Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20.12.2018 Exécuté par jacques (21-12-2018 17:17:02) Exécuté depuis C:\Users\jacques\Desktop Windows 10 Home Version 1803 17134.472 (X64) (2018-06-04 17:55:52) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1919610744-3495528620-3460437495-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1919610744-3495528620-3460437495-503 - Limited - Disabled) defaultuser0 (S-1-5-21-1919610744-3495528620-3460437495-1000 - Limited - Disabled) => C:\Users\defaultuser0 Invité (S-1-5-21-1919610744-3495528620-3460437495-501 - Limited - Disabled) jacques (S-1-5-21-1919610744-3495528620-3460437495-1001 - Administrator - Enabled) => C:\Users\jacques WDAGUtilityAccount (S-1-5-21-1919610744-3495528620-3460437495-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 16.00 (HKLM-x32\...\7-Zip) (Version: 16.00 - Igor Pavlov) 7-Zip 18.01 (HKLM-x32\...\{23170F69-40C1-2701-1801-000001000000}) (Version: 18.01.00.0 - Igor Pavlov) 7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.010.20064 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated) Age of Empires III - The Asian Dynasties (HKLM-x32\...\{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios) Age of Empires III (HKLM-x32\...\{485775E8-AEB8-46BD-922B-242879E03DD5}) (Version: 1.00.0000 - Microsoft Game Studios) Hidden Age of Empires III (HKLM-x32\...\InstallShield_{485775E8-AEB8-46BD-922B-242879E03DD5}) (Version: 1.00.0000 - Microsoft Game Studios) Anno 1602 (HKLM-x32\...\Uplay Install 2990) (Version: - Ubisoft) Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.70 - NVIDIA Corporation) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{49F7DD82-FC83-48BF-86C6-CFE6E1E233E1}) (Version: 7.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{1FA68E27-2951-42E8-9F57-1A7F6581B4FD}) (Version: 7.1 - Apple Inc.) Ashampoo Burning Studio 18 (HKLM-x32\...\{91B33C97-AF35-C3DC-976E-8A253D817482}_is1) (Version: 18.0.9 - Ashampoo GmbH & Co. KG) Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team) Audio DVD Creator 1.9.1.0 (HKLM-x32\...\Audio DVD Creator_is1) (Version: - Goland Tech Ltd.) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software) Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 18.2.5964 - AVAST Software) BitComet 1.53 (HKLM-x32\...\BitComet_x64) (Version: 1.53 - CometNetwork) BlueStacks 3 (HKLM-x32\...\BlueStacks) (Version: 3.7.22.2306 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.40 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7041 - CDBurnerXP) ClubdeJeux (remove only) (HKLM-x32\...\ClubdeJeux) (Version: - ) Dolphin (HKLM-x32\...\Dolphin) (Version: 5.0 - Dolphin Team) dr.fone toolkit for Android (Version 8.0.1) (HKLM-x32\...\{7B08A1E1-3644-4237-B39D-762B5F5564D0}_is1) (Version: 8.0.1.32 - Wondershare Software Co.,Ltd.) Dropbox (HKLM-x32\...\Dropbox) (Version: 63.4.107 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden dwdinst (HKLM-x32\...\{F4BA8483-1DF9-41B9-9B00-229B7DECA061}) (Version: 1.0.0.0 - HanWIS GmbH) EPSON WF-2650 Series Printer Uninstall (HKLM\...\EPSON WF-2650 Series) (Version: - SEIKO EPSON Corporation) Étude pour l'amélioration du produit HP ENVY 5540 series (HKLM\...\{0EEAD7C7-75FC-400E-A25E-E0B763614A7A}) (Version: 40.11.1119.1786 - HP Inc.) Étude pour l'amélioration du produit HP Photosmart 6520 series (HKLM\...\{6845C429-23DE-4822-B4E4-74A417F88B3C}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Facebook Gameroom 1.21.6697.19829 (HKLM-x32\...\{7BE2211B-F86C-40CA-A6CC-69564D9BD5E2}) (Version: 1.21.6697.19829 - Facebook) FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com) Freemake Video Converter version 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation) GIMP 2.10.6 (HKLM\...\GIMP-2_is1) (Version: 2.10.6 - The GIMP Team) Glary Utilities 5.106 (HKLM-x32\...\Glary Utilities 5) (Version: 5.106.0.130 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.) Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden hide.me VPN 2.0.2 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 2.0.2 - eVenture Limited) HP Dropbox Plugin (HKLM-x32\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP) HP ENVY 5540 series Aide (HKLM-x32\...\{99D2848E-CB04-4EC0-B07D-14E324548113}) (Version: 35.0.0 - Hewlett Packard) HP Google Drive Plugin (HKLM-x32\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP) HP Photosmart 6520 series Aide (HKLM-x32\...\{BAAC4791-19D1-4FF9-8145-E25113E39E32}) (Version: 28.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Inkscape 0.92.3 (HKLM-x32\...\Inkscape) (Version: 0.92.3 - Inkscape Project) Internet Music Capture 6.2.5.6 (HKLM\...\{24F91F2A-AE77-4E45-A82F-26E3460BE7C2}) (Version: 6.2.5.6 - E-Soft) Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation) Kinect for Windows Speech Recognition Language Pack (fr-CA) (HKLM-x32\...