Publicité
Publicité
Format du document : text/plain
Prévisualisation
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08.02.2018
Ran by owner (09-02-2018 09:34:18)
Running from C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Protection
Windows 10 Pro Version 1709 16299.98 (X64) (2017-10-19 04:13:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1112066077-4254746724-1257480092-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1112066077-4254746724-1257480092-503 - Limited - Disabled)
Guest (S-1-5-21-1112066077-4254746724-1257480092-501 - Limited - Disabled)
owner (S-1-5-21-1112066077-4254746724-1257480092-1001 - Administrator - Enabled) => C:\Users\owner
WDAGUtilityAccount (S-1-5-21-1112066077-4254746724-1257480092-504 - Limited - Disabled)
___VMware_Conv_SA___ (S-1-5-21-1112066077-4254746724-1257480092-1015 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET NOD32 Antivirus (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
. . (HKLM\...\{569F29BA-2D46-439B-8B7C-01D999B9201D}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{9F460796-0348-4B11-BCA0-714C4B85E3D7}) (Version: 3.1.2.2 - Intel) Hidden
3RVX (HKLM-x32\...\{400A8514-5440-410A-B318-44061BD7EE8E}) (Version: 2.9.2.0 - Matthew Malensek)
7+ Taskbar Tweaker v5.4.0.1 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\7 Taskbar Tweaker) (Version: 5.4.0.1 - RaMMicHaeL)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_0_1) (Version: 15.0.1 - Adobe Systems Incorporated)
Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_0_1) (Version: 11.0.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_0_1) (Version: 8.0.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.0.294 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.3.2 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Adobe Illustrator CC 2018 (HKLM-x32\...\ILST_22_0_1) (Version: 22.0.1 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_7_1) (Version: 7.1 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1) (Version: 19.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated)
AIDA64 Extreme v5.95 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.95 - FinalWire Ltd.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.100.303.238 - ALPS ELECTRIC CO., LTD.)
Amazon Kindle (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Amazon Kindle) (Version: 1.21.0.48017 - Amazon)
Anki (HKLM-x32\...\Anki) (Version: - )
AnmanieSMP 2.4 i (HKLM-x32\...\AnmanieSMP_is1) (Version: - Christoph Walter)
Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.12.0 - Ant Software)
Arasan 20.4.1 (HKLM-x32\...\Arasan_is1) (Version: - )
Argente Utilities (HKLM\...\AUtilities) (Version: 3.1.1.1 - Raúl Argente)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
AtHome Camera Version 3.4.1 (HKLM-x32\...\{B659A0AE-7339-41DF-A7BA-81EBEBF91321}_is1) (Version: - iChano Inc.)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
AutoHotkey 1.1.27.07 (HKLM\...\AutoHotkey) (Version: 1.1.27.07 - Lexikos)
Bluetooth(R) Link (HKLM\...\{3F3DCC8C-2C93-4082-A6DE-BBDC74804FA0}) (Version: 4.3.03 - Toshiba Corporation)
Camtasia 9 (HKLM\...\{9A1BFE8E-398E-497D-B3BE-C1D8688010FC}) (Version: 9.1.1.2546 - TechSmith Corporation) Hidden
ChessX version 1.4.6 (HKLM-x32\...\{278EF322-A05B-4F81-B23B-F7D8050F6837}_is1) (Version: 1.4.6 - chessx.sourceforge.net)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Classic Sticky Notes (HKLM\...\Classic Sticky Notes_is1) (Version: 1.0 - Winaero)
Clavier+ 10.8.1 (HKLM\...\Clavier+_is1) (Version: 10.8.1 - Guillaume Ryder)
CMEDIA USB2.0 Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392016500}) (Version: 1.00.0003 - C-Media Electronics, Inc.)
Crayon Physics Deluxe version 55 (HKLM-x32\...\{4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1) (Version: 55 - Kloonigames, Ltd)
Cursor Commander (HKLM-x32\...\Cursor Commander) (Version: 1.0 - Winaero.com)
CyberLink PowerDVD 17 (HKLM-x32\...\{D15BFD7F-6BBA-49A7-A6B1-14C00DCA6842}) (Version: 17.0.1523.60 - CyberLink Corp.)
Desk Drive (HKLM-x32\...\{0F34A2F2-F248-41F0-8CAD-7711A4D24B82}) (Version: 2.1.2 - Mike Ward)
DiskFresh 1.1 (HKLM\...\DiskFresh_is1) (Version: - Puran Software)
DxO OpticsPro 11 (HKLM\...\{04B0637B-80A2-4803-8A89-60BCC1EAE4F7}) (Version: 11.4.2 - DxO)
Êâåòêà 4.0.2 (HKLM-x32\...\Êâåòêà_is1) (Version: - Áîäÿãèí Äìèòðèé)
EaseUS Partition Master 12.8 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
eBook Converter Bundle version 3.17 (HKLM-x32\...\{74173236-3507-49A7-A0FC-1BDABF0A9338}_is1) (Version: 3.17 - eBook Converter Team)
ESET Security (HKLM\...\{3EB22EED-2263-4174-9F36-09BD15A7AEF8}) (Version: 11.0.159.5 - ESET, spol. s r.o.)
Exact Audio Copy 1.3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.3 - Andre Wiethoff)
ExeIcon (remove only) (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\ExeIcon) (Version: - )
FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft)
FastStone MaxView 3.1 (HKLM-x32\...\FastStone MaxView) (Version: 3.1 - FastStone Soft.)
FastStone Photo Resizer 3.8 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.8 - FastStone Soft.)
FileMarker.NET Pro (GAOTD Edition) (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 1.0 - ArcticLine Software)
FileMenu Tools 7.5 (HKLM\...\FileMenuTools_is1) (Version: 7.5 - LopeSoft)
FolderIco 4.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
foobar2000 v1.4 beta 1 (HKLM-x32\...\foobar2000) (Version: 1.4 beta 1 - Peter Pawlowski)
Free Video Cutter version 1.2.1 (HKLM-x32\...\{B089C7D5-C978-4DB0-AFDE-471A42759CB0}_is1) (Version: 1.2.1 - Free Studio)
Geekbench 4 (HKLM-x32\...\Geekbench 4) (Version: - Primate Labs Inc.)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.33.000 - Runtime Software)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
HandBrake 1.0.7 (HKLM-x32\...\HandBrake) (Version: 1.0.7 - )
Hard Disk Sentinel (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: - HDS)
HashTab 6.0.0.34 (HKLM\...\HashTab) (Version: 6.0.0.34 - Implbits Software)
HostsMan 4.8.106 (HKLM-x32\...\{1A3DD1A9-7B7B-4ECA-AD2F-98466F49F62C}_is1) (Version: 4.8.106.0 - abelhadigital.com)
Icaros 3.0.2 (HKLM\...\Icaros_is1) (Version: 3.0.2.302 - Tabibito Technology)
Intel Extreme Tuning Utility (HKLM-x32\...\{09bb3c48-fafb-45a9-b0f2-3694c6c6e012}) (Version: 6.4.1.15 - Intel Corporation)
Intel Extreme Tuning Utility (HKLM-x32\...\{1FDC7997-C78F-4E04-B841-F2150FC06B58}) (Version: 6.4.1.15 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{64432AF2-9AB3-4F5C-8F97-D6D6FCC89C18}) (Version: 6.3.0.54 - Intel Corporation) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Network Connections 22.7.18.0 (HKLM\...\PROSetDX) (Version: 22.7.18.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3910 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{fd62de85-bda9-4280-a95b-fa2f86e0dc58}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000010-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.10.0 - Intel Corporation)
InternetOff 3.0, 32\64 bit edition (HKLM-x32\...\InternetOff_is1) (Version: - Crystal Rich, Ltd)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.3.0.13 - IObit)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
IrfanView 4.50 (64-bit) (HKLM\...\IrfanView64) (Version: 4.50 - Irfan Skiljan)
KC Softwares PortExpert (HKLM-x32\...\KC Softwares PortExpert_is1) (Version: 1.7.0.10 - KC Softwares)
KC Softwares RAMExpert (HKLM-x32\...\KC Softwares RAMExpert_is1) (Version: 1.9.0.20 - KC Softwares)
Kolor Autopano Giga 4.4 (HKLM\...\AutopanoGiga4.4) (Version: V4.4.1 - Kolor)
Kyodai Mahjongg 2006 v1.42 (HKLM-x32\...\Kyodai Mahjongg 2006_is1) (Version: - Rene-Gilles Deberdt)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.8.6.8 - Hermann Schinagl)
Logitech Options (HKLM\...\LogiOptions) (Version: - Logitech)
LRTimelapse 5.0.1 (HKLM\...\{25499041-D76C-4010-95CD-02374529C59B}}_is1) (Version: 5.0.1 - Gunther Wegner)
Macrium Reflect Workstation Edition (HKLM\...\{3194E95A-0F7B-4315-8838-2CEAB9ABA925}) (Version: 7.1.2833 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Workstation Edition (HKLM\...\MacriumReflect) (Version: 7.1 - Paramount Software (UK) Ltd.)
MacType (HKLM\...\{E68951B7-9D7A-4727-9203-34909E3358D1}) (Version: 1.17.0628 - FlyingSnow) Hidden
MacType (HKLM\...\MacType 1.17.0628) (Version: 1.17.0628 - FlyingSnow)
MakeMKV v1.12.0 (HKLM-x32\...\MakeMKV) (Version: v1.12.0 - GuinpinSoft inc)
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
MediaInfo 17.12 (HKLM\...\MediaInfo) (Version: 17.12 - MediaArea.net)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Mem Reduct (HKLM-x32\...\memreduct) (Version: 3.3.1 - Henry++)
MemInfo (remove only) (HKLM-x32\...\MemInfo) (Version: - )
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.8730.2175 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - )
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM-x32\...\DECCHECK) (Version: - )
MKVToolNix 20.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 20.0.0 - Moritz Bunkus)
Module externe DxO OpticsPro 11 pour Adobe Lightroom (HKLM-x32\...\{13E8E1D4-CA2E-4A5C-BBD4-EB4F7CA66014}) (Version: 1.0.36 - DxO Labs)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 56.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 56.0.2 (x64 fr)) (Version: 56.0.2 - Mozilla)
Mozilla Firefox 59.0 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0 (x64 en-US)) (Version: 59.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NetLimiter 4 (HKLM\...\{CCEBB3FF-7941-42D6-875C-5321AA54963F}) (Version: 4.0.33.0 - Locktime Software) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.33.0) (Version: 4.0.33.0 - Locktime Software)
NetWorx 5.5.5 (HKLM\...\NetWorx_is1) (Version: - Softperfect)
NewFolderEx (remove only) (HKLM-x32\...\NewFolderEx) (Version: - )
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NirSoft WebBrowserPassView (HKLM-x32\...\NirSoft WebBrowserPassView) (Version: - )
NordVPN (HKLM-x32\...\{E51FC618-3B5E-4BF2-8C28-D71B9D23C67E}) (Version: 6.11.12 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.11.12) (Version: 6.11.12 - NordVPN)
OEM Registration Program (HKLM-x32\...\{B69F4E72-CCA4-4352-BF1C-708CE3D96E25}) (Version: 1.1.0 - Toshiba Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2175 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2175 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.8730.2175 - Microsoft Corporation) Hidden
Old Calculator for Windows 10 (HKLM-x32\...\OldCalcForWin10) (Version: 1.1 - hxxp://winaero.com)
Old Task Manager for Windows 10 (HKLM-x32\...\Old Task Manager for Windows 10) (Version: 1.0 - hxxp://winaero.com)
PC8DeviceAgent 2.5.227 (HKLM\...\PC8DeviceAgent) (Version: 2.5.227 - SRM, Inc.)
