Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 01-03-2017
Exécuté par reynald (02-03-2017 14:17:31)
Exécuté depuis C:\Users\reynald\Downloads
Windows 10 Pro Version 1607 (X64) (2016-10-12 17:05:50)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-949960655-4213550855-1286880892-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-949960655-4213550855-1286880892-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-949960655-4213550855-1286880892-1002 - Limited - Enabled)
Invité (S-1-5-21-949960655-4213550855-1286880892-501 - Limited - Disabled)
reynald (S-1-5-21-949960655-4213550855-1286880892-1000 - Administrator - Enabled) => C:\Users\reynald
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Acer E600 Driver version 1.6.0.1 (HKLM-x32\...\{A74ED097-0EC1-4575-92F6-E0BFFD49AEA3}_is1) (Version: 1.6.0.1 - Acer, Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.1.102.64 - Adobe Systems Incorporated)
Adobe Shockwave Player + Authorware Web Player (HKLM-x32\...\Adobe Shockwave Player + Authorware Web Player) (Version: v12.1.8.158 - Adobe Systems, Inc.)
American Truck Simulator (HKLM\...\Steam App 270880) (Version: - SCS Software)
AOMEI Backupper Standard Edition 2.8 (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536C09F}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Archiveur WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
ArcSoft PhotoImpression 6 (HKLM-x32\...\{8DE40268-220A-4AF6-90EC-09966CBE8772}) (Version: - ArcSoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
C310 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden
Camfrog Web Advanced 2.0 ActiveX Plugin (remove only) (HKLM-x32\...\CFWebAdvancedU2) (Version: - )
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Cheat Engine 6.5 (HKLM-x32\...\Cheat Engine 6.5_is1) (Version: - Cheat Engine)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DriversCloud.com (64 bits) (HKLM\...\{77EEC345-B758-45DF-94C2-25D91D520650}) (Version: 8.0.4.0 - Cybelsoft)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
Free DVD Creator version 2.0 (HKLM-x32\...\Free DVD Creator (by minidvdsoft)_is1) (Version: 2.0 - www.minidvdsoft.com)
Freemake Audio Converter version 1.1.8 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.8 - Ellora Assets Corporation)
Glary Utilities 5.52 (HKLM-x32\...\Glary Utilities 5) (Version: 5.52.0.73 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Photos Backup (HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HashCheck Shell Extension (x86-32) (HKLM-x32\...\HashCheck Shell Extension) (Version: 2.1.9.0 - Kai Liu)
HashCheck Shell Extension (x86-64) (HKLM\...\HashCheck Shell Extension) (Version: 2.1.9.0 - Kai Liu)
Heavyweight Simulator 3 1.12 (HKLM-x32\...\{99E4363F-A537-4CC5-A6B6-040387417801}_is1) (Version: - UIG GmbH)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Premium C310 All-in-One Driver Software 14.0 Rel. 7 (HKLM\...\{131D8ED6-4864-4554-9BAB-09B47C232522}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{E4B931AF-C59A-4D92-8767-8E2D5F53144E}) (Version: 12.0.30.81 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java(TM) 6 Update 23 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216023FF}) (Version: 6.0.230 - Oracle)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
K-Lite Mega Codec Pack 4.1.4 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.1.4 - )
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{26784146-6E05-3FF9-9335-786C7C0FB5BE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microtool version 1.1.0 (HKLM-x32\...\Microtool_is1) (Version: 1.1.0 - Microtool Technologies)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
MKVToolNix 9.9.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 9.9.0 - Moritz Bunkus)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
Mozilla Thunderbird 45.7.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 45.7.1 (x86 fr)) (Version: 45.7.1 - Mozilla)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Package de pilotes Windows - ACER, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2013 7.0.0000.00001) (HKLM\...\DD71B6C26E01A443401B6C342CC691AED2E28F16) (Version: 08/27/2013 7.0.0000.00001 - ACER, Inc.)
Package de pilotes Windows - Marvell (MRV6X64P) Net (10/16/2007 1.0.0.53) (HKLM\...\7B276D72C77460AD6585554B173C3812461479AB) (Version: 10/16/2007 1.0.0.53 - Marvell)
PS_AIO_07_C310_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7614 - Realtek Semiconductor Corp.)
SAM CoDeC Pack (HKLM\...\SAM CoDeC Pack) (Version: 5.85 - www.SamLab.ws)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Scratch (HKLM-x32\...\Scratch) (Version: 1.4.0.0 - MIT Media Lab Lifelong Kindergarten Group)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Supercopier 4.0.1.13 (HKLM-x32\...\Supercopier) (Version: 4.0.1.13 - Supercopier)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Thrustmaster FFB Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 1.FFD.2016 - Thrustmaster)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TP-LINK TL-WDN4200 Driver (HKLM-x32\...\{76E22E5B-B0E7-49B5-9B9A-2112EB41D1EA}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VirtualDJ 8 (HKLM-x32\...\{B7D6C720-CB38-41AA-9804-0AA2090BE1B5}) (Version: 8.2.3573.0 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.4.0 - Azureus Software, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
XMedia Recode version 3.3.5.8 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.3.5.8 - XMedia Recode)
Yahoo! Powered (HKLM-x32\...\{6AB68276-3A36-53F6-8BB6-23765B36F0F6}) (Version: - ) <==== ATTENTION
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{75720057-7183-4546-8960-47D3C4F809F8}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{7BCD76A2-E9A0-4332-BE18-9D7D40288621}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\reynald\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\reynald\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06813165-A325-4925-A2E4-D1EDE73AB475} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {149F794D-318D-4E24-9C95-F3E0E8AEB603} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1AB75EE3-99BE-4119-82EF-FD5A2339F7F2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-28] (Google Inc.)