\{7D179500-CA0C-4456-B624-C15876B15F39}) (Version: 11.0.7400.336 - Microsoft Corporation) Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation) Logiciel de base du périphérique HP ENVY 5540 series (HKLM\...\{B23BAE85-485C-4616-9DCE-759C88627B75}) (Version: 40.11.1119.1786 - HP Inc.) Logiciel de base du périphérique HP Photosmart 6520 series (HKLM\...\{B04E95AD-CBEB-443A-989F-9E9F9170907F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Ludi (HKLM-x32\...\Ludi) (Version: - ) Ma-Config.com (64 bits) (HKLM\...\{9EA21438-935A-48F9-88D4-A0341406E12A}) (Version: 4.0.323 - Cybelsoft) MAH Profishing 2.5.0.1 (HKLM-x32\...\{B8144EC3-1E5B-4E22-A083-4464B18DF722}_is1) (Version: 2.5.0.1 - Samuel GONNY) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) McAfee True Key (HKLM\...\TrueKey) (Version: 5.2.167.1 - McAfee, LLC) Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.11029.20108 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation) Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 59.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 59.0 (x86 en-US)) (Version: 59.0 - Mozilla) Mozilla Firefox 64.0 (x64 fr) (HKLM\...\Mozilla Firefox 64.0 (x64 fr)) (Version: 64.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.3 - Mozilla) Nero 8 Lite 8.3.2.1b (HKLM-x32\...\Nero8Lite_is1) (Version: 8.3.2.1b - Updatepack.nl) NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 3.15.0.186 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.186 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 369.04 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 369.04 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20108 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.11029.20108 - Microsoft Corporation) Hidden OpenOffice 4.1.5 (HKLM-x32\...\{ABCAD346-4F4B-49E9-9AA1-28EF8C26059D}) (Version: 4.15.9789 - Apache Software Foundation) Opera Stable 57.0.3098.106 (HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\Opera 57.0.3098.106) (Version: 57.0.3098.106 - Opera Software) paint.net (HKLM\...\{36C264F3-0458-42D9-A091-807B5CEB0FA8}) (Version: 4.1.1 - dotPDN LLC) Panneau de configuration NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden PrtScr 1.7 (HKLM-x32\...\PrtScr_is1) (Version: - FireStarter) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7512 - Realtek Semiconductor Corp.) Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.) RomStation (HKLM-x32\...\{223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1) (Version: - RomStation) Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.4.16113.3 - Samsung Electronics Co., Ltd.) Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) Secunia PSI (3.0.0.11005) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.11005 - Secunia) SketchUp 2016 (HKLM\...\{4A8F2944-0D02-440C-809C-D2B17C3E6623}) (Version: 16.1.1449 - Trimble Navigation Limited) SketchUp 8 (HKLM-x32\...\{8EB62C87-AAA6-4850-A5BC-64155884B973}) (Version: 3.0.16846 - Trimble Navigation Limited) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16121.3 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16121.3 - Samsung Electronics Co., Ltd.) Snip (HKLM-x32\...\{DE935EF7-6CE4-471E-9C73-0AE1A2E7D0D6}) (Version: 0.1.5119.0 - Microsoft) Hidden Snip (HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\{525d439e-e22a-4221-8fd1-25b845fe0038}) (Version: 0.1.5119.0 - Microsoft Corporation) SopCast 4.2.0 (HKLM-x32\...\SopCast) (Version: 4.2.0 - www.sopcast.com) Soundflow (HKLM-x32\...\{02CE036A-FFD1-48C7-8D05-A6B3C5D1AAA7}}_is1) (Version: - ) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Streaming Audio Recorder V4.2.3 (HKLM-x32\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 4.2.3 - APOWERSOFT LIMITED) TomTom MyDrive Connect 4.2.0.3377 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.0.3377 - TomTom) TVexe TV HD (HKLM-x32\...\TVexe TV HD) (Version: 6.0 - TVexe.com) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation) Uplay (HKLM-x32\...\Uplay) (Version: 77.1 - Ubisoft) Utopia Box V3 version 3.0 (HKLM-x32\...\{A72FCB0C-EBF2-4882-A96A-48202FF02C7B}_is1) (Version: 3.0 - Abandonware Utopia) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.3 - VideoLAN) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) WahOO (HKLM-x32\...\{0271A4CB-D48C-4CDF-826F-62EE8D91663F}_is1) (Version: 0.9.25 - Kow Media SPRL) Web Companion (HKLM-x32\...\{1048f563-176d-42a6-ba38-c83b47645010}) (Version: 4.3.1930.3764 - Lavasoft) Web Companion (HKLM-x32\...\{a7f5b532-8b3f-4170-8cdf-0ae4cf01b3dc}) (Version: 4.3.1930.3764 - Lavasoft) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 18 - Windscribe Limited) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1919610744-3495528620-3460437495-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-21] (AVAST Software) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-21] (AVAST Software) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-21] (AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.) ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-11-21] (AVAST Software) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {1340B989-9831-4FE5-B4FF-4D42289E8DFF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {13A64D66-47C4-46AB-84DD-9F4C2FF1DDFC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-12-16] (Microsoft Corporation) Task: {1A8A03B7-7CC6-4059-8635-4F92B6C8EA3F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-12-16] (Microsoft Corporation) Task: {2DBC9AD8-6695-4DA5-9416-13B20FA2A509} - System32\Tasks\{C0C561D7-6303-48C5-B72A-7D43505840B2} => C:\Windows\system32\pcalua.exe -a E:\tpm.exe -d E:\ Task: {2EEAB07A-60EB-47CD-AA39-22FC5C65A3C0} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-12-07] (Microsoft Corporation) Task: {2EF9023D-FDED-4E19-B3BB-CAE789D9C78D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-17] (Google Inc.) Task: {3BAC75E4-D290-45A7-B4CE-8B5A488B9E32} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-10-10] (NVIDIA Corporation) Task: {44594148-97CB-4FF1-8025-CA53F8D1136F} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-05] (Adobe Systems Incorporated) Task: {4815E274-CD4F-483F-AC5F-BD79A9AD7954} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [2018-06-26] (BlueStack Systems, Inc.) Task: {4C141E4C-6563-4A1F-8549-E4B630D9FC3F} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-10-10] (NVIDIA Corporation) Task: {5C77ADFF-049E-4848-8F16-C42AECC4BF81} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-10-10] (NVIDIA Corporation) Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] () Task: {6C9F49BF-BE4A-4709-8B4D-FE6E112CF7B3} - System32\Tasks\HPCustParticipation HP Photosmart 6520 series => C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.) Task: {6D5C602D-BA5F-48DE-B34D-7129B1A6B889} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-12-16] (Microsoft Corporation) Task: {7C50A610-7403-4B71-BDF2-272AA839599E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-02-07] (Piriform Ltd) Task: {8B754BC3-1532-46E9-9FE8-38E0A086586B} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-10-28] (AVAST Software) Task: {8CFCBC22-F384-4AC3-B463-9BED59E1D8BC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-12-16] (Microsoft Corporation) Task: {8F36C444-95B5-4C02-B59D-20A8206CDD60} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-10-13] (Dropbox, Inc.) Task: {90C43FF0-74FD-414B-9FC6-3373FD5DA54C} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {914411EE-D3A0-43C9-9C6E-DF839966CABA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-02-07] (Piriform Ltd) Task: {92AA1FAF-FB82-4EB3-96EA-769D4AA0D05C} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-10-10] (NVIDIA Corporation) Task: {A0A0557E-7C10-45F1-BEAC-987ADF73FED2} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {A8021B76-1414-4ED8-8FDC-A7A0B8F2C562} - System32\Tasks\HPCustParticipation HP ENVY 5540 series => C:\Program Files\HP\HP ENVY 5540 series\Bin\HPCustPartic.exe [2017-03-27] (HP Inc.) Task: {AB4EE93C-9328-4DCD-8AB9-3CC4DE0B42D1} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {AF9C0846-B8C2-4DF1-A281-8299511376F6} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-10-10] (NVIDIA Corporation) Task: {B0D12E79-2DBF-42F1-AFFE-B532523B1657} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-05] (Adobe Systems Incorporated) Task: {B85F5AB6-ADAA-4813-8D7B-91759C465539} - System32\Tasks\Avast Cleanup Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-10-24] (AVAST Software) Task: {BACECE48-AC04-4C9A-8C33-4D060BDCADC3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated) Task: {BD7B8CB5-74EC-4D42-9739-98C7A1473FF3} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-11-21] (AVAST Software) Task: {C3603843-5CB1-4596-9C0D-0DAFC416C4AC} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {C4968996-CC66-4EEE-825E-DCA983C593DC} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-10-13] (Dropbox, Inc.) Task: {C5FD7F6C-4065-4B27-8FD8-DBA3F67F843A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-12-16] (Microsoft Corporation) Task: {C669B600-F533-476D-8D1D-F60747C4CE75} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-12-07] (Microsoft Corporation) Task: {DDF58A82-9694-4907-AB95-B105245977DC} - System32\Tasks\Opera scheduled Autoupdate 1540577925 => C:\Users\jacques\AppData\Local\Programs\Opera\launcher.exe [2018-12-19] (Opera Software) Task: {F737807D-CAF2-4926-8427-2B85EAEDCC44} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-10-10] (NVIDIA Corporation) Task: {F9B6F2E9-47DB-4DE6-B268-A8DED6DEE7E1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-17] (Google Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2018-06-16 13:03 - 2018-10-10 21:01 - 001315208 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2018-05-22 