PCあんしん点検ユーティリティ (HKLM-x32\...\{D9CD7DB3-E2BE-4BC6-85A6-EF9235C0B096}) (Version: 2.00.01.02 - Toshiba Corporation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
photoFXlab (HKLM-x32\...\photoFXlab) (Version: 1.2.11 - Topaz Labs)
Photomatix Pro version 6.0.3 (HKLM\...\PhotomatixPro6x64_is1) (Version: 6.0.3 - HDRsoft Ltd)
PhotoWizard (HKLM\...\{3C100F93-4F0E-4C32-9AEB-EFB3E2CA34F8}) (Version: 1.6.0 - Microsoft)
Prey Anti-Theft (HKLM-x32\...\{4D91189D-F5FD-45A9-B63E-58291ADA338B}) (Version: 1.6.5 - Prey, Inc.) Hidden
Prey Anti-Theft (HKLM-x32\...\{56CB345E-8F97-4103-B365-3B4C9E30FFD6}) (Version: 1.7.3 - Prey, Inc.) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.2 beta r3018 - Rainmeter)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21302 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
recALL version 16.12 (HKLM-x32\...\recALL_is1) (Version: 16.12 - )
Registry Finder 2.22 (HKLM\...\{CC3C7E59-8611-4542-8BFD-FFC6759AD0FB}_is1) (Version: 2.22 - Sergey Filippov)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Scrabble solutions (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Scrabble solutions) (Version: - )
scrabbleproB 1.1.7 (HKLM-x32\...\scrabbleproB_is1) (Version: - scrabblepro)
Screen Locker (HKLM-x32\...\{681059E3-1E0B-4E25-8F2E-B8476703E9A7}) (Version: 1.0.0 - Musabbir Mamun)
ScreenToGif (HKLM-x32\...\{49C1CB81-25A2-4C2C-B556-CE7BEBBAE5CA}) (Version: 2.12.0 - Nicke Manarin)
ServiceCommander Version 4 (HKLM-x32\...\ServiceCommander_is1) (Version: 4.0 - Core Technologies Consulting, LLC)
Simple DNSCrypt x64 (HKLM\...\{F555792E-D966-47BF-B57A-6065DBA8F6EB}) (Version: 0.4.3 - bitbeans)
Simple Sticky Notes 4.1.1 (HKLM-x32\...\Simple Sticky Notes_is1) (Version: - Simnet Ltd.)
Skype™ 7.40 (HKLM-x32\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 7.40.104 - Skype Technologies S.A.)
Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 (HKLM-x32\...\Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373) (Version: 1.0.140373 - Huyustus)
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
SRMX version 3.1.589 (HKLM-x32\...\{64BEE57A-50EA-46AE-939C-898BA1A0D22F}_is1) (Version: 3.1.589 - SRM GmbH)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version: - )
Switcher 2.0.0 (HKLM-x32\...\{F7DB6677-661D-4835-AAD8-1B7F4C98D7CE}) (Version: 2.0.0 - Bao Nguyen)
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 8.5.26.0 - 2BrightSparks)
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
Textify v1.6.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Textify) (Version: 1.6.2 - RaMMicHaeL)
The Bat! v8.2.4 (64-bit) (HKLM\...\{81544AD0-A265-4E3C-B8C0-1C21D9590170}) (Version: 8.2.4 - Ritlabs, SRL)
Topaz Adjust 5 (HKLM-x32\...\Topaz Adjust 5) (Version: 5.2.0 - Topaz Labs, LLC)
Topaz B&W Effects (HKLM-x32\...\Topaz BW Effects 2) (Version: 2.1.0 - Topaz Labs, LLC)
Topaz Clarity (HKLM-x32\...\Topaz Clarity) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Clean 3 (HKLM-x32\...\Topaz Clean 3) (Version: 3.2.0 - Topaz Labs, LLC)
Topaz DeJpeg 4 (HKLM-x32\...\Topaz DeJpeg 4) (Version: 4.1.0 - Topaz Labs, LLC)
Topaz DeNoise 6 (HKLM-x32\...\Topaz DeNoise 6) (Version: 6.0.1 - Topaz Labs, LLC)
Topaz Detail 3 (HKLM-x32\...\Topaz Detail 3) (Version: 3.3.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (HKLM-x32\...\Topaz Fusion Express 2) (Version: 2.1.3 - Topaz Labs, LLC)
Topaz Glow 2 (HKLM\...\Topaz Glow 2) (Version: 2.0.0 - Topaz Labs, LLC)
Topaz Impression 2 (HKLM-x32\...\Topaz Impression 2) (Version: 2.0.4 - Topaz Labs, LLC)
Topaz InFocus (HKLM-x32\...\Topaz InFocus) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Lens Effects (HKLM-x32\...\Topaz Lens Effects) (Version: 1.3.0 - Topaz Labs, LLC)
Topaz ReMask 5 (HKLM-x32\...\Topaz ReMask 5) (Version: 5.0.1 - Topaz Labs, LLC)
Topaz ReStyle (HKLM-x32\...\Topaz ReStyle) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Simplify 4 (HKLM-x32\...\Topaz Simplify 4) (Version: 4.2.0 - Topaz Labs, LLC)
Topaz Star Effects (HKLM-x32\...\Topaz Star Effects) (Version: 1.2.0 - Topaz Labs, LLC)
Topaz Texture Effects 2 (HKLM-x32\...\Topaz Texture Effects 2) (Version: 2.1.0 - Topaz Labs, LLC) <==== ATTENTION
TOSHIBA Blu-ray Disc Player (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 3.0.0.23 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.08.6402 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.0.6406 - Toshiba Corporation)
TOSHIBA PalaDouga (HKLM-x32\...\{21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6}) (Version: 2014.0301.0002 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM\...\{CD4B9E2C-4295-4920-82F2-C87113822E32}) (Version: 3.03.04.02 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 4.02.00.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.01.56006006 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{4E688A2F-C4FB-4606-9282-1045B79CBFE2}) (Version: 2.6.16.0 - Toshiba Corporation)
TOSHIBA Speech Synthesis (HKLM\...\{36B0B896-6CD8-4C5F-B7E1-2AC8E9588ACC}) (Version: 1.5.2.0 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0041 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.5.32002 - Toshiba Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.0-rc1 - VideoLAN)
VMware ThinApp (HKLM-x32\...\{164B6D77-345B-4137-A92A-89E21D1C22AD}) (Version: 5.2.28433 - VMware, Inc.)
VMware vCenter Converter Standalone (HKLM-x32\...\{DA09FD63-5AE7-4bf6-8B86-0FCA4DEA8F8F}) (Version: 6.2.0.7348398 - VMware, Inc.)
VMware Workstation (HKLM\...\{859B1EE7-44E6-4323-96D3-02328F38268B}) (Version: 14.1.1 - VMware, Inc.)
Volume2 1.1.6 (HKLM-x32\...\Volume2) (Version: 1.1.6 - Alexandr Irza)
Waterfox 55.2.2 (x64 en-US) (HKLM\...\Waterfox 55.2.2 (x64 en-US)) (Version: 55.2.2 - Waterfox Ltd)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
WinDirStat 1.1.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\WinDirStat) (Version: - )
WindowManager (HKLM-x32\...\WindowManager) (Version: 5.2.0 - DeskSoft)
Windows 10 Manager (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Windows 10 Manager 2.2.3) (Version: 2.2.3 - Yamicsoft)
Windows Explorer Tracker 2.0 (HKLM-x32\...\Windows Explorer Tracker_is1) (Version: - TriSun Software Inc.)
Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 5.0.2.0 - BiniSoft.org)
Windows Repair Toolbox version 2.0.0.9 (HKLM-x32\...\{A8D7DA31-9E70-437D-97C4-C4887752E029}_is1) (Version: 2.0.0.9 - Alexandre Coelho)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinSplit Revolution (v11.04) (HKLM-x32\...\WinSplit Revolution) (Version: 11.04 - Raphael Lencrerot)
WinUAE 3.6.0 (HKLM-x32\...\{31C5D3C3-E6CC-4E0F-96FB-A3F3C988140B}) (Version: 3.6.0.0 - Arabuusimiehet)
Wireshark 2.4.4 64-bit (HKLM-x32\...\Wireshark) (Version: 2.4.4 - The Wireshark developer community, hxxps://www.wireshark.org)
Wise Folder Hider (HKLM-x32\...\Wise Folder Hider_is1) (Version: 4.2.2 - WiseCleaner.com, Inc.)
