cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15.04.2018
Ran by owner (19-04-2018 21:48:02)
Running from C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Protection
Windows 10 Pro Version 1709 16299.371 (X64) (2017-10-19 04:13:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1112066077-4254746724-1257480092-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1112066077-4254746724-1257480092-503 - Limited - Disabled)
Guest (S-1-5-21-1112066077-4254746724-1257480092-501 - Limited - Disabled)
owner (S-1-5-21-1112066077-4254746724-1257480092-1001 - Administrator - Enabled) => C:\Users\owner
WDAGUtilityAccount (S-1-5-21-1112066077-4254746724-1257480092-504 - Limited - Disabled)
___VMware_Conv_SA___ (S-1-5-21-1112066077-4254746724-1257480092-1015 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET NOD32 Antivirus (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET NOD32 Antivirus (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{160BD9AF-9CD4-4A92-BC31-FD8127756623}) (Version: 7.1 - Intel) Hidden
. . (HKLM\...\{569F29BA-2D46-439B-8B7C-01D999B9201D}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{FA56BC7D-6ABC-4A91-89AF-A2F6C01DAAEC}) (Version: 3.3.0.4 - Intel) Hidden
3RVX (HKLM-x32\...\{400A8514-5440-410A-B318-44061BD7EE8E}) (Version: 2.9.2.0 - Matthew Malensek)
7+ Taskbar Tweaker v5.4.0.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\7 Taskbar Tweaker) (Version: 5.4.0.2 - RaMMicHaeL)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_1) (Version: 15.1.0 - Adobe Systems Incorporated)
Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_1_1) (Version: 11.1.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_0_1) (Version: 8.0.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.1.298 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2018 (HKLM-x32\...\DRWV_18_1) (Version: 18.1 - Adobe Systems Incorporated)
Adobe Extension Manager CC (HKLM-x32\...\{244FD30F-63F1-49B9-9D98-1150FF4FFCB1}) (Version: 7.3.2 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.140 - Adobe Systems Incorporated)
Adobe Illustrator CC 2018 (HKLM-x32\...\ILST_22_1) (Version: 22.1 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_7_3) (Version: 7.3 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_1_1) (Version: 12.1.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_3) (Version: 19.1.3 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_1_1) (Version: 12.1.1 - Adobe Systems Incorporated)
Advanced Date Time Calculator 8.0 (HKLM-x32\...\Advanced Date Time Calculator_is1) (Version: - TriSun Software Limited)
AHD Subtitles Maker Pro version 5.19.239 (HKLM-x32\...\{CA69934C-EACB-4B41-A5F6-7F2A2873987E}_is1) (Version: 5.19.239 - AHD, Inc.)
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 10.100.303.238 - ALPS ELECTRIC CO., LTD.)
Alternate DLL Analyzer 1.560 (HKLM-x32\...\Alternate DLL Analyzer_is1) (Version: - Alternate Tools)
Amazon Kindle (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Amazon Kindle) (Version: 1.21.0.48017 - Amazon)
Anki (HKLM-x32\...\Anki) (Version: - )
AnmanieSMP 2.4 i (HKLM-x32\...\AnmanieSMP_is1) (Version: - Christoph Walter)
Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.12.0 - Ant Software)
Arasan 20.4.1 (HKLM-x32\...\Arasan_is1) (Version: - )
Argente Utilities (HKLM\...\AUtilities) (Version: 3.1.1.2 - Raúl Argente)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
AtHome Camera Version 3.4.1 (HKLM-x32\...\{B659A0AE-7339-41DF-A7BA-81EBEBF91321}_is1) (Version: - iChano Inc.)
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
Audiority Harmonic Maximizer (HKLM\...\Audiority Harmonic Maximizer_is1) (Version: v1.1.1 - Audiority)
AutoHotkey 1.1.28.02 (HKLM\...\AutoHotkey) (Version: 1.1.28.02 - Lexikos)
Birdfont (HKLM-x32\...\Birdfont) (Version: - )
BLACK WHITE projects 5 elements (64-Bit) (HKLM\...\SILVER_PROJECTS_5_2_28B15F1D_is1) (Version: 5.52 - Franzis Verlag GmbH)
Bluetooth(R) Link (HKLM\...\{3F3DCC8C-2C93-4082-A6DE-BBDC74804FA0}) (Version: 4.3.03 - Toshiba Corporation)
Camtasia 9 (HKLM\...\{33E08945-3D7B-40BB-B34F-1A3C8B9650DE}) (Version: 9.1.2.3011 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM\...\{9A1BFE8E-398E-497D-B3BE-C1D8688010FC}) (Version: 9.1.1.2546 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{34ab05ac-3089-417f-828e-c2da3d5b4e09}) (Version: 9.1.2.3011 - TechSmith Corporation)
ChessX version 1.4.6 (HKLM-x32\...\{278EF322-A05B-4F81-B23B-F7D8050F6837}_is1) (Version: 1.4.6 - chessx.sourceforge.net)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
Classic Sticky Notes (HKLM\...\Classic Sticky Notes_is1) (Version: 1.0 - Winaero)
Clavier+ 10.8.1 (HKLM\...\Clavier+_is1) (Version: 10.8.1 - Guillaume Ryder)
CMEDIA USB2.0 Audio Device (HKLM-x32\...\{71B53BA8-4BE3-49AF-BC3E-07F392016500}) (Version: 1.00.0003 - C-Media Electronics, Inc.)
Complete Internet Repair 5.1.0.3896 (HKLM\...\Complete Internet Repair_is1) (Version: 5.1.0.3896 - Rizonesoft)
Crayon Physics Deluxe version 55 (HKLM-x32\...\{4CA1E8E2-B2A9-40C1-8EC4-BBCB23BAAA19}_is1) (Version: 55 - Kloonigames, Ltd)
Crescendo Music Notation Editor (HKLM-x32\...\Crescendo) (Version: 3.05 - NCH Software)
Cursor Commander (HKLM-x32\...\Cursor Commander) (Version: 1.0 - Winaero.com)
CyberLink PowerDVD 18 (HKLM-x32\...\{0F4F617F-E8D5-46A3-A0F9-43855182A3B1}) (Version: 18.0.1529.62 - CyberLink Corp.)
DiskFresh 1.1 (HKLM\...\DiskFresh_is1) (Version: - Puran Software)
DiskMark 1.0.0.8 (HKLM\...\DiskMark_is1) (Version: 1.0.0.8 - NetworkDLS)
DxO FilmPack 5 (HKLM\...\{AEC68D11-E511-5771-A014-5E935E788518}) (Version: 5.5.573.0 - DxO Labs)
DxO PhotoLab (HKLM\...\{41EF04F9-2CBE-4189-8025-24C5F46729E6}) (Version: 1.1.2 - DxO)
DxO ViewPoint 3 (HKLM\...\{7717FEF4-627B-51FB-AD67-F38544563E5A}) (Version: 3.1.255.0 - DxO Labs)
Êâåòêà 4.1.1 (HKLM-x32\...\Êâåòêà_is1) (Version: - Áîäÿãèí Äìèòðèé)
EaseUS Partition Master 12.9 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