15:29 - 2018-05-22 15:29 - 004814848 _____ () C:\Program Files (x86)\SFBackgroundSvc\SFBackgroundSvc.exe 2018-12-20 19:53 - 2018-11-15 11:01 - 002712432 ____C () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-08-07 11:29 - 2016-12-29 14:16 - 000134712 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll 2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll 2018-12-13 07:21 - 2018-11-09 03:17 - 002759680 ____C () C:\Windows\ShellComponents\TaskFlowUI.dll 2018-12-19 22:18 - 2018-12-14 07:50 - 002185728 ____C () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2018-10-15 20:59 - 2018-10-15 20:59 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll 2018-12-12 22:52 - 2018-12-12 22:53 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll 2018-12-12 22:52 - 2018-12-12 22:59 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe 2018-12-11 20:59 - 2018-12-11 21:03 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe 2018-12-11 20:59 - 2018-12-11 21:01 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll 2017-12-01 06:22 - 2017-12-01 06:23 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll 2018-11-29 21:45 - 2018-11-29 21:47 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-12-11 20:59 - 2018-12-11 21:00 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll 2018-12-11 20:59 - 2018-12-11 21:01 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll 2016-09-17 12:27 - 2013-07-15 01:19 - 002766336 ____C () C:\Program Files (x86)\PrtScr\PrtScr.exe 2018-03-11 11:55 - 2017-11-29 15:56 - 000163840 _____ () C:\Users\jacques\AppData\Local\Soundflow\Soundflow.exe 2018-12-05 20:28 - 2018-12-05 20:43 - 000088888 _____ () C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\zlib1.dll 2018-12-05 20:28 - 2018-12-05 20:41 - 001356088 _____ () C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\libxml2.dll 2018-03-11 11:55 - 2016-12-02 16:37 - 000012288 _____ () C:\Users\jacques\AppData\Local\Soundflow\QtWebEngineProcess.exe 2018-01-22 10:03 - 2018-01-22 10:03 - 000061920 _____ () C:\Program Files\CCleaner\branding.dll 2018-11-14 00:43 - 2018-11-14 00:50 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe 2018-11-14 00:43 - 2018-11-14 00:50 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll 2018-11-09 12:42 - 2018-11-09 12:48 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll 2018-11-09 12:42 - 2018-11-09 12:46 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll 2017-10-05 06:00 - 2017-10-05 06:08 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll 2018-11-09 12:42 - 2018-11-09 12:49 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll 2018-08-17 05:14 - 2018-08-17 05:19 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll 2018-08-17 05:14 - 2018-08-17 05:20 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll 2018-03-30 05:14 - 2018-03-30 05:25 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll 2018-11-14 00:43 - 2018-11-14 00:51 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll 2018-11-09 12:42 - 2018-11-09 12:46 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll 2018-11-14 00:43 - 2018-11-14 00:44 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll 2018-08-31 05:13 - 2018-08-31 05:20 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll 2018-07-26 21:58 - 2018-07-26 22:02 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll 2018-11-14 00:43 - 2018-11-14 00:51 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\SKU.dll 2018-03-02 16:25 - 2013-10-11 12:47 - 002738136 _____ () C:\WINDOWS\system32\libfftw3f-3.dll 2018-03-02 16:25 - 2013-10-11 12:47 - 002668512 _____ () C:\WINDOWS\system32\libfftw3-3.dll 2015-10-20 13:43 - 2015-10-20 13:43 - 000103424 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_filesystem-vc120-mt-1_59.dll 2015-10-20 13:43 - 2015-10-20 13:43 - 000016896 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_system-vc120-mt-1_59.dll 2015-10-20 13:44 - 2015-10-20 13:44 - 000082944 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_thread-vc120-mt-1_59.dll 2015-10-20 13:43 - 2015-10-20 13:43 - 000040960 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_date_time-vc120-mt-1_59.dll 2015-10-20 13:43 - 2015-10-20 13:43 - 000052224 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_iostreams-vc120-mt-1_59.dll 2015-12-14 19:28 - 2015-12-14 19:28 - 000206336 _____ () C:\Program Files (x86)\SFBackgroundSvc\lua53.dll 2015-10-21 07:52 - 2015-10-21 07:52 - 000068096 _____ () C:\Program Files (x86)\SFBackgroundSvc\zlib.dll 2017-08-30 13:37 - 2017-08-30 13:37 - 000786432 _____ () C:\Program Files (x86)\SFBackgroundSvc\libesedb.dll 2015-10-20 13:43 - 2015-10-20 13:43 - 000025600 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_chrono-vc120-mt-1_59.dll 2015-10-20 13:43 - 2015-10-20 13:43 - 000054784 _____ () C:\Program Files (x86)\SFBackgroundSvc\boost_bzip2-vc120-mt-1_59.dll 2017-10-14 11:04 - 2018-10-10 21:01 - 001033096 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2016-09-17 12:27 - 2013-06-06 22:44 - 018730496 ____C () C:\Program Files (x86)\PrtScr\dsp_ipp.dll 2016-09-17 12:27 - 2013-04-11 10:18 - 000509440 ____C () C:\Program Files (x86)\PrtScr\QuickFontCache.dll 2016-09-17 12:27 - 2013-04-06 17:26 - 000487424 ____C () C:\Program Files (x86)\PrtScr\freetype.dll 2018-03-10 19:47 - 2018-03-10 19:47 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2018-11-21 07:16 - 2018-11-21 07:16 - 000596696 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\localhost -> localhost ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-12-18 20:15 - 2018-12-18 20:15 - 000002026 _____ C:\WINDOWS\system32\Drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 0.0.0.0 cdn.appround.biz 0.0.0.0 cdn.bigspeedpro.com 0.0.0.0 cdn.bispd.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1919610744-3495528620-3460437495-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: WindscribeService => 2 HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "KiesTrayAgent" HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\StartupApproved\StartupFolder: => "hide.me VPN.lnk" HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\StartupApproved\Run: => "Snip" HKU\S-1-5-21-1919610744-3495528620-3460437495-1001\...\StartupApproved\Run: => "Wahoo" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{33B40AF8-5B2B-4FEE-8296-90605C3DB046}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Order of Battle Pacific\autorun.exe FirewallRules: [{754DD738-6D78-45C5-8E06-24A8A428F4C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Order of Battle Pacific\autorun.exe FirewallRules: [{101AC970-BFC4-4A7D-A389-65AD5647FAA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2015\F1_2015.exe FirewallRules: [{B5E83245-911C-4010-98A8-7AD2BB24B2CA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2015\F1_2015.exe FirewallRules: [{5A7FEA44-FBDF-4593-8B1B-A28156383AD3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{83DBEB79-F87C-42B5-A78A-E60998EF5F27}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe FirewallRules: [{E96FAF41-3589-46B5-8678-94E71B17E7BD}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C4E62683-4B7E-4589-9485-98813DEE8A36}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{42F1D254-0280-45E7-86E3-CA2AC39830A9}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe FirewallRules: [{D59850CE-CF78-4E05-8F11-594CDB72DB04}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe FirewallRules: [{F558BF66-28D4-40B5-BFAF-584B935EC621}] => (Allow) C:\Users\jacques\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [UDP Query User{340C1273-15B0-44F9-B9FF-C93105C97191}C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe] => (Block) C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe FirewallRules: [TCP Query User{3BFEF00A-7B9E-489F-8D21-ECADB3ACCC6B}C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe] => (Block) C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe FirewallRules: [UDP Query User{8AD1CA03-F4DD-4DBA-BEB3-43B484780ABB}C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe] => (Block) C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe FirewallRules: [TCP Query User{7FF4D9FD-0D3F-4FE8-817B-8C9C5517CA98}C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe] => (Block) C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe FirewallRules: [UDP Query User{9C1DF71C-F3AF-48CE-B175-8AD04E706EB6}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [TCP Query User{EDD85407-C506-4867-BE75-F4B9122F5D4D}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{56C65EAA-0916-46C5-B5FC-0D558690836D}C:\program files (x86)\microsoft games\age of empires iii\age3.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires iii\age3.exe FirewallRules: [TCP Query User{4107D597-B3D8-426F-9594-5E5B144D4F84}C:\program files (x86)\microsoft games\age of empires iii\age3.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires iii\age3.exe FirewallRules: [UDP Query User{349F8C44-7E95-4883-8581-4E4BC47E236F}C:\program files (x86)\microsoft games\age of empires iii\age3.