XnConvert 1.76 (HKLM\...\XnConvert_is1) (Version: 1.76 - Gougelet Pierre-e)
XnView Shell Extension 3.5.1 (64bits) (HKLM\...\XnView Shell Extension_is1) (Version: 3.5.1 - Gougelet Pierre-e)
インテル® PROSet/Wireless ソフトウェア (HKLM-x32\...\{6da487a6-c50d-494e-aaa0-6d8ce9c37ef3}) (Version: 20.10.2 - Intel Corporation)
東芝スクリーンミラーリング (HKLM-x32\...\{FB840BB8-82D9-43F8-B7AD-C1DE01185294}) (Version: 1.0.13.3 - APUSONE Technology Inc.) Hidden
東芝スクリーンミラーリング for スマートフォン/タブレット (HKLM-x32\...\InstallShield_{FB840BB8-82D9-43F8-B7AD-C1DE01185294}) (Version: 1.0.13.3 - APUSONE Technology Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-813CB5835A7A}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{b7c2f028-a138-4ad4-aaa1-77cf720d5c66}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{d63b0bea-dc64-4c3b-af8b-d860551f91d4}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers1: [$PowerDVD] -> {E72C61D0-C453-42BA-84C9-88AEE3DEE676} => C:\ProgramData\CyberLink\PowerDVD17\OpenWith\PDVD_Shell64.dll [2017-03-21] (CyberLink Corp.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers1: [File Marker] -> {B70B7A24-5180-4092-B3BA-6266F914C053} => C:\Program Files (x86)\FileMarker.NET\FileMarkerShlExt64.dll [2017-05-17] (ArcticLine Software)
ContextMenuHandlers1: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers1: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => C:\Program Files\XnView\ShellEx\XnViewShellExt64.dll [2015-02-19] ()
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers5: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-03-23] (Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers6: [Folderico] -> {CC0C45C5-EFDE-4B8A-A8B0-9ED733D9E6AC} => C:\Program Files\FolderIco\FolderIco.dll [2015-08-31] (TeoreX)
ContextMenuHandlers6: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => C:\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll [2017-08-16] (www.startisback.com)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {09BD39FD-3B6E-425A-A477-92E1F328CDC8} - System32\Tasks\WindowManager => C:\Program Files (x86)\WindowManager\WindowManager.exe [2018-02-06] (DeskSoft)
Task: {16B2415D-73DF-458A-988C-FD85766A4DAA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-01-10] (Microsoft Corporation)
Task: {2EB38888-E524-4916-A07A-85F96C3E8FCB} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {448D28A8-2070-4724-B317-4E1C9B4B1B2B} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2014-04-03] (TOSHIBA Corporation)
Task: {5D1D6240-2BE6-4E53-952A-B4E862EEC206} - System32\Tasks\BTSchedulerTask => C:\Program Files (x86)\TOSHIBA\Toshiba Bluetooth Device Profile Utility\TosBt_NotificationScheduler.exe [2015-07-08] (Toshiba Corporation)
Task: {6DC234E0-886F-4EC5-B223-2F661F93E97A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {8294C954-AF28-4726-A6BA-81BECFAA689D} - System32\Tasks\{150FD0FE-9A31-4F2A-8BE1-F923285CBAC6} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe" -d "C:\Program Files (x86)\Toshiba\OEM Registration Program"
Task: {86D1F303-A3F9-43CA-A765-78978098193E} - System32\Tasks\Open Hardware Monitor\Startup => C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe [2016-11-07] ()
Task: {87602666-310F-45B2-99B0-60D8E5162985} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-02] (Microsoft Corporation)
Task: {8AE8B3A9-6F26-4B9D-8E14-15CB86955539} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_owner => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [2017-03-10] (H.D.S. Hungary)
Task: {8FEC7B8F-636F-4F81-BFA1-4738E1036DF2} - System32\Tasks\Uninstaller_SkipUac_owner => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2018-01-29] (IObit)
Task: {9EDDA363-999A-4D27-93AE-E4D1550B971D} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-01-30] (Adobe Systems Incorporated)
Task: {A57B479F-C28A-45A7-8634-B4DE6286241D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.)
Task: {C2959848-030C-4B82-9281-42EAB9AE2B21} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-02] (Microsoft Corporation)
Task: {C58975CA-052C-4DDE-9061-7FDAE294B57A} - System32\Tasks\S-1-5-21-1112066077-4254746724-1257480092-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {C6EE3D67-9822-4F67-9224-6F590E4B8C5A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-01-10] (Microsoft Corporation)
Task: {DB03D8B2-4FAE-43BB-9088-743CE3BF48BE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-28] (Adobe Systems Incorporated)
Task: {E38F111D-B699-4E1D-A2C1-8419C8C2830E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-01-10] (Microsoft Corporation)
Task: {E7048644-EE23-411A-B60E-C5318DA5B4CD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.)
Task: {ECD0E706-E251-478E-819B-9A642570DAEA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-01-10] (Microsoft Corporation)
Task: {F81C6B7C-182A-42AE-BD53-5A124CF2A75E} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-gokpok@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système\VMware\ThinApp\ThinApp Help.lnk -> hxxp://www.vmware.com/info?id=90
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet\Reset Data Usage.bat.lnk -> C:\Program Files (x86)\Reset Data Usage - Script\Reset_Data_Usage.bat ()
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk -> C:\Program Files\Firefox\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) ==============
2017-09-29 21:41 - 2017-09-29 21:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-06-07 14:20 - 2016-05-25 17:53 - 001634072 _____ () C:\Program Files (x86)\InternetOff\IOffSvc.exe
2017-10-22 10:00 - 2017-10-22 10:00 - 000265936 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy-secondary.exe
2017-10-22 10:00 - 2017-10-22 10:00 - 000775216 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\libsodium-18.dll
2017-10-22 10:00 - 2017-10-22 10:00 - 000265936 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy.exe
2017-12-08 23:48 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-01-31 19:35 - 2009-01-12 08:15 - 000082872 _____ () C:\WINDOWS\SysWOW64\NMSAccess64.exe
2018-02-06 23:00 - 2018-02-06 23:00 - 000420640 _____ () C:\Program Files (x86)\NordVPN\nordvpn-service.exe
2014-02-27 12:31 - 2014-02-27 12:31 - 000013312 _____ () C:\Windows\SysWOW64\SMITSC.exe
2016-08-31 13:49 - 2016-08-31 13:49 - 001088000 _____ () \\?\C:\Windows\Prey\versions\1.7.3\node_modules\sqlite3\lib\binding\node-v46-win32-x64\node_sqlite3.node
2011-04-13 04:53 - 2011-04-13 04:53 - 000015360 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitHook64.DLL
2017-05-12 00:15 - 2016-11-07 00:15 - 000494592 _____ () C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe
2018-01-04 09:04 - 2018-01-04 09:04 - 000649672 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2004-10-01 02:15 - 2004-10-01 02:15 - 000192000 _____ () C:\Program Files\LinkShellExtension\RockallDLL.dll
2016-06-09 20:20 - 2010-09-29 00:52 - 000099840 _____ () C:\Program Files\ShellFolderFix64\ShellFolderFix.dll
2016-12-02 14:32 - 2017-03-23 21:57 - 000401936 _____ () C:\WINDOWS\system32\igfxTray.exe
2012-07-18 17:38 - 2012-07-18 17:38 - 000020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2016-06-12 16:46 - 2016-09-19 11:09 - 000813056 _____ () C:\Program Files\NetWorx\sqlite.dll
2016-06-07 14:20 - 2016-05-25 17:53 - 003182360 _____ () C:\Program Files (x86)\InternetOff\InternetOff.exe
2016-06-09 00:28 - 2007-09-02 19:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2011-04-13 04:53 - 2011-04-13 04:53 - 003951616 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
2011-04-13 04:53 - 2011-04-13 04:53 - 000015872 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr32.exe
2011-04-13 04:53 - 2011-04-13 04:53 - 000017920 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr64.exe
2017-10-05 07:13 - 2017-10-05 07:13 - 000263680 _____ () C:\Users\owner\AppData\Roaming\Textify\Textify.exe
2017-03-19 17:00 - 2014-10-03 20:06 - 000014848 _____ () C:\Program Files\volumouse-x64\volumouse32.exe
2017-11-25 09:31 - 2017-11-25 09:31 - 000161992 _____ () C:\Program Files\WindowsApps\21090PaddyXu.QuickLook_0.3.2.0_neutral__egxr34yet59cg\Package\QuickLook.Native64.dll
2017-11-25 09:31 - 2017-11-25 09:31 - 014872064 ____N () C:\Users\owner\AppData\Local\Temp\Magick.NET.net40.7.0.7.900\Magick.NET-Q8-x64.Native.dll
2017-12-21 00:22 - 2017-12-21 00:22 - 000110080 _____ () C:\Program Files\Rainmeter\Plugins\PowerPlugin.dll
2016-06-09 19:37 - 2014-04-07 18:18 - 002592256 _____ () C:\Program Files (x86)\Gest\Gest.exe
2016-06-09 20:20 - 2010-09-29 00:52 - 002625024 _____ () C:\Program Files\ShellFolderFix64\ShellFolderFixUI.exe
2017-05-01 23:55 - 2012-04-28 13:01 - 000350720 _____ () C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
2016-10-05 19:41 - 2013-09-22 16:40 - 000132312 _____ () C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe
2018-01-19 17:46 - 2018-01-19 17:47 - 004698840 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11712.1001.13.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-03-11 21:36 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-03-11 21:36 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-03-11 21:36 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2018-01-19 03:25 - 2018-01-19 03:25 - 000233472 _____ () C:\Program Files (x86)\NordVPN\Liberation.Native.Firewall.dll
2017-12-12 02:04 - 2017-12-12 02:04 - 000128424 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\expat.dll
2017-12-12 02:04 - 2017-12-12 02:04 - 000402776 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\ssoClient.dll
2017-12-12 02:04 - 2017-12-12 02:04 - 000096256 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\mspack.dll
2011-04-13 04:53 - 2011-04-13 04:53 - 000013312 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitHook32.DLL
2016-06-09 00:28 - 2007-09-02 19:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2011-04-13 04:53 - 2011-04-13 04:53 - 000011264 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitLib.dll
2017-12-25 20:03 - 2017-12-25 20:03 - 000064512 _____ () C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_1.5.2.0_x86__1sdd7yawvg6ne\EarTrumpet.Interop.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2017-03-11 21:36 - 2018-01-25 17:02 - 000899856 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2017-03-11 21:36 - 2018-01-25 17:01 - 000631568 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
2017-03-11 21:36 - 2017-05-22 11:16 - 000524064 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\sqlite3.dll
2017-11-22 18:18 - 2017-11-22 18:18 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 21:46 - 2018-01-31 21:01 - 000137739 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 rad.msn.com
0.0.0.0 preview.msn.com
0.0.0.0 adnexus.net
0.0.0.0 az361816.vo.msecnd.net
0.0.0.0 az512334.vo.msecnd.net
0.0.0.0 ssw.live.com
0.0.0.0 ca.telemetry.microsoft.com
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 spynetalt.microsoft.com
0.0.0.0 fe3.delivery.dsp.mp.microsoft.com.nsatc.net
0.0.0.0 www.clubic.com
0.0.0.0 proclubic.com
0.0.0.0 www.01net.com
0.0.0.0 www.softonic.net
0.0.0.0 www.telecharger.com
0.0.0.0 cmp-cdn.ghostery.com
There are 3931 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\Control Panel\Desktop\\Wallpaper -> C:\Fond d'ecran\Copie de Kyoto.jpeg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8609DA2E-291D-489D-8B7C-60F33401AAFA}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE
FirewallRules: [{60E6D465-398E-4850-BE86-7EF7620A2377}] => (Block) C:\windows\system32\svchost.exe
