Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 03-08-2016
Exécuté par Iron Man (2018-10-15 13:21:27)
Exécuté depuis C:\Users\perso\Downloads
Windows 10 Home Version 1803 (X64) (2018-05-14 20:37:18)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2522663244-2547680880-3079984633-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2522663244-2547680880-3079984633-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2522663244-2547680880-3079984633-1010 - Limited - Enabled)
Invité (S-1-5-21-2522663244-2547680880-3079984633-501 - Limited - Disabled)
Iron Man (S-1-5-21-2522663244-2547680880-3079984633-1001 - Administrator - Enabled) => C:\Users\perso
WDAGUtilityAccount (S-1-5-21-2522663244-2547680880-3079984633-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
4K YouTube to MP3 3.3 (HKLM-x32\...\{65D9009F-7586-471D-A45A-4E94D7CC04DD}) (Version: 3.3.3.1777 - Open Media LLC)
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}Visible) (Version: 20.0.8058 - Acronis)
Acronis True Image (x32 Version: 20.0.8058 - Acronis) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.008.20074 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AOMEI Partition Assistant Standard Edition 6.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
ArteBeaute 64 bits (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\ARTEBEAUTEArteBeaute 64 bits) (Version: 8.1.0.1 - Biremont@Multimedia)
ArteBeaute64 (Installation cliente) (HKLM\...\ARTEBEAUTEArteBeaute 64 bitsCLT) (Version: - )
Assistant Support et récupération de Microsoft pour Office 365 (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\dacae1bed46e81d5) (Version: 16.0.2194.10 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite DCP-9020CDW (HKLM-x32\...\{E98A9C92-E767-475B-8BC6-8780A86DDC72}) (Version: 1.0.5.0 - Brother Industries, Ltd.)
Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.8.20.0 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.8.20.0 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.20.20.0 - Canon Inc.)
CMSClient 1.0.0.47 (HKLM-x32\...\CMSClient) (Version: 1.0.0.47 - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
EBP Mon Budget Perso 2010 10.0 (HKLM-x32\...\EBP Mon Budget Perso 2010 10.0) (Version: 10.0.0 - EBP)
EBP Mon Budget Perso 2010 10.0 (x32 Version: 10.0.0 - EBP) Hidden
Folder Colorizer version 1.4.7 (HKLM\...\{A133E9CD-2879-4F30-87D4-1604AFD5C5CC}_is1) (Version: 1.4.7 - Softorino)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Update Helper (x32 Version: 1.3.33.17 - Google Inc.) Hidden
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
IP-Tools (HKLM-x32\...\IP-Tools) (Version: - )
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 18.0.0.405 - Kaspersky Lab) Hidden
KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 4.1.5.8 - PandoraTV)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Logitech Alert Commander (HKLM-x32\...\{635E34BC-AF78-43A9-B72D-1B6E94CA8125}) (Version: 3.0.215 - Nom de votre société)
Manager (x32 Version: 6.0.7.371 - pdfforge GmbH) Hidden
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.10827.20150 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
MKVToolNix 27.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 27.0.0 - Moritz Bunkus)
Molotov (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\Molotov) (Version: 2.3.0 - Molotov)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 62.0.3 (x64 fr) (HKLM\...\Mozilla Firefox 62.0.3 (x64 fr)) (Version: 62.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0 - Mozilla)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 2.0.4.57 - Nav N Go Kft.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - Nav N Go Ltd.)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.10827.20150 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.10827.20150 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.10827.20150 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{36C264F3-0458-42D9-A091-807B5CEB0FA8}) (Version: 4.1.1 - dotPDN LLC)
PDF Architect 6 (HKLM-x32\...\PDF Architect 6) (Version: 6.0.26.200 - pdfforge GmbH)
PDF Architect 6 Create Module (Version: 6.0.37.38653 - pdfforge GmbH) Hidden
PDF Architect 6 Edit Module (Version: 6.0.37.38653 - pdfforge GmbH) Hidden
PDF Architect 6 View Module (Version: 6.0.37.38653 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.13963 - Kakao Corp.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.5992 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Renault Media Nav Toolbox (HKLM-x32\...\Renault Media Nav Toolbox) (Version: 3.18.5.647040 - NNG Llc.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Sage 50c Ciel 3.21 (HKLM-x32\...\{7AAA2CB4-FF54-4B91-95E9-195DDC77F56E}) (Version: 138.00.1110 - Sage-FR)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18014.6 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.2.18014.6 - Samsung Electronics Co., Ltd.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Watchtower Library - Français (HKLM-x32\...\{D17C5B85-FEA3-493D-97EE-E27C2E09908C}) (Version: 18.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2017 (HKLM-x32\...\{3CC29C1A-B5FE-457B-1234-32A2557A92C7}}_is1) (Version: - winmoviemaker)
Zedeo version 1.3.0 (HKLM-x32\...\{095074AE-E4BD-41EC-AE78-21969805AB7C}_is1) (Version: 1.3.0 - ZedSoft)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{389510b7-9e58-40d7-98bf-60b911cb0ea9}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{94269C4E-071A-4116-90E6-52E557067E4E}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{A926714B-7BFC-4D08-A035-80021395FFA8}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\perso\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\perso\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {042D8A51-5878-4000-9C10-C04AFF122A1F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand
Task: {0A7AA876-862F-4F81-AA4B-B73950FA632C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Task: {0AC579FA-E6FA-4722-A217-5B96BCFC98E9} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2018-04-12] (Microsoft Corporation)
Task: {11A38B65-0EFC-4989-959F-86B541A52703} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-24] (Google Inc.)