Task: {1CF2A92D-694B-4B32-B062-81EA8C273244} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {27DCE66D-F6D8-445A-8781-F3A1E947561A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {324E2AD0-2E79-4EF4-8B4F-731C76F59EAE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3BDBA212-7ED2-47B2-BBFA-BCB200BDE0CE} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {3C74D970-F398-4AA0-98E4-CA3F8C85A7BD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3CD06C0B-11DB-406C-8D18-B9626557CCC4} - System32\Tasks\{E8C9990C-9302-47ED-A673-EF7B66E6F897} => Chrome.exe hxxp://ui.skype.com/ui/0/7.2.60.103/fr/abandoninstall?page=tsPlugin
Task: {4C70BFCB-818C-448B-A1A8-64E726A04EF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {4E9D4D7A-899E-47EA-9CD0-5B2F3FD85FF2} - System32\Tasks\{468B4CD3-817E-49A0-B1CB-2A60C0E81126} => pcalua.exe -a "C:\Users\reynald\Downloads\BeamNG.drive - InstallShield Wizard (1).exe"
Task: {5AF17D10-8635-4BBD-A1CC-517F75D0E6E8} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06] (Oracle Corporation)
Task: {5E6272DD-A63E-4199-914E-1CB1CA02454B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6F997E35-389C-4EFE-ABB0-6F6D3A67F7B5} - System32\Tasks\{38F448ED-2652-4C92-B12F-B6BBC7DD5897} => pcalua.exe -a C:\Users\reynald\AppData\Roaming\do-search\UninstallManager.exe -c -ptid=dae
Task: {724A4F52-6A1D-48D9-83E4-337220214C46} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {73AB6811-C94E-4BE4-B546-98539ED6429E} - System32\Tasks\{C591EAA9-36D1-4941-9CF3-1404EDB0D50C} => pcalua.exe -a C:\Users\reynald\AppData\Local\{2C1A1A46-08B2-76FE-652A-53164142AF8E}\uninst.exe -c -P=/Uninstall /s /noun /DelSelfDir
Task: {77A05863-80B2-43CA-AE5A-281C8D006D98} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {7DE13D1B-614B-46A9-AE81-2BE64B6FA100} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-949960655-4213550855-1286880892-1000Core => C:\Users\reynald\AppData\Local\Google\Update\GoogleUpdate.exe [2017-02-19] (Google Inc.)
Task: {9AF3E328-D7FC-460C-8403-6BC4AAE481C0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {A5AA36CF-C36E-45EA-9C3B-EDC4CFB8030B} - System32\Tasks\{6AB37997-59E7-A705-09B6-167D88653BF0} => C:\Program Files (x86)\Common Files\Lilobihed\updtask.exe [2013-04-14] ()
Task: {AA3A87B8-6322-4C4F-8D34-B2228744B39B} - \{6C78CD7F-DBD3-7AD4-9E69-B4A589B6721D} -> Pas de fichier <==== ATTENTION
Task: {AD1212EC-4729-4638-AB5F-BA18E67B9BCC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => %SystemRoot%\ehome\ehrec.exe
Task: {BA07044F-059C-4258-A7E0-1E0076421F19} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {BBADC04A-5496-4CCC-8040-2F9FF988660C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {BE0C29EB-5989-46DE-B152-8DB501F51A23} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {CAD9D021-DEAC-463B-976A-42797B8D3D40} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {D0AF87FC-769B-4D27-975C-A9781C708C1F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {D5411CAE-C0D4-4C0A-AE75-5269E28253B0} - System32\Tasks\{C10DFFFA-1928-3A40-2280-1BFDC0AC971E} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\984f2065\e6504788.dll" <==== ATTENTION
Task: {D5CFCA3E-384D-4481-82EF-6BC922E7A70E} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {D5D11BA6-CCEC-4E4E-999E-728CD7B49485} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {DC54912C-CA73-4EFC-B40C-37171F0DF271} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {DC5AC2B5-A1E0-4B96-B3C0-A453D44AB668} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {E0DE9133-CCFB-423D-8D78-F362515ADC73} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {E43C6B7A-B338-4B99-81DC-BC902CFDBA9C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {E5014C38-E57C-43C1-9496-4C327D89ECF3} - System32\Tasks\{452EE980-2291-4BCB-93A4-1995AC00A04B} => pcalua.exe -a C:\Users\reynald\AppData\Local\{DE23E87F-FA8B-84C7-9713-A12FB37B5DB7}\uninst.exe -c -P=/Uninstall /s /noun /DelSelfDir
Task: {E7EB565B-A854-4B9E-9474-8DCD87054CA2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-28] (Google Inc.)
Task: {E850AA9F-AE26-44A1-94E0-C0561BF1B9B9} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-05-30] (Glarysoft Ltd)
Task: {EB1C2BDE-71B6-427A-A25B-7DE362D9E5F3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {EB5C75F9-A5C5-443B-96D4-AC7503BE3C40} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-05-30] (Glarysoft Ltd)
Task: {F6810705-BB69-4F41-BF7C-D227143BF991} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-949960655-4213550855-1286880892-1000UA => C:\Users\reynald\AppData\Local\Google\Update\GoogleUpdate.exe [2017-02-19] (Google Inc.)
Task: {F798B0E4-E624-454C-9FBE-99F78B2AFA22} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FDA09B64-9385-4768-92A6-3D7DE163540B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\{6AB37997-59E7-A705-09B6-167D88653BF0}.job =>
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Scratch\Scratch Website.lnk -> hxxp://scratch.mit.edu
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 09:56 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 09:56 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-01 19:58 - 2017-01-20 07:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-01 19:58 - 2017-01-20 07:47 - 02829776 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll
2017-03-01 19:58 - 2017-01-20 07:47 - 02254800 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-10-12 18:34 - 2016-10-12 18:34 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 00:30 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 00:30 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 00:30 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2010-12-15 13:37 - 2009-09-10 01:41 - 00402263 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\Little transparency.exe
2010-12-15 13:25 - 2007-09-02 13:58 - 00495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2015-08-29 13:52 - 2013-07-23 14:59 - 00846848 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2017-02-22 11:48 - 2017-02-22 11:49 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-02-22 11:48 - 2017-02-22 11:49 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-02-22 11:48 - 2017-02-22 11:49 - 42895360 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-02-06 21:31 - 2017-02-06 21:31 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\roottools.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\kpcengine.2.3.dll
2015-08-26 23:43 - 2015-05-11 14:56 - 00286424 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00224984 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00122584 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00290520 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00028376 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00347864 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00483032 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00069336 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2015-08-26 23:43 - 2015-05-11 14:56 - 00691928 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00077528 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00061144 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00286424 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00966360 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00278232 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00110296 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00155352 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2015-08-26 23:43 - 2015-02-25 23:00 - 02403504 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00175832 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00253656 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2010-12-15 13:25 - 2007-09-02 13:57 - 00069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2014-02-19 17:52 - 2014-02-19 17:52 - 00377856 _____ () C:\Program Files (x86)\Supercopier\libstdc++-6.dll
