Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02-06-2017
Exécuté par Pierre GRANDIN (04-06-2017 23:37:06)
Exécuté depuis C:\Users\Pierre GRANDIN\Desktop
Windows 8.1 (Update) (X64) (2016-10-09 17:11:56)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2187492805-3269722094-2540222037-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-2187492805-3269722094-2540222037-1004 - Limited - Enabled)
Invité (S-1-5-21-2187492805-3269722094-2540222037-501 - Limited - Disabled)
Pierre GRANDIN (S-1-5-21-2187492805-3269722094-2540222037-1001 - Administrator - Enabled) => C:\Users\Pierre GRANDIN
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1) (Version: 18.1.0 - Adobe Systems Incorporated)
Amazing Slow Downer (remove only) (HKLM-x32\...\Amazing Slow Downer) (Version: - )
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.0.14 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0034 - ASUS)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
AxCrypt 2.1.1474.0 (HKLM\...\{56FF5DEA-B5DC-460B-9DF7-A0550F282FAC}) (Version: 2.1.1474.0 - AxCrypt AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camfrog Web Advanced 2.0 ActiveX Plugin (remove only) (HKLM-x32\...\CFWebAdvancedU2) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
COM Port Data Emulator (HKLM-x32\...\COM Port Data Emulator_is1) (Version: 2 - )
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.52.56 - Conexant)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd)
Edraw Max Fr 8.6 (HKLM-x32\...\Edraw Max Fr_is1) (Version: - EdrawSoft)
FirstClass Client (HKLM-x32\...\{27C6E0B9-4DF9-42E2-8826-4173BF7EEB62}) (Version: 12.122 - OpenText)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.0.14878 - Foxit Software Inc.)
GDR 4213 pour SQL Server 2014 (Ko3070446) (64-bit) (HKLM\...\KB3070446) (Version: 12.1.4213.0 - Microsoft Corporation)
GDR 4232 pour SQL Server 2014 (Ko3194720) (64-bit) (HKLM\...\KB3194720) (Version: 12.1.4232.0 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{6535d76a-59fb-4935-b2c5-cd61917c4a4b}) (Version: 17.16.0 - Intel Corporation)
LTspice XVII (HKLM\...\LTspice XVII) (Version: - Linear Technology Corporation)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{A7A76890-1134-424F-97DA-7BED0D9CFA19}) (Version: 12.1.4232.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{375DE766-4467-4F48-B56B-4F543819BAB4}) (Version: 12.1.4232.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Project Professionnel 2010 (HKLM-x32\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mises à jour NVIDIA 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.0 - NVIDIA Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 53.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 fr)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
Mozilla Thunderbird 52.1.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.1.1 (x86 fr)) (Version: 52.1.1 - Mozilla)
MPLAB X IDE v3.50 (HKLM-x32\...\MPLAB X IDE v3.50 v3.50) (Version: v3.50 - Microchip)
Null-modem emulator (com0com) (HKLM-x32\...\com0com) (Version: 3.0.0.0 - Vyacheslav Frolov)
NVIDIA Pilote graphique 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
OpenVPN 2.4.1-I601 (HKLM\...\OpenVPN) (Version: 2.4.1-I601 - OpenVPN Technologies, Inc.)
Optgeo 2.24 (HKLM-x32\...\{CF3143B3-A16F-4F66-914D-E4829AB003F5}_is1) (Version: - JMB)
Package de pilotes Windows - ASUS (ATP) Mouse (01/13/2015 6.0.0.41) (HKLM\...\E43971232F0609D99713D21682E603E28D0F0518) (Version: 01/13/2015 6.0.0.41 - ASUS)
Package de pilotes Windows - Segger (jlink) USB (07/28/2014 2.6.8.1) (HKLM\...\468237BA12C6D9DD0125166A16609C632EE9CF1C) (Version: 07/28/2014 2.6.8.1 - Segger)
Package de pilotes Windows - SEGGER (JLinkCDC_x64) Ports (08/28/2014 6.0.2601.5) (HKLM\...\ED80E3D3A350D18BFD3D3D8DAED8E2B19105763A) (Version: 08/28/2014 6.0.2601.5 - SEGGER)
Panneau de configuration NVIDIA 372.70 (Version: 372.70 - NVIDIA Corporation) Hidden
PicsimLab_0_6 version 0.6 (HKLM\...\{27A02D7D-EA5E-44B6-B7E1-E68B2E827DC5}_is1) (Version: 0.6 - lcgamboa@yahoo.com)
ProjectLibre (HKLM-x32\...\{4E352A24-AE3C-482F-9409-3E1C2B7ABED8}) (Version: 1.7.0.0 - ProjectLibre)
PuTTY release 0.69 (64-bit) (HKLM\...\{5FE84905-DAF1-4319-82B2-D60BCA095BCE}) (Version: 0.69.0.0 - Simon Tatham)
Remote Camera Control (HKLM-x32\...\{7EBD2577-A5C4-428F-9A3A-C35721953335}) (Version: 3.7.00000 - Sony Corporation)
SafeZone Stable 3.55.2393.607 (x32 Version: 3.55.2393.607 - Avast Software) Hidden
Serial Port Monitor 6.0.235 (HKLM\...\Serial Port Monitor_is1) (Version: 6.0 - ELTIMA Software)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version: - Microsoft)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
SOLIDWORKS 2016 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20160-40200-1100-100) (Version: 24.2.0.50 - SolidWorks Corporation)
SOLIDWORKS 2016 x64 Edition SP02 (Version: 24.120.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 French Resources (Version: 24.120.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2016 x64 Edition SP02 (Version: 16.2.0030 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2016 SP02 x64 Edition (Version: 24.20.51 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Inspection 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Virtual Serial Port Driver 8.0 (Build 8.0.428) (HKLM\...\Virtual Serial Port Driver_is1) (Version: - ELTIMA Software)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Web Companion (HKLM-x32\...\{85cca538-080b-4f8e-8a33-1c76b604a9a0}) (Version: 2.4.1558.3001 - Lavasoft)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1060B8AB-5CDA-4668-B56E-6E9EF06EE5B6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-10] (AVAST Software)
Task: {1D209370-D594-4D4B-9E64-62A4CB05DB4C} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {2CFFDC16-3CA1-48C0-A076-EC1EFE722E11} - System32\Tasks\{DC97C9CD-3D57-4E07-A1D3-F1893AF26730} => Firefox.exe hxxps://ui.skype.com/ui/0/7.33.0.105/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {5B7BCBA7-6E01-4C5C-9659-7E604F811510} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-16] (Google Inc.)
Task: {5CA33716-5491-45D8-B455-725881AEB3BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {6F11874A-143D-45FE-8DC8-97DB00BFECD4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-16] (Google Inc.)