Task: {1BE936D4-EE40-4F04-84E0-18FFD27C0A6A} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [2018-04-12] (Microsoft Corporation)
Task: {1F7A0843-5E67-45BB-92DA-06686A7FD0D3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2018-10-13] (Microsoft Corporation)
Task: {2231CAFE-FABE-41F5-A0B3-842D9319DBF9} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2018-05-20] (Microsoft Corporation)
Task: {2810B6A4-9CA7-4121-99C0-11CC54A74AA3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-24] (Google Inc.)
Task: {294EF281-56B6-4F71-8115-BAC2919EF034} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task
Task: {29F3A47A-C0DC-48D8-ACAF-89413EE0731D} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [2018-07-15] (Microsoft Corporation)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask
Task: {2DBD790D-172A-4CFA-B3F7-824D7509680F} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => Sc.exe start pushtoinstall registration
Task: {38EA9748-0164-416F-99F1-0894D1E15598} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2522663244-2547680880-3079984633-1001 => C:\Users\perso\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2018-09-23] (Microsoft Corporation)
Task: {430852CB-A87C-492E-A659-075C7BF1710C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Task: {51D31EBF-545E-411D-A21A-CB34004CC384} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh
Task: {541BA5BF-1736-4A3E-B1E5-CE1C9EE13043} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates
Task: {557C7D6B-9167-4FFE-A794-DB04C453FE8D} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2018-04-12] (Microsoft Corporation)
Task: {577C3956-E492-42A5-AEFB-FDC54A537C64} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange
Task: {57A7E0DF-F70E-43B1-AA2C-5BA67DBBE753} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask
Task: {5DB4FD20-4FF2-4C58-9801-ADD6F0149633} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {62331915-A3E9-4B6E-9686-86034377E8CF} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications
Task: {644B516F-B09A-4B4D-B163-FAB0BAAFD38B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2522663244-2547680880-3079984633-1001UA => C:\Users\perso\AppData\Local\Google\Update\GoogleUpdate.exe [2018-10-15] (Google Inc.)
Task: {65A34F07-723D-4150-B109-13BD1AE3DFAA} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {66C832CB-1466-40C8-829A-94DF10CE9C1A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2522663244-2547680880-3079984633-1001Core => C:\Users\perso\AppData\Local\Google\Update\GoogleUpdate.exe [2018-10-15] (Google Inc.)