2014-02-19 17:52 - 2014-02-19 17:52 - 00052224 _____ () C:\Program Files (x86)\Supercopier\libgcc_s_sjlj-1.dll
2014-02-19 17:52 - 2014-02-19 17:52 - 01026560 _____ () C:\Program Files (x86)\Supercopier\qt-plugins\platforms\qwindows.dll
2016-04-08 23:35 - 2016-04-08 23:35 - 03481600 _____ () C:\Users\reynald\AppData\Local\Programs\Google\Google Photos Backup\gpuploader_i18n.dll
2017-02-28 17:59 - 2017-01-23 18:47 - 01164288 ___SH () C:\Users\reynald\AppData\Roaming\com\MSVFW32.dll
2015-08-29 13:52 - 2013-05-21 08:53 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2015-08-29 13:52 - 2013-05-21 08:53 - 00193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2015-08-29 13:52 - 2013-10-10 08:56 - 00191488 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRa.dll
2015-08-29 13:52 - 2013-05-21 08:53 - 01204224 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\RaWLAPI.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-09-06 19:06 - 2017-02-28 18:56 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-949960655-4213550855-1286880892-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Apoint"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\StartupApproved\Run: => "Sidebar"
HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{307DD424-2633-4643-B539-17365327CE79}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{1D2C18B6-45F5-4E55-82D9-0C3288EE5E0D}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{87A0673F-A4A2-4304-A5AC-8E6BA742CE98}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5700ACC1-C97D-4831-88B9-989F3F08E078}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{85587415-DD86-4AB8-B893-B5F4162027B8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{65C47B4F-6E28-4DCA-8944-43CB7311028F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{19018419-E889-4BA2-BC63-7D3ED18066A9}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1A114C3F-C3C6-41AF-9930-A138A82AD71A}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FCDA8E1C-1E04-4A77-988C-0B4F6DDC6664}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2F210D6B-1757-4338-9AE2-5E9CA3AED9E1}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DA90BF83-2854-4D27-97D7-AE6780CBA715}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B6731566-8840-4C02-B24C-C4B12EEE5526}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5FCABE0E-B16E-47B7-8F93-17E0F3DB6FDF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EF4849E7-C98D-4F58-8075-8BF36DF91EDC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{178FDDC8-6FE7-4E5F-88EE-4059431D3026}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1643686D-5C43-4862-9618-2ED28F7918AE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A975994D-02F8-406C-8EAC-560D5A3CFFCB}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{A59F5C6F-4FBB-493F-9A01-CF91C1455F4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{AD787E97-F2FD-43CE-BC27-631BC499D42C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{1FEF4FF5-69BB-477F-BF8D-E8C8149DB356}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{AC66596E-A6B6-45A6-8D5A-22BF61F1A9CA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{A1919E1F-01FB-4F50-A407-1ED0C0082FD5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{A15B52C9-B3AD-4E70-B408-2FA0595CD509}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{C1AD4326-1361-411C-9156-04CC27BAF106}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{01E18FB2-F5AE-4694-9891-E40F2CFF870B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{6CAF2568-34A1-4993-9481-8FD06FB42934}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{21BD05B9-B7BA-4F19-9FFD-E71ABC024BFD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A8155CAA-7D08-412F-8417-7937F2F5BF93}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{339249B6-A8B5-439D-9C95-6B204DF9D368}] => (Allow) C:\Program Files (x86)\ma-config.com\maconfservice.exe
FirewallRules: [{70D6ACE8-08AD-4A3E-A9A5-A7B660671491}] => (Allow) C:\Program Files (x86)\ma-config.com\maconfservice.exe
FirewallRules: [{E353B855-7214-4CB6-8EEC-7504E6BEFACD}] => (Allow) LPort=48113
FirewallRules: [{5878FA91-BCF8-4A4C-9A44-A492958812CD}] => (Allow) LPort=48113
FirewallRules: [TCP Query User{6330D3C6-6919-4782-B735-8707B01E2A94}C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe
FirewallRules: [UDP Query User{A855D46B-E53C-4971-950D-39E7379EA8EB}C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe
FirewallRules: [TCP Query User{9B65F29D-E413-4E5C-85CA-584A42828B72}C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe
FirewallRules: [UDP Query User{643067EA-0B79-42E2-8DF1-51D569A1AC6F}C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe
FirewallRules: [{434178CC-0A80-4E44-8A8F-5259A33CEE71}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{77F898D2-649A-47D2-B246-1AF42C939BA1}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{A3D84A4E-8599-4273-948B-1DF6DE71D60A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{47F9FA66-A86E-4B16-9A88-5A6A035E11BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E53890C7-345D-4D51-85F4-6D93534D310D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{48A49EC8-34D8-4FB2-B218-9017FA2B8513}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{1BF82B0A-A867-4C8A-8061-80820F8FB0B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{25C4104E-5927-4E16-B39E-DF577896BC84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{F8948767-D39A-4FB4-A352-247FB82997D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{00270C07-165F-49D9-B520-DCB10C611B93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{E05854FF-6BBC-43FD-9EA3-FFDF12BECAA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{6E1897F4-080C-43EE-A05D-7DD43ECB741B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{10266640-823B-4351-B8B8-46F500577A0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{CCC134EC-0FBA-4327-8B0B-C1D026FF2D94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{B68A5636-122D-4F99-873E-B742C27204BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{346C6650-0133-4E65-B76B-717DE74D42F5}] => (Allow) C:\Users\reynald\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{282B8C50-CCE6-4CA4-842A-07C73DFFFFB3}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{FB94B4B7-DE40-4F5B-9ADE-CCDB0B158435}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [TCP Query User{4ED030A6-4F7B-47EA-B28A-E0CC2A938409}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{CB2AA11F-96A0-4F89-99B4-A3B068ACB903}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [{7E5F9186-3916-40CC-8D0F-379CB414E2AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{26EBFFD5-BF7B-48F0-A81B-12420595A42A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2D2CDF66-7693-4AD0-82CC-117097743EB1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{89B52088-4287-456A-8F78-2E271302B17C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8FCBC668-E0E1-4101-889D-DCE02BC976DA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Points de restauration =========================
16-02-2017 22:18:57 Point de contrôle planifié
22-02-2017 12:05:09 Windows Update
28-02-2017 18:23:45 Opération de restauration
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Photosmart Prem C310 series
Description: Photosmart Prem C310 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: HP Photosmart Prem C310
Description: HP Photosmart Prem C310
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (03/02/2017 02:11:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: REYNALD-PC)
Description: Échec de l’activation de l’application GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/02/2017 02:00:20 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour de l’état vers SECURITY_PRODUCT_STATE_OFF (erreur %3).