eBook Converter Bundle version 3.17 (HKLM-x32\...\{74173236-3507-49A7-A0FC-1BDABF0A9338}_is1) (Version: 3.17 - eBook Converter Team)
ESET Security (HKLM\...\{925EB551-DEBA-436C-BB93-916AB96DE0AA}) (Version: 11.1.42.0 - ESET, spol. s r.o.)
Exact Audio Copy 1.3 (HKLM-x32\...\Exact Audio Copy) (Version: 1.3 - Andre Wiethoff)
ExamDiff Pro 10.0 (10.0.0.0, 64-bit) (HKLM\...\ExamDiff Pro 10.0_is1) (Version: 10.0.0.0 - PrestoSoft LLC)
ExeIcon (remove only) (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\ExeIcon) (Version: - )
FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft)
FastStone MaxView 3.1 (HKLM-x32\...\FastStone MaxView) (Version: 3.1 - FastStone Soft.)
FastStone Photo Resizer 3.8 (HKLM-x32\...\FastStone Photo Resizer) (Version: 3.8 - FastStone Soft.)
FileMarker.NET Pro (GAOTD Edition) (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 1.0 - ArcticLine Software)
FileMenu Tools 7.5 (HKLM\...\FileMenuTools_is1) (Version: 7.5 - LopeSoft)
Folder Size Explorer (HKLM-x32\...\{CD453A88-D560-47A2-9D4D-414134F5A73D}) (Version: 2.0.0 - Bazwise)
FolderIco 4.0 (HKLM\...\{22C37D82-6137-40BF-8625-7A846ED65F3A}_is1) (Version: - teorex)
foobar2000 v1.4 beta 11 (HKLM-x32\...\foobar2000) (Version: 1.4 beta 11 - Peter Pawlowski)
Free Video Cutter version 1.2.1 (HKLM-x32\...\{B089C7D5-C978-4DB0-AFDE-471A42759CB0}_is1) (Version: 1.2.1 - Free Studio)
Geekbench 4 (HKLM-x32\...\Geekbench 4) (Version: - Primate Labs Inc.)
GetDataBack for NTFS (HKLM-x32\...\{56582EEA-3AEF-4D84-8B9D-C87A3CD9250F}) (Version: 4.33.000 - Runtime Software)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
HandBrake 1.1.0 (HKLM-x32\...\HandBrake) (Version: 1.1.0 - )
Hard Disk Sentinel (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.01 - Janos Mathe)
HashTab 6.0.0.34 (HKLM\...\HashTab) (Version: 6.0.0.34 - Implbits Software)
High-Logic FontCreator 11.5 (HKLM\...\FontCreator11-x64_is1) (Version: - High-Logic B.V.)
HostsMan 4.8.106 (HKLM-x32\...\{1A3DD1A9-7B7B-4ECA-AD2F-98466F49F62C}_is1) (Version: 4.8.106.0 - abelhadigital.com)
Icaros 3.0.3 (HKLM\...\Icaros_is1) (Version: 3.0.3.000 - Tabibito Technology)
Intel Extreme Tuning Utility (HKLM-x32\...\{1EB9D639-08BE-4DB1-96EE-C126D8EF402A}) (Version: 6.4.1.19 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{64432AF2-9AB3-4F5C-8F97-D6D6FCC89C18}) (Version: 6.3.0.54 - Intel Corporation) Hidden
Intel Extreme Tuning Utility (HKLM-x32\...\{dde655b5-95f0-42fb-a5ab-608790284acc}) (Version: 6.4.1.19 - Intel Corporation)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Network Connections 22.7.18.0 (HKLM\...\PROSetDX) (Version: 22.7.18.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3910 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.10.0.1016 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{fd62de85-bda9-4280-a95b-fa2f86e0dc58}) (Version: 1.48.139.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000040-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.40.0 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{71abde6d-2cfb-4d92-8787-e9dddf3412fc}) (Version: 3.3.0.4 - Intel)
InternetOff 3.0, 32\64 bit edition (HKLM-x32\...\InternetOff_is1) (Version: - Crystal Rich, Ltd)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.4.0.8 - IObit)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
KC Softwares PortExpert (HKLM-x32\...\KC Softwares PortExpert_is1) (Version: 1.7.3.13 - KC Softwares)
KC Softwares RAMExpert (HKLM-x32\...\KC Softwares RAMExpert_is1) (Version: 1.10.0.23 - KC Softwares)
Kolor Autopano Giga 4.4 (HKLM\...\AutopanoGiga4.4) (Version: V4.4.1 - Kolor)
Kyodai Mahjongg 2006 v1.42 (HKLM-x32\...\Kyodai Mahjongg 2006_is1) (Version: - Rene-Gilles Deberdt)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version: 3.8.6.8 - Hermann Schinagl)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{8c595286-0f9e-42de-a0d4-969aba282637}) (Version: 20.50.0 - Intel Corporation)
Logitech Options (HKLM\...\LogiOptions) (Version: 6.80.372 - Logitech)
LRTimelapse 5.0.6 (HKLM\...\{25499041-D76C-4010-95CD-02374529C59B}}_is1) (Version: 5.0.6 - Gunther Wegner)
Macrium Reflect Workstation Edition (HKLM\...\{3E164CC4-573B-44EA-8A2E-DACDC870B5F3}) (Version: 7.1.3147 - Paramount Software (UK) Ltd.) Hidden
Macrium Reflect Workstation Edition (HKLM\...\MacriumReflect) (Version: 7.1 - Paramount Software (UK) Ltd.)
MacType (HKLM\...\{E68951B7-9D7A-4727-9203-34909E3358D1}) (Version: 1.17.0628 - FlyingSnow) Hidden
MacType (HKLM\...\MacType 1.17.0628) (Version: 1.17.0628 - FlyingSnow)
Magic Bullet Suite v13.0.6 (HKLM-x32\...\{99487911-8011-42BC-B594-8B02BFD32B1D}_is1) (Version: 13.0.6 - Red Giant, LLC)
MakeMKV v1.12.0 (HKLM-x32\...\MakeMKV) (Version: v1.12.0 - GuinpinSoft inc)
Malwarebytes version 3.4.5.2467 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.4.5.2467 - Malwarebytes)
MediaInfo 18.03 (HKLM\...\MediaInfo) (Version: 18.03 - MediaArea.net)
Medieval CUE Splitter (HKLM-x32\...\{B96D2269-568B-4CBF-9332-12FAE8B158F7}) (Version: 1.2.0 - Medieval Software)
Mem Reduct (HKLM-x32\...\memreduct) (Version: 3.3.2 - Henry++)
MemInfo (remove only) (HKLM-x32\...\MemInfo) (Version: - )
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.9126.2152 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\OneDriveSetup.exe) (Version: 17.3.6816.0313 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{C3682243-2218-4F80-A94A-EB0D7B7AF739}) (Version: 11.3.6020.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{43A5C316-9521-49C3-B9B6-FCE5E1005DF0}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{99AC7F47-A4E0-4706-9C65-8948775C2652}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710F4C1C-CC18-4C49-8CBF-51240C89A1A2}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{AD8A2FA1-06E7-4B0D-927D-6E54B3D31028}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: - )
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: - )
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: - )
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM-x32\...\DECCHECK) (Version: - )
