Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27-11-2017
Exécuté par Julien (28-11-2017 16:07:26)
Exécuté depuis C:\Users\Julien\Desktop
Windows 10 Home Version 1703 15063.729 (X64) (2017-05-21 11:05:14)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-970853976-2373757950-4284530701-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-970853976-2373757950-4284530701-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-970853976-2373757950-4284530701-1003 - Limited - Enabled)
Invité (S-1-5-21-970853976-2373757950-4284530701-501 - Limited - Disabled)
Julien (S-1-5-21-970853976-2373757950-4284530701-1001 - Administrator - Enabled) => C:\Users\Julien
_TamaAcct (S-1-5-21-970853976-2373757950-4284530701-1004 - Limited - Enabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

ACD/Labs Software in C:\ACDFREE12\ (HKLM-x32\...\ACDLabs in C__ACDFREE12_) (Version: v12.00, FREE - ACD/Labs)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 368.81 - NVIDIA Corporation) Hidden
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.3.9 - ASUS)
Avira (HKLM-x32\...\{79C4A62C-8CC2-44AC-91FE-1299A215B4B7}) (Version: 1.2.98.29730 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{f5da837f-e932-4f55-995c-7e97c5cbebdd}) (Version: 1.2.98.29730 - Avira Operations GmbH & Co. KG)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.33.24 - Avira Operations GmbH & Co. KG)
Battlefield Heroes (HKLM-x32\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version:  - EA Digital illusions)
Bitnami WordPress Module (HKLM-x32\...\Bitnami WordPress Module 3.8.3-0) (Version: 3.8.3-0 - Bitnami)
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version:  - )
CCleaner (HKLM\...\CCleaner) (Version: 5.37 - Piriform)
Clownfish for Skype (HKLM-x32\...\Clownfish) (Version:  - )
Conseiller de mise à niveau vers Windows 7 (HKLM-x32\...\{9D10CB57-B085-44c3-B435-2D193BA153F0}) (Version: 2.0.5000.0 - Microsoft Corporation)
Discord (HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\Discord) (Version: 0.0.298 - Discord Inc.)
Discord (HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\Discord) (Version: 0.0.298 - Discord Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{6DBD132B-7F42-4594-BBE7-0BB677EB2926}) (Version: 4.4.2 - SEIKO EPSON CORPORATION)
EPSON XP-225 Series Printer Uninstall (HKLM\...\EPSON XP-225 Series) (Version:  - SEIKO EPSON Corporation)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.10 - ASUS)
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.19.8 - Androxyde)
foobar2000 v1.3.6 (HKLM-x32\...\foobar2000) (Version: 1.3.6 - Peter Pawlowski)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
Google Earth (HKLM-x32\...\{F6430171-B86B-4639-839E-374913E7911D}) (Version: 7.1.8.3036 - Google)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel)
Intel® CCF Manager (HKLM-x32\...\{0f3d8dd5-54af-4404-a01c-4967e485a065}) (Version: 3.0.13.2211 - Intel Corporation)
Java 8 Update 144 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180144F0}) (Version: 8.0.1440.1 - Oracle Corporation)
League of Legends (HKLM-x32\...\{11B73856-A062-4E6B-A80E-A3F380BBAB65}) (Version: 4.2.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.2.1) (Version: 4.2.1 - Riot Games)
Ma-Config.com (64 bits) (HKLM\...\{3F3C0D7A-FA11-41D5-A3DB-A1F2944577BD}) (Version: 8.0.0.5 - Cybelsoft)
Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes)
Manager (HKLM-x32\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden
MATLAB R2009b (HKLM\...\MatlabR2009b) (Version: 7.9 - The MathWorks, Inc.)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version:  - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version:  - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version:  - )
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mises à jour NVIDIA 2.11.4.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 47.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0.2 (x86 fr)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.2.6148 - Mozilla)
Mumble 1.2.8 (HKLM-x32\...\{5D198290-6E7D-426C-9AF0-8DA34CC7E596}) (Version: 1.2.8 - Thorvald Natvig)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
Package de pilotes Windows - ASUS Tek. Corporation (ATP) Mouse  (07/27/2015 7.0.0.7) (HKLM\...\A877FD5856151D202B724718A4F58CF0089A558C) (Version: 07/27/2015 7.0.0.7 - ASUS Tek. Corporation)
Panneau de configuration NVIDIA 369.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.09 - NVIDIA Corporation) Hidden
PC3D Viewer (HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\PC3D Viewer) (Version:  - NCBI)
PC3D Viewer (HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\PC3D Viewer) (Version:  - NCBI)
PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{0E25DE98-E56E-4259-B554-F1360BB2DC22}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{EE01D8D7-2DD0-4C43-BF42-D9C8FC8DAE99}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{4DC94B75-B036-474D-8AC8-E2D055C95FBD}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.3 - pdfforge GmbH)
Photo Editor (HKLM-x32\...\{59693202-4035-4DE1-A33D-B0B9AEED7A24}) (Version: 4.4.0.0 - Movavi)
PhotoFiltre 7 (HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\PhotoFiltre 7) (Version:  - )