Error: (03/02/2017 01:57:29 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: REYNALD-PC)
Description: Échec de l’activation de l’application GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/02/2017 01:57:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante FreemakeUtilsService.exe, version : 1.0.0.0, horodatage : 0x582c4836
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.479, horodatage : 0x58256d37
Code d’exception : 0xe0434352
Décalage d’erreur : 0x000da832
ID du processus défaillant : 0xb68
Heure de début de l’application défaillante : 0x01d29354704b44c6
Chemin d’accès de l’application défaillante : C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 8472a410-91e3-4b1b-b4ac-a946119e801e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (03/02/2017 01:56:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : FreemakeUtilsService.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.IO.FileNotFoundException
à FreemakeUtilsService.Statistics.Manager.ApplyNewTargetsConfigs()
à FreemakeUtilsService.Statistics.Manager.TargetsConfigSyncCompleted(System.Object, System.EventArgs)
à FreemakeUtilsService.Common.Synchronizer.OnWorkerCompleted(System.Object, System.ComponentModel.RunWorkerCompletedEventArgs)
à System.ComponentModel.BackgroundWorker.OnRunWorkerCompleted(System.ComponentModel.RunWorkerCompletedEventArgs)
à System.ComponentModel.BackgroundWorker.AsyncOperationCompleted(System.Object)
à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
à System.Threading.ThreadPoolWorkQueue.Dispatch()
à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (03/02/2017 01:56:39 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/01/2017 09:26:28 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/01/2017 09:26:28 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/01/2017 09:23:35 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour de l’état vers SECURITY_PRODUCT_STATE_OFF (erreur %3).
Error: (03/01/2017 09:21:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante FreemakeUtilsService.exe, version : 1.0.0.0, horodatage : 0x582c4836
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.479, horodatage : 0x58256d37
Code d’exception : 0xe0434352
Décalage d’erreur : 0x000da832
ID du processus défaillant : 0xae8
Heure de début de l’application défaillante : 0x01d292c951d698d3
Chemin d’accès de l’application défaillante : C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 59dbc215-6df9-4d39-9c8c-506b5365d28c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (03/02/2017 01:57:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Freemake Improver s’est terminé de façon inattendue pour la 1ème fois.
Error: (03/02/2017 01:57:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/02/2017 01:56:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur :
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.
Error: (03/01/2017 09:26:32 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2017-02-27 14:02:23.092
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-26 15:08:13.175
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-24 17:01:15.646
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-24 13:58:29.315
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-24 13:58:29.253
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-23 12:34:59.963
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 22:05:02.281
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 22:05:02.280
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 22:05:02.262
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 18:09:36.923
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Pentium(R) Dual-Core CPU E5700 @ 3.00GHz
Pourcentage de mémoire utilisée: 29%
Mémoire physique - RAM - totale: 8191.17 MB
Mémoire physique - RAM - disponible: 5771.56 MB
Mémoire virtuelle totale: 16383.17 MB
Mémoire virtuelle disponible: 13947.52 MB
==================== Lecteurs ================================
Drive c: (window) (Fixed) (Total:886.01 GB) (Free:762.8 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)]
Drive d: (donnees) (Fixed) (Total:976.56 GB) (Free:797.1 GB) NTFS
Drive f: (films et musiques) (Fixed) (Total:931.51 GB) (Free:210.38 GB) NTFS
Drive g: (Photos) (Fixed) (Total:298.09 GB) (Free:267.02 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3A519E14)
Partition 1: (Active) - (Size=886 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=976.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: 1A23F77D)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D6866FF6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================
Exécuté par reynald (02-03-2017 14:17:31)
Exécuté depuis C:\Users\reynald\Downloads
Windows 10 Pro Version 1607 (X64) (2016-10-12 17:05:50)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-949960655-4213550855-1286880892-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-949960655-4213550855-1286880892-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-949960655-4213550855-1286880892-1002 - Limited - Enabled)
Invité (S-1-5-21-949960655-4213550855-1286880892-501 - Limited - Disabled)
reynald (S-1-5-21-949960655-4213550855-1286880892-1000 - Administrator - Enabled) => C:\Users\reynald
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\uTorrent) (Version: 3.4.7.42330 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Acer E600 Driver version 1.6.0.1 (HKLM-x32\...\{A74ED097-0EC1-4575-92F6-E0BFFD49AEA3}_is1) (Version: 1.6.0.1 - Acer, Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 10 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 10.1.102.64 - Adobe Systems Incorporated)
Adobe Shockwave Player + Authorware Web Player (HKLM-x32\...\Adobe Shockwave Player + Authorware Web Player) (Version: v12.1.8.158 - Adobe Systems, Inc.)
American Truck Simulator (HKLM\...\Steam App 270880) (Version: - SCS Software)
AOMEI Backupper Standard Edition 2.8 (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536C09F}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apple Application Support (32 bits) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Archiveur WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
ArcSoft PhotoImpression 6 (HKLM-x32\...\{8DE40268-220A-4AF6-90EC-09966CBE8772}) (Version: - ArcSoft)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
C310 (x32 Version: 140.0.353.000 - Hewlett-Packard) Hidden
Camfrog Web Advanced 2.0 ActiveX Plugin (remove only) (HKLM-x32\...\CFWebAdvancedU2) (Version: - )
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
Cheat Engine 6.5 (HKLM-x32\...\Cheat Engine 6.5_is1) (Version: - Cheat Engine)
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
DriversCloud.com (64 bits) (HKLM\...\{77EEC345-B758-45DF-94C2-25D91D520650}) (Version: 8.0.4.0 - Cybelsoft)
Euro Truck Simulator 2 (HKLM\...\Steam App 227300) (Version: - SCS Software)
Free DVD Creator version 2.0 (HKLM-x32\...\Free DVD Creator (by minidvdsoft)_is1) (Version: 2.0 - www.minidvdsoft.com)
Freemake Audio Converter version 1.1.8 (HKLM-x32\...\Freemake Audio Converter_is1) (Version: 1.1.8 - Ellora Assets Corporation)
Glary Utilities 5.52 (HKLM-x32\...\Glary Utilities 5) (Version: 5.52.0.73 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Photos Backup (HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
HashCheck Shell Extension (x86-32) (HKLM-x32\...\HashCheck Shell Extension) (Version: 2.1.9.0 - Kai Liu)
HashCheck Shell Extension (x86-64) (HKLM\...\HashCheck Shell Extension) (Version: 2.1.9.0 - Kai Liu)
Heavyweight Simulator 3 1.12 (HKLM-x32\...\{99E4363F-A537-4CC5-A6B6-040387417801}_is1) (Version: - UIG GmbH)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Premium C310 All-in-One Driver Software 14.0 Rel. 7 (HKLM\...\{131D8ED6-4864-4554-9BAB-09B47C232522}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Solutions Framework (HKLM-x32\...\{E4B931AF-C59A-4D92-8767-8E2D5F53144E}) (Version: 12.0.30.81 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (x32 Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java(TM) 6 Update 23 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216023FF}) (Version: 6.0.230 - Oracle)
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Anti-Virus (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
K-Lite Mega Codec Pack 4.1.4 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 4.1.4 - )
Malwarebytes version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{26784146-6E05-3FF9-9335-786C7C0FB5BE}) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}) (Version: 12.0.30501.0 - Корпорация Майкрософт)
Microtool version 1.1.0 (HKLM-x32\...\Microtool_is1) (Version: 1.1.0 - Microtool Technologies)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
MKVToolNix 9.9.0 (64bit) (HKLM-x32\...\MKVToolNix) (Version: 9.9.0 - Moritz Bunkus)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
Mozilla Thunderbird 45.7.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 45.7.1 (x86 fr)) (Version: 45.7.1 - Mozilla)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Package de pilotes Windows - ACER, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2013 7.0.0000.00001) (HKLM\...\DD71B6C26E01A443401B6C342CC691AED2E28F16) (Version: 08/27/2013 7.0.0000.00001 - ACER, Inc.)