MKVToolNix 22.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 22.0.0 - Moritz Bunkus)
Module externe DxO PhotoLab pour Adobe Lightroom (HKLM-x32\...\{91E4E071-DE20-45D9-91A1-F1A3BBD8333A}) (Version: 1.0.39 - DxO Labs)
MonitorTest V3.2 (HKLM\...\MonitorTest_is1) (Version: 3.2 - PassMark Software)
MPC-HC 1.7.16 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.16 - MPC-HC Team)
MusicExtractor (HKLM-x32\...\MusicExtractor_is1) (Version: 3.1 - Abelssoft)
NetLimiter 4 (HKLM\...\{7942B87C-F182-4660-A5D9-30F0C0322483}) (Version: 4.0.35.0 - Locktime Software) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.35.0) (Version: 4.0.35.0 - Locktime Software)
NewFolderEx (remove only) (HKLM-x32\...\NewFolderEx) (Version: - )
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NirSoft WebBrowserPassView (HKLM-x32\...\NirSoft WebBrowserPassView) (Version: - )
Nmap 7.70 (HKLM-x32\...\Nmap) (Version: 7.70 - Nmap Project)
NordVPN (HKLM-x32\...\{5B727BF8-D797-4CB9-9B90-69D78F4986C6}) (Version: 6.12.11 - NordVPN) Hidden
NordVPN (HKLM-x32\...\NordVPN 6.12.11) (Version: 6.12.11 - NordVPN)
Npcap 0.99-r2 (HKLM-x32\...\NpcapInst) (Version: 0.99-r2 - Nmap Project)
OEM Registration Program (HKLM-x32\...\{B69F4E72-CCA4-4352-BF1C-708CE3D96E25}) (Version: 1.1.0 - Toshiba Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2152 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.9126.2152 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.9126.2152 - Microsoft Corporation) Hidden
Old Calculator for Windows 10 (HKLM-x32\...\OldCalcForWin10) (Version: 1.1 - hxxp://winaero.com)
Old Task Manager for Windows 10 (HKLM-x32\...\Old Task Manager for Windows 10) (Version: 1.0 - hxxp://winaero.com)
PC8DeviceAgent 2.5.227 (HKLM\...\PC8DeviceAgent) (Version: 2.5.227 - SRM, Inc.)
PCあんしん点検ユーティリティ (HKLM-x32\...\{D9CD7DB3-E2BE-4BC6-85A6-EF9235C0B096}) (Version: 2.00.01.02 - Toshiba Corporation)
PDF Annotator 6.1.0.620 (HKLM-x32\...\PDFAnnotator_is1) (Version: 6.1.0.620 - GRAHL software design)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.7 - Tracker Software Products Ltd)
photoFXlab (HKLM-x32\...\photoFXlab) (Version: 1.2.11 - Topaz Labs)
Photomatix Pro version 6.0.3 (HKLM\...\PhotomatixPro6x64_is1) (Version: 6.0.3 - HDRsoft Ltd)
PhotoWizard (HKLM\...\{3C100F93-4F0E-4C32-9AEB-EFB3E2CA34F8}) (Version: 1.6.0 - Microsoft)
PopChar 8.1 (HKLM\...\ergonis PopChar_is1) (Version: 8.1 - Ergonis Software)
Prey Anti-Theft (HKLM-x32\...\{4D91189D-F5FD-45A9-B63E-58291ADA338B}) (Version: 1.6.5 - Prey, Inc.) Hidden
Prey Anti-Theft (HKLM-x32\...\{6D667989-D1CB-46AC-A611-ED4947E5E7A1}) (Version: 1.7.4 - Prey, Inc.) Hidden
Process Network Monitor (HKLM-x32\...\{16C2C93F-A7EF-4950-B89F-E5E5F020118A}) (Version: 6.0 - SecurityXploded) Hidden
Process Network Monitor (HKLM-x32\...\Process Network Monitor 6.0) (Version: 6.0 - SecurityXploded)
proDAD ReSpeedr 1.0 (64bit) (HKLM\...\proDAD-ReSpeedr-1.0) (Version: 1.0.42.1 - proDAD GmbH)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.2 beta r3029 - Rainmeter)
RarmaRadio 2.71.9 (HKLM-x32\...\RarmaRadio_is1) (Version: - RaimerSoft)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21302 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8419 - Realtek Semiconductor Corp.)
recALL version 16.12 (HKLM-x32\...\recALL_is1) (Version: 16.12 - )
Red Giant Link (HKLM-x32\...\{10F82E5B-B611-4C65-8F29-666A9EC5680A}_is1) (Version: 1.9.11.2 - Red Giant, LLC)
Registry Finder 2.24 (HKLM\...\{CC3C7E59-8611-4542-8BFD-FFC6759AD0FB}_is1) (Version: 2.24 - Sergey Filippov)
Resource Hacker Version 4.7.34 (HKLM-x32\...\ResourceHacker_is1) (Version: - )
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.3.1 - Rockstar Games)
Sandboxie 5.24 (64-bit) (HKLM\...\Sandboxie) (Version: 5.24 - Sandboxie Holdings, LLC)
Scrabble solutions (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Scrabble solutions) (Version: - )
scrabbleproB 1.1.7 (HKLM-x32\...\scrabbleproB_is1) (Version: - scrabblepro)
Screen Locker (HKLM-x32\...\{681059E3-1E0B-4E25-8F2E-B8476703E9A7}) (Version: 1.0.0 - Musabbir Mamun)
ScreenToGif (HKLM-x32\...\{E80617D1-CCBD-4B0D-93F3-93DB2AD659FC}) (Version: 2.13.2 - Nicke Manarin)
ServiceCommander Version 4 (HKLM-x32\...\ServiceCommander_is1) (Version: 4.0 - Core Technologies Consulting, LLC)
Simple DNSCrypt x64 (HKLM\...\{7F50F947-8032-40AD-8FB4-B91D2171F845}) (Version: 0.5.4 - bitbeans)
Simple Sticky Notes 4.2 (HKLM-x32\...\Simple Sticky Notes_is1) (Version: - Simnet Ltd.)
Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373 (HKLM-x32\...\Soldats Inconnus Mémoires de la Grande Guerre 1.0.140373) (Version: 1.0.140373 - Huyustus)
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
SRMX version 3.1.589 (HKLM-x32\...\{64BEE57A-50EA-46AE-939C-898BA1A0D22F}_is1) (Version: 3.1.589 - SRM GmbH)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version: - )
Switcher 2.0.0 (HKLM-x32\...\{F7DB6677-661D-4835-AAD8-1B7F4C98D7CE}) (Version: 2.0.0 - Bao Nguyen)
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 8.5.43.0 - 2BrightSparks)
TAP-NordVPN 9.21.2 (HKLM\...\TAP-NordVPN) (Version: 9.21.2 - NordVPN.com)
Textify v1.6.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Textify) (Version: 1.6.2 - RaMMicHaeL)
The Bat! v8.3.0 (64-bit) (HKLM\...\{A52201D9-1565-462D-BA14-1E5EC0B014E1}) (Version: 8.3.0 - Ritlabs, SRL)
Topaz Adjust 5 (HKLM-x32\...\Topaz Adjust 5) (Version: 5.2.0 - Topaz Labs, LLC)
Topaz B&W Effects (HKLM-x32\...\Topaz BW Effects 2) (Version: 2.1.0 - Topaz Labs, LLC)
Topaz Clarity (HKLM-x32\...\Topaz Clarity) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Clean 3 (HKLM-x32\...\Topaz Clean 3) (Version: 3.2.0 - Topaz Labs, LLC)
Topaz DeJpeg 4 (HKLM-x32\...\Topaz DeJpeg 4) (Version: 4.1.0 - Topaz Labs, LLC)
Topaz DeNoise 6 (HKLM-x32\...\Topaz DeNoise 6) (Version: 6.0.1 - Topaz Labs, LLC)
Topaz Detail 3 (HKLM-x32\...\Topaz Detail 3) (Version: 3.3.0 - Topaz Labs, LLC)
Topaz Fusion Express 2 (HKLM-x32\...\Topaz Fusion Express 2) (Version: 2.1.3 - Topaz Labs, LLC)