PhotoFiltre 7 (HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\PhotoFiltre 7) (Version:  - )
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7945 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.1 - NVIDIA Corporation) Hidden
Skype Web Plugin (HKLM-x32\...\{EB96DF8B-65A7-4E72-BFB1-38DB36870D16}) (Version: 7.32.6.278 - Skype Technologies S.A.)
Skype™ 7.39 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.39.102 - Skype Technologies S.A.)
SolidWorks 2012 x64 Edition SP0 (HKLM\...\{4C66F076-D3AB-49C8-85D4-BAA6D82FCAE2}) (Version: 20.100.5022 - SolidWorks) Hidden
SolidWorks 2012 x64 French Resources (HKLM\...\{D61078D4-24FE-47AC-99EA-BA10A7DC7AAA}) (Version: 20.100.5022 - Nom de votre société) Hidden
SolidWorks eDrawings 2012 x64 Edition SP0 (HKLM\...\{A6B3A293-6427-4266-AE42-2BDC14C7AC2C}) (Version: 12.0.5015 - Dassault Systèmes SolidWorks Corp) Hidden
SolidWorks Explorer 2012 SP0 x64 Edition (HKLM\...\{65DDB7D8-5E04-45DF-B60E-89557ED37ED2}) (Version: 20.00.5022 - SolidWorks Corporation) Hidden
SolidWorks Flow Simulation 2012 SP0 x64 Edition  (HKLM\...\{EB9400D5-6289-4F9F-9B79-B3528101C0C7}) (Version: 20.00.5023 - SolidWorks Corporation) Hidden
STCServ (HKLM\...\{A954D353-9DAF-4916-8E71-F1E959EBCD1E}) (Version: 3.0.0.1783 - Intel Corporation) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.6.0 - Synaptics Incorporated)
TA Advantage (Thermal / Rheology) (HKLM-x32\...\{F1C4C7C2-FABF-44A5-B2EB-06D0D5A46166}) (Version: 5.5.20 - TA Instruments) Hidden
TA Advantage (Thermal / Rheology) (HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\InstallShield_{F1C4C7C2-FABF-44A5-B2EB-06D0D5A46166}) (Version: 5.5.20 - TA Instruments)
TA Advantage (Thermal / Rheology) (HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\InstallShield_{F1C4C7C2-FABF-44A5-B2EB-06D0D5A46166}) (Version: 5.5.20 - TA Instruments)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Ultimatest Battle (HKLM-x32\...\{4F7C289F-40B7-42C2-0CB1-DA20723E3FA0}) (Version: 0.22.8 - UNKNOWN) Hidden
Ultimatest Battle (HKLM-x32\...\com.edioromeh.ub) (Version: 0.22.8 - UNKNOWN)
USB2.0 UVC VGA WebCam (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10253 - Realtek Semiconductor Corp.)
UsbFix (HKLM-x32\...\Usbfix) (Version: 7.955 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.0 (HKLM\...\VulkanRT1.0.3.0) (Version: 1.0.3.0 - LunarG, Inc.)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
XAMPP (HKLM-x32\...\xampp) (Version: 1.8.3-4 - Bitnami)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-970853976-2373757950-4284530701-1001_Classes\CLSID\{41052F6E-3662-4584-BCD3-77BCCAAE8470}\InprocServer32 -> C:\Users\Julien\AppData\Local\SkypePlugin\7.32.6.278\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-970853976-2373757950-4284530701-1001_Classes\CLSID\{4410DC33-BC7C-496B-AA84-4AEA3EEE75F7}\InprocServer32 -> C:\Users\Julien\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileCoAuthLib64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-970853976-2373757950-4284530701-1001_Classes\CLSID\{60813F68-E9F7-4B3C-80B4-A76A66211660}\localserver32 -> C:\Users\Julien\AppData\Local\SkypePlugin\7.32.6.278\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-970853976-2373757950-4284530701-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Julien\AppData\Local\SkypePlugin\7.32.6.278\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-970853976-2373757950-4284530701-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Julien\AppData\Local\Microsoft\OneDrive\17.3.7076.1026\amd64\FileSyncApi64.dll => Pas de fichier
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.108.222\ASUSWSShellExt64.dll [2011-05-25] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers-x32-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll [2003-02-14] (Autodesk)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} =>  -> Pas de fichier
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-07-05] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\System32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-11-17] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Windows\System32\mscoree.dll [2017-03-18] (Microsoft Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-01] (NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\AntiVir Desktop\shlext64.dll [2017-11-17] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-14] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-14] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {03AF91A4-8904-4A14-940F-1C24294FB8A4} - System32\Tasks\IntelBootstrapCCDashExe => C:\Program Files\Intel\ConnectCenter\bin\ICCLauncher.exe [2015-03-16] (Intel® Corporation)
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {08BF66B0-059C-4C9A-A04F-68DCA6D9C250} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {0B3022E3-1822-42D2-853B-060D9B16FE85} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {0F8D66A2-C401-4D16-8E96-DFA4F8F4932D} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C1CD1AE-467F-45BA-8425-13F357063638} - System32\Tasks\{9D346BF8-683F-4F3D-8D8D-113F3F80B191} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.16.0.105/fr/go/help.faq.installer?LastError=1638
Task: {1C9AA7B3-77C0-4F74-9D56-280498B6437C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Pas de fichier <==== ATTENTION