Task: {82B5729E-97BD-4C6A-9BBC-642A1871CA6F} - System32\Tasks\SafeZone scheduled Autoupdate 1490556127 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-05-17] (Avast Software)
Task: {9D3B5B94-1658-4810-A36D-92431B25FB72} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-pierregrandin@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {B02D80FA-0167-444D-8ECC-CE0D31A0341F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-13] (AVAST Software)
Task: {B3F364D4-CB42-4DED-A4F5-21495ADD8277} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-03-18] (AsusTek)
Task: {CE56892C-EFE6-4111-8832-A570C212689D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-10-10 14:53 - 2016-08-25 23:10 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-05-18 00:13 - 2017-05-18 00:13 - 00025192 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
2017-05-18 00:13 - 2017-05-18 00:13 - 00017000 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.Service.Logger.dll
2017-05-18 00:13 - 2017-05-18 00:13 - 00036968 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll
2017-05-26 15:43 - 2017-05-09 16:38 - 02270672 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-10-10 15:12 - 2016-12-07 00:22 - 00401904 _____ () C:\Windows\system32\igfxTray.exe
2017-05-14 14:27 - 2017-05-14 14:27 - 01278464 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Storage\2fae834a607027d7e53d50e3f0cb54ca\Windows.Storage.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 00363520 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\b657e7595764326d434371d3058552b3\Windows.Foundation.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 01259520 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Networking\2e36b786d3f7ca3a75ffcf1f44d14909\Windows.Networking.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 00207872 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.System\3853a0febedadc2f06060945db1ff9fd\Windows.System.ni.dll
2016-12-24 17:42 - 2016-12-24 17:42 - 00347136 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Gloaae92e31#\0b986d690311b2dc696bac9e6b3eb8ca\Windows.Globalization.ni.dll
2017-04-04 23:40 - 2017-04-04 23:40 - 00028160 _____ () C:\Users\Pierre GRANDIN\AppData\Local\Packages\microsoft.bingnews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.PerfTrack\d7ab2dd699f8155ff6bc6fa3bcf0ec64\Microsoft.PerfTrack.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 01782272 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\90771fb621b1a9c068c760a4c0514cd7\Windows.ApplicationModel.ni.dll
2017-04-04 23:40 - 2017-04-04 23:40 - 00117248 _____ () C:\Users\Pierre GRANDIN\AppData\Local\Packages\microsoft.bingnews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\SqliteWrapper\6365f82804dc1a1bad6198e2899dda2f\SqliteWrapper.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 00632320 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Security\c2d73813fd1cb3848c9bdd3a1275d1ef\Windows.Security.ni.dll
2014-11-21 00:31 - 2014-11-21 00:31 - 00551440 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe\SqliteWrapper.dll
2014-11-21 00:31 - 2014-11-21 00:31 - 00660920 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe\Sqlite3.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 01459712 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.UI\c74ffcf5ee954c671bf318784db7fb65\Windows.UI.ni.dll
2017-05-18 11:33 - 2017-05-18 11:33 - 02207232 _____ () C:\Users\Pierre GRANDIN\AppData\Local\Packages\microsoft.bingnews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.B2e1870ee#\30c6efcd4c366ed93d5eafc0749649de\Microsoft.Bing.AppEx.Telemetry.ni.dll
2017-05-18 11:32 - 2017-05-18 11:32 - 01383936 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Web\93a3b6f838357e05c5f636043cb67afb\Windows.Web.ni.dll
2016-12-24 17:42 - 2016-12-24 17:42 - 00467456 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Graphics\08397522023b844cc8c1d38108742549\Windows.Graphics.ni.dll
2017-05-18 11:32 - 2017-05-18 11:32 - 00521216 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Data\50bd58f6e859ef187e32584ed3398f8b\Windows.Data.ni.dll
2016-12-24 17:42 - 2016-12-24 17:42 - 02019840 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Devices\22d621277468c8fa5b3add11a54e463b\Windows.Devices.ni.dll
2017-05-17 23:29 - 2017-05-09 11:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-17 23:29 - 2017-05-09 11:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-10 18:42 - 2017-05-10 18:42 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-10 18:42 - 2017-05-10 18:42 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-06-04 18:34 - 2017-06-04 18:34 - 00098816 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32api.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00110080 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pywintypes27.dll
2017-06-04 18:34 - 2017-06-04 18:34 - 00364544 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pythoncom27.dll
2017-06-04 18:34 - 2017-06-04 18:34 - 00320512 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32com.shell.shell.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00914432 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_hashlib.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 01176576 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._core_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00806400 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._gdi_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00816128 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._windows_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 01067008 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._controls_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00733184 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._misc_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00682496 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pysqlite2._sqlite.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00088064 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_ctypes.