Topaz Glow 2 (HKLM\...\Topaz Glow 2) (Version: 2.0.0 - Topaz Labs, LLC)
Topaz Impression 2 (HKLM-x32\...\Topaz Impression 2) (Version: 2.0.4 - Topaz Labs, LLC)
Topaz InFocus (HKLM-x32\...\Topaz InFocus) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Lens Effects (HKLM-x32\...\Topaz Lens Effects) (Version: 1.3.0 - Topaz Labs, LLC)
Topaz ReMask 5 (HKLM-x32\...\Topaz ReMask 5) (Version: 5.0.1 - Topaz Labs, LLC)
Topaz ReStyle (HKLM-x32\...\Topaz ReStyle) (Version: 1.1.0 - Topaz Labs, LLC)
Topaz Simplify 4 (HKLM-x32\...\Topaz Simplify 4) (Version: 4.2.0 - Topaz Labs, LLC)
Topaz Star Effects (HKLM-x32\...\Topaz Star Effects) (Version: 1.2.0 - Topaz Labs, LLC)
Topaz Texture Effects 2 (HKLM-x32\...\Topaz Texture Effects 2) (Version: 2.1.0 - Topaz Labs, LLC) <==== ATTENTION
TOSHIBA Blu-ray Disc Player (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 3.0.0.23 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA Desktop Assist (HKLM\...\{C4CDCEF0-0A7A-4425-887C-33E39533D758}) (Version: 1.03.08.6402 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{72EFCFA8-3923-451D-AF52-7CE9D87BC2A1}) (Version: 3.1.2.6402 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA Function Key (HKLM\...\{ABB33FFD-6D6C-4670-9EF4-6181BB4D0DF2}) (Version: 1.1.17.6400 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA PalaDouga (HKLM-x32\...\{21CEB4A6-0FF1-444F-A0CC-6F648F74C7F6}) (Version: 2014.0301.0002 - Toshiba Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{B507386D-1F61-4E55-B05B-F56ACB0086B3}) (Version: 4.06.01.6401 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA Service Station (HKLM\...\{ECAF783B-5512-4BC1-8073-15BD9FDE616F}) (Version: 3.1.2.0 - Toshiba Corporation)
TOSHIBA Speech Synthesis (HKLM\...\{36B0B896-6CD8-4C5F-B7E1-2AC8E9588ACC}) (Version: 1.5.2.0 - Toshiba Corporation)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0041 - Toshiba Corporation)
TOSHIBA System Settings (HKLM\...\{B040D5C9-C9AA-430A-A44E-696656012E61}) (Version: 3.1.2.6401 - Toshiba Client Solutions Co., Ltd.)
TOSHIBA System Settings (HKLM-x32\...\{4D57ED72-6B01-40BD-9CA9-012B8FC09CEB}) (Version: 2.0.5.32002 - Toshiba Corporation)
TreeSize Professional V6.3.7 (HKLM\...\{E2E37452-CB02-476E-AB39-C9A1DA9B9849}) (Version: 6.3.7.1236 - JAM Software)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.1 - VideoLAN)
VMware ThinApp (HKLM-x32\...\{164B6D77-345B-4137-A92A-89E21D1C22AD}) (Version: 5.2.28433 - VMware, Inc.)
VMware vCenter Converter Standalone (HKLM-x32\...\{DA09FD63-5AE7-4bf6-8B86-0FCA4DEA8F8F}) (Version: 6.2.0.7348398 - VMware, Inc.)
VMware Workstation (HKLM\...\{859B1EE7-44E6-4323-96D3-02328F38268B}) (Version: 14.1.1 - VMware, Inc.)
Volume2 1.1.6 (HKLM-x32\...\Volume2) (Version: 1.1.6 - Alexandr Irza)
Waterfox 56.1.0 (x64 en-US) (HKLM\...\Waterfox 56.1.0 (x64 en-US)) (Version: 56.1.0 - Waterfox Ltd)
WhoCrashed 6.00 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.)
Win10 Spy Disabler v1.4 (HKLM\...\Win10 Spy Disabler_is1) (Version: 1.4.0.0 - site2unblock.com)
WinDirStat 1.1.2 (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\WinDirStat) (Version: - )
WindowManager (HKLM-x32\...\WindowManager) (Version: 5.3.2 - DeskSoft)
Windows 10 Manager (HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\...\Windows 10 Manager 2.2.6) (Version: 2.2.6 - Yamicsoft)
Windows Explorer Tracker 2.0 (HKLM-x32\...\Windows Explorer Tracker_is1) (Version: - TriSun Software Inc.)
Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 5.3.0.0 - BiniSoft.org)
Windows Repair Toolbox version 3.0.0.2 (HKLM-x32\...\{A8D7DA31-9E70-437D-97C4-C4887752E029}_is1) (Version: 3.0.0.2 - Alexandre Coelho)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
WinSplit Revolution (v11.04) (HKLM-x32\...\WinSplit Revolution) (Version: 11.04 - Raphael Lencrerot)
WinUAE 64-bit 3.6.1 (HKLM\...\{55F04824-E11F-4F1F-ADBC-5421C7C9BD7A}) (Version: 3.6.1.0 - Arabuusimiehet)
Wireshark 2.4.6 64-bit (HKLM-x32\...\Wireshark) (Version: 2.4.6 - The Wireshark developer community, hxxps://www.wireshark.org)
Wise Folder Hider (HKLM-x32\...\Wise Folder Hider_is1) (Version: 4.2.2 - WiseCleaner.com, Inc.)
XnConvert 1.76 (HKLM\...\XnConvert_is1) (Version: 1.76 - Gougelet Pierre-e)
XnView Shell Extension 3.5.1 (64bits) (HKLM\...\XnView Shell Extension_is1) (Version: 3.5.1 - Gougelet Pierre-e)
XYplorer 18.90 (HKLM-x32\...\XYplorer) (Version: 18.90 - Donald Lessau, Cologne Code Company)
東芝スクリーンミラーリング (HKLM-x32\...\{FB840BB8-82D9-43F8-B7AD-C1DE01185294}) (Version: 1.0.13.3 - APUSONE Technology Inc.) Hidden
東芝スクリーンミラーリング for スマートフォン/タブレット (HKLM-x32\...\InstallShield_{FB840BB8-82D9-43F8-B7AD-C1DE01185294}) (Version: 1.0.13.3 - APUSONE Technology Inc.)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-813CB5835A7A}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{b7c2f028-a138-4ad4-aaa1-77cf720d5c66}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{d63b0bea-dc64-4c3b-af8b-d860551f91d4}\InprocServer32 -> C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1112066077-4254746724-1257480092-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-19] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-19] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [IconOverlaySymbolicLink] -> {0A479751-02BC-11d3-A855-0004AC2568EE} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-19] (Hermann Schinagl)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers1: [$PowerDVD18] -> {EF1ED1FB-2224-4150-B12A-CDDE6D442D5A} => C:\ProgramData\CyberLink\PowerDVD18\OpenWith\PDVD_Shell64.dll [2018-03-29] (CyberLink Corp.)
ContextMenuHandlers1: [EDPShell] -> {58549232-7081-4541-882C-767DB238453C} => C:\Program Files\ExamDiff Pro\EDPShell.dll [2018-02-26] (PrestoSoft LLC)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-15] (ESET)
ContextMenuHandlers1: [File Marker] -> {B70B7A24-5180-4092-B3BA-6266F914C053} => C:\Program Files (x86)\FileMarker.NET\FileMarkerShlExt64.dll [2017-05-17] (ArcticLine Software)