Task: {24C2B308-71B0-48E4-927C-E2BF0947FE67} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Pas de fichier <==== ATTENTION
Task: {24F1EF9F-AA39-4B8D-B304-12960644ECFB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-11-08] (Piriform Ltd)
Task: {26D1F777-352A-496A-996B-DA1F46BDDECA} - System32\Tasks\Avira SystrayStartTrigger => Avira.SystrayStartTrigger.exe
Task: {2911A25C-2960-4B63-81E6-C112CA4B633B} - \Microsoft\Windows\Setup\gwx\rundetector -> Pas de fichier <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {30DFCA40-DB93-4376-AF23-76D0EE24177C} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-970853976-2373757950-4284530701-1001 => C:\Users\Julien\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {3316B29E-4BF2-4ED1-989D-8325F7449758} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Pas de fichier <==== ATTENTION
Task: {33F2C264-54AC-4EF1-8604-9F8A40D65020} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> Pas de fichier <==== ATTENTION
Task: {365A9086-4A89-4012-9111-EA9442C1C340} - System32\Tasks\EPSON XP-225 Series Update {998B0796-857A-4189-85D9-F5820418D384} => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE [2013-11-22] (SEIKO EPSON CORPORATION)
Task: {36C596FB-A5DB-4A91-9070-E76A48344A7B} - System32\Tasks\{22A41749-AAAB-4FCB-8DF1-8940F4E8EDA0} => C:\Windows\system32\pcalua.exe -a "C:\program files (x86)\avira\antivir desktop\setup.exe" -d C:\Windows\SysWOW64 -c /MODIFY
Task: {37057963-6B36-4FD7-B1C7-8838B5E7C456} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {42BF7BBF-C794-4599-BC6D-149FC8B49582} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Pas de fichier <==== ATTENTION
Task: {45539920-3F9D-4489-9902-7C12798BFF30} - \Microsoft\Windows\Setup\EOONotify -> Pas de fichier <==== ATTENTION
Task: {4D5DA7DD-9C2F-4032-9074-4C59EBAF38D7} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-970853976-2373757950-4284530701-1001UA => C:\Users\Julien\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-24] (Facebook Inc.)
Task: {4EE04BCF-938A-4D78-87A7-44A09D96F14E} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Pas de fichier <==== ATTENTION
Task: {4F896221-34CA-452C-B9A7-8A1EEBA9BC11} - System32\Tasks\{A6295EF1-11C3-464D-868B-D7F6C45C25FC} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\ZHPFix\ZHPhep.exe" -d "C:\Program Files (x86)\ZHPFix"
Task: {52073651-EE28-46D2-919B-76C4A7BB703C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-11-08] (Piriform Ltd)
Task: {52F5F354-C011-473A-BB3E-24BF57539DA4} - System32\Tasks\{2C6DA97D-19A1-4937-B35A-36D118E88630} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.16.0.105/fr/go/help.faq.installer?LastError=1638
Task: {5EF7DD62-BD13-4706-A9CF-BF5726B6144B} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Pas de fichier <==== ATTENTION
Task: {5EFA77BD-F7EC-4B29-8B6B-EF0FFB8512F7} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Pas de fichier <==== ATTENTION
Task: {60221B22-2426-49C3-9945-2990C1D854ED} - System32\Tasks\{BF531AC8-8BDA-4F88-9966-9274D9902DE6} => C:\Program Files (x86)\Mumble\mumble.exe
Task: {663688DF-7B90-4D84-A6EE-7030C9FF1217} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {766CF8D7-76D5-494E-ADD6-A9F3D1801B3F} - System32\Tasks\{0651B7CF-44AA-4617-8246-15CE9B99D9B7} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/6.16.0.105/fr/go/help.faq.installer?LastError=1638
Task: {76F9FF1E-26EB-45A7-89BC-98C6C3C27186} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {79CD57FE-45A2-4399-B197-B1009E464E7B} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Pas de fichier <==== ATTENTION
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7E0376E7-6E86-4AA4-93E3-94A605255E17} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-970853976-2373757950-4284530701-1001Core => C:\Users\Julien\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-11-24] (Facebook Inc.)
Task: {7E4F2089-705A-4C6F-90FE-4E249D2FB26E} - System32\Tasks\{442E22F7-65E7-41C3-A9B3-EAC22BE0C83A} => C:\Windows\system32\pcalua.exe -a D:\setupPC3Dv2.exe -d C:\Users\Julien\Desktop
Task: {89989F2F-601F-496B-9497-3D14E14DCDF2} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-12-04] (Realtek Semiconductor)
Task: {8BDDB50A-894A-44C8-8F18-AC996B599520} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {8DC372C3-A743-411A-A58C-050FE49B4FDC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Pas de fichier <==== ATTENTION
Task: {9191BAB0-9E64-425C-8253-25071B4EA422} - \Feven 1.7-updater -> Pas de fichier <==== ATTENTION
Task: {95826173-776E-4F76-A591-A4F046232585} - System32\Tasks\{4D8DBB7F-042B-45F5-BE78-046EB74115D4} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.18.0.105/fr/go/help.faq.installer?LastError=1638
Task: {99018DB2-2F3D-4D5B-93D2-387140EE7CCD} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-10-07] (AsusTek)
Task: {9B179E60-59E7-4C47-BF01-3C9B73D78927} - System32\Tasks\{C86B93C4-2B33-4922-8893-A98985620547} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.18.0.105/fr/go/help.faq.installer?LastError=1638
Task: {A0C8F41D-0E41-4166-B711-1CC76F6E91EF} - System32\Tasks\{467A8C76-4890-4CAC-81BF-812C57171F3A} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.18.60.106/fr/go/help.faq.installer?LastError=1638