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00686080 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\unicodedata.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00119808 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32file.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00108544 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32security.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00007168 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\hashobjs_ext.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00017920 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\thumbnails_ext.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00088064 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\usb_ext.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00012800 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\common.time34.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00018432 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32event.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00167936 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32gui.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00046080 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_socket.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 01303552 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_ssl.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00128512 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_elementtree.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00127488 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pyexpat.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00038912 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32inet.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00036864 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_psutil_windows.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00524248 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\windows._lib_cacheinvalidation.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00011264 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32crypt.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00123392 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._wizard.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00077312 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._html2.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00027648 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_multiprocessing.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00020480 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_yappi.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00035840 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32process.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00078848 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._animate.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00024064 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32pipe.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00010240 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\select.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00025600 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32pdh.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00017408 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32profile.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00022528 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32ts.pyd
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\TEMP:13C9766A [146]
AlternateDataStreams: C:\ProgramData\TEMP:40C12C39 [130]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-04-12 08:21 - 2010-05-07 18:51 - 00000444 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sa.windows.com
127.0.0.1 se.windows.com
127.0.0.1 ie.search.msn.com
127.0.0.1 wustat.windows.com
127.0.0.1 wutrack.windows.com
127.0.0.1 catalog.microsoft.com
127.0.0.1 sls.microsoft.com
127.0.0.1 spynet2.microsoft.com
127.0.0.1 spynettest.microsoft.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Pierre GRANDIN\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\avion-dc3a9collage.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{DAD501E1-32C0-4408-898D-772436BC0E29}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{D5EF056C-183D-4A90-A525-0E3980F33CDC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B04C861A-68BC-4236-9417-7CB1A7EF6AAE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{517E9995-52AE-4190-912F-C82F8F1DB218}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{7CFEEBB0-EEE6-466D-912B-6A6E8C89A5F2}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{408055C2-ADA5-42B1-B5B4-D19164B7A5CC}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{FDD9F045-13A6-43A4-91A6-292F241A7CBB}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{6A7E1E15-4BAE-43CF-A056-45A3A9590429}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{D744E117-1356-43A0-AB7D-E825B4A665A2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{3549697A-E92D-49CC-97C9-939625950D4E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{92D92A14-9B54-45E5-A00D-F604D74AC6A6}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{5901F669-4546-4EE4-B4EA-99CD3EAE4446}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [UDP Query User{DA43AFD2-BF04-4E77-B25D-B02D243D4D85}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [TCP Query User{51FEEC89-A9F8-4A6D-9670-63289D392BD5}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [UDP Query User{D00E2915-B92E-4426-A0AC-805555250719}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [{F6D414BC-278B-41DC-A6AE-6EE71D691319}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AAD019E1-566D-4C9C-A1DD-98BB266DD264}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{76B4194D-1DBB-4E33-BD2D-8FF338324454}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{56A074F4-1EE2-4B85-B002-495510642C0B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0B72D462-233B-4C1E-B92B-CC1C3DC533D9}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{1D99466D-0742-4EFA-914B-16889469801A}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{74C316DA-2E2E-467F-9EFA-5889EFC76730}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [TCP Query User{247714A0-D041-4551-91DA-CA9B5EFED017}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{40182722-A0E9-4B0B-A391-4D9E83C02FFD}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{A576AF20-3B62-495E-AB53-74C5823C6D38}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C3885EAA-3023-43D3-996B-FF071BD1D206}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe
FirewallRules: [{693573DE-5BFD-4222-9576-2D71C9D06B40}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3DD0A89D-7F9F-493F-965F-274CCCC8B254}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CA55CEFD-9590-434D-A4A4-D92EEB9D44BB}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F922408-F076-4545-9AFB-B7C682170146}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{53AB0E4B-FED3-4445-ADBA-8DC5FC9B1DB6}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5BA25CCB-974E-41FF-9DA4-BC7C2273AAF6}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
==================== Points de restauration =========================
18-05-2017 08:47:41 Installed ProjectLibre
24-05-2017 19:34:57 Installé Remote Camera Control
02-06-2017 19:06:24 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (06/04/2017 06:34:10 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/04/2017 03:34:28 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/04/2017 01:31:22 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 01:06:12 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 12:48:43 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 12:21:27 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 12:15:16 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 11:59:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ZENBOOK)
Description: Échec de l’activation de l’application Microsoft.BingNews_8wekyb3d8bbwe!AppexNews avec l’erreur : -2147023728 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (06/04/2017 11:47:41 AM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 11:45:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ZENBOOK)
Description: Échec de l’activation de l’application Microsoft.BingNews_8wekyb3d8bbwe!AppexNews avec l’erreur : -2147023728 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Erreurs système:
=============
Error: (06/04/2017 11:33:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:28:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:23:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:17:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:12:47 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:07:37 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:02:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 10:57:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 10:05:37 PM) (Source: BROWSER) (EventID: 8020) (User: )
Description: L’explorateur n’a pu se promouvoir maître explorateur. L’ordinateur qui
croit actuellement être le maître explorateur n’est pas connu.
Error: (06/04/2017 09:50:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
CodeIntegrity:
===================================
Date: 2017-06-04 18:30:43.360
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\PIERRE~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-06-04 18:30:42.922
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\PIERRE~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-06-04 18:30:41.391
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\PIERRE~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-04-11 14:48:14.648
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.515
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.391
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.267
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.142
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.018
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:13.895
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 52%
Mémoire physique - RAM - totale: 6046.4 MB
Mémoire physique - RAM - disponible: 2880.45 MB
Mémoire virtuelle totale: 7006.4 MB
Mémoire virtuelle disponible: 3775.61 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:240 GB) (Free:63.6 GB) NTFS
Drive d: (Data) (Fixed) (Total:209.63 GB) (Free:71.9 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 57DBD367)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par Pierre GRANDIN (04-06-2017 23:37:06)
Exécuté depuis C:\Users\Pierre GRANDIN\Desktop
Windows 8.1 (Update) (X64) (2016-10-09 17:11:56)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2187492805-3269722094-2540222037-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-2187492805-3269722094-2540222037-1004 - Limited - Enabled)
Invité (S-1-5-21-2187492805-3269722094-2540222037-501 - Limited - Disabled)
Pierre GRANDIN (S-1-5-21-2187492805-3269722094-2540222037-1001 - Administrator - Enabled) => C:\Users\Pierre GRANDIN
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\uTorrent) (Version: 3.5.0.43804 - BitTorrent Inc.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1) (Version: 18.1.0 - Adobe Systems Incorporated)
Amazing Slow Downer (remove only) (HKLM-x32\...\Amazing Slow Downer) (Version: - )
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.0.14 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0034 - ASUS)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
AxCrypt 2.1.1474.0 (HKLM\...\{56FF5DEA-B5DC-460B-9DF7-A0550F282FAC}) (Version: 2.1.1474.0 - AxCrypt AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camfrog Web Advanced 2.0 ActiveX Plugin (remove only) (HKLM-x32\...\CFWebAdvancedU2) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
COM Port Data Emulator (HKLM-x32\...\COM Port Data Emulator_is1) (Version: 2 - )
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.52.56 - Conexant)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.0.0222 - Disc Soft Ltd)
Edraw Max Fr 8.6 (HKLM-x32\...\Edraw Max Fr_is1) (Version: - EdrawSoft)
FirstClass Client (HKLM-x32\...\{27C6E0B9-4DF9-42E2-8826-4173BF7EEB62}) (Version: 12.122 - OpenText)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 8.3.0.14878 - Foxit Software Inc.)