ContextMenuHandlers1: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-19] (Hermann Schinagl)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers1: [IXnView] -> {A5D35F9F-6A11-4EAA-B70B-7BB6FE32663A} => C:\Program Files\XnView\ShellEx\XnViewShellExt64.dll [2015-02-18] ()
ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-15] (ESET)
ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2017-10-01] (Paramount Software UK Ltd)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Workstation\vmdkShellExt.dll [2018-01-07] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2018-01-07] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers5: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-19] (Hermann Schinagl)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-03-23] (Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers6: [EDPShell] -> {58549232-7081-4541-882C-767DB238453C} => C:\Program Files\ExamDiff Pro\EDPShell.dll [2018-02-26] (PrestoSoft LLC)
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2018-03-15] (ESET)
ContextMenuHandlers6: [Folderico] -> {CC0C45C5-EFDE-4B8A-A8B0-9ED733D9E6AC} => C:\Program Files\FolderIco\FolderIco.dll [2015-08-30] (TeoreX)
ContextMenuHandlers6: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension\HardlinkShellExt.dll [2016-04-19] (Hermann Schinagl)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2018-01-25] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-03-27] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (Alexander Roshal)
FolderExtensions: [] -> {27DD0F8B-3E0E-4ADC-A78A-66047E71ADC5} => C:\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll [2017-08-16] (www.startisback.com)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {21EE1191-238C-45E9-A639-A829A667D62F} - System32\Tasks\WindowManager => C:\Program Files (x86)\WindowManager\WindowManager.exe [2018-04-15] (DeskSoft)
Task: {2593AD2A-5960-4092-9A5E-246DD022D69E} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2018-04-11] (Realtek Semiconductor)
Task: {330BBB74-3339-42E4-A613-413D13F8DB53} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install => C:\WINDOWS\system32\usoclient.exe [2018-03-01] ()
Task: {448D28A8-2070-4724-B317-4E1C9B4B1B2B} - System32\Tasks\TOSHIBA\Service Station => C:\Program Files\TOSHIBA\Toshiba Service Station\ToshibaServiceStation.exe [2015-07-30] (TOSHIBA Corporation)
Task: {5D1D6240-2BE6-4E53-952A-B4E862EEC206} - System32\Tasks\BTSchedulerTask => C:\Program Files (x86)\TOSHIBA\Toshiba Bluetooth Device Profile Utility\TosBt_NotificationScheduler.exe [2015-07-08] (Toshiba Corporation)
Task: {650751B8-0586-401C-95FF-65523D62D989} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan => C:\WINDOWS\system32\usoclient.exe [2018-03-01] ()
Task: {66F443B4-F369-41A2-9255-4929D6E86733} - System32\Tasks\HardDiskSentinel\Hard Disk Sentinel_owner => C:\Program Files (x86)\Hard Disk Sentinel\HDSentinel.exe [2018-03-23] (H.D.S. Hungary)
Task: {6DC234E0-886F-4EC5-B223-2F661F93E97A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {6F5B94EA-D7CF-4241-8DCC-816766BF5582} - System32\Tasks\wub_task => C:\Program Files\Windows Update Minitool With script for service shutdown\wub.exe [2018-02-25] (www.sordum.org)
Task: {723ABC5D-4A28-45ED-9A41-B537EFB1C32E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-04-14] (Microsoft Corporation)
Task: {8294C954-AF28-4726-A6BA-81BECFAA689D} - System32\Tasks\{150FD0FE-9A31-4F2A-8BE1-F923285CBAC6} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Toshiba\OEM Registration Program\OEMRegistrationProgram.exe" -d "C:\Program Files (x86)\Toshiba\OEM Registration Program"
Task: {86D1F303-A3F9-43CA-A765-78978098193E} - System32\Tasks\Open Hardware Monitor\Startup => C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe [2016-11-06] ()
Task: {8FEC7B8F-636F-4F81-BFA1-4738E1036DF2} - System32\Tasks\Uninstaller_SkipUac_owner => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2018-03-28] (IObit)
Task: {9EDDA363-999A-4D27-93AE-E4D1550B971D} - System32\Tasks\Adobe Uninstaller => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2018-02-13] (Adobe Systems Incorporated)
Task: {A57B479F-C28A-45A7-8634-B4DE6286241D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.)
Task: {B5F11331-5B96-4D0C-A730-816A4EC07F9C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2018-04-14] (Microsoft Corporation)
Task: {BF0D003D-4BB4-4C7D-A74E-9D0615FC7C04} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-14] (Microsoft Corporation)
Task: {C58975CA-052C-4DDE-9061-7FDAE294B57A} - System32\Tasks\S-1-5-21-1112066077-4254746724-1257480092-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2017-09-29] (Microsoft Corporation)
Task: {CA4F5DDB-B5F5-4FD2-88AD-D111E578B94E} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-02-09] (Adobe Systems Incorporated)
Task: {D15BDF26-A613-4C01-88F5-C238922D6216} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-06] (Microsoft Corporation)
Task: {D9AB513F-4663-4F87-B074-26F52FFA77D2} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation)
Task: {E5F878E4-D4EC-41E2-9C0B-04F9A29B673C} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-04-06] (Microsoft Corporation)
Task: {E7048644-EE23-411A-B60E-C5318DA5B4CD} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-21] (Google Inc.)
Task: {E85B58D3-CC51-4C2E-9351-3680C994BE0A} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-04-14] (Microsoft Corporation)
Task: {F81C6B7C-182A-42AE-BD53-5A124CF2A75E} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-gokpok@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\owner\Favorites\NCH Software Download Site.lnk -> hxxp://www.nch.com.au/index.htm
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Système\VMware\ThinApp\ThinApp Help.lnk -> hxxp://www.vmware.com/info?id=90
Shortcut: C:\Users\owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet\Reset Data Usage.bat.lnk -> C:\Program Files (x86)\Reset Data Usage - Script\Reset_Data_Usage.bat ()