Task: {A46AB62B-4380-410C-A2F2-41331B4FF092} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Pas de fichier <==== ATTENTION
Task: {A6AC0AA8-294F-42CD-A558-E34580FCBB93} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Pas de fichier <==== ATTENTION
Task: {A98F4216-7F00-460E-8FE1-EE41E4482150} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Pas de fichier <==== ATTENTION
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AF5EE970-709C-443E-9336-215012B943FE} - System32\Tasks\Driver Booster SkipUAC (Julien) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {B797B070-5986-4A8C-91DF-54F225F04E7A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-15] (Adobe Systems Incorporated)
Task: {B8017BEA-2B5A-4DAF-A579-ECE6FFCBC9C2} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2017-11-17] (Avira Operations GmbH & Co. KG)
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C86A47F2-3C9D-4B60-B72A-4BC7679917E9} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-12-04] (Realtek Semiconductor)
Task: {CCCBEC76-9101-40FF-BE88-00CE18D27B48} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Pas de fichier <==== ATTENTION
Task: {D028715B-2B9B-431A-8678-1468A570DF51} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-12-04] (Realtek Semiconductor)
Task: {D1D223BF-0EB9-4146-983C-0726CDE08331} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-15] (Adobe Systems Incorporated)
Task: {D6D2AE0B-E49D-40E8-BD53-37CADEEEC135} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-02-16] (ASUS)
Task: {DAE41F35-2F0B-481E-9FA9-F75AC1272754} - System32\Tasks\{95C14C86-F5FB-4EFA-95A7-158265663CDA} => C:\Program Files (x86)\Mumble\mumble.exe
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {E9882D2E-BF5B-40E0-9973-119A3F598B65} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2011-07-21] (ASUS)
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F40DF344-B3A5-49A3-964E-52ED331C310D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Pas de fichier <==== ATTENTION
Task: {F47CDEC3-ECC1-4B21-AC3E-D3D8734637B8} - System32\Tasks\{79CE403A-3CFA-4EDF-BDBD-F936FA6BDFEF} => C:\Program Files (x86)\Mumble\mumble.exe
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {FDED98A8-60E0-4F36-88F2-62EA79AD63A3} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\WINDOWS\Tasks\EPSON XP-225 Series Update {998B0796-857A-4189-85D9-F5820418D384}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_YTSNFE.EXE:/EXE:{998B0796-857A-4189-85D9-F5820418D384} /F:UpdateSystèmeĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-970853976-2373757950-4284530701-1001Core.job => C:\Users\Julien\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-970853976-2373757950-4284530701-1001UA.job => C:\Users\Julien\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2014-05-06 19:38 - 2014-05-06 19:59 - 000076888 _____ () C:\WINDOWS\SysWOW64\PnkBstrA.exe
2016-12-26 20:25 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2016-12-26 20:25 - 2017-10-04 13:15 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-05-21 11:24 - 2016-08-01 13:54 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2017-03-18 21:59 - 2017-03-20 06:11 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-11-11 20:50 - 2017-11-11 20:54 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-11-11 20:50 - 2017-11-11 20:54 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-11-11 20:50 - 2017-11-11 20:54 - 025461760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-11-07 09:09 - 2017-11-07 09:11 - 002552832 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\skypert.dll
2017-11-11 20:50 - 2017-11-11 20:54 - 000685056 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.8.487.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 000112264 _____ () C:\Windows\System32\IccLibDll_x64.dll
2017-09-14 18:02 - 2017-09-14 18:03 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11710.1001.27.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-11-01 15:32 - 2017-11-01 15:42 - 001919680 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40675.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2017-11-01 15:32 - 2017-11-01 15:42 - 001226416 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40675.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll
2017-09-26 10:57 - 2017-09-26 10:57 - 003553704 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.8700.40675.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2016-10-28 20:02 - 2016-03-31 17:57 - 000625440 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2012-11-26 21:19 - 2012-07-18 11:55 - 001198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-02-07 03:32 - 2012-02-07 03:32 - 000009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2010-08-20 17:57 - 2010-08-20 17:57 - 000619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2010-08-20 17:57 - 2010-08-20 17:57 - 000013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2015-03-31 00:43 - 2016-06-15 02:14 - 000020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2011-06-10 18:49 - 2011-06-10 18:49 - 001163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\Temp:373E1720 [120]
AlternateDataStreams: C:\Users\Julien\Documents\boot:$WIMMOUNTDATA [738]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)