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires iii\age3.exe FirewallRules: [TCP Query User{746A28B2-F9A7-403E-9735-D197BE38165F}C:\program files (x86)\microsoft games\age of empires iii\age3.exe] => (Allow) C:\program files (x86)\microsoft games\age of empires iii\age3.exe FirewallRules: [UDP Query User{58302718-45AE-41B6-B466-DD9345CF1F2E}C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe] => (Allow) C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe FirewallRules: [TCP Query User{A07EB412-7582-43D1-AD32-7F816B0E5790}C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe] => (Allow) C:\romstation\games\pc\age of empires ii - the conquerors expansion (demo) - 37357\age2_x1t.exe FirewallRules: [UDP Query User{D37A8752-7353-40E8-8D4E-979391CB8C0F}C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe] => (Block) C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe FirewallRules: [TCP Query User{E2009C37-1A7A-44AE-853E-8FEAAC889D67}C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe] => (Block) C:\romstation\games\pc\wolfenstein - enemy territory - 35261\et.exe FirewallRules: [UDP Query User{3C71F985-EDEB-405B-A084-9A6B26C7C90F}C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe] => (Allow) C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe FirewallRules: [TCP Query User{6C03A580-1590-46B4-98BC-8EBC47B6E5E9}C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe] => (Allow) C:\romstation\games\pc\minetest 0.4.13 - 45306\bin\minetest.exe FirewallRules: [{69002A8A-7FE1-4F7D-AD9E-90A806915EC9}] => (Allow) C:\Program Files\ma-config.com\x64\maconfservice.exe FirewallRules: [{A98C2069-4C16-410B-9DB9-6BA107790252}] => (Allow) C:\Program Files\ma-config.com\x64\maconfservice.exe FirewallRules: [{8263A6D9-0340-4770-8BE6-8CD2783236A4}] => (Allow) LPort=48113 FirewallRules: [{9C5EB92E-A307-43C2-9F64-0E1403F94EB0}] => (Allow) LPort=48113 FirewallRules: [{79372CD0-6864-46AB-934D-CEC1400200BC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{36EBD6CE-2D6E-47DD-918B-4F714896DF60}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{614F9073-EF03-42B1-8AF9-6DF760E8B974}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{CA543AEE-644D-4117-86D5-F70A61A2710C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{E379CF14-B20E-4EB8-A8A9-8F6486604362}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe FirewallRules: [{F0DACA5F-F0DA-4CCF-9D1B-20236D7673C2}] => (Allow) C:\Program Files\HP\HP Photosmart 6520 series\Bin\DeviceSetup.exe FirewallRules: [{C9303605-2CE9-4450-BC54-EB5EC066B344}] => (Allow) C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{E140FFF6-A53F-4937-B0F6-6E02ACBBEBB4}] => (Allow) C:\Program Files\HP\HP Photosmart 6520 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{27ABF4FF-DCBF-496C-AE18-5294216D68F9}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\DeviceSetup.exe FirewallRules: [{22E40CEA-D56B-4890-8D41-909FDDC218A4}] => (Allow) LPort=5357 FirewallRules: [{6F86ADE6-9663-4906-BF99-46918058A6F0}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\HPNetworkCommunicatorCom.exe FirewallRules: [{846A4AA9-2802-4013-91EB-2844D08538FE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{9BE24200-69E3-4733-9A6D-4661FA85914A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{98DCB368-4416-4362-B7C7-F1F3271C8863}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{40F60E58-14DB-4B6C-ADB2-5133231391C2}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{F92F760D-269C-45EF-8F2C-D94A7499FB7C}] => (Allow) C:\Program Files (x86)\BlueStacks\HD-Plus-Service.exe FirewallRules: [{33B8468D-009E-47B9-8333-867D37E75CE7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe FirewallRules: [{51A44A07-5523-451E-B818-677B7953A032}] => (Allow) C:\Program Files (x86)\KowMedia\WahOO\WahOO.exe FirewallRules: [{E74249A4-4272-4B06-8419-F7360E535EC5}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{7DCD7681-6D44-4047-B601-EBC07B59C715}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe FirewallRules: [{3518D967-B419-4654-8050-61BDFB782E67}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{4D482BFD-D91C-4F18-B86F-EAE97960167D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{2624E808-38F4-4193-8DF2-7BF724C8D753}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F85A8861-730B-4080-8106-45CC38D9675C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{F9A2C857-9A48-437F-A85A-8D031F32324D}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{9751AB75-86DE-415C-A45A-451B3ABB6D0A}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe FirewallRules: [{F16F6779-5FC4-4B7A-BA44-E9635869A5B2}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll FirewallRules: [{03AC9EC0-1EDA-4413-A19B-B0B602698533}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll FirewallRules: [{F9FA5273-8BC1-4186-8BBE-2D6D99B54D4A}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe FirewallRules: [{E28DE8FB-647E-4B91-AF83-5FF2284CACF0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{3E75E093-F66E-49AD-809C-A5B71010A23F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{EA4D3B41-45D1-4831-86AB-40C64F948D6D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{FA6F0B89-35A2-4280-9950-57E78C62A4B9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{CF010ADD-43BC-4A0A-8D6D-5FDC14BE7FEF}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe FirewallRules: [{5154DA64-C6AE-466A-A7DC-1277B782A647}] => (Allow) C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe FirewallRules: [{8659A819-561D-420C-B449-9737559D0072}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{ECD91FA2-71F8-4832-954A-1634A9DE9E09}] => (Allow) C:\Program Files\BitComet\BitComet.exe FirewallRules: [{9A6D34EF-E726-4801-9284-35D1713F15A1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [{C4758AE8-2314-4C87-A76D-1027BB7F3AF5}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe FirewallRules: [TCP Query User{07A1FE61-7DCB-421C-A7FF-A44E23F73EBA}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe FirewallRules: [UDP Query User{6D842E60-EDBD-4048-8808-2339743AEE38}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe FirewallRules: [{034D18A7-18A0-48A5-8442-DE450D3DB50A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe FirewallRules: [{BE9DFC78-BA8F-420C-B9EF-30673FADBAEA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe FirewallRules: [{B1D60BED-0040-4BD3-99A4-1538F53E421C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe FirewallRules: [{6D5368DA-B870-41F5-8C72-7CEB040D1638}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\iTunes.exe FirewallRules: [{503ED0EA-3DEA-440A-BF3B-70F3B90B8B89}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe FirewallRules: [{03E168B2-3A5C-4C3A-B1CA-CE25DA775859}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe FirewallRules: [{95717991-AF03-449A-ADDB-33F99A4CF5F8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe FirewallRules: [{7FC9C965-6962-424E-8600-8E6F19480EA9}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12092.6.37131.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe FirewallRules: [{3ECFBABF-47B8-4D21-BCA9-07CDB9E1FB09}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe FirewallRules: [{C0A5DA2F-A0E9-4F6C-8902-E4EBFD61765E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Company of Heroes 2\RelicCoH2.exe FirewallRules: [{BFB4534D-134E-488F-9717-3650B49924D1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{0AA5BDF0-D276-42E7-A500-7E9D62595294}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{6EE90ECE-24C7-48A5-BAD3-27E26AD641FF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{EB5BE70D-B8A8-4024-AE6E-960581ECC29B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{FF275E65-9EBC-4A44-9AAF-9F26D7880209}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{576BB7BD-A238-4046-8E65-6131B3AD3B1E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{70500684-D7BD-4582-87A5-219697DA231D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{735029C4-66FD-4021-8235-3EB16FC68377}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.95.289.0_x86__zpdnekdrzrea0\Spotify.exe FirewallRules: [{D7AE396B-170F-48A5-9A8B-81240A94E333}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [TCP Query User{2A920BD3-867D-4CA0-B279-8D2850B5EE09}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [UDP Query User{E5B1D455-B476-436A-90D3-F6CA6AC70522}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe FirewallRules: [{2A758125-CC11-466F-A063-B8B5FA46D6C7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{69A065E6-8F46-4100-9A88-6A539D79D133}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe FirewallRules: [UDP Query User{A8891922-F1A4-4B1B-97CF-FBD94475E34D}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe FirewallRules: [{3F8E4668-327D-4127-8DA8-3A361E5E7EE5}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 1602\Eng\1602.exe FirewallRules: [{7C642459-7DBE-453E-B8B5-9AEE49AFBF47}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Anno 1602\Ger\1602.exe ==================== Points de restauration ========================= 04-12-2018 22:21:01 Point de contrôle planifié 13-12-2018 07:10:46 Windows Update 18-12-2018 20:02:45 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: VSO Software class ... Description: VSO Software class ... Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: VSO Software class ... Description: VSO Software class ... Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (12/21/2018 02:46:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_WpnUserService, version : 10.0.17134.1, horodatage : 0xa38b9ab2 Nom du module défaillant : NotificationController.dll, version : 10.0.17134.165, horodatage : 0xe0385185 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000007c686 ID du processus défaillant : 0x1aec Heure de début de l’application défaillante : 0x01d4992801fef32b Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\svchost.exe Chemin d’accès du module défaillant: C:\Windows\System32\NotificationController.dll ID de rapport : 9f335918-b66b-4303-87eb-3541227aef25 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/21/2018 02:27:06 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (12/21/2018 02:24:31 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {0aa4d3a6-e6ce-4e02-878a-ee8580f3bffb} Error: (12/21/2018 10:43:07 