==================== Loaded Modules (Whitelisted) ==============

2017-09-29 15:41 - 2017-09-29 15:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2016-06-07 08:20 - 2016-05-25 11:53 - 001634072 _____ () C:\Program Files (x86)\InternetOff\IOffSvc.exe
2018-03-30 10:48 - 2018-03-30 10:48 - 005843152 _____ () C:\Program Files\bitbeans\Simple DNSCrypt x64\dnscrypt-proxy\dnscrypt-proxy.exe
2018-01-31 13:35 - 2009-01-12 08:15 - 000082872 _____ () C:\WINDOWS\SysWOW64\NMSAccess64.exe
2018-03-29 11:25 - 2018-03-29 11:25 - 000429304 _____ () C:\Program Files (x86)\NordVPN\nordvpn-service.exe
2014-02-27 06:31 - 2014-02-27 06:31 - 000013312 _____ () C:\Windows\SysWOW64\SMITSC.exe
2016-08-31 15:49 - 2016-08-31 15:49 - 001088000 _____ () \\?\C:\Windows\Prey\versions\1.7.4\node_modules\sqlite3\lib\binding\node-v46-win32-x64\node_sqlite3.node
2017-08-21 09:15 - 2017-08-21 09:15 - 000419328 ____R () C:\Program Files\Intel\Wired Networking\NCS2\Agent\AdapterAgnt.DLL
2017-05-11 18:15 - 2016-11-06 18:15 - 000494592 _____ () C:\Program Files (x86)\OpenHardwareMonitor\OpenHardwareMonitor.exe
2018-01-04 03:04 - 2018-01-04 03:04 - 000649672 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2004-09-30 20:15 - 2004-09-30 20:15 - 000192000 _____ () C:\Program Files\LinkShellExtension\RockallDLL.dll
2011-04-12 22:53 - 2011-04-12 22:53 - 000015360 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitHook64.DLL
2018-04-17 17:48 - 2018-03-28 02:04 - 000100864 _____ () C:\Program Files\ShellFolderFix64\ShellFolderFix.dll
2016-06-12 10:29 - 2015-02-18 20:46 - 002383360 _____ () C:\Program Files\XnView\ShellEx\XnViewShellExt64.dll
2016-12-02 08:32 - 2017-03-23 15:57 - 000401936 _____ () C:\WINDOWS\system32\igfxTray.exe
2018-03-08 19:28 - 2018-01-23 15:18 - 000841728 _____ () C:\Program Files\Networx portable\64-bit\sqlite3.dll
2016-06-07 08:20 - 2016-05-25 11:53 - 003182360 _____ () C:\Program Files (x86)\InternetOff\InternetOff.exe
2016-06-08 18:28 - 2007-09-02 13:58 - 000495616 _____ () C:\Program Files (x86)\RocketDock\RocketDock.exe
2011-04-12 22:53 - 2011-04-12 22:53 - 003951616 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplit.exe
2011-04-12 22:53 - 2011-04-12 22:53 - 000015872 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr32.exe
2011-04-12 22:53 - 2011-04-12 22:53 - 000017920 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitDrvr64.exe
2017-10-05 01:13 - 2017-10-05 01:13 - 000263680 _____ () C:\Users\owner\AppData\Roaming\Textify\Textify.exe
2017-03-19 11:00 - 2014-10-03 14:06 - 000014848 _____ () C:\Program Files\volumouse-x64\volumouse32.exe
2018-03-07 12:57 - 2018-03-07 12:57 - 000163016 _____ () C:\Program Files\WindowsApps\21090PaddyXu.QuickLook_0.3.5.0_neutral__egxr34yet59cg\Package\QuickLook.Native64.dll
2018-03-30 19:43 - 2018-03-30 19:43 - 014087168 ____N () C:\Users\owner\AppData\Local\Temp\Magick.NET.net40.7.4.0.0\Magick.NET-Q8-x64.Native.dll
2018-02-08 23:46 - 2018-02-08 23:46 - 000110080 _____ () C:\Program Files\Rainmeter\Plugins\PowerPlugin.dll
2016-06-09 13:37 - 2014-04-07 12:18 - 002592256 _____ () C:\Program Files (x86)\Gest\Gest.exe
2018-04-17 17:48 - 2018-03-28 02:43 - 002630656 _____ () C:\Program Files\ShellFolderFix64\ShellFolderFixUI.exe
2017-05-01 17:55 - 2012-04-28 07:01 - 000350720 _____ () C:\Program Files (x86)\Stick it 1.00.0b\Stick-It!.exe
2016-10-05 13:41 - 2013-09-22 10:40 - 000132312 _____ () C:\Program Files (x86)\wizmouse 1.7.0.3 portable\WizMouse.exe
2017-03-11 15:36 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-03-11 15:36 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-03-11 15:36 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2018-03-08 10:53 - 2018-03-08 10:53 - 000238080 _____ () C:\Program Files (x86)\NordVPN\x86\Liberation.Native.Firewall.dll
2017-12-11 20:04 - 2017-12-11 20:04 - 000128424 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\expat.dll
2017-12-11 20:04 - 2017-12-11 20:04 - 000402776 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\ssoClient.dll
2017-12-11 20:04 - 2017-12-11 20:04 - 000096256 _____ () C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\mspack.dll
2011-04-12 22:53 - 2011-04-12 22:53 - 000013312 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitHook32.DLL
2016-06-08 18:28 - 2007-09-02 13:57 - 000069632 _____ () C:\Program Files (x86)\RocketDock\RocketDock.dll
2011-04-12 22:53 - 2011-04-12 22:53 - 000011264 _____ () C:\Program Files (x86)\WinSplit Revolution\WinSplitLib.dll
2017-12-25 14:03 - 2017-12-25 14:03 - 000064512 _____ () C:\Program Files\WindowsApps\40459File-New-Project.EarTrumpet_1.5.2.0_x86__1sdd7yawvg6ne\EarTrumpet.Interop.dll
2015-03-16 19:34 - 2015-03-16 19:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2017-03-11 15:36 - 2018-01-25 17:02 - 000899856 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
2017-03-11 15:36 - 2018-01-25 17:01 - 000631568 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
2017-03-11 15:36 - 2017-05-22 11:16 - 000524064 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\sqlite3.dll
2017-11-22 12:18 - 2017-11-22 12:18 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:6DAA43DB [234]
AlternateDataStreams: C:\ProgramData\TEMP:810B9F0D [136]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2017-09-29 15:46 - 2018-04-15 18:58 - 000137715 _____ C:\WINDOWS\system32\Drivers\etc\hosts