Package de pilotes Windows - Marvell (MRV6X64P) Net (10/16/2007 1.0.0.53) (HKLM\...\7B276D72C77460AD6585554B173C3812461479AB) (Version: 10/16/2007 1.0.0.53 - Marvell)
PS_AIO_07_C310_SW_Min (x32 Version: 140.0.365.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7614 - Realtek Semiconductor Corp.)
SAM CoDeC Pack (HKLM\...\SAM CoDeC Pack) (Version: 5.85 - www.SamLab.ws)
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Scratch (HKLM-x32\...\Scratch) (Version: 1.4.0.0 - MIT Media Lab Lifelong Kindergarten Group)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Supercopier 4.0.1.13 (HKLM-x32\...\Supercopier) (Version: 4.0.1.13 - Supercopier)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.72365 - TeamViewer)
Thrustmaster FFB Driver (HKLM-x32\...\{8F5A0981-5CDC-41D0-BCA2-AD3B777FC358}) (Version: 1.FFD.2016 - Thrustmaster)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TP-LINK TL-WDN4200 Driver (HKLM-x32\...\{76E22E5B-B0E7-49B5-9B9A-2112EB41D1EA}) (Version: 1.3.1 - TP-LINK)
TP-LINK Wireless Configuration Utility (HKLM-x32\...\{319D91C6-3D44-436C-9F79-36C0D22372DC}) (Version: 1.3.1 - TP-LINK)
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VirtualDJ 8 (HKLM-x32\...\{B7D6C720-CB38-41AA-9804-0AA2090BE1B5}) (Version: 8.2.3573.0 - Atomix Productions)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.4.0 - Azureus Software, Inc.)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
XMedia Recode version 3.3.5.8 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.3.5.8 - XMedia Recode)
Yahoo! Powered (HKLM-x32\...\{6AB68276-3A36-53F6-8BB6-23765B36F0F6}) (Version: - ) <==== ATTENTION
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{75720057-7183-4546-8960-47D3C4F809F8}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{7BCD76A2-E9A0-4332-BE18-9D7D40288621}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\reynald\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-949960655-4213550855-1286880892-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\reynald\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll (Google Inc.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {06813165-A325-4925-A2E4-D1EDE73AB475} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {149F794D-318D-4E24-9C95-F3E0E8AEB603} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => %SystemRoot%\ehome\ehPrivJob.exe
Task: {1AB75EE3-99BE-4119-82EF-FD5A2339F7F2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-28] (Google Inc.)
Task: {1CF2A92D-694B-4B32-B062-81EA8C273244} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-08] (Piriform Ltd)
Task: {27DCE66D-F6D8-445A-8781-F3A1E947561A} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {324E2AD0-2E79-4EF4-8B4F-731C76F59EAE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3BDBA212-7ED2-47B2-BBFA-BCB200BDE0CE} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {3C74D970-F398-4AA0-98E4-CA3F8C85A7BD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => %SystemRoot%\ehome\ehPrivJob.exe
Task: {3CD06C0B-11DB-406C-8D18-B9626557CCC4} - System32\Tasks\{E8C9990C-9302-47ED-A673-EF7B66E6F897} => Chrome.exe hxxp://ui.skype.com/ui/0/7.2.60.103/fr/abandoninstall?page=tsPlugin
Task: {4C70BFCB-818C-448B-A1A8-64E726A04EF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => %SystemRoot%\ehome\mcupdate.exe
Task: {4E9D4D7A-899E-47EA-9CD0-5B2F3FD85FF2} - System32\Tasks\{468B4CD3-817E-49A0-B1CB-2A60C0E81126} => pcalua.exe -a "C:\Users\reynald\Downloads\BeamNG.drive - InstallShield Wizard (1).exe"
Task: {5AF17D10-8635-4BBD-A1CC-517F75D0E6E8} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06] (Oracle Corporation)
Task: {5E6272DD-A63E-4199-914E-1CB1CA02454B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {6F997E35-389C-4EFE-ABB0-6F6D3A67F7B5} - System32\Tasks\{38F448ED-2652-4C92-B12F-B6BBC7DD5897} => pcalua.exe -a C:\Users\reynald\AppData\Roaming\do-search\UninstallManager.exe -c -ptid=dae
Task: {724A4F52-6A1D-48D9-83E4-337220214C46} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {73AB6811-C94E-4BE4-B546-98539ED6429E} - System32\Tasks\{C591EAA9-36D1-4941-9CF3-1404EDB0D50C} => pcalua.exe -a C:\Users\reynald\AppData\Local\{2C1A1A46-08B2-76FE-652A-53164142AF8E}\uninst.exe -c -P=/Uninstall /s /noun /DelSelfDir
Task: {77A05863-80B2-43CA-AE5A-281C8D006D98} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => %SystemRoot%\ehome\ehPrivJob.exe
Task: {7DE13D1B-614B-46A9-AE81-2BE64B6FA100} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-949960655-4213550855-1286880892-1000Core => C:\Users\reynald\AppData\Local\Google\Update\GoogleUpdate.exe [2017-02-19] (Google Inc.)
