version du moteur : 1.1.16300.1
Version du produit : 4.18.1907.4
CodeIntegrity:
===================================
Date: 2020-02-17 18:19:41.338
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:19:41.312
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:14:52.100
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:14:52.073
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:14:52.047
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:14:52.022
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:14:51.995
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
Date: 2020-02-17 18:14:51.970
Description:
Windows blocked file \Device\HarddiskVolume3\Windows\SysWOW64\jscript9.dll which has been disallowed for protected processes.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. GL752VW.300 07/13/2017
Carte mère: ASUSTeK COMPUTER INC. GL752VW
Processeur: Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 8090.84 MB
Mémoire physique - RAM - disponible: 4119.79 MB
Mémoire virtuelle totale: 9996.84 MB
Mémoire virtuelle disponible: 4933.24 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:299.66 GB) (Free:209.73 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Données) (Fixed) (Total:629.97 GB) (Free:529.53 GB) NTFS
\\?\Volume{7916e028-cc79-4d85-b6c0-0de2e27a54af}\ () (Fixed) (Total:0.83 GB) (Free:0.39 GB) NTFS
\\?\Volume{f2f42cb2-0b7b-4f26-8f91-97fa5acec807}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.77 GB) NTFS
\\?\Volume{238968bb-8f11-4b3b-8cbb-76a1042cf39d}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt =======================