GDR 4213 pour SQL Server 2014 (Ko3070446) (64-bit) (HKLM\...\KB3070446) (Version: 12.1.4213.0 - Microsoft Corporation)
GDR 4232 pour SQL Server 2014 (Ko3194720) (64-bit) (HKLM\...\KB3194720) (Version: 12.1.4232.0 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4531 - Intel Corporation)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{6535d76a-59fb-4935-b2c5-cd61917c4a4b}) (Version: 17.16.0 - Intel Corporation)
LTspice XVII (HKLM\...\LTspice XVII) (Version: - Linear Technology Corporation)
Malwarebytes version 3.1.2.1733 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.1.2.1733 - Malwarebytes)
Microsoft ODBC Driver 11 for SQL Server (HKLM\...\{A7A76890-1134-424F-97DA-7BED0D9CFA19}) (Version: 12.1.4232.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{6292D514-17A4-403F-98F9-E150F10C043D}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2014 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2014) (Version: - Microsoft Corporation)
Microsoft SQL Server 2014 Setup (English) (HKLM\...\{375DE766-4467-4F48-B56B-4F543819BAB4}) (Version: 12.1.4232.0 - Microsoft Corporation)
Microsoft SQL Server 2014 Transact-SQL ScriptDom (HKLM\...\{FF7DDA05-6EA7-4C01-B44A-3E57F8B9B97B}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2014 (HKLM\...\{366CD715-2FF4-40B4-A8B4-A05E5D21A945}) (Version: 12.1.4100.1 - Microsoft Corporation)
Microsoft Project Professionnel 2010 (HKLM-x32\...\Office14.PRJPROR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mises à jour NVIDIA 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.0 - NVIDIA Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 53.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.3 (x86 fr)) (Version: 53.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
Mozilla Thunderbird 52.1.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.1.1 (x86 fr)) (Version: 52.1.1 - Mozilla)
MPLAB X IDE v3.50 (HKLM-x32\...\MPLAB X IDE v3.50 v3.50) (Version: v3.50 - Microchip)
Null-modem emulator (com0com) (HKLM-x32\...\com0com) (Version: 3.0.0.0 - Vyacheslav Frolov)
NVIDIA Pilote graphique 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
OpenVPN 2.4.1-I601 (HKLM\...\OpenVPN) (Version: 2.4.1-I601 - OpenVPN Technologies, Inc.)
Optgeo 2.24 (HKLM-x32\...\{CF3143B3-A16F-4F66-914D-E4829AB003F5}_is1) (Version: - JMB)
Package de pilotes Windows - ASUS (ATP) Mouse (01/13/2015 6.0.0.41) (HKLM\...\E43971232F0609D99713D21682E603E28D0F0518) (Version: 01/13/2015 6.0.0.41 - ASUS)
Package de pilotes Windows - Segger (jlink) USB (07/28/2014 2.6.8.1) (HKLM\...\468237BA12C6D9DD0125166A16609C632EE9CF1C) (Version: 07/28/2014 2.6.8.1 - Segger)
Package de pilotes Windows - SEGGER (JLinkCDC_x64) Ports (08/28/2014 6.0.2601.5) (HKLM\...\ED80E3D3A350D18BFD3D3D8DAED8E2B19105763A) (Version: 08/28/2014 6.0.2601.5 - SEGGER)
Panneau de configuration NVIDIA 372.70 (Version: 372.70 - NVIDIA Corporation) Hidden
PicsimLab_0_6 version 0.6 (HKLM\...\{27A02D7D-EA5E-44B6-B7E1-E68B2E827DC5}_is1) (Version: 0.6 - lcgamboa@yahoo.com)
ProjectLibre (HKLM-x32\...\{4E352A24-AE3C-482F-9409-3E1C2B7ABED8}) (Version: 1.7.0.0 - ProjectLibre)
PuTTY release 0.69 (64-bit) (HKLM\...\{5FE84905-DAF1-4319-82B2-D60BCA095BCE}) (Version: 0.69.0.0 - Simon Tatham)
Remote Camera Control (HKLM-x32\...\{7EBD2577-A5C4-428F-9A3A-C35721953335}) (Version: 3.7.00000 - Sony Corporation)
SafeZone Stable 3.55.2393.607 (x32 Version: 3.55.2393.607 - Avast Software) Hidden
Serial Port Monitor 6.0.235 (HKLM\...\Serial Port Monitor_is1) (Version: 6.0 - ELTIMA Software)
Service Pack 1 for SQL Server 2014 (KB3058865) (64-bit) (HKLM\...\KB3058865) (Version: 12.1.4100.1 - Microsoft Corporation)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-003B-0000-0000-0000000FF1CE}_Office14.PRJPROR_{58FA40EF-ABA9-4FED-AD3D-318A6073934D}) (Version: - Microsoft)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
SOLIDWORKS 2016 x64 Edition SP02 (HKLM-x32\...\SolidWorks Installation Manager 20160-40200-1100-100) (Version: 24.2.0.50 - SolidWorks Corporation)
SOLIDWORKS 2016 x64 Edition SP02 (Version: 24.120.50 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS 2016 x64 French Resources (Version: 24.120.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Composer 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS eDrawings 2016 x64 Edition SP02 (Version: 16.2.0030 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Explorer 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Flow Simulation 2016 SP02 x64 Edition (Version: 24.20.51 - Dassault Systemes SolidWorks Corp) Hidden
SOLIDWORKS Inspection 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systèmes SolidWorks Corp) Hidden
SOLIDWORKS Plastics 2016 SP02 x64 Edition (Version: 24.20.50 - Dassault Systemes SolidWorks Corp) Hidden
SQL Server 2014 Common Files (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Services (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server 2014 Database Engine Shared (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2014 (HKLM-x32\...\{3204DE95-97D2-4261-A286-98A262E171D4}) (Version: 12.1.4100.1 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 12.1.4100.1 - Microsoft Corporation) Hidden
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Virtual Serial Port Driver 8.0 (Build 8.0.428) (HKLM\...\Virtual Serial Port Driver_is1) (Version: - ELTIMA Software)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Web Companion (HKLM-x32\...\{85cca538-080b-4f8e-8a33-1c76b604a9a0}) (Version: 2.4.1558.3001 - Lavasoft)
WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH)
WPTx64 (HKLM-x32\...\{0B2C58EB-67A2-225B-60B2-D1990E55DD33}) (Version: 8.100.26866 - Microsoft)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {1060B8AB-5CDA-4668-B56E-6E9EF06EE5B6} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-10] (AVAST Software)
Task: {1D209370-D594-4D4B-9E64-62A4CB05DB4C} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {2CFFDC16-3CA1-48C0-A076-EC1EFE722E11} - System32\Tasks\{DC97C9CD-3D57-4E07-A1D3-F1893AF26730} => Firefox.exe hxxps://ui.skype.com/ui/0/7.33.0.105/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {5B7BCBA7-6E01-4C5C-9659-7E604F811510} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-16] (Google Inc.)