FirewallRules: [{382F028A-050A-42E9-AB93-BE92DCEE87ED}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{CD4FD1A1-A5C1-47E2-9200-D4F7C9E6E206}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{4C751C72-0D13-4062-835D-50AC5B2269C5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{27A90A87-DF76-4149-A3B9-D853831D387B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{83A8806C-9564-4516-AEFB-53807FBDE464}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A4FA2263-E1DA-4109-A762-7406AEEB19EB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{08E70FAB-81DC-40C1-A507-BEA90D7B90D6}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{666E381F-82EB-44D7-89B1-6DCF89124980}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{46FA44B7-45AD-4A2E-8F6A-7174BB07566C}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{2B09BF13-0083-40D1-96F2-E58F88384785}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{341A3DE8-7807-406A-9DE6-1BA8362D7E3E}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{E8ECFD94-F7FF-4C6C-850B-FEC0339F19DE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6DCF569F-DA0A-486B-9EDC-D5396E9F8937}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{2ACC8486-FA60-45D6-99A0-57B6EEE73832}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{97BF53C6-661D-4C86-8B41-828956F528B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{D73E069C-FC1A-4560-87EA-73B3F073435B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Spacewar\SteamworksExample.exe
FirewallRules: [{6DE6F25A-F9C7-4EBC-85E7-A01A717E7676}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Spacewar\SteamworksExample.exe
FirewallRules: [{B01ACA64-08F1-4D91-8DD4-A3D8346E7D99}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{AAF36EF1-7D57-4B19-8F69-984FD4A6FF51}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{E4217D2D-0841-4BF7-8BEB-E4587336D84C}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{7811A197-F001-4BA6-A29A-7037C8155170}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{B930391C-D831-4A1F-9E69-7683052E0DEC}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{FA74EE12-1948-4D65-9C2C-CFD50E69707E}] => (Block) LPort=8318
FirewallRules: [{3276B4B5-4831-4FAD-86B7-966351A2A672}] => (Block) %ProgramFiles% (x86)\Destroy Windows 10 Spying\Destroy Windows 10 Spying.exe
FirewallRules: [{9C7026D5-6268-4457-B52E-ACD7827D0BD0}] => (Block) %ProgramFiles% (x86)\Destroy Windows 10 Spying\Destroy Windows 10 Spying.exe
FirewallRules: [{F43936C9-4F0F-48FA-9FB0-CE2E235C307B}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{F8546430-C419-4C78-931D-8248F42B55B0}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{9091662B-E434-474B-8791-DF495F59791D}] => (Allow) C:\Program Files\Firefox\firefox.exe
FirewallRules: [{A26E8CAB-70DA-495D-856D-EEC2E73DD733}] => (Allow) C:\Program Files\Firefox\firefox.exe
FirewallRules: [{398A6E4C-9A77-4D1E-B37F-ACE3A95B1A26}] => (Block) C:\Program Files\Windows Firewall Control\wfc.exe
FirewallRules: [{EC5633D4-B1E2-44BD-B80E-747FBB6D11A6}] => (Block) C:\WINDOWS\system32\spoolsv.exe
FirewallRules: [{1747461C-472A-46C3-BE21-B120D90531B7}] => (Allow) C:\Program Files\waterfox\waterfox.exe
FirewallRules: [{FABB2FC8-00BF-4EE8-9D2E-C89E687CEE2C}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [TCP Query User{0C45436E-3294-4394-A6D0-D9DA6744F501}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{20F73919-3406-4586-9367-28A75003B4E1}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{4C356547-3C4D-4EFA-9D21-DB54EE9E0E1E}] => (Block) C:\WINDOWS\Explorer.EXE
FirewallRules: [{FD1F2068-F697-46B0-81FF-2C112388FDAD}] => (Block) C:\Program Files\Notepad++\notepad++.exe
FirewallRules: [{01BC0803-1306-4EE7-909F-7D2F2BE3A736}] => (Block) C:\Program Files\SumatraPDF\SumatraPDF.exe
FirewallRules: [{17339735-D644-49C2-9079-0E98CD23550B}] => (Block) C:\Program Files\WinRAR\WinRAR.exe
FirewallRules: [{90F28D44-48CC-43B8-8A1B-CF1B48606A01}] => (Block) C:\Program Files\Win10 Spy Disabler\Win10SpyDisabler.exe
FirewallRules: [{5D15C74F-15DE-4597-B152-70ED694D422A}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\uexperice.exe
FirewallRules: [{C6AF62E3-AB8A-432A-998A-FFB86CC6208D}] => (Block) C:\Program Files (x86)\Free Video Cutter\FreeVideoCutter.exe
FirewallRules: [{08F0760E-BEDA-4B67-962C-CAC174745E14}] => (Block) C:\Program Files (x86)\Volume2\Volume2.exe
FirewallRules: [{1A825B0E-75AB-4F24-9C16-F0089BED656B}] => (Block) C:\Program Files (x86)\Volume2\Volume2PM.exe
FirewallRules: [{412176CB-8F34-4BCB-AFEB-326193271975}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\CleanUpUI.exe
FirewallRules: [{C46F338D-51B0-4352-849C-ADF830C32999}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\epm0.exe
FirewallRules: [{5D26B2F7-6245-4520-999A-19788F985024}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\epmConsole.exe
FirewallRules: [{EB820226-7526-467D-95BD-557C62B1B0B0}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\ErrorReport.exe
FirewallRules: [{BDC3E65C-6705-49ED-86A8-786C5717BA26}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\ExportISO.exe
FirewallRules: [{0595C786-2C42-4694-B600-F2FAD84A7844}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\Main.exe
FirewallRules: [{833FD648-0B1B-463E-ACDB-926BBB9EFACF}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\ureport.exe
FirewallRules: [{4F73D799-B11E-41AF-A849-45B0C7DF97A7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{55739DB2-2B74-4500-AB8B-FF9C7AE2AB20}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD.exe
FirewallRules: [{1A9C9A8A-19B2-403E-912B-C6AFBCC597DE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Kernel\DMS\CLMSServerPDVD17.exe
FirewallRules: [{3C94B15C-F287-4992-8024-4D8558671108}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe
FirewallRules: [{13D8DDF7-ACF8-4566-9809-A948F0CF62D0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Movie\PowerDVDMovie.exe
FirewallRules: [{38C61B16-E860-447D-AB53-B96F3EBE54F9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\CastingStation.exe
FirewallRules: [{B82865CA-C2EE-4F66-9A0B-06EDDF16F1F4}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{1B49D6DB-E875-4698-AA78-14735CA77FF9}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{C8481DAC-67E1-4F1A-8FCC-C42CCC413D22}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{CB9F27C1-E438-4457-9D31-E06BF02C2EB3}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{0933FA6A-3742-4BBB-9F37-D22108F9480C}] => (Allow) C:\Windows\Prey\versions\1.7.3\bin\node.exe
FirewallRules: [{B05B58AD-737E-45B8-A604-B12F541C52EF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
Name: TOSHIBA Web Camera - HD
Description: Périphérique vidéo USB
Class Guid: {ca3e7ab9-b4c3-4ae6-8251-579ef933890f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/08/2018 10:55:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Autoruns.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.98_none_144040db3691ec4e.manifest.
Composant 2 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.98_none_cc930a042215c348.manifest.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1018) (User: )
Description: La collecte des données des compteurs de performance a été désactivée pour cette session à partir du service « VMware » car la bibliothèque de compteurs de performance pour ce service a généré une ou plusieurs erreurs. Les erreurs à l’origine de cette action ont été écrites dans le journal des événements des applications.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1022) (User: )
Description: Windows ne peut pas ouvrir la DLL de compteur extensible 64 bits VMware dans un environnement 32 bits. Contactez le fabricant du fichier pour obtenir une version 32 bits. Si vous exécutez un environnement 64 bits natif, vous pouvez également ouvrir la DLL de compteur extensible 64 bits en utilisant la version 64 bits de l’Analyseur de performances. Pour utiliser cet outil, ouvrez le dossier Windows, puis le dossier System32 et démarrez Perfmon.exe.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows.
Error: (02/08/2018 10:52:20 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « MSDTC » dans la DLL « C:\WINDOWS\system32\msdtcuiu.DLL ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
System errors:
=============
Error: (02/09/2018 08:55:25 AM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX7gfgmgykbws8x0ccxbt2zeamtttc1ntp.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/09/2018 08:45:41 AM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/09/2018 08:45:30 AM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 11:11:22 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:41 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:41 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:40 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:07 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
Error: (02/08/2018 10:52:07 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:05 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
CodeIntegrity:
===================================
Date: 2018-02-06 18:44:45.208
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.
Date: 2018-02-06 18:44:44.512
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2018-02-06 18:44:44.259
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2018-01-03 00:13:07.657
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.
Date: 2018-01-03 00:13:06.788
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2018-01-03 00:13:06.320
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:20:30.931
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:19:42.385
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:18:21.849
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:18:10.349
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4710MQ CPU @ 2.50GHz
Percentage of memory in use: 24%
Total physical RAM: 16309.31 MB
Available physical RAM: 12394.71 MB
Total Virtual: 22309.31 MB
Available Virtual: 17560.73 MB
==================== Drives ================================
Drive c: (WINDOWS) (Fixed) (Total:474.82 GB) (Free:86.84 GB) NTFS
==================== MBR & Partition Table ==================
==================== End of Addition.txt ============================
Ran by owner (09-02-2018 09:34:18)
Running from C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Protection
Windows 10 Pro Version 1709 16299.98 (X64) (2017-10-19 04:13:23)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1112066077-4254746724-1257480092-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1112066077-4254746724-1257480092-503 - Limited - Disabled)
Guest (S-1-5-21-1112066077-4254746724-1257480092-501 - Limited - Disabled)
owner (S-1-5-21-1112066077-4254746724-1257480092-1001 - Administrator - Enabled) => C:\Users\owner
WDAGUtilityAccount (S-1-5-21-1112066077-4254746724-1257480092-504 - Limited - Disabled)
___VMware_Conv_SA___ (S-1-5-21-1112066077-4254746724-1257480092-1015 - Limited - Enabled)
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: ESET NOD32 Antivirus (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
. . (HKLM\...\{569F29BA-2D46-439B-8B7C-01D999B9201D}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{9F460796-0348-4B11-BCA0-714C4B85E3D7}) (Version: 3.1.2.2 - Intel) Hidden
3RVX (HKLM-x32\...\{400A8514-5440-410A-B318-44061BD7EE8E}) (Version: 2.9.2.0 - Matthew Malensek)
7+ Taskbar Tweaker v5.4.0.1 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\7 Taskbar Tweaker) (Version: 5.4.0.1 - RaMMicHaeL)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_0_1) (Version: 15.0.1 - Adobe Systems Incorporated)
Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_0_1) (Version: 11.0.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_0_1) (Version: 8.0.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.0.294 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.3.2 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Adobe Illustrator CC 2018 (HKLM-x32\...\ILST_22_0_1) (Version: 22.0.1 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_7_1) (Version: 7.1 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1) (Version: 19.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated)
AIDA64 Extreme v5.95 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.95 - FinalWire Ltd.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.100.303.238 - ALPS ELECTRIC CO., LTD.)