HKU\S-1-5-21-970853976-2373757950-4284530701-1001\Software\Classes\.scr: AutoCADLTScriptFile => 

==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214107729\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214107992\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-970853976-2373757950-4284530701-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Julien\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\cropped-1600-900-303917.jpg
HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\Control Panel\Desktop\\Wallpaper -> C:\Users\Julien\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\cropped-1600-900-303917.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214109783\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\User-4\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Téléchargement en arrière-plan de SolidWorks.lnk => C:\Windows\pss\Téléchargement en arrière-plan de SolidWorks.lnk.CommonStartup
MSCONFIG\startupreg: ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AmIcoSinglun64 => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: Clownfish => "C:\Program Files (x86)\Clownfish\Clownfish.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Facebook Update => "C:\Users\Julien\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Sony PC Companion => "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
MSCONFIG\startupreg: uTorrent => "C:\Users\Julien\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED
HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-970853976-2373757950-4284530701-1001\...\StartupApproved\Run: => "Clownfish"
HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-970853976-2373757950-4284530701-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-11262017214108244\...\StartupApproved\Run: => "Clownfish"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{680D70EB-EFEA-4B2E-802F-D6CF657D3910}] => (Allow) E:\SteamLibrary\steamapps\common\GenitalJousting\GenitalJousting.exe
FirewallRules: [{FBA33F9F-10FE-48DD-98AB-380218BE5A0D}] => (Allow) E:\SteamLibrary\steamapps\common\GenitalJousting\GenitalJousting.exe
FirewallRules: [{7B8D9E0D-4AD9-4828-9F05-DF31DA3B4AE1}] => (Allow) E:\SteamLibrary\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{57018EE5-D9F9-495D-B46F-CB9687242F98}] => (Allow) E:\SteamLibrary\steamapps\common\Broforce\Broforce_beta.exe
FirewallRules: [{35C8A5DF-6EB6-4D16-A04A-40BFA5C2857F}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{9B6B4AB2-AF03-4DC9-AD75-7D677ED24D37}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5A645D88-9806-468A-AE58-8743FA797629}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0A43EBBD-F34B-470B-AD87-56B0FDAC73D0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{6FD01696-C25B-4DCD-8890-3FB9101AB9B2}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe
FirewallRules: [TCP Query User{31797CB2-AE7E-483A-B41D-E9D8D9D23471}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe
FirewallRules: [UDP Query User{D5987CAB-D652-429E-87D0-887329D288DD}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe
FirewallRules: [TCP Query User{7505C0C7-1DD2-49D7-B023-840AE35A30F2}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe
FirewallRules: [{CDBD26A9-B034-4F20-97BB-8DA8007B5CA4}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe
FirewallRules: [{1D417A87-BFD7-4DE2-818C-A02DAEBD41C3}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe
FirewallRules: [{8EC9B187-8DE0-459B-B618-C92C2A3896BD}] => (Allow) C:\Program Files (x86)\ASUS\Share Link\ShareLink.exe
FirewallRules: [{B7D66D42-D61B-4661-8339-27DF32ED138D}] => (Allow) C:\Program Files\Intel\STCServ\STCServ.exe
FirewallRules: [{CF07E473-5AF1-4AE8-8741-C40482AD0B9D}] => (Allow) D:\Steam\SteamApps\common\Blockade3d\main.exe
FirewallRules: [{E7C4BF88-CA4C-47E4-904F-554E4AF0DB12}] => (Allow) D:\Steam\SteamApps\common\Blockade3d\main.exe
FirewallRules: [{31F92E55-070C-40AC-8040-FBE0289D3DEC}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{5EEC9B60-D667-4899-9D79-BAF9D48D7C4D}] => (Allow) D:\Steam\SteamApps\common\Brawlhalla\Brawlhalla.exe