0.0.0.0 choice.microsoft.com.nsatc.net
0.0.0.0 survey.watson.microsoft.com
0.0.0.0 compatexchange.cloudapp.net
0.0.0.0 a-0001.a-msedge.net
0.0.0.0 statsfe2.update.microsoft.com.akadns.net
0.0.0.0 sls.update.microsoft.com.akadns.net
0.0.0.0 fe2.update.microsoft.com.akadns.net
0.0.0.0 diagnostics.support.microsoft.com
0.0.0.0 corp.sts.microsoft.com
0.0.0.0 feedback.windows.com
0.0.0.0 feedback.microsoft-hohm.com
0.0.0.0 feedback.search.microsoft.com
0.0.0.0 rad.msn.com
0.0.0.0 preview.msn.com
0.0.0.0 adnexus.net
0.0.0.0 az361816.vo.msecnd.net
0.0.0.0 az512334.vo.msecnd.net
0.0.0.0 ssw.live.com
0.0.0.0 ca.telemetry.microsoft.com
0.0.0.0 i1.services.social.microsoft.com
0.0.0.0 i1.services.social.microsoft.com.nsatc.net
0.0.0.0 cs1.wpc.v0cdn.net
0.0.0.0 spynetalt.microsoft.com
0.0.0.0 fe3.delivery.dsp.mp.microsoft.com.nsatc.net
0.0.0.0 www.clubic.com
0.0.0.0 proclubic.com
0.0.0.0 www.01net.com
0.0.0.0 www.softonic.net
0.0.0.0 www.telecharger.com
0.0.0.0 cmp-cdn.ghostery.com

There are 3931 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1112066077-4254746724-1257480092-1001\Control Panel\Desktop\\Wallpaper -> C:\Fond d'ecran\Copie de Kyoto.jpeg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{60E6D465-398E-4850-BE86-7EF7620A2377}] => (Block) C:\windows\system32\svchost.exe
FirewallRules: [{382F028A-050A-42E9-AB93-BE92DCEE87ED}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{CD4FD1A1-A5C1-47E2-9200-D4F7C9E6E206}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{4C751C72-0D13-4062-835D-50AC5B2269C5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{27A90A87-DF76-4149-A3B9-D853831D387B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{83A8806C-9564-4516-AEFB-53807FBDE464}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A4FA2263-E1DA-4109-A762-7406AEEB19EB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{E8ECFD94-F7FF-4C6C-850B-FEC0339F19DE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{6DCF569F-DA0A-486B-9EDC-D5396E9F8937}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{2ACC8486-FA60-45D6-99A0-57B6EEE73832}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{97BF53C6-661D-4C86-8B41-828956F528B1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{D73E069C-FC1A-4560-87EA-73B3F073435B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Spacewar\SteamworksExample.exe
FirewallRules: [{6DE6F25A-F9C7-4EBC-85E7-A01A717E7676}] => (Allow) C:\Program Files (x86)\Steam\steamapps\Common\Spacewar\SteamworksExample.exe
FirewallRules: [{FA74EE12-1948-4D65-9C2C-CFD50E69707E}] => (Block) LPort=8318
FirewallRules: [{3276B4B5-4831-4FAD-86B7-966351A2A672}] => (Block) %ProgramFiles% (x86)\Destroy Windows 10 Spying\Destroy Windows 10 Spying.exe
FirewallRules: [{9C7026D5-6268-4457-B52E-ACD7827D0BD0}] => (Block) %ProgramFiles% (x86)\Destroy Windows 10 Spying\Destroy Windows 10 Spying.exe
FirewallRules: [{F43936C9-4F0F-48FA-9FB0-CE2E235C307B}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{F8546430-C419-4C78-931D-8248F42B55B0}] => (Allow) C:\Program Files\Waterfox\waterfox.exe
FirewallRules: [{398A6E4C-9A77-4D1E-B37F-ACE3A95B1A26}] => (Block) C:\Program Files\Windows Firewall Control\wfc.exe
FirewallRules: [{EC5633D4-B1E2-44BD-B80E-747FBB6D11A6}] => (Block) C:\WINDOWS\system32\spoolsv.exe
FirewallRules: [{1747461C-472A-46C3-BE21-B120D90531B7}] => (Allow) C:\Program Files\waterfox\waterfox.exe
FirewallRules: [{FABB2FC8-00BF-4EE8-9D2E-C89E687CEE2C}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
FirewallRules: [TCP Query User{0C45436E-3294-4394-A6D0-D9DA6744F501}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{20F73919-3406-4586-9367-28A75003B4E1}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{4C356547-3C4D-4EFA-9D21-DB54EE9E0E1E}] => (Block) C:\WINDOWS\Explorer.EXE
FirewallRules: [{FD1F2068-F697-46B0-81FF-2C112388FDAD}] => (Block) C:\Program Files\Notepad++\notepad++.exe
FirewallRules: [{01BC0803-1306-4EE7-909F-7D2F2BE3A736}] => (Block) C:\Program Files\SumatraPDF\SumatraPDF.exe
FirewallRules: [{17339735-D644-49C2-9079-0E98CD23550B}] => (Block) C:\Program Files\WinRAR\WinRAR.exe
FirewallRules: [{90F28D44-48CC-43B8-8A1B-CF1B48606A01}] => (Block) C:\Program Files\Win10 Spy Disabler\Win10SpyDisabler.exe
FirewallRules: [{C6AF62E3-AB8A-432A-998A-FFB86CC6208D}] => (Block) C:\Program Files (x86)\Free Video Cutter\FreeVideoCutter.exe
FirewallRules: [{08F0760E-BEDA-4B67-962C-CAC174745E14}] => (Block) C:\Program Files (x86)\Volume2\Volume2.exe
FirewallRules: [{1A825B0E-75AB-4F24-9C16-F0089BED656B}] => (Block) C:\Program Files (x86)\Volume2\Volume2PM.exe
FirewallRules: [{B82865CA-C2EE-4F66-9A0B-06EDDF16F1F4}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{1B49D6DB-E875-4698-AA78-14735CA77FF9}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
FirewallRules: [{C8481DAC-67E1-4F1A-8FCC-C42CCC413D22}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{CB9F27C1-E438-4457-9D31-E06BF02C2EB3}] => (Allow) C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe
FirewallRules: [{8E44003F-055A-41FB-8E2D-23DEBC74C586}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{86A315BD-CFA0-4EC9-818C-8C413816AF9E}] => (Block) C:\Program Files\ExamDiff Pro\ExamDiff.exe
FirewallRules: [{AC39045C-9316-4A0D-9878-161FC2EF1FF5}] => (Block) C:\Program Files\Windows Firewall Control\wfc.exe
FirewallRules: [{2E9BD135-78EC-4905-B60B-F512D0D6616E}] => (Block) C:\WINDOWS\system32\spoolsv.exe
FirewallRules: [TCP Query User{9A261B67-246E-4417-84C1-2BE7A9A0F936}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{108AC259-7467-48F7-9310-7AA50E5A3BA2}C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{1EFC87AF-A0B2-447C-BA40-6B932BFAA2EC}C:\program files (x86)\networkconnectlog\networkconnectlog.exe] => (Allow) C:\program files (x86)\networkconnectlog\networkconnectlog.exe
FirewallRules: [UDP Query User{4AF9B01C-CDD0-45FB-9263-9A664F1FC340}C:\program files (x86)\networkconnectlog\networkconnectlog.exe] => (Allow) C:\program files (x86)\networkconnectlog\networkconnectlog.exe
FirewallRules: [TCP Query User{1DF1E56B-D198-44C8-AEA9-2F52744E0BAE}C:\sdi\sdio_x64_r682.exe] => (Allow) C:\sdi\sdio_x64_r682.exe
FirewallRules: [UDP Query User{4685BF4C-D96F-411A-8F64-77DBE3D8C645}C:\sdi\sdio_x64_r682.exe] => (Allow) C:\sdi\sdio_x64_r682.exe
FirewallRules: [TCP Query User{71B36B6D-9887-4B80-AF3F-41CEEC655F1E}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe
FirewallRules: [UDP Query User{A749ECEB-4C6D-4AD5-B64A-53C073B640DF}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe
FirewallRules: [{A89F1AA8-7F63-4C3E-A1CF-885D844FEEF0}] => (Block) C:\Program Files\Yamicsoft\Windows 10 Manager\Windows10Manager.exe
FirewallRules: [{133B60D6-2196-426C-BE96-C3D459DC78DF}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{3A2EE92F-A880-4D87-B93E-C535F277A196}] => (Allow) C:\Windows\Prey\versions\1.7.4\bin\node.exe
FirewallRules: [TCP Query User{89D041BA-22A5-4FE8-B2AD-BA5A42CF16F7}C:\program files\adobe\adobe premiere pro cc 2018\adobe premiere pro.exe] => (Allow) C:\program files\adobe\adobe premiere pro cc 2018\adobe premiere pro.exe
FirewallRules: [UDP Query User{0FFE5DEB-26DE-40CF-A830-BB8E51A64FD1}C:\program files\adobe\adobe premiere pro cc 2018\adobe premiere pro.exe] => (Allow) C:\program files\adobe\adobe premiere pro cc 2018\adobe premiere pro.exe
FirewallRules: [{269C14AD-4CB5-432F-94FB-20FD8E07BDD2}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE
FirewallRules: [{6A6DACF0-F8AD-4416-8957-6B0D0F993ACF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{85324D5A-F07E-46EE-A9C9-D2BE9CD20029}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{886EEE2F-386E-4125-84E9-8D6D0667C155}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{9757088C-78BA-46F9-AA0F-F1A602799E19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{6FB2DB5D-2922-4F5F-814B-EF9C8000A364}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{6EFEF8F0-D2ED-4CEF-AC53-877FD7F79CBF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{5D975316-922F-4291-8E7F-5D0CE482BCB2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{A8970529-2E0E-4010-A799-A148FDF18DA8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\Spotify.exe
FirewallRules: [{60900DCF-551D-4682-9D44-F0F1F891E4D1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{737F0C6B-429A-4624-93F9-2AAFE97E7D15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.78.999.0_x86__zpdnekdrzrea0\SpotifyWebHelper.exe
FirewallRules: [{B40EFA43-36CA-4332-900E-2F8B74AFFD13}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD.exe
FirewallRules: [{5784CE2A-1FB5-4955-BF82-1A925B0BD9B1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\Kernel\DMS\CLMSServerPDVD18.exe
FirewallRules: [{4085EC48-CDD4-4814-AACB-5D62BFBC77D6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\PowerDVD18Agent.exe
FirewallRules: [{26F81C83-AFBA-4B22-A8E0-C476C93FACF3}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\Movie\PowerDVDMovie.exe
FirewallRules: [{DA4D4E8D-3E4D-4CD0-B511-F50F035C0BC2}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD18\CastingStation.exe
FirewallRules: [TCP Query User{0D8834A0-CBAF-455A-98CB-73FA05AE82EF}C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe
FirewallRules: [UDP Query User{91A17E5D-1268-4256-9AB4-A691D449A111}C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/19/2018 09:26:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.