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_WpnUserService, version : 10.0.17134.1, horodatage : 0xa38b9ab2 Nom du module défaillant : NotificationController.dll, version : 10.0.17134.165, horodatage : 0xe0385185 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000007a24d ID du processus défaillant : 0x36c Heure de début de l’application défaillante : 0x01d4990ec5600aaf Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\svchost.exe Chemin d’accès du module défaillant: C:\Windows\System32\NotificationController.dll ID de rapport : fa32618e-5e58-4560-a06f-f940b8befe05 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/21/2018 10:22:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_WpnUserService, version : 10.0.17134.1, horodatage : 0xa38b9ab2 Nom du module défaillant : NotificationController.dll, version : 10.0.17134.165, horodatage : 0xe0385185 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000007c686 ID du processus défaillant : 0x2798 Heure de début de l’application défaillante : 0x01d49907d7659227 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\svchost.exe Chemin d’accès du module défaillant: C:\Windows\System32\NotificationController.dll ID de rapport : deed096a-30d0-40a7-a27b-5651edaf65bc Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/21/2018 07:40:46 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (12/21/2018 07:38:18 AM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {1665f4c2-86e1-413d-b403-aff260c123aa} Error: (12/21/2018 06:42:01 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: ) Description: Event-ID 0 Erreurs système: ============= Error: (12/21/2018 03:21:16 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {D63B10C5-BB46-4990-A94F-E40B9D520160} et l’APPID {9CA88EE3-ACB7-47C8-AFC4-AB702511C276} au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (12/21/2018 03:20:47 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {E60687F7-01A1-40AA-86AC-DB1CBF673334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/21/2018 03:15:47 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QHNB9U8) Description: Le serveur Microsoft.AAD.BrokerPlugin_1000.17134.1.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/21/2018 03:13:51 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-QHNB9U8) Description: Le serveur Microsoft.Windows.Cortana_1.10.7.17134_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX66vvx0wsdb34y1dm8b872ypnaj4fqty0.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/21/2018 03:10:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Client de stratégie de groupe n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (12/21/2018 03:09:59 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Client de stratégie de groupe. Error: (12/21/2018 03:05:09 PM) (Source: DCOM) (EventID: 10001) (User: DESKTOP-QHNB9U8) Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe!App.AppXy9rh3t8m2jfpvhhxp6y2ksgeq77vymbq.mca en tant que Non disponible/Non disponible. L’erreur « 298 » s’est produite lors du démarrage de la commande : "C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe" -ServerName:App.AppXzst44mncqdg84v7sv6p7yznqwssy6f7f.mca Error: (12/21/2018 02:58:02 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Service Broker du moniteur d'exécution System Guard est en attente de démarrage. CodeIntegrity: =================================== Date: 2018-12-21 17:04:01.867 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 17:04:01.864 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 16:52:21.365 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 16:52:21.363 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 16:34:01.773 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 16:34:01.771 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 16:22:20.850 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2018-12-21 16:22:20.848 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i3-3120M CPU @ 2.50GHz Pourcentage de mémoire utilisée: 73% Mémoire physique - RAM - totale: 3976.6 MB Mémoire physique - RAM - disponible: 1058.98 MB Mémoire virtuelle totale: 7176.6 MB Mémoire virtuelle disponible: 3387.5 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:456.72 GB) (Free:307.33 GB) NTFS Drive d: (DATA) (Fixed) (Total:457.58 GB) (Free:456.85 GB) NTFS \\?\Volume{553fef8a-b309-4e21-b384-962acdfb32cf}\ (Recovery) (Fixed) (Total:0.39 GB) (Free:0.12 GB) NTFS \\?\Volume{8b7459b1-6a83-4513-8c31-af03eefc6b81}\ () (Fixed) (Total:0.86 GB) (Free:0.45 GB) NTFS \\?\Volume{97e53490-9b0f-47e9-89a7-86cf5ff8bda0}\ (Push Button Reset) (Fixed) (Total:15.54 GB) (Free:1.63 GB) NTFS \\?\Volume{8eb762ea-183d-4777-8deb-5d4ade7ac851}\ (ESP) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: C554FE91) Partition: GPT. ==================== Fin de Addition.txt ============================