FirewallRules: [{C6876873-36DB-4019-BF85-46D34497ACB6}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{1ACBBA80-B91E-4C68-81E5-D6C479DBD444}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{22EF4216-C925-4357-A34D-BA8D27C8E1B4}] => (Allow) C:\Program Files\ma-config.com\MCDetection.exe
FirewallRules: [{1F670D70-49C4-4C9A-8072-6AE96303E54B}] => (Allow) C:\Program Files\ma-config.com\MCDetection.exe
FirewallRules: [{449AAE61-591A-43DD-87AC-3AEFFC94D214}] => (Block) E:\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [{09285626-DD7D-4543-9A27-A69EF2F3AD85}] => (Block) E:\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [UDP Query User{9DB97A88-E7F1-47DE-B848-12498662E0E6}E:\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) E:\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [TCP Query User{ED1FD8F8-4272-4313-A04F-865C78797E40}E:\gameforgelive\games\fra_fra\aion\nclauncher.exe] => (Allow) E:\gameforgelive\games\fra_fra\aion\nclauncher.exe
FirewallRules: [{5FBEEDBF-CABB-4843-A662-41B1E5B6F225}] => (Allow) E:\GameforgeLive\gfl_client.exe
FirewallRules: [{F333AC4C-06F6-4537-BB4D-1F36B2E91977}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DD419D1C-543B-4731-9836-4B54984D5397}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DF9E7747-AD7B-46C4-BE91-7E6418A7FE60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{01D7B393-44E6-4F7B-8F87-115A2F711A5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{807CD541-E0C8-4802-B1BB-ED9DC03B4B9E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{07EDB519-DFE8-49A2-AC9D-FFC677A9AB9C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{CA0D7A68-104F-497A-A0FE-819BEFD64CBA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{1B2D2B05-A68C-4482-9BAC-C3260F84A373}E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{88A12C4F-992F-4CF3-B6B4-25A6B0220A71}E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{3723B80A-1B7A-4BFA-AC18-696B63489BBF}E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{10F2E1C8-E1BF-4692-8D41-74FCB0827170}E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) E:\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{714C12B3-30DE-4600-9441-92D904B60F56}] => (Block) D:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{AE44B2CE-2CA5-430B-896B-1015282CC1D9}] => (Block) D:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{2A749446-97D8-495A-A615-85D63519266A}D:\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [TCP Query User{52B0EAFE-9E28-434C-A182-5B98CA045813}D:\hirezgames\smite\binaries\win32\smite.exe] => (Allow) D:\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{300DE309-4A46-400F-B979-4173C3022B4E}] => (Allow) C:\Users\Julien\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{7DB90351-8FA3-4741-A16E-A2C7A1852580}] => (Block) C:\users\julien\desktop\games\minecraft.exe
FirewallRules: [{F55BDED7-4EB7-4C16-94A5-FB55CBBA1C1C}] => (Block) C:\users\julien\desktop\games\minecraft.exe
FirewallRules: [UDP Query User{8561C447-14AF-4ABD-B9B4-487789647B1A}C:\users\julien\desktop\games\minecraft.exe] => (Allow) C:\users\julien\desktop\games\minecraft.exe
FirewallRules: [TCP Query User{B45B81A5-7755-41BA-9F5B-4D56E8FA73ED}C:\users\julien\desktop\games\minecraft.exe] => (Allow) C:\users\julien\desktop\games\minecraft.exe
FirewallRules: [{5D18DE0B-4C8D-47DC-A5E5-4DFBA92D88ED}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{90F2D341-CF1D-490A-A250-7D2BC04A4BAA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{A68D7834-6664-4E1E-981B-945C63E18198}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{6D8E1351-855E-48B2-9C8B-138469E0BE99}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{CAFAA784-CDBD-443D-A9E1-E2FDB6819536}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CA5AEAA7-F0C0-439D-B1E0-E0DEE3FCA2F9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FA334221-1F2B-4A5A-94A3-0306D185E136}] => (Block) D:\world_of_warplanes\wowplauncher.exe
FirewallRules: [{326DB3B3-5BBC-4798-B56D-876DBCCA5A8F}] => (Block) D:\world_of_warplanes\wowplauncher.exe