Task: {9AF3E328-D7FC-460C-8403-6BC4AAE481C0} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => %windir%\ehome\MCUpdate.exe
Task: {A5AA36CF-C36E-45EA-9C3B-EDC4CFB8030B} - System32\Tasks\{6AB37997-59E7-A705-09B6-167D88653BF0} => C:\Program Files (x86)\Common Files\Lilobihed\updtask.exe [2013-04-14] ()
Task: {AA3A87B8-6322-4C4F-8D34-B2228744B39B} - \{6C78CD7F-DBD3-7AD4-9E69-B4A589B6721D} -> Pas de fichier <==== ATTENTION
Task: {AD1212EC-4729-4638-AB5F-BA18E67B9BCC} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => %SystemRoot%\ehome\ehrec.exe
Task: {BA07044F-059C-4258-A7E0-1E0076421F19} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {BBADC04A-5496-4CCC-8040-2F9FF988660C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => %SystemRoot%\ehome\ehPrivJob.exe
Task: {BE0C29EB-5989-46DE-B152-8DB501F51A23} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {CAD9D021-DEAC-463B-976A-42797B8D3D40} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => %SystemRoot%\ehome\ehPrivJob.exe
Task: {D0AF87FC-769B-4D27-975C-A9781C708C1F} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {D5411CAE-C0D4-4C0A-AE75-5269E28253B0} - System32\Tasks\{C10DFFFA-1928-3A40-2280-1BFDC0AC971E} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\984f2065\e6504788.dll" <==== ATTENTION
Task: {D5CFCA3E-384D-4481-82EF-6BC922E7A70E} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => %SystemRoot%\ehome\ehrec.exe
Task: {D5D11BA6-CCEC-4E4E-999E-728CD7B49485} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => %SystemRoot%\ehome\ehPrivJob.exe
Task: {DC54912C-CA73-4EFC-B40C-37171F0DF271} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => %SystemRoot%\ehome\mcupdate.exe
Task: {DC5AC2B5-A1E0-4B96-B3C0-A453D44AB668} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => %SystemRoot%\ehome\ehPrivJob.exe
Task: {E0DE9133-CCFB-423D-8D78-F362515ADC73} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => %SystemRoot%\ehome\mcupdate.exe
Task: {E43C6B7A-B338-4B99-81DC-BC902CFDBA9C} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {E5014C38-E57C-43C1-9496-4C327D89ECF3} - System32\Tasks\{452EE980-2291-4BCB-93A4-1995AC00A04B} => pcalua.exe -a C:\Users\reynald\AppData\Local\{DE23E87F-FA8B-84C7-9713-A12FB37B5DB7}\uninst.exe -c -P=/Uninstall /s /noun /DelSelfDir
Task: {E7EB565B-A854-4B9E-9474-8DCD87054CA2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-02-28] (Google Inc.)
Task: {E850AA9F-AE26-44A1-94E0-C0561BF1B9B9} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-05-30] (Glarysoft Ltd)
Task: {EB1C2BDE-71B6-427A-A25B-7DE362D9E5F3} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => %SystemRoot%\ehome\mcupdate.exe
Task: {EB5C75F9-A5C5-443B-96D4-AC7503BE3C40} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-05-30] (Glarysoft Ltd)
Task: {F6810705-BB69-4F41-BF7C-D227143BF991} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-949960655-4213550855-1286880892-1000UA => C:\Users\reynald\AppData\Local\Google\Update\GoogleUpdate.exe [2017-02-19] (Google Inc.)
Task: {F798B0E4-E624-454C-9FBE-99F78B2AFA22} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => %SystemRoot%\ehome\ehPrivJob.exe
Task: {FDA09B64-9385-4768-92A6-3D7DE163540B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => %SystemRoot%\ehome\ehPrivJob.exe
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\{6AB37997-59E7-A705-09B6-167D88653BF0}.job =>
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
Shortcut: C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Scratch\Scratch Website.lnk -> hxxp://scratch.mit.edu
==================== Modules chargés (Avec liste blanche) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 09:56 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-12-14 09:56 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 01:28 - 2016-11-17 01:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-01 19:58 - 2017-01-20 07:47 - 02264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2017-03-01 19:58 - 2017-01-20 07:47 - 02829776 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\arwlib.dll
2017-03-01 19:58 - 2017-01-20 07:47 - 02254800 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-10-12 18:34 - 2016-10-12 18:34 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 00:30 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 00:30 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2017-01-11 00:30 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 00:30 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2010-12-15 13:37 - 2009-09-10 01:41 - 00402263 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\Little transparency.exe
2010-12-15 13:25 - 2007-09-02 13:58 - 00495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2015-08-29 13:52 - 2013-07-23 14:59 - 00846848 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
2017-02-22 11:48 - 2017-02-22 11:49 - 00073728 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-02-22 11:48 - 2017-02-22 11:49 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-02-22 11:48 - 2017-02-22 11:49 - 42895360 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-02-06 21:31 - 2017-02-06 21:31 - 02215424 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.11.110.0_x64__kzf8qxf38zg5c\roottools.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\kpcengine.2.3.dll
2015-08-26 23:43 - 2015-05-11 14:56 - 00286424 _____ () C:\Program Files (x86)\AOMEI Backupper\UiLogic.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00224984 _____ () C:\Program Files (x86)\AOMEI Backupper\diskmgr.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00122584 _____ () C:\Program Files (x86)\AOMEI Backupper\FuncLogic.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00290520 _____ () C:\Program Files (x86)\AOMEI Backupper\Comn.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00028376 _____ () C:\Program Files (x86)\AOMEI Backupper\Encrypt.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00347864 _____ () C:\Program Files (x86)\AOMEI Backupper\ImgFile.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00483032 _____ () C:\Program Files (x86)\AOMEI Backupper\EnumFolder.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00069336 _____ () C:\Program Files (x86)\AOMEI Backupper\Compress.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrLog.dll
2015-08-26 23:43 - 2015-05-11 14:56 - 00691928 _____ () C:\Program Files (x86)\AOMEI Backupper\Sync.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00077528 _____ () C:\Program Files (x86)\AOMEI Backupper\Ldm.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00061144 _____ () C:\Program Files (x86)\AOMEI Backupper\Device.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00286424 _____ () C:\Program Files (x86)\AOMEI Backupper\BrFat.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00966360 _____ () C:\Program Files (x86)\AOMEI Backupper\BrNtfs.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00278232 _____ () C:\Program Files (x86)\AOMEI Backupper\Clone.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00110296 _____ () C:\Program Files (x86)\AOMEI Backupper\Backup.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00155352 _____ () C:\Program Files (x86)\AOMEI Backupper\FlBackup.dll
2015-08-26 23:43 - 2015-02-25 23:00 - 02403504 _____ () C:\Program Files (x86)\AOMEI Backupper\QtCore4.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00102104 _____ () C:\Program Files (x86)\AOMEI Backupper\BrVol.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00175832 _____ () C:\Program Files (x86)\AOMEI Backupper\DeviceMgr.dll
2015-08-26 23:43 - 2015-05-11 14:55 - 00253656 _____ () C:\Program Files (x86)\AOMEI Backupper\GptBcd.dll
2010-12-15 13:25 - 2007-09-02 13:57 - 00069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2014-02-19 17:52 - 2014-02-19 17:52 - 00377856 _____ () C:\Program Files (x86)\Supercopier\libstdc++-6.dll
2014-02-19 17:52 - 2014-02-19 17:52 - 00052224 _____ () C:\Program Files (x86)\Supercopier\libgcc_s_sjlj-1.dll
2014-02-19 17:52 - 2014-02-19 17:52 - 01026560 _____ () C:\Program Files (x86)\Supercopier\qt-plugins\platforms\qwindows.dll