Task: {6DE4F7DC-0B8D-404A-A6C9-83241658F8CA} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2018-05-20] (Microsoft Corporation)
Task: {71320F65-C284-48D2-AB40-C204A9334706} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-13] (Microsoft Corporation)
Task: {7138D0D3-1873-4A77-86CF-4840F491C90F} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2018-04-12] (Microsoft Corporation)
Task: {7472FD65-898E-4941-A5D8-3C3907F77FFB} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {749E286C-C205-4C7C-B742-BE5023BF06DE} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => Sc.exe start pushtoinstall login
Task: {78BABCCD-20B8-49B7-B4F8-87490C41C875} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Task: {7EAE5A6B-00F4-4B9F-A255-E1C163B587A1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession
Task: {868B63DA-9791-4712-B2AA-F6571C0CCAE4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-29] (Microsoft Corporation)
Task: {88493490-CA22-4755-84A4-F4B469BC4881} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {892B6B88-93D1-4B00-A6B8-781F688A4879} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_pepper.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {8CCDCCC3-88F0-4860-84BE-5AC16A1C6FA9} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
Task: {8F255F88-A87A-495F-B828-A4AFEC70BDB0} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [2018-04-12] (Microsoft Corporation)
Task: {90CAD751-C9E6-4ABF-96C2-729A0AB976EF} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {97E8D66D-0085-423C-BA11-DD777A1258AB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2018-04-12] (Microsoft Corporation)
Task: {A167F6E0-ED47-419C-807E-2A11ECBA98D4} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation
Task: {A305A840-EC8B-4C66-8EA8-5FF15F129CD2} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2018-04-12] (Microsoft Corporation)
Task: {A3C99F17-E1F7-4D1C-9159-3E56554E5A32} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {A7022EEB-7B43-4ED6-A000-DED9EB07BA1B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {B0952E0A-C54F-4E8B-95E9-90E560086B37} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand
Task: {B14C88F4-4AAC-4F00-A94E-8EA180D7AEDC} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense
Task: {B2F4AC84-A8D0-4524-9363-BFF5A5911A00} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {BBC43F10-CFAC-44DB-8EAD-002C9D8A4114} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-29] (Microsoft Corporation)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\Windows\system32\speech_onecore\common\SpeechRuntime.exe [2018-05-20] (Microsoft Corporation)
Task: {C64007AE-AD8D-463A-9891-CB9B9399227A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-10-13] (Microsoft Corporation)
Task: {CDA5D686-5D6C-4730-9907-B66710DC3670} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange
Task: {D010978C-B666-4072-B7F3-DD6340CDD629} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {D1CC320B-9A47-4DB4-AFE4-2BCE1A964E7A} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources
Task: {DD710A69-86C6-4932-97B1-01FB13ACFEF1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {E0862994-9083-482D-A921-27B4860FFA21} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [2018-04-12] (Microsoft Corporation)
Task: {E4CCBA15-C480-4F1E-91F8-4F9A213AB113} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-13] (Microsoft Corporation)
Task: {EFA86FF7-22AE-4997-AFD9-E89E1BF9B7D6} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2018-04-12] (Microsoft Corporation)
Task: {F955A09C-E83A-4AD5-9ABC-7D5D7A055117} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task
Task: {FC779438-B7FD-4774-AA55-4DE2A4B098A4} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\perso\Documents\françois\Spirituel\Congrégation\ecole\EMT.lnk -> C:\PYTHON34\EMT.bat ()
==================== Modules chargés (Avec liste blanche) ==============
2017-06-22 14:49 - 2017-06-22 14:49 - 01278720 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2017-12-22 09:49 - 2017-12-22 09:49 - 06086232 _____ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2017-12-21 10:10 - 2005-04-22 06:36 - 00143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2017-06-22 14:37 - 2017-06-22 14:37 - 00588360 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\Windows\System32\InputHost.dll
2017-03-02 12:46 - 2017-03-02 12:46 - 05823600 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 02759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\WINDOWS\SYSTEM32\InputHost.dll
2018-10-10 07:37 - 2018-09-20 05:38 - 02185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-12 21:37 - 2018-07-12 21:37 - 01922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-09-12 07:40 - 2018-09-12 07:41 - 35124736 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-09-12 07:40 - 2018-09-12 07:40 - 00290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-09-12 07:40 - 2018-09-12 07:40 - 06417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-12-21 10:20 - 2017-12-21 10:21 - 03553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-12 07:40 - 2018-09-12 07:40 - 09010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2017-03-07 12:57 - 2017-03-07 12:57 - 07014728 _____ () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