FirewallRules: [UDP Query User{0F4A2DDB-0B2C-4948-B6CB-8F10B1E4E4E3}D:\world_of_warplanes\wowplauncher.exe] => (Allow) D:\world_of_warplanes\wowplauncher.exe
FirewallRules: [TCP Query User{E46602EF-F6B8-4DB3-AB2B-5360C11E1C2C}D:\world_of_warplanes\wowplauncher.exe] => (Allow) D:\world_of_warplanes\wowplauncher.exe
FirewallRules: [{E2C97CE5-9CD9-4A42-A038-E549712430EE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{E0D0F348-FD77-4946-97A6-8A4B36EAE1E0}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5333D402-2A74-44C2-9CCB-0F4ABB46CFA3}] => (Allow) LPort=48114
FirewallRules: [{15787712-F611-433A-B99D-4A1FED7D2776}] => (Allow) LPort=48113
FirewallRules: [{E1B4DF2B-8176-4F12-974D-ECB8DE59F12D}] => (Allow) LPort=48114
FirewallRules: [{F1C75F6B-9F69-4C13-88CC-B6FD0003AC3B}] => (Allow) LPort=48113
FirewallRules: [{1F2CF676-9024-46F4-A61A-ADE94313AC40}] => (Allow) LPort=48113
FirewallRules: [{6DA83DC1-205A-48EB-8EDE-32BBD194FC5E}] => (Allow) LPort=26675
FirewallRules: [{814E9EB4-64A9-4CE5-9CC1-1CFA52C4E6BF}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [{0F00B33C-C222-4CDD-BB72-5A1C96F866A4}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [{E7A341E7-DAD9-4D06-ACE4-0A13C84E09A8}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{ABC190FB-7BC9-439F-BBAF-4BB4A349E3D5}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{452708CB-4ED4-4796-9EAE-205D4653E8E8}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{C7C7805B-667A-4779-86A5-AB236B89BC8C}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{20266F77-4960-4739-8604-BFE192391F46}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{1B7235A4-24D8-4096-A4FF-15A8424A0B86}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{67F803EB-414E-4DA3-9F14-46BFAF4C1218}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
FirewallRules: [{B47DCE39-BD05-4FD0-BC5F-8FCE7C3FBB7F}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{7200A232-CB9A-4548-89E0-CF072E6C2E3E}] => (Allow) LPort=1900
FirewallRules: [{A56F99CF-933B-4F79-9B77-D54139039647}] => (Allow) LPort=2869
FirewallRules: [{56048913-2EE4-4FB6-9B10-B11FD9535645}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{154BA505-4837-4E93-915C-F8F3BDB0BCDF}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{1DD97C5B-76DE-4654-A0DB-EED1E05177A7}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
FirewallRules: [{7EAC2D08-57B9-45D3-8A0F-792F2D32CF40}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{B03FE7BD-28B6-406E-A12D-6CB84AEF0366}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\DBDownloader.exe
FirewallRules: [{56CBB59B-BFBF-4632-9F88-36F6F755B130}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{E3A9C912-F758-4105-AE88-BC04F0B7D999}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe
FirewallRules: [{5FE75633-0B02-44EF-B122-46CB4E94005A}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [TCP Query User{E07CEAA8-6C13-48E1-8CCB-9656F8C461F5}C:\users\julien\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\julien\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [UDP Query User{8F4F7C26-72FC-49B9-93FA-581204ACA1B2}C:\users\julien\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\julien\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [TCP Query User{8BC43C07-3793-4E2A-BF9F-0462B2A6D70A}C:\users\julien\appdata\local\skypeplugin\pluginhost.exe] => (Block) C:\users\julien\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [UDP Query User{5E3FA095-34B4-4741-A02B-F5723D824A21}C:\users\julien\appdata\local\skypeplugin\pluginhost.exe] => (Block) C:\users\julien\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [TCP Query User{931188BC-11FA-4C33-B07B-274FCEAD7D12}D:\movavi photo editor 4\photoeditor.exe] => (Block) D:\movavi photo editor 4\photoeditor.exe
FirewallRules: [UDP Query User{DD6B31FF-C81B-4CAC-A208-C7813E034707}D:\movavi photo editor 4\photoeditor.exe] => (Block) D:\movavi photo editor 4\photoeditor.exe
FirewallRules: [{377B029E-32AF-475A-BD61-E62F7A38A992}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