Error: (04/19/2018 09:26:08 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows.

Error: (04/19/2018 09:26:08 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code d’état.

Error: (04/19/2018 09:26:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « MSDTC » dans la DLL « C:\WINDOWS\system32\msdtcuiu.DLL ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.

Error: (04/19/2018 09:26:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « Lsa » dans la DLL « C:\Windows\System32\Secur32.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.

Error: (04/19/2018 09:26:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « ESENT » dans la DLL « C:\WINDOWS\system32\esentprf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.

Error: (04/19/2018 09:26:08 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.

Error: (04/19/2018 09:26:07 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « WmiApRpl » dans la DLL « C:\WINDOWS\system32\wbem\wmiaprpl.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.


System errors:
=============
Error: (04/19/2018 09:34:53 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI.AppX7gfgmgykbws8x0ccxbt2zeamtttc1ntp.mca en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca

Error: (04/19/2018 09:25:55 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (04/19/2018 09:25:53 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (04/19/2018 09:25:51 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (04/19/2018 09:25:49 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1794) (User: NT AUTHORITY)
Description: Le microprogramme du Module de plateforme sécurisée (TPM) de PC a rencontré un problème de sécurité. Contactez le fabricant de votre PC pour savoir si une mise à jour est disponible. Pour plus d’informations, voir https://go.microsoft.com/fwlink/?linkid=852572

Error: (04/19/2018 09:25:49 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (04/19/2018 09:25:47 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

Error: (04/19/2018 09:25:45 PM) (Source: DCOM) (EventID: 10001) (User: PC)
Description: Impossible de démarrer un serveur DCOM : Microsoft.Windows.Cortana_1.9.6.16299_neutral_neutral_cw5n1h2txyewy!CortanaUI en tant que 利用不可/利用不可. L’erreur
« 267 »
s’est produite lors du démarrage de la commande :
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca


CodeIntegrity:
===================================

Date: 2018-03-30 15:57:29.176
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-02-27 15:04:00.203
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.

Date: 2018-02-27 15:03:59.561
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.

Date: 2018-02-27 15:03:59.288
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.

Date: 2018-02-06 11:44:45.208
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.

Date: 2018-02-06 11:44:44.512
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.

Date: 2018-02-06 11:44:44.259
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume4\Program Files\ESET\ESET Security\eplgEdge.dll that did not meet the Store signing level requirements.

Date: 2018-01-02 17:13:07.657
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\OldNewExplorer\OldNewExplorer64.dll that did not meet the Store signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-4710MQ CPU @ 2.50GHz
Percentage of memory in use: 19%
Total physical RAM: 16309.31 MB
Available physical RAM: 13197.72 MB
Total Virtual: 22309.31 MB
Available Virtual: 18091.84 MB

==================== Drives ================================

Drive c: (WINDOWS) (Fixed) (Total:474.82 GB) (Free:75.22 GB) NTFS

\\?\Volume{371d30b5-add7-497c-a5fa-07db6398431f}\ (System) (Fixed) (Total:1 GB) (Free:0.65 GB) NTFS
\\?\Volume{aedab45f-8f38-4f69-bb42-14fcd63dbc54}\ () (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32
\\?\Volume{10ef0bf0-4ed4-48ee-9b2a-b860e71dd6b9}\ () (Fixed) (Total:0.9 GB) (Free:0.46 GB) NTFS

==================== MBR & Partition Table ==================

==================== End of Addition.txt ============================

Publicité


Signaler le contenu de ce document

Publicité