Task: {5CA33716-5491-45D8-B455-725881AEB3BC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated)
Task: {6F11874A-143D-45FE-8DC8-97DB00BFECD4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-10-16] (Google Inc.)
Task: {82B5729E-97BD-4C6A-9BBC-642A1871CA6F} - System32\Tasks\SafeZone scheduled Autoupdate 1490556127 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-05-17] (Avast Software)
Task: {9D3B5B94-1658-4810-A36D-92431B25FB72} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-pierregrandin@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {B02D80FA-0167-444D-8ECC-CE0D31A0341F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-13] (AVAST Software)
Task: {B3F364D4-CB42-4DED-A4F5-21495ADD8277} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-03-18] (AsusTek)
Task: {CE56892C-EFE6-4111-8832-A570C212689D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
==================== Modules chargés (Avec liste blanche) ==============
2016-10-10 14:53 - 2016-08-25 23:10 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-05-18 00:13 - 2017-05-18 00:13 - 00025192 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
2017-05-18 00:13 - 2017-05-18 00:13 - 00017000 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.Service.Logger.dll
2017-05-18 00:13 - 2017-05-18 00:13 - 00036968 _____ () C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WcfService.dll
2017-05-26 15:43 - 2017-05-09 16:38 - 02270672 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-10-10 15:12 - 2016-12-07 00:22 - 00401904 _____ () C:\Windows\system32\igfxTray.exe
2017-05-14 14:27 - 2017-05-14 14:27 - 01278464 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Storage\2fae834a607027d7e53d50e3f0cb54ca\Windows.Storage.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 00363520 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Foundation\b657e7595764326d434371d3058552b3\Windows.Foundation.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 01259520 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Networking\2e36b786d3f7ca3a75ffcf1f44d14909\Windows.Networking.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 00207872 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.System\3853a0febedadc2f06060945db1ff9fd\Windows.System.ni.dll
2016-12-24 17:42 - 2016-12-24 17:42 - 00347136 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Gloaae92e31#\0b986d690311b2dc696bac9e6b3eb8ca\Windows.Globalization.ni.dll
2017-04-04 23:40 - 2017-04-04 23:40 - 00028160 _____ () C:\Users\Pierre GRANDIN\AppData\Local\Packages\microsoft.bingnews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.PerfTrack\d7ab2dd699f8155ff6bc6fa3bcf0ec64\Microsoft.PerfTrack.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 01782272 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.App640a3541#\90771fb621b1a9c068c760a4c0514cd7\Windows.ApplicationModel.ni.dll
2017-04-04 23:40 - 2017-04-04 23:40 - 00117248 _____ () C:\Users\Pierre GRANDIN\AppData\Local\Packages\microsoft.bingnews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\SqliteWrapper\6365f82804dc1a1bad6198e2899dda2f\SqliteWrapper.ni.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 00632320 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Security\c2d73813fd1cb3848c9bdd3a1275d1ef\Windows.Security.ni.dll
2014-11-21 00:31 - 2014-11-21 00:31 - 00551440 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe\SqliteWrapper.dll
2014-11-21 00:31 - 2014-11-21 00:31 - 00660920 _____ () C:\Program Files\WindowsApps\Microsoft.BingNews_3.0.4.344_x64__8wekyb3d8bbwe\Sqlite3.dll
2017-05-14 14:27 - 2017-05-14 14:27 - 01459712 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.UI\c74ffcf5ee954c671bf318784db7fb65\Windows.UI.ni.dll
2017-05-18 11:33 - 2017-05-18 11:33 - 02207232 _____ () C:\Users\Pierre GRANDIN\AppData\Local\Packages\microsoft.bingnews_8wekyb3d8bbwe\AC\Microsoft\CLR_v4.0\NativeImages\Microsoft.B2e1870ee#\30c6efcd4c366ed93d5eafc0749649de\Microsoft.Bing.AppEx.Telemetry.ni.dll
2017-05-18 11:32 - 2017-05-18 11:32 - 01383936 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Web\93a3b6f838357e05c5f636043cb67afb\Windows.Web.ni.dll
2016-12-24 17:42 - 2016-12-24 17:42 - 00467456 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Graphics\08397522023b844cc8c1d38108742549\Windows.Graphics.ni.dll
2017-05-18 11:32 - 2017-05-18 11:32 - 00521216 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Data\50bd58f6e859ef187e32584ed3398f8b\Windows.Data.ni.dll
2016-12-24 17:42 - 2016-12-24 17:42 - 02019840 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_64\Windows.Devices\22d621277468c8fa5b3add11a54e463b\Windows.Devices.ni.dll
2017-05-17 23:29 - 2017-05-09 11:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll
2017-05-17 23:29 - 2017-05-09 11:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-05-10 18:42 - 2017-05-10 18:42 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
2017-05-10 18:42 - 2017-05-10 18:42 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-05-10 18:41 - 2017-05-10 18:41 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-06-04 18:34 - 2017-06-04 18:34 - 00098816 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32api.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00110080 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pywintypes27.dll
2017-06-04 18:34 - 2017-06-04 18:34 - 00364544 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pythoncom27.dll