Amazon Kindle (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Amazon Kindle) (Version: 1.21.0.48017 - Amazon)
Anki (HKLM-x32\...\Anki) (Version: - )
AnmanieSMP 2.4 i (HKLM-x32\...\AnmanieSMP_is1) (Version: - Christoph Walter)
Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.12.0 - Ant Software)
Arasan 20.4.1 (HKLM-x32\...\Arasan_is1) (Version: - )
Argente Utilities (HKLM\...\AUtilities) (Version: 3.1.1.1 - Raúl Argente)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
AtHome Camera Version 3.4.1 (HKLM-x32\...\{B659A0AE-7339-41DF-A7BA-81EBEBF91321}_is1) (Version: - iChano Inc.)
Audacity 2.2.1 (HKLM-x32\...\Audacity_is1) (Version: 2.2.1 - Audacity Team)
AutoHotkey 1.1.27.07 (HKLM\...\AutoHotkey) (Version: 1.1.27.07 - Lexikos)
Bluetooth(R) Link (HKLM\...\{3F3DCC8C-2C93-4082-A6DE-BBDC74804FA0}) (Version: 4.3.03 - Toshiba Corporation)
Camtasia 9 (HKLM\...\{9A1BFE8E-398E-497D-B3BE-C1D8688010FC}) (Version: 9.1.1.2546 - TechSmith Corporation) Hidden
ChessX version 1.4.6 (HKLM-x32\...\{278EF322-A05B-4F81-B23B-F7D8050F6837}_is1) (Version: 1.4.6 - chessx.sourceforge.net)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Classic Sticky Notes (HKLM\...\Classic Sticky Notes_is1) (Version: 1.0 - Winaero)
Clavier+ 10.8.1 (HKLM\...\Clavier+_is1) (Version: 10.8.1 - Guillaume Ryder)
CMEDIA USB2.0 Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392016500}) (Version: 1.00.0003 - C-Media Electronics, Inc.)
Crayon Physics Deluxe version 55 (HKLM-x32\...\{4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1) (Version: 55 - Kloonigames, Ltd)
Cursor Commander (HKLM-x32\...\Cursor Commander) (Version: 1.0 - Winaero.com)
CyberLink PowerDVD 17 (HKLM-x32\...\{D15BFD7F-6BBA-49A7-A6B1-14C00DCA6842}) (Version: 17.0.1523.60 - CyberLink Corp.)
Desk Drive (HKLM-x32\...\{0F34A2F2-F248-41F0-8CAD-7711A4D24B82}) (Version: 2.1.2 - Mike Ward)
DiskFresh 1.1 (HKLM\...\DiskFresh_is1) (Version: - Puran Software)
DxO OpticsPro 11 (HKLM\...\{04B0637B-80A2-4803-8A89-60BCC1EAE4F7}) (Version: 11.4.2 - DxO)
Êâåòêà 4.0.2 (HKLM-x32\...\Êâåòêà_is1) (Version: - Áîäÿãèí Äìèòðèé)
EaseUS Partition Master 12.8 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
eBook Converter Bundle version 3.17 (HKLM-x32\...\{74173236-3507-49A7-A0FC-1BDABF0A9338}_is1) (Version: 3.17 - eBook Converter Team)
ESET Security (HKLM\...\{3EB22EED-2263-4174-9F36-09BD15A7AEF8}) (Version: 11.0.159.5 - ESET, spol. s r.o.)
Exact Audio Copy 1.3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.3 - Andre Wiethoff)
ExeIcon (remove only) (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\ExeIcon) (Version: - )
FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft)
FastStone MaxView 3.1 (HKLM-x32\...\FastStone MaxView) (Version: 3.1 - FastStone Soft.)
FastStone Photo Resizer 3.8 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.8 - FastStone Soft.)
FileMarker.NET Pro (GAOTD Edition) (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 1.0 - ArcticLine Software)
FileMenu Tools 7.5 (HKLM\...\FileMenuTools_is1) (Version: 7.5 - LopeSoft)
FolderIco 4.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
foobar2000 v1.4 beta 1 (HKLM-x32\...\foobar2000) (Version: 1.4 beta 1 - Peter Pawlowski)
Free Video Cutter version 1.2.1 (HKLM-x32\...\{B089C7D5-C978-4DB0-AFDE-471A42759CB0}_is1) (Version: 1.2.1 - Free Studio)
Geekbench 4 (HKLM-x32\...\Geekbench 4) (Version: - Primate Labs Inc.)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.33.000 - Runtime Software)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
HandBrake 1.0.7 (HKLM-x32\...\HandBrake) (Version: 1.0.7 - )
Hard Disk Sentinel (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: - HDS)
HashTab 6.0.0.34 (HKLM\...\HashTab) (Version: 6.0.0.34 - Implbits Software)
HostsMan 4.8.106 (HKLM-x32\...\{1A3DD1A9-7B7B-4ECA-AD2F-98466F49F62C}_is1) (Version: 4.8.106.0 - abelhadigital.com)
Icaros 3.0.2 (HKLM\...\Icaros_is1) (Version: 3.0.2.302 - Tabibito Technology)
Intel Extreme Tuning Utility (HKLM-x32\...\{09bb3c48-fafb-45a9-b0f2-3694c6c6e012}) (Version: 6.4.1.15 - Intel Corporation)
Intel Extreme Tuning Utility (HKLM-x32\...\{1FDC7997-C78F-4E04-B841-F2150FC06B58}) (Version: 6.4.1.15 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{64432AF2-9AB3-4F5C-8F97-D6D6FCC89C18}) (Version: 6.3.0.54 - Intel Corporation) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Network Connections 22.7.18.0 (HKLM\...\PROSetDX) (Version: 22.7.18.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3910 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{fd62de85-bda9-4280-a95b-fa2f86e0dc58}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000010-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.10.0 - Intel Corporation)
InternetOff 3.0, 32\64 bit edition (HKLM-x32\...\InternetOff_is1) (Version: - Crystal Rich, Ltd)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.3.0.13 - IObit)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
IrfanView 4.50 (64-bit) (HKLM\...\IrfanView64) (Version: 4.50 - Irfan Skiljan)
KC Softwares PortExpert (HKLM-x32\...\KC Softwares PortExpert_is1) (Version: 1.7.0.10 - KC Softwares)
KC Softwares RAMExpert (HKLM-x32\...\KC Softwares RAMExpert_is1) (Version: 1.9.0.20 - KC Softwares)
Kolor Autopano Giga 4.4 (HKLM\...\AutopanoGiga4.4) (Version: V4.4.1 - Kolor)
Kyodai Mahjongg 2006 v1.42 (HKLM-x32\...\Kyodai Mahjongg 2006_is1) (Version: - Rene-Gilles Deberdt)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.8.6.8 - Hermann Schinagl)
Logitech Options (HKLM\...\LogiOptions) (Version: - Logitech)
LRTimelapse 5.0.1 (HKLM\...\{25499041-D76C-4010-95CD-02374529C59B}}_is1) (Version: 5.0.1 - Gunther Wegner)
Macrium Reflect Workstation Edition (HKLM\...\{3194E95A-0F7B-4315-8838-2CEAB9ABA925}) (Version: 7.1.2833 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Workstation Edition (HKLM\...\MacriumReflect) (Version: 7.1 - Paramount Software (UK) Ltd.)
MacType (HKLM\...\{E68951B7-9D7A-4727-9203-34909E3358D1}) (Version: 1.17.0628 - FlyingSnow) Hidden
MacType (HKLM\...\MacType 1.17.0628) (Version: 1.17.0628 - FlyingSnow)
MakeMKV v1.12.0 (HKLM-x32\...\MakeMKV) (Version: v1.12.0 - GuinpinSoft inc)
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
MediaInfo 17.12 (HKLM\...\MediaInfo) (Version: 17.12 - MediaArea.net)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Mem Reduct (HKLM-x32\...\memreduct) (Version: 3.3.1 - Henry++)
MemInfo (remove only) (HKLM-x32\...\MemInfo) (Version: - )
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.8730.2175 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - )
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM-x32\...\DECCHECK) (Version: - )
MKVToolNix 20.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 20.0.0 - Moritz Bunkus)
Module externe DxO OpticsPro 11 pour Adobe Lightroom (HKLM-x32\...\{13E8E1D4-CA2E-4A5C-BBD4-EB4F7CA66014}) (Version: 1.0.36 - DxO Labs)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 56.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 56.0.2 (x64 fr)) (Version: 56.0.2 - Mozilla)
Mozilla Firefox 59.0 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0 (x64 en-US)) (Version: 59.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
NetLimiter 4 (HKLM\...\{CCEBB3FF-7941-42D6-875C-5321AA54963F}) (Version: 4.0.33.0 - Locktime Software) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.33.0) (Version: 4.0.33.0 - Locktime Software)
NetWorx 5.5.5 (HKLM\...\NetWorx_is1) (Version: - Softperfect)
NewFolderEx (remove only) (HKLM-x32\...\NewFolderEx) (Version: - )
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NirSoft WebBrowserPassView (HKLM-x32\...\NirSoft WebBrowserPassView) (Version: - )
NordVPN (HKLM-x32\...\{E51FC618-3B5E-4BF2-8C28-D71B9D23C67E}) (Version: 6.11.12 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.11.12) (Version: 6.11.12 - NordVPN)
OEM Registration Program (HKLM-x32\...\{B69F4E72-CCA4-4352-BF1C-708CE3D96E25}) (Version: 1.1.0 - Toshiba Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2175 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.8730.2175 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.8730.2175 - Microsoft Corporation) Hidden
Old Calculator for Windows 10 (HKLM-x32\...\OldCalcForWin10) (Version: 1.1 - hxxp://winaero.com)
Old Task Manager for Windows 10 (HKLM-x32\...\Old Task Manager for Windows 10) (Version: 1.0 - hxxp://winaero.com)
PC8DeviceAgent 2.5.227 (HKLM\...\PC8DeviceAgent) (Version: 2.5.227 - SRM, Inc.)