2016-04-08 23:35 - 2016-04-08 23:35 - 03481600 _____ () C:\Users\reynald\AppData\Local\Programs\Google\Google Photos Backup\gpuploader_i18n.dll
2017-02-28 17:59 - 2017-01-23 18:47 - 01164288 ___SH () C:\Users\reynald\AppData\Roaming\com\MSVFW32.dll
2015-08-29 13:52 - 2013-05-21 08:53 - 01411072 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\nicLan.dll
2015-08-29 13:52 - 2013-05-21 08:53 - 00193024 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\DC_WFF.dll
2015-08-29 13:52 - 2013-10-10 08:56 - 00191488 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\WJRa.dll
2015-08-29 13:52 - 2013-05-21 08:53 - 01204224 _____ () C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\RaWLAPI.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-09-06 19:06 - 2017-02-28 18:56 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-949960655-4213550855-1286880892-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\reynald\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "Apoint"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\StartupApproved\Run: => "Sidebar"
HKU\S-1-5-21-949960655-4213550855-1286880892-1000\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{307DD424-2633-4643-B539-17365327CE79}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{1D2C18B6-45F5-4E55-82D9-0C3288EE5E0D}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Screen Recorder Pro 2\Apowersoft Screen Recorder Pro 2.exe
FirewallRules: [{87A0673F-A4A2-4304-A5AC-8E6BA742CE98}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5700ACC1-C97D-4831-88B9-989F3F08E078}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{85587415-DD86-4AB8-B893-B5F4162027B8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{65C47B4F-6E28-4DCA-8944-43CB7311028F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{19018419-E889-4BA2-BC63-7D3ED18066A9}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{1A114C3F-C3C6-41AF-9930-A138A82AD71A}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{FCDA8E1C-1E04-4A77-988C-0B4F6DDC6664}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{2F210D6B-1757-4338-9AE2-5E9CA3AED9E1}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{DA90BF83-2854-4D27-97D7-AE6780CBA715}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B6731566-8840-4C02-B24C-C4B12EEE5526}] => (Allow) C:\Users\reynald\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5FCABE0E-B16E-47B7-8F93-17E0F3DB6FDF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EF4849E7-C98D-4F58-8075-8BF36DF91EDC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{178FDDC8-6FE7-4E5F-88EE-4059431D3026}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1643686D-5C43-4862-9618-2ED28F7918AE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A975994D-02F8-406C-8EAC-560D5A3CFFCB}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{A59F5C6F-4FBB-493F-9A01-CF91C1455F4E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{AD787E97-F2FD-43CE-BC27-631BC499D42C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{1FEF4FF5-69BB-477F-BF8D-E8C8149DB356}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{AC66596E-A6B6-45A6-8D5A-22BF61F1A9CA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{A1919E1F-01FB-4F50-A407-1ED0C0082FD5}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{A15B52C9-B3AD-4E70-B408-2FA0595CD509}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{C1AD4326-1361-411C-9156-04CC27BAF106}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{01E18FB2-F5AE-4694-9891-E40F2CFF870B}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{6CAF2568-34A1-4993-9481-8FD06FB42934}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{21BD05B9-B7BA-4F19-9FFD-E71ABC024BFD}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{A8155CAA-7D08-412F-8417-7937F2F5BF93}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{339249B6-A8B5-439D-9C95-6B204DF9D368}] => (Allow) C:\Program Files (x86)\ma-config.com\maconfservice.exe
FirewallRules: [{70D6ACE8-08AD-4A3E-A9A5-A7B660671491}] => (Allow) C:\Program Files (x86)\ma-config.com\maconfservice.exe
FirewallRules: [{E353B855-7214-4CB6-8EEC-7504E6BEFACD}] => (Allow) LPort=48113
FirewallRules: [{5878FA91-BCF8-4A4C-9A44-A492958812CD}] => (Allow) LPort=48113
FirewallRules: [TCP Query User{6330D3C6-6919-4782-B735-8707B01E2A94}C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe
FirewallRules: [UDP Query User{A855D46B-E53C-4971-950D-39E7379EA8EB}C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi14d6.tmp\join.me.exe
FirewallRules: [TCP Query User{9B65F29D-E413-4E5C-85CA-584A42828B72}C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe
FirewallRules: [UDP Query User{643067EA-0B79-42E2-8DF1-51D569A1AC6F}C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe] => (Allow) C:\users\reynald\appdata\local\temp\joi13c3.tmp\join.me.exe
FirewallRules: [{434178CC-0A80-4E44-8A8F-5259A33CEE71}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{77F898D2-649A-47D2-B246-1AF42C939BA1}] => (Allow) C:\Program Files\DriversCloud.com\MCDetection.exe
FirewallRules: [{A3D84A4E-8599-4273-948B-1DF6DE71D60A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{47F9FA66-A86E-4B16-9A88-5A6A035E11BD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{E53890C7-345D-4D51-85F4-6D93534D310D}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{48A49EC8-34D8-4FB2-B218-9017FA2B8513}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{1BF82B0A-A867-4C8A-8061-80820F8FB0B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe
FirewallRules: [{25C4104E-5927-4E16-B39E-DF577896BC84}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{F8948767-D39A-4FB4-A352-247FB82997D8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{00270C07-165F-49D9-B520-DCB10C611B93}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{E05854FF-6BBC-43FD-9EA3-FFDF12BECAA7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{6E1897F4-080C-43EE-A05D-7DD43ECB741B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{10266640-823B-4351-B8B8-46F500577A0F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{CCC134EC-0FBA-4327-8B0B-C1D026FF2D94}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{B68A5636-122D-4F99-873E-B742C27204BA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe
FirewallRules: [{346C6650-0133-4E65-B76B-717DE74D42F5}] => (Allow) C:\Users\reynald\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{282B8C50-CCE6-4CA4-842A-07C73DFFFFB3}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{FB94B4B7-DE40-4F5B-9ADE-CCDB0B158435}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [TCP Query User{4ED030A6-4F7B-47EA-B28A-E0CC2A938409}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{CB2AA11F-96A0-4F89-99B4-A3B068ACB903}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [{7E5F9186-3916-40CC-8D0F-379CB414E2AA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{26EBFFD5-BF7B-48F0-A81B-12420595A42A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2D2CDF66-7693-4AD0-82CC-117097743EB1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{89B52088-4287-456A-8F78-2E271302B17C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{8FCBC668-E0E1-4101-889D-DCE02BC976DA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
==================== Points de restauration =========================
16-02-2017 22:18:57 Point de contrôle planifié
22-02-2017 12:05:09 Windows Update
28-02-2017 18:23:45 Opération de restauration
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: Photosmart Prem C310 series
Description: Photosmart Prem C310 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: HP Photosmart Prem C310
Description: HP Photosmart Prem C310
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (03/02/2017 02:11:36 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: REYNALD-PC)
Description: Échec de l’activation de l’application GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/02/2017 02:00:20 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour de l’état vers SECURITY_PRODUCT_STATE_OFF (erreur %3).