26-11-2017 15:38:28 Installed Photo Editor

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (11/27/2017 09:51:58 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Julien-PC)
Description: Échec de l’activation de l’application Microsoft.MicrosoftEdge_8wekyb3d8bbwe!ContentProcess avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (11/27/2017 09:51:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.674, horodatage : 0x59cdf479
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000604
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x1c64
Heure de début de l’application défaillante : 0x01d367c183c12fb4
Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 45abf876-00f3-47bf-b95f-979fb0ebce32
Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe
ID de l’application relative au package défaillant : ContentProcess

Error: (11/27/2017 09:51:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.674, horodatage : 0x59cdf479
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000604
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x1c64
Heure de début de l’application défaillante : 0x01d367c183c12fb4
Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : d2383ecc-137e-494a-bc09-936e8f7a0a5e
Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe
ID de l’application relative au package défaillant : ContentProcess

Error: (11/27/2017 09:50:24 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.674, horodatage : 0x59cdf479
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000604
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x23a0
Heure de début de l’application défaillante : 0x01d367c1585ccd6a
Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 6b7adde1-6e9d-42bb-a2d9-34e587b53969
Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe
ID de l’application relative au package défaillant : ContentProcess

Error: (11/27/2017 09:50:23 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Julien-PC)
Description: Échec de l’activation de l’application Microsoft.MicrosoftEdge_8wekyb3d8bbwe!ContentProcess avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (11/27/2017 09:50:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MicrosoftEdgeCP.exe, version : 11.0.15063.674, horodatage : 0x59cdf479
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000604
Décalage d’erreur : 0x0000000000000000
ID du processus défaillant : 0x1d1c
Heure de début de l’application défaillante : 0x01d367c1537fec6a
Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 0c47e6b3-8bfe-4673-90e0-9c3b4b94a03c
Nom complet du package défaillant : Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe
ID de l’application relative au package défaillant : ContentProcess

Error: (11/26/2017 09:56:51 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Julien-PC)
Description: Échec de l’activation de l’application Microsoft.MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (11/26/2017 04:53:20 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme PhotoEditor.exe version 4.4.0.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 2a5c

Heure de début : 01d366cb37c11df1

Heure de fin : 21

Chemin d'accès de l'application : C:\Program Files (x86)\Movavi\Photo Editor\PhotoEditor.exe

ID de rapport : 89c7fa0d-cca5-4b90-8e66-1b6ef69123dd

Nom complet du package défaillant : 

ID de l'application relative au package défaillant :

Error: (11/26/2017 04:27:57 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme PhotoEditor.exe version 4.4.0.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 334c

Heure de début : 01d366c64e46c62f

Heure de fin : 19

Chemin d'accès de l'application : C:\Program Files (x86)\Movavi\Photo Editor\PhotoEditor.exe

ID de rapport : a9a14abd-0814-4e7c-a124-2a6b5b77c136

Nom complet du package défaillant : 

ID de l'application relative au package défaillant :

Error: (11/26/2017 03:41:48 PM) (Source: COM) (EventID: 10031) (User: )
Description: Une vérification de stratégie d’unmarshaling a été effectuée lors de l’unmarshaling d’un objet marshalé personnalisé et la classe {95CABCC9-BC57-4C12-B8DF-BA193232AA01} a été refusée


Erreurs système:
=============
Error: (11/27/2017 09:51:58 PM) (Source: DCOM) (EventID: 10010) (User: Julien-PC)
Description: Le serveur Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe!ContentProcess ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/27/2017 09:50:23 PM) (Source: DCOM) (EventID: 10010) (User: Julien-PC)
Description: Le serveur Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe!ContentProcess ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/26/2017 09:56:51 PM) (Source: DCOM) (EventID: 10010) (User: Julien-PC)
Description: Le serveur Microsoft.MicrosoftEdge_40.15063.674.0_neutral__8wekyb3d8bbwe!MicrosoftEdge.AppXeb42j1vh6rk395pm0vmcx57dxqjhej5d.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/26/2017 09:14:11 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Intel(R) Common Connectivity Framework n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/26/2017 09:14:11 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Intel(R) Common Connectivity Framework.

Error: (11/26/2017 09:11:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 et l’APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (11/26/2017 09:11:07 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 et l’APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (11/26/2017 09:10:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service NetPipeActivator n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/26/2017 09:10:23 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service NetPipeActivator.

Error: (11/26/2017 09:10:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Avira.ServiceHost.


CodeIntegrity:
===================================
  Date: 2017-11-28 15:48:27.976
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-28 15:47:54.406
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-28 15:47:54.172
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:07:44.485
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:06:23.396
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:05:02.317
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:03:15.409
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:02:36.262
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:02:35.893
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2017-11-27 23:02:35.131
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-2450M CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 36%
Mémoire physique - RAM - totale: 8098.14 MB
Mémoire physique - RAM - disponible: 5160.01 MB
Mémoire virtuelle totale: 16290.14 MB
Mémoire virtuelle disponible: 13246.44 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:185.87 GB) (Free:47.32 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)]
Drive d: (DATA) (Fixed) (Total:254.46 GB) (Free:136.31 GB) NTFS
Drive e: (SDATA1) (Fixed) (Total:232.87 GB) (Free:193.01 GB) NTFS
Drive f: (SDATA2) (Fixed) (Total:232.89 GB) (Free:232.76 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: E3102A4B)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=185.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=254.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: BBC58B91)
Partition 1: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================