PCあんしん点検ユーティリティ (HKLM-x32\...\{D9CD7DB3-E2BE-4BC6-85A6-EF9235C0B096}) (Version: 2.00.01.02 - Toshiba Corporation)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
photoFXlab (HKLM-x32\...\photoFXlab) (Version: 1.2.11 - Topaz Labs)
Photomatix Pro version 6.0.3 (HKLM\...\PhotomatixPro6x64_is1) (Version: 6.0.3 - HDRsoft Ltd)
PhotoWizard (HKLM\...\{3C100F93-4F0E-4C32-9AEB-EFB3E2CA34F8}) (Version: 1.6.0 - Microsoft)
Prey Anti-Theft (HKLM-x32\...\{4D91189D-F5FD-45A9-B63E-58291ADA338B}) (Version: 1.6.5 - Prey, Inc.) Hidden
Prey Anti-Theft (HKLM-x32\...\{56CB345E-8F97-4103-B365-3B4C9E30FFD6}) (Version: 1.7.3 - Prey, Inc.) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.2 beta r3018 - Rainmeter)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21302 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7548 - Realtek Semiconductor Corp.)
recALL version 16.12 (HKLM-x32\...\recALL_is1) (Version: 16.12 - )
Registry Finder 2.22 (HKLM\...\{CC3C7E59-8611-4542-8BFD-FFC6759AD0FB}_is1) (Version: 2.22 - Sergey Filippov)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Scrabble solutions (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Scrabble solutions) (Version: - )
scrabbleproB 1.1.7 (HKLM-x32\...\scrabbleproB_is1) (Version: - scrabblepro)
Screen Locker (HKLM-x32\...\{681059E3-1E0B-4E25-8F2E-B8476703E9A7}) (Version: 1.0.0 - Musabbir Mamun)
ScreenToGif (HKLM-x32\...\{49C1CB81-25A2-4C2C-B556-CE7BEBBAE5CA}) (Version: 2.12.0 - Nicke Manarin)
ServiceCommander Version 4 (HKLM-x32\...\ServiceCommander_is1) (Version: 4.0 - Core Technologies Consulting, LLC)
Simple DNSCrypt x64 (HKLM\...\{F555792E-D966-47BF-B57A-6065DBA8F6EB}) (Version: 0.4.3 - bitbeans)
Simple Sticky Notes 4.1.1 (HKLM-x32\...\Simple Sticky Notes_is1) (Version: - Simnet Ltd.)
Skype™ 7.40 (HKLM-x32\...\{1845470B-EB14-4ABC-835B-E36C693DC07D}) (Version: 7.40.104 - Skype Technologies S.A.)
Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 (HKLM-x32\...\Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373) (Version: 1.0.140373 - Huyustus)
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
SRMX version 3.1.589 (HKLM-x32\...\{64BEE57A-50EA-46AE-939C-898BA1A0D22F}_is1) (Version: 3.1.589 - SRM GmbH)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version: - )
Switcher 2.0.0 (HKLM-x32\...\{F7DB6677-661D-4835-AAD8-1B7F4C98D7CE}) (Version: 2.0.0 - Bao Nguyen)
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 8.5.26.0 - 2BrightSparks)
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
Textify v1.6.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Textify) (Version: 1.6.2 - RaMMicHaeL)
The Bat! v8.2.4 (64-bit) (HKLM\...\{81544AD0-A265-4E3C-B8C0-1C21D9590170}) (Version: 8.2.4 - Ritlabs, SRL)
Topaz Adjust 5 (HKLM-x32\...\Topaz Adjust 5) (Version: 5.2.0 - Topaz Labs, LLC)
Topaz B&W Effects (HKLM-x32\...\Topaz BW Effects 2) (Version: 2.1.0 - Topaz Labs, LLC)
Topaz Clarity (HKLM-x32\...\Topaz Clarity) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Clean 3 (HKLM-x32\...\Topaz Clean 3) (Version: 3.2.0 - Topaz Labs, LLC)
Topaz DeJpeg 4 (HKLM-x32\...\Topaz DeJpeg 4) (Version: 4.1.0 - Topaz Labs, LLC)
Topaz DeNoise 6 (HKLM-x32\...\Topaz DeNoise 6) (Version: 6.0.1 - Topaz Labs, LLC)
Topaz Detail 3 (HKLM-x32\...\Topaz Detail 3) (Version: 3.3.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (HKLM-x32\...\Topaz Fusion Express 2) (Version: 2.1.3 - Topaz Labs, LLC)
Topaz Glow 2 (HKLM\...\Topaz Glow 2) (Version: 2.0.0 - Topaz Labs, LLC)
Topaz Impression 2 (HKLM-x32\...\Topaz Impression 2) (Version: 2.0.4 - Topaz Labs, LLC)
Topaz InFocus (HKLM-x32\...\Topaz InFocus) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Lens Effects (HKLM-x32\...\Topaz Lens Effects) (Version: 1.3.0 - Topaz Labs, LLC)
Topaz ReMask 5 (HKLM-x32\...\Topaz ReMask 5) (Version: 5.0.1 - Topaz Labs, LLC)
Topaz ReStyle (HKLM-x32\...\Topaz ReStyle) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Simplify 4 (HKLM-x32\...\Topaz Simplify 4) (Version: 4.2.0 - Topaz Labs, LLC)
Topaz Star Effects (HKLM-x32\...\Topaz Star Effects) (Version: 1.2.0 - Topaz Labs, LLC)
Topaz Texture Effects 2 (HKLM-x32\...\Topaz Texture Effects 2) (Version: 2.1.0 - Topaz Labs, LLC) <==== ATTENTION
TOSHIBA Blu-ray Disc Player (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 3.0.0.23 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.08.6402 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.0.0.6406 - Toshiba Corporation)
TOSHIBA PalaDouga (HKLM-x32\...\{21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6}) (Version: 2014.0301.0002 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM\...\{CD4B9E2C-4295-4920-82F2-C87113822E32}) (Version: 3.03.04.02 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 4.02.00.6400 - Toshiba Corporation)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 3.2.01.56006006 - Toshiba Corporation)
TOSHIBA Service Station (HKLM\...\{4E688A2F-C4FB-4606-9282-1045B79CBFE2}) (Version: 2.6.16.0 - Toshiba Corporation)
TOSHIBA Speech Synthesis (HKLM\...\{36B0B896-6CD8-4C5F-B7E1-2AC8E9588ACC}) (Version: 1.5.2.0 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0041 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.5.32002 - Toshiba Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.0-rc1 - VideoLAN)
VMware ThinApp (HKLM-x32\...\{164B6D77-345B-4137-A92A-89E21D1C22AD}) (Version: 5.2.28433 - VMware, Inc.)
VMware vCenter Converter Standalone (HKLM-x32\...\{DA09FD63-5AE7-4bf6-8B86-0FCA4DEA8F8F}) (Version: 6.2.0.7348398 - VMware, Inc.)
VMware Workstation (HKLM\...\{859B1EE7-44E6-4323-96D3-02328F38268B}) (Version: 14.1.1 - VMware, Inc.)
Volume2 1.1.6 (HKLM-x32\...\Volume2) (Version: 1.1.6 - Alexandr Irza)
Waterfox 55.2.2 (x64 en-US) (HKLM\...\Waterfox 55.2.2 (x64 en-US)) (Version: 55.2.2 - Waterfox Ltd)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
WinDirStat 1.1.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\WinDirStat) (Version: - )
WindowManager (HKLM-x32\...\WindowManager) (Version: 5.2.0 - DeskSoft)
Windows 10 Manager (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Windows 10 Manager 2.2.3) (Version: 2.2.3 - Yamicsoft)
Windows Explorer Tracker 2.0 (HKLM-x32\...\Windows Explorer Tracker_is1) (Version: - TriSun Software Inc.)
Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 5.0.2.0 - BiniSoft.org)
Windows Repair Toolbox version 2.0.0.9 (HKLM-x32\...\{A8D7DA31-9E70-437D-97C4-C4887752E029}_is1) (Version: 2.0.0.9 - Alexandre Coelho)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinSplit Revolution (v11.04) (HKLM-x32\...\WinSplit Revolution) (Version: 11.04 - Raphael Lencrerot)
WinUAE 3.6.0 (HKLM-x32\...\{31C5D3C3-E6CC-4E0F-96FB-A3F3C988140B}) (Version: 3.6.0.0 - Arabuusimiehet)
Wireshark 2.4.4 64-bit (HKLM-x32\...\Wireshark) (Version: 2.4.4 - The Wireshark developer community, hxxps://www.wireshark.org)
Wise Folder Hider (HKLM-x32\...\Wise Folder Hider_is1) (Version: 4.2.2 - WiseCleaner.com, Inc.)