Error: (03/02/2017 01:57:29 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: REYNALD-PC)
Description: Échec de l’activation de l’application GAMELOFTSA.Asphalt8Airborne_0pp20fcewvvtj!App avec l’erreur : -2144927148 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (03/02/2017 01:57:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante FreemakeUtilsService.exe, version : 1.0.0.0, horodatage : 0x582c4836
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.479, horodatage : 0x58256d37
Code d’exception : 0xe0434352
Décalage d’erreur : 0x000da832
ID du processus défaillant : 0xb68
Heure de début de l’application défaillante : 0x01d29354704b44c6
Chemin d’accès de l’application défaillante : C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 8472a410-91e3-4b1b-b4ac-a946119e801e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (03/02/2017 01:56:52 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : FreemakeUtilsService.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.IO.FileNotFoundException
à FreemakeUtilsService.Statistics.Manager.ApplyNewTargetsConfigs()
à FreemakeUtilsService.Statistics.Manager.TargetsConfigSyncCompleted(System.Object, System.EventArgs)
à FreemakeUtilsService.Common.Synchronizer.OnWorkerCompleted(System.Object, System.ComponentModel.RunWorkerCompletedEventArgs)
à System.ComponentModel.BackgroundWorker.OnRunWorkerCompleted(System.ComponentModel.RunWorkerCompletedEventArgs)
à System.ComponentModel.BackgroundWorker.AsyncOperationCompleted(System.Object)
à System.Threading.QueueUserWorkItemCallback.WaitCallback_Context(System.Object)
à System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
à System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
à System.Threading.QueueUserWorkItemCallback.System.Threading.IThreadPoolWorkItem.ExecuteWorkItem()
à System.Threading.ThreadPoolWorkQueue.Dispatch()
à System.Threading._ThreadPoolWaitCallback.PerformWaitCallback()
Error: (03/02/2017 01:56:39 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/01/2017 09:26:28 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/01/2017 09:26:28 PM) (Source: ATIeRecord) (EventID: 16396) (User: )
Description: ATI EEU PnP start/stop failed
Error: (03/01/2017 09:23:35 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour de l’état vers SECURITY_PRODUCT_STATE_OFF (erreur %3).
Error: (03/01/2017 09:21:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante FreemakeUtilsService.exe, version : 1.0.0.0, horodatage : 0x582c4836
Nom du module défaillant : KERNELBASE.dll, version : 10.0.14393.479, horodatage : 0x58256d37
Code d’exception : 0xe0434352
Décalage d’erreur : 0x000da832
ID du processus défaillant : 0xae8
Heure de début de l’application défaillante : 0x01d292c951d698d3
Chemin d’accès de l’application défaillante : C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 59dbc215-6df9-4d39-9c8c-506b5365d28c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Erreurs système:
=============
Error: (03/02/2017 01:57:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Freemake Improver s’est terminé de façon inattendue pour la 1ème fois.
Error: (03/02/2017 01:57:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (03/02/2017 01:56:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Le service NetTcpActivator dépend du service NetTcpPortSharing qui n’a pas pu démarrer en raison de l’erreur :
Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé.
Error: (03/01/2017 09:26:32 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (03/01/2017 09:26:31 PM) (Source: DCOM) (EventID: 10010) (User: REYNALD-PC)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2017-02-27 14:02:23.092
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-26 15:08:13.175
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-24 17:01:15.646
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-24 13:58:29.315
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-24 13:58:29.253
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-23 12:34:59.963
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 22:05:02.281
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 22:05:02.280
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 22:05:02.262
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-02-22 18:09:36.923
Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Pentium(R) Dual-Core CPU E5700 @ 3.00GHz
Pourcentage de mémoire utilisée: 29%
Mémoire physique - RAM - totale: 8191.17 MB
Mémoire physique - RAM - disponible: 5771.56 MB
Mémoire virtuelle totale: 16383.17 MB
Mémoire virtuelle disponible: 13947.52 MB
==================== Lecteurs ================================
Drive c: (window) (Fixed) (Total:886.01 GB) (Free:762.8 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)]
Drive d: (donnees) (Fixed) (Total:976.56 GB) (Free:797.1 GB) NTFS
Drive f: (films et musiques) (Fixed) (Total:931.51 GB) (Free:210.38 GB) NTFS
Drive g: (Photos) (Fixed) (Total:298.09 GB) (Free:267.02 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 3A519E14)
Partition 1: (Active) - (Size=886 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=450 MB) - (Type=27)
Partition 3: (Not Active) - (Size=976.6 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: 1A23F77D)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)
========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: D6866FF6)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================