2017-06-04 18:34 - 2017-06-04 18:34 - 00320512 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32com.shell.shell.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00914432 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_hashlib.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 01176576 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._core_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00806400 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._gdi_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00816128 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._windows_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 01067008 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._controls_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00733184 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._misc_.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00682496 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pysqlite2._sqlite.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00088064 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_ctypes.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00686080 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\unicodedata.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00119808 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32file.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00108544 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32security.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00007168 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\hashobjs_ext.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00017920 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\thumbnails_ext.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00088064 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\usb_ext.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00012800 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\common.time34.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00018432 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32event.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00167936 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32gui.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00046080 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_socket.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 01303552 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_ssl.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00128512 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_elementtree.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00127488 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\pyexpat.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00038912 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32inet.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00036864 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_psutil_windows.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00524248 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\windows._lib_cacheinvalidation.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00011264 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32crypt.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00123392 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._wizard.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00077312 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._html2.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00027648 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_multiprocessing.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00020480 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\_yappi.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00035840 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32process.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00078848 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\wx._animate.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00024064 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32pipe.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00010240 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\select.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00025600 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32pdh.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00017408 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32profile.pyd
2017-06-04 18:34 - 2017-06-04 18:34 - 00022528 ____R () C:\Users\Pierre GRANDIN\AppData\Local\Temp\_MEI63722\win32ts.pyd
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\TEMP:13C9766A [146]
AlternateDataStreams: C:\ProgramData\TEMP:40C12C39 [130]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
IE trusted site: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-04-12 08:21 - 2010-05-07 18:51 - 00000444 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sa.windows.com
127.0.0.1 se.windows.com
127.0.0.1 ie.search.msn.com
127.0.0.1 wustat.windows.com
127.0.0.1 wutrack.windows.com
127.0.0.1 catalog.microsoft.com
127.0.0.1 sls.microsoft.com
127.0.0.1 spynet2.microsoft.com
127.0.0.1 spynettest.microsoft.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Pierre GRANDIN\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\avion-dc3a9collage.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-2187492805-3269722094-2540222037-1001\...\StartupApproved\Run: => "OPENVPN-GUI"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{DAD501E1-32C0-4408-898D-772436BC0E29}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{D5EF056C-183D-4A90-A525-0E3980F33CDC}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B04C861A-68BC-4236-9417-7CB1A7EF6AAE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{517E9995-52AE-4190-912F-C82F8F1DB218}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{7CFEEBB0-EEE6-466D-912B-6A6E8C89A5F2}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{408055C2-ADA5-42B1-B5B4-D19164B7A5CC}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{FDD9F045-13A6-43A4-91A6-292F241A7CBB}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{6A7E1E15-4BAE-43CF-A056-45A3A9590429}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{D744E117-1356-43A0-AB7D-E825B4A665A2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{3549697A-E92D-49CC-97C9-939625950D4E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{92D92A14-9B54-45E5-A00D-F604D74AC6A6}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{5901F669-4546-4EE4-B4EA-99CD3EAE4446}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [UDP Query User{DA43AFD2-BF04-4E77-B25D-B02D243D4D85}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [TCP Query User{51FEEC89-A9F8-4A6D-9670-63289D392BD5}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [UDP Query User{D00E2915-B92E-4426-A0AC-805555250719}C:\program files\picsimlab_0_6\picsimlab.exe] => (Allow) C:\program files\picsimlab_0_6\picsimlab.exe