XnConvert 1.76 (HKLM\...\XnConvert_is1) (Version: 1.76 - Gougelet Pierre-e)
XnView Shell Extension 3.5.1 (64bits) (HKLM\...\XnView Shell Extension_is1) (Version: 3.5.1 - Gougelet Pierre-e)
インテル® PROSet/Wireless ソフトウェア (HKLM-x32\...\{6da487a6-c50d-494e-aaa0-6d8ce9c37ef3}) (Version: 20.10.2 - Intel Corporation)
東芝スクリーンミラーリング (HKLM-x32\...\{FB840BB8-82D9-43F8-B7AD-C1DE01185294}) (Version: 1.0.13.3 - APUSONE Technology Inc.) Hidden
東芝スクリーンミラーリング for スマートフォン/タブレット (HKLM-x32\...\InstallShield_{FB840BB8-82D9-43F8-B7AD-C1DE01185294}) (Version: 1.0.13.3 - APUSONE Technology Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-813CB5835A7A}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{b7c2f028-a138-4ad4-aaa1-77cf720d5c66}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{d63b0bea-dc64-4c3b-af8b-d860551f91d4}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers1: [$PowerDVD] -> {E72C61D0-C453-42BA-84C9-88AEE3DEE676} => C:\ProgramData\CyberLink\PowerDVD17\OpenWith\PDVD_Shell64.dll [2017-03-21] (CyberLink Corp.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers1: [File Marker] -> {B70B7A24-5180-4092-B3BA-6266F914C053} => C:\Program Files (x86)\FileMarker.NET\FileMarkerShlExt64.dll [2017-05-17] (ArcticLine Software)
ContextMenuHandlers1: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers1: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => C:\Program Files\XnView\ShellEx\XnViewShellExt64.dll [2015-02-19] ()
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-01-08] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers5: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-03-23] (Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2017-12-18] (ESET)
ContextMenuHandlers6: [Folderico] -> {CC0C45C5-EFDE-4B8A-A8B0-9ED733D9E6AC} => C:\Program Files\FolderIco\FolderIco.dll [2015-08-31] (TeoreX)
ContextMenuHandlers6: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-20] (Hermann Schinagl)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\System32\StartMenuHelper64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => C:\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll [2017-08-16] (www.startisback.com)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {09BD39FD-3B6E-425A-A477-92E1F328CDC8} - System32\Tasks\WindowManager => C:\Program Files (x86)\WindowManager\WindowManager.exe [2018-02-06] (DeskSoft)
Task: {16B2415D-73DF-458A-988C-FD85766A4DAA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-01-10] (Microsoft Corporation)
Task: {2EB38888-E524-4916-A07A-85F96C3E8FCB} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {448D28A8-2070-4724-B317-4E1C9B4B1B2B} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2014-04-03] (TOSHIBA Corporation)
Task: {5D1D6240-2BE6-4E53-952A-B4E862EEC206} - System32\Tasks\BTSchedulerTask => C:\Program Files (x86)\TOSHIBA\Toshiba Bluetooth Device Profile Utility\TosBt_NotificationScheduler.exe [2015-07-08] (Toshiba Corporation)
Task: {6DC234E0-886F-4EC5-B223-2F661F93E97A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {8294C954-AF28-4726-A6BA-81BECFAA689D} - System32\Tasks\{150FD0FE-9A31-4F2A-8BE1-F923285CBAC6} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe" -d "C:\Program Files (x86)\Toshiba\OEM Registration Program"
Task: {86D1F303-A3F9-43CA-A765-78978098193E} - System32\Tasks\Open Hardware Monitor\Startup => C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe [2016-11-07] ()
Task: {87602666-310F-45B2-99B0-60D8E5162985} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-02] (Microsoft Corporation)
Task: {8AE8B3A9-6F26-4B9D-8E14-15CB86955539} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_owner => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [2017-03-10] (H.D.S. Hungary)
Task: {8FEC7B8F-636F-4F81-BFA1-4738E1036DF2} - System32\Tasks\Uninstaller_SkipUac_owner => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2018-01-29] (IObit)
Task: {9EDDA363-999A-4D27-93AE-E4D1550B971D} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-01-30] (Adobe Systems Incorporated)
Task: {A57B479F-C28A-45A7-8634-B4DE6286241D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.)
Task: {C2959848-030C-4B82-9281-42EAB9AE2B21} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-02] (Microsoft Corporation)
Task: {C58975CA-052C-4DDE-9061-7FDAE294B57A} - System32\Tasks\S-1-5-21-1112066077-4254746724-1257480092-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {C6EE3D67-9822-4F67-9224-6F590E4B8C5A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-01-10] (Microsoft Corporation)
Task: {DB03D8B2-4FAE-43BB-9088-743CE3BF48BE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-28] (Adobe Systems Incorporated)
Task: {E38F111D-B699-4E1D-A2C1-8419C8C2830E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-01-10] (Microsoft Corporation)
Task: {E7048644-EE23-411A-B60E-C5318DA5B4CD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-22] (Google Inc.)
Task: {ECD0E706-E251-478E-819B-9A642570DAEA} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-01-10] (Microsoft Corporation)
Task: {F81C6B7C-182A-42AE-BD53-5A124CF2A75E} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-gokpok@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système\VMware\ThinApp\ThinApp Help.lnk -> hxxp://www.vmware.com/info?id=90
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet\Reset Data Usage.bat.lnk -> C:\Program Files (x86)\Reset Data Usage - Script\Reset_Data_Usage.bat ()
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk -> C:\Program Files\Firefox\firefox.exe (Mozilla Corporation)
==================== Loaded Modules (Whitelisted) ==============
2017-09-29 21:41 - 2017-09-29 21:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-06-07 14:20 - 2016-05-25 17:53 - 001634072 _____ () C:\Program Files (x86)\InternetOff\IOffSvc.exe
2017-10-22 10:00 - 2017-10-22 10:00 - 000265936 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy-secondary.exe
2017-10-22 10:00 - 2017-10-22 10:00 - 000775216 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\libsodium-18.dll
2017-10-22 10:00 - 2017-10-22 10:00 - 000265936 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy.exe
2017-12-08 23:48 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-01-31 19:35 - 2009-01-12 08:15 - 000082872 _____ () C:\WINDOWS\SysWOW64\NMSAccess64.exe
2018-02-06 23:00 - 2018-02-06 23:00 - 000420640 _____ () C:\Program Files (x86)\NordVPN\nordvpn-service.exe
2014-02-27 12:31 - 2014-02-27 12:31 - 000013312 _____ () C:\Windows\SysWOW64\SMITSC.exe
2016-08-31 13:49 - 2016-08-31 13:49 - 001088000 _____ () \\?\C:\Windows\Prey\versions\1.7.3\node_modules\sqlite3\lib\binding\node-v46-win32-x64\node_sqlite3.node
2011-04-13 04:53 - 2011-04-13 04:53 - 000015360 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitHook64.DLL
2017-05-12 00:15 - 2016-11-07 00:15 - 000494592 _____ () C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe
2018-01-04 09:04 - 2018-01-04 09:04 - 000649672 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2004-10-01 02:15 - 2004-10-01 02:15 - 000192000 _____ () C:\Program Files\LinkShellExtension\RockallDLL.dll
2016-06-09 20:20 - 2010-09-29 00:52 - 000099840 _____ () C:\Program Files\ShellFolderFix64\ShellFolderFix.dll
2016-12-02 14:32 - 2017-03-23 21:57 - 000401936 _____ () C:\WINDOWS\system32\igfxTray.exe
2012-07-18 17:38 - 2012-07-18 17:38 - 000020904 _____ () C:\Program Files\TOSHIBA\Hotkey\SmoothView.dll
2016-06-12 16:46 - 2016-09-19 11:09 - 000813056 _____ () C:\Program Files\NetWorx\sqlite.dll
2016-06-07 14:20 - 2016-05-25 17:53 - 003182360 _____ () C:\Program Files (x86)\InternetOff\InternetOff.exe
2016-06-09 00:28 - 2007-09-02 19:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2011-04-13 04:53 - 2011-04-13 04:53 - 003951616 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
2011-04-13 04:53 - 2011-04-13 04:53 - 000015872 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr32.exe
2011-04-13 04:53 - 2011-04-13 04:53 - 000017920 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr64.exe
2017-10-05 07:13 - 2017-10-05 07:13 - 000263680 _____ () C:\Users\owner\AppData\Roaming\Textify\Textify.exe
2017-03-19 17:00 - 2014-10-03 20:06 - 000014848 _____ () C:\Program Files\volumouse-x64\volumouse32.exe
2017-11-25 09:31 - 2017-11-25 09:31 - 000161992 _____ () C:\Program Files\WindowsApps\21090PaddyXu.QuickLook_0.3.2.0_neutral__egxr34yet59cg\Package\QuickLook.Native64.dll
2017-11-25 09:31 - 2017-11-25 09:31 - 014872064 ____N () C:\Users\owner\AppData\Local\Temp\Magick.NET.net40.7.0.7.900\Magick.NET-Q8-x64.Native.dll
2017-12-21 00:22 - 2017-12-21 00:22 - 000110080 _____ () C:\Program Files\Rainmeter\Plugins\PowerPlugin.dll
2016-06-09 19:37 - 2014-04-07 18:18 - 002592256 _____ () C:\Program Files (x86)\Gest\Gest.exe
2016-06-09 20:20 - 2010-09-29 00:52 - 002625024 _____ () C:\Program Files\ShellFolderFix64\ShellFolderFixUI.exe
2017-05-01 23:55 - 2012-04-28 13:01 - 000350720 _____ () C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
2016-10-05 19:41 - 2013-09-22 16:40 - 000132312 _____ () C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe
2018-01-19 17:46 - 2018-01-19 17:47 - 004698840 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11712.1001.13.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-03-11 21:36 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-03-11 21:36 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-03-11 21:36 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2018-01-19 03:25 - 2018-01-19 03:25 - 000233472 _____ () C:\Program Files (x86)\NordVPN\Liberation.Native.Firewall.dll
2017-12-12 02:04 - 2017-12-12 02:04 - 000128424 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\expat.dll
2017-12-12 02:04 - 2017-12-12 02:04 - 000402776 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\ssoClient.dll
2017-12-12 02:04 - 2017-12-12 02:04 - 000096256 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\mspack.dll
2011-04-13 04:53 - 2011-04-13 04:53 - 000013312 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitHook32.DLL
2016-06-09 00:28 - 2007-09-02 19:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2011-04-13 04:53 - 2011-04-13 04:53 - 000011264 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitLib.dll
2017-12-25 20:03 - 2017-12-25 20:03 - 000064512 _____ () C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_1.5.2.0_x86__1sdd7yawvg6ne\EarTrumpet.Interop.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2017-03-11 21:36 - 2018-01-25 17:02 - 000899856 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2017-03-11 21:36 - 2018-01-25 17:01 - 000631568 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
2017-03-11 21:36 - 2017-05-22 11:16 - 000524064 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\sqlite3.dll
2017-11-22 18:18 - 2017-11-22 18:18 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2017-09-29 21:46 - 2018-01-31 21:01 - 000137739 _____ C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 rad.msn.com
0.0.0.0 preview.msn.com
0.0.0.0 adnexus.net
0.0.0.0 az361816.vo.msecnd.net
0.0.0.0 az512334.vo.msecnd.net
0.0.0.0 ssw.live.com
0.0.0.0 ca.telemetry.microsoft.com
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 spynetalt.microsoft.com
0.0.0.0 fe3.delivery.dsp.mp.microsoft.com.nsatc.net
0.0.0.0 www.clubic.com
0.0.0.0 proclubic.com
0.0.0.0 www.01net.com
0.0.0.0 www.softonic.net
0.0.0.0 www.telecharger.com
0.0.0.0 cmp-cdn.ghostery.com
There are 3931 more lines.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\Control Panel\Desktop\\Wallpaper -> C:\Fond d'ecran\Copie de Kyoto.jpeg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{8609DA2E-291D-489D-8B7C-60F33401AAFA}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE
FirewallRules: [{60E6D465-398E-4850-BE86-7EF7620A2377}] => (Block) C:\windows\system32\svchost.exe
FirewallRules: [{382F028A-050A-42E9-AB93-BE92DCEE87ED}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{CD4FD1A1-A5C1-47E2-9200-D4F7C9E6E206}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{4C751C72-0D13-4062-835D-50AC5B2269C5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{27A90A87-DF76-4149-A3B9-D853831D387B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{83A8806C-9564-4516-AEFB-53807FBDE464}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A4FA2263-E1DA-4109-A762-7406AEEB19EB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{08E70FAB-81DC-40C1-A507-BEA90D7B90D6}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{666E381F-82EB-44D7-89B1-6DCF89124980}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{46FA44B7-45AD-4A2E-8F6A-7174BB07566C}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{2B09BF13-0083-40D1-96F2-E58F88384785}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{341A3DE8-7807-406A-9DE6-1BA8362D7E3E}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{E8ECFD94-F7FF-4C6C-850B-FEC0339F19DE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6DCF569F-DA0A-486B-9EDC-D5396E9F8937}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{2ACC8486-FA60-45D6-99A0-57B6EEE73832}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{97BF53C6-661D-4C86-8B41-828956F528B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{D73E069C-FC1A-4560-87EA-73B3F073435B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Spacewar\SteamworksExample.exe
FirewallRules: [{6DE6F25A-F9C7-4EBC-85E7-A01A717E7676}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Spacewar\SteamworksExample.exe
FirewallRules: [{B01ACA64-08F1-4D91-8DD4-A3D8346E7D99}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{AAF36EF1-7D57-4B19-8F69-984FD4A6FF51}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{E4217D2D-0841-4BF7-8BEB-E4587336D84C}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{7811A197-F001-4BA6-A29A-7037C8155170}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{B930391C-D831-4A1F-9E69-7683052E0DEC}] => (Allow) C:\Program Files\NetWorx\networx.exe
FirewallRules: [{FA74EE12-1948-4D65-9C2C-CFD50E69707E}] => (Block) LPort=8318
FirewallRules: [{3276B4B5-4831-4FAD-86B7-966351A2A672}] => (Block) %ProgramFiles% (x86)\Destroy Windows 10 Spying\Destroy Windows 10 Spying.exe
FirewallRules: [{9C7026D5-6268-4457-B52E-ACD7827D0BD0}] => (Block) %ProgramFiles% (x86)\Destroy Windows 10 Spying\Destroy Windows 10 Spying.exe
FirewallRules: [{F43936C9-4F0F-48FA-9FB0-CE2E235C307B}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{F8546430-C419-4C78-931D-8248F42B55B0}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{9091662B-E434-474B-8791-DF495F59791D}] => (Allow) C:\Program Files\Firefox\firefox.exe
FirewallRules: [{A26E8CAB-70DA-495D-856D-EEC2E73DD733}] => (Allow) C:\Program Files\Firefox\firefox.exe
FirewallRules: [{398A6E4C-9A77-4D1E-B37F-ACE3A95B1A26}] => (Block) C:\Program Files\Windows Firewall Control\wfc.exe
FirewallRules: [{EC5633D4-B1E2-44BD-B80E-747FBB6D11A6}] => (Block) C:\WINDOWS\system32\spoolsv.exe
FirewallRules: [{1747461C-472A-46C3-BE21-B120D90531B7}] => (Allow) C:\Program Files\waterfox\waterfox.exe
FirewallRules: [{FABB2FC8-00BF-4EE8-9D2E-C89E687CEE2C}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [TCP Query User{0C45436E-3294-4394-A6D0-D9DA6744F501}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{20F73919-3406-4586-9367-28A75003B4E1}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{4C356547-3C4D-4EFA-9D21-DB54EE9E0E1E}] => (Block) C:\WINDOWS\Explorer.EXE
FirewallRules: [{FD1F2068-F697-46B0-81FF-2C112388FDAD}] => (Block) C:\Program Files\Notepad++\notepad++.exe
FirewallRules: [{01BC0803-1306-4EE7-909F-7D2F2BE3A736}] => (Block) C:\Program Files\SumatraPDF\SumatraPDF.exe
FirewallRules: [{17339735-D644-49C2-9079-0E98CD23550B}] => (Block) C:\Program Files\WinRAR\WinRAR.exe
FirewallRules: [{90F28D44-48CC-43B8-8A1B-CF1B48606A01}] => (Block) C:\Program Files\Win10 Spy Disabler\Win10SpyDisabler.exe
FirewallRules: [{5D15C74F-15DE-4597-B152-70ED694D422A}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\uexperice.exe
FirewallRules: [{C6AF62E3-AB8A-432A-998A-FFB86CC6208D}] => (Block) C:\Program Files (x86)\Free Video Cutter\FreeVideoCutter.exe
FirewallRules: [{08F0760E-BEDA-4B67-962C-CAC174745E14}] => (Block) C:\Program Files (x86)\Volume2\Volume2.exe
FirewallRules: [{1A825B0E-75AB-4F24-9C16-F0089BED656B}] => (Block) C:\Program Files (x86)\Volume2\Volume2PM.exe
FirewallRules: [{412176CB-8F34-4BCB-AFEB-326193271975}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\CleanUpUI.exe
FirewallRules: [{C46F338D-51B0-4352-849C-ADF830C32999}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\epm0.exe
FirewallRules: [{5D26B2F7-6245-4520-999A-19788F985024}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\epmConsole.exe
FirewallRules: [{EB820226-7526-467D-95BD-557C62B1B0B0}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\ErrorReport.exe
FirewallRules: [{BDC3E65C-6705-49ED-86A8-786C5717BA26}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\ExportISO.exe
FirewallRules: [{0595C786-2C42-4694-B600-F2FAD84A7844}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\Main.exe
FirewallRules: [{833FD648-0B1B-463E-ACDB-926BBB9EFACF}] => (Block) C:\Program Files (x86)\EaseUS\EaseUS Partition Master 12.8\bin\ureport.exe
FirewallRules: [{4F73D799-B11E-41AF-A849-45B0C7DF97A7}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{55739DB2-2B74-4500-AB8B-FF9C7AE2AB20}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD.exe
FirewallRules: [{1A9C9A8A-19B2-403E-912B-C6AFBCC597DE}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Kernel\DMS\CLMSServerPDVD17.exe
FirewallRules: [{3C94B15C-F287-4992-8024-4D8558671108}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\PowerDVD17Agent.exe
FirewallRules: [{13D8DDF7-ACF8-4566-9809-A948F0CF62D0}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\Movie\PowerDVDMovie.exe
FirewallRules: [{38C61B16-E860-447D-AB53-B96F3EBE54F9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD17\CastingStation.exe
FirewallRules: [{B82865CA-C2EE-4F66-9A0B-06EDDF16F1F4}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{1B49D6DB-E875-4698-AA78-14735CA77FF9}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{C8481DAC-67E1-4F1A-8FCC-C42CCC413D22}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{CB9F27C1-E438-4457-9D31-E06BF02C2EB3}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{0933FA6A-3742-4BBB-9F37-D22108F9480C}] => (Allow) C:\Windows\Prey\versions\1.7.3\bin\node.exe
FirewallRules: [{B05B58AD-737E-45B8-A604-B12F541C52EF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
Name: TOSHIBA Web Camera - HD
Description: Périphérique vidéo USB
Class Guid: {ca3e7ab9-b4c3-4ae6-8251-579ef933890f}
Manufacturer: Microsoft
Service: usbvideo
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (02/08/2018 10:55:28 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Autoruns.exe ». Erreur dans le fichier de manifeste ou de stratégie « » à la ligne .
Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.98_none_144040db3691ec4e.manifest.
Composant 2 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.16299.98_none_cc930a042215c348.manifest.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1018) (User: )
Description: La collecte des données des compteurs de performance a été désactivée pour cette session à partir du service « VMware » car la bibliothèque de compteurs de performance pour ce service a généré une ou plusieurs erreurs. Les erreurs à l’origine de cette action ont été écrites dans le journal des événements des applications.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1022) (User: )
Description: Windows ne peut pas ouvrir la DLL de compteur extensible 64 bits VMware dans un environnement 32 bits. Contactez le fabricant du fichier pour obtenir une version 32 bits. Si vous exécutez un environnement 64 bits natif, vous pouvez également ouvrir la DLL de compteur extensible 64 bits en utilisant la version 64 bits de l’Analyseur de performances. Pour utiliser cet outil, ouvrez le dossier Windows, puis le dossier System32 et démarrez Perfmon.exe.
Error: (02/08/2018 10:52:21 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows.
Error: (02/08/2018 10:52:20 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « MSDTC » dans la DLL « C:\WINDOWS\system32\msdtcuiu.DLL ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Error: (02/08/2018 10:52:20 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
System errors:
=============
Error: (02/09/2018 08:55:25 AM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX7gfgmgykbws8x0ccxbt2zeamtttc1ntp.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/09/2018 08:45:41 AM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/09/2018 08:45:30 AM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 11:11:22 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:41 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXjytc7c0yvwb8n3cw0r82k4364sd1s7bv.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:41 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:40 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:07 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
Error: (02/08/2018 10:52:07 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppXtpp90jhw9p0njjb85kvhxpppgrqfp117.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca
Error: (02/08/2018 10:52:05 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
CodeIntegrity:
===================================
Date: 2018-02-06 18:44:45.208
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.
Date: 2018-02-06 18:44:44.512
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2018-02-06 18:44:44.259
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2018-01-03 00:13:07.657
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.
Date: 2018-01-03 00:13:06.788
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2018-01-03 00:13:06.320
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:20:30.931
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:19:42.385
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:18:21.849
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
Date: 2017-12-09 11:18:10.349
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-4710MQ CPU @ 2.50GHz
Percentage of memory in use: 24%
Total physical RAM: 16309.31 MB
Available physical RAM: 12394.71 MB
Total Virtual: 22309.31 MB
Available Virtual: 17560.73 MB
==================== Drives ================================
Drive c: (WINDOWS) (Fixed) (Total:474.82 GB) (Free:86.84 GB) NTFS
==================== MBR & Partition Table ==================
==================== End of Addition.txt ============================