FirewallRules: [{F6D414BC-278B-41DC-A6AE-6EE71D691319}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AAD019E1-566D-4C9C-A1DD-98BB266DD264}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{76B4194D-1DBB-4E33-BD2D-8FF338324454}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{56A074F4-1EE2-4B85-B002-495510642C0B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{0B72D462-233B-4C1E-B92B-CC1C3DC533D9}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{1D99466D-0742-4EFA-914B-16889469801A}] => (Allow) C:\Program Files\SOLIDWORKS Corp\SOLIDWORKS\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{74C316DA-2E2E-467F-9EFA-5889EFC76730}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe
FirewallRules: [TCP Query User{247714A0-D041-4551-91DA-CA9B5EFED017}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{40182722-A0E9-4B0B-A391-4D9E83C02FFD}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{A576AF20-3B62-495E-AB53-74C5823C6D38}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C3885EAA-3023-43D3-996B-FF071BD1D206}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.607\SZBrowser.exe
FirewallRules: [{693573DE-5BFD-4222-9576-2D71C9D06B40}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3DD0A89D-7F9F-493F-965F-274CCCC8B254}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CA55CEFD-9590-434D-A4A4-D92EEB9D44BB}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F922408-F076-4545-9AFB-B7C682170146}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{53AB0E4B-FED3-4445-ADBA-8DC5FC9B1DB6}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5BA25CCB-974E-41FF-9DA4-BC7C2273AAF6}] => (Allow) C:\Users\Pierre GRANDIN\AppData\Roaming\uTorrent\uTorrent.exe
==================== Points de restauration =========================
18-05-2017 08:47:41 Installed ProjectLibre
24-05-2017 19:34:57 Installé Remote Camera Control
02-06-2017 19:06:24 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (06/04/2017 06:34:10 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/04/2017 03:34:28 PM) (Source: openvpnserv) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/04/2017 01:31:22 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 01:06:12 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 12:48:43 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 12:21:27 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 12:15:16 PM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 11:59:34 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ZENBOOK)
Description: Échec de l’activation de l’application Microsoft.BingNews_8wekyb3d8bbwe!AppexNews avec l’erreur : -2147023728 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Error: (06/04/2017 11:47:41 AM) (Source: Desktop Window Manager) (EventID: 9020) (User: )
Description: Le Gestionnaire de fenêtrage a rencontré une erreur irrécupérable (0x8898008d).
Error: (06/04/2017 11:45:28 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: ZENBOOK)
Description: Échec de l’activation de l’application Microsoft.BingNews_8wekyb3d8bbwe!AppexNews avec l’erreur : -2147023728 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.
Erreurs système:
=============
Error: (06/04/2017 11:33:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:28:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:23:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:17:57 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:12:47 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:07:37 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 11:02:27 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 10:57:17 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
Error: (06/04/2017 10:05:37 PM) (Source: BROWSER) (EventID: 8020) (User: )
Description: L’explorateur n’a pu se promouvoir maître explorateur. L’ordinateur qui
croit actuellement être le maître explorateur n’est pas connu.
Error: (06/04/2017 09:50:07 PM) (Source: NetBT) (EventID: 4321) (User: )
Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.24.
L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par
cet ordinateur.
CodeIntegrity:
===================================
Date: 2017-06-04 18:30:43.360
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\PIERRE~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-06-04 18:30:42.922
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\PIERRE~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-06-04 18:30:41.391
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\PIERRE~1\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2017-04-11 14:48:14.648
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.515
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.391
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.267
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.142
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:14.018
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
Date: 2017-04-11 14:48:13.895
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\wow64.dll because the set of per-page image hashes could not be found on the system.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 52%
Mémoire physique - RAM - totale: 6046.4 MB
Mémoire physique - RAM - disponible: 2880.45 MB
Mémoire virtuelle totale: 7006.4 MB
Mémoire virtuelle disponible: 3775.61 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:240 GB) (Free:63.6 GB) NTFS
Drive d: (Data) (Fixed) (Total:209.63 GB) (Free:71.9 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 57DBD367)
Partition: GPT.
==================== Fin de Addition.txt ============================