2018-09-26 13:36 - 2018-09-26 13:42 - 00479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-09-26 13:36 - 2018-09-26 13:42 - 69128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-09-26 13:36 - 2018-09-26 13:42 - 00010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-12-21 10:29 - 2017-12-21 10:42 - 02523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-04-26 08:23 - 2018-04-26 08:25 - 00009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-30 09:37 - 2018-08-30 09:40 - 03699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-30 09:37 - 2018-08-30 09:43 - 00035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 08:21 - 2018-08-17 08:24 - 02480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 08:21 - 2018-08-17 08:24 - 02280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-04-05 08:24 - 2018-04-05 08:25 - 02283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-09-26 13:36 - 2018-09-26 13:42 - 14171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-30 09:37 - 2018-08-30 09:40 - 03544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-09-26 13:36 - 2018-09-26 13:36 - 02866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 09:37 - 2018-08-30 09:43 - 00973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 16:27 - 2018-07-27 16:27 - 04584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-26 13:36 - 2018-09-26 13:42 - 00145920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\SKU.dll
2018-10-06 08:52 - 2018-10-06 08:58 - 00194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-07-31 07:52 - 2018-07-31 07:52 - 02447072 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-06 08:52 - 2018-10-06 08:54 - 01689088 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-09-26 13:35 - 2018-09-26 13:36 - 04178432 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1808.2461.0_x64__8wekyb3d8bbwe\Calculator.exe
2018-09-26 13:35 - 2018-09-26 13:36 - 04472952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1808.2461.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-12-20 23:46 - 2018-10-13 09:06 - 01437272 _____ () C:\Program Files\Microsoft Office\Root\Office16\ADDINS\UmOutlookAddin.dll
2018-10-15 10:18 - 2018-09-15 10:26 - 05110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-10-15 10:18 - 2018-09-15 10:26 - 00116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\WINDOWS\system32\InputHost.dll
2018-10-09 08:25 - 2018-10-09 08:26 - 04389888 _____ () C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1809.2571.0_x64__8wekyb3d8bbwe\OneConnect.dll
2017-06-22 15:56 - 2017-06-22 15:56 - 03637720 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\atih_mms_addon.dll
2017-06-22 15:55 - 2017-06-22 15:55 - 01314952 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\services_mms_addon.dll
2016-08-29 22:16 - 2016-08-29 22:16 - 00685488 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2017-06-22 15:55 - 2017-06-22 15:55 - 20921440 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2017-06-22 14:36 - 2017-06-22 14:36 - 00396720 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2016-08-15 12:28 - 2016-08-15 12:28 - 00129968 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2017-03-07 12:48 - 2017-03-07 12:48 - 00248240 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2016-11-23 15:41 - 2016-11-23 15:41 - 00160168 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\libevent.dll
2016-08-30 00:57 - 2016-08-30 00:57 - 00444336 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2016-08-29 22:16 - 2016-08-29 22:16 - 00115632 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\expat.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-12-20 22:57 - 2017-12-20 22:54 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe
FirewallRules: [{416117B5-301D-4AE0-AB52-91662BA01FD9}] => (Allow) C:\Users\perso\AppData\Local\Temp\upd4A78.tmp\WDSetup64.exe
FirewallRules: [{5D1E734D-9E52-4110-A4B4-9234681425C6}] => (Allow) C:\Users\perso\AppData\Local\Temp\upd4A78.tmp\WDSetup64.exe
FirewallRules: [{2CE122EA-3668-4EFD-A9C6-AD9699DEF59E}] => (Allow) C:\ArteBeaute64\INSTALL\WDSetup.exe
FirewallRules: [{BC16F55E-194B-4759-9E13-BA64EEDDCD71}] => (Allow) C:\ArteBeaute64\INSTALL\WDSetup.exe
FirewallRules: [{E9B6FF1B-EEB7-46C0-B907-BF474CD08B26}] => (Allow) LPort=1900
FirewallRules: [{58F66B7D-12CA-4413-AA67-8B8EA5304C52}] => (Allow) LPort=2869
FirewallRules: [{89CBD110-77E3-4333-BF66-BE6E95404275}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{317F9FC9-39F8-4835-AC05-E4B74456E1AD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{915C23DE-5A88-485F-AD3A-D898A082C6A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{235A683C-3B06-40F7-80AF-6590D8BB9948}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4822CE6A-C8A0-4F82-938C-DDFE5011C65C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FA76BA22-2464-43DE-AB9B-37B74762D909}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
FirewallRules: [{E1AE52A8-565B-4DBA-ABC0-ABC8B35C437D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
FirewallRules: [{6F133CEE-B909-4B01-821F-252BE2CBB86C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe
FirewallRules: [{6596A28E-F1DC-4B77-988A-90A138306C8B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe
FirewallRules: [{CC3B3305-8042-4F28-AF87-EEDD79EBEBC7}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe
FirewallRules: [{E61A1751-A79B-4E1F-B4B1-699993F0859A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
FirewallRules: [{0E473D8F-8A68-49DF-9565-757FD331579A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe
FirewallRules: [{0E4F117A-9CBF-450E-8129-1299D426494B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
FirewallRules: [{C8C7A3A5-289A-4474-81FC-FD552BC2E0EF}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe
FirewallRules: [{3FA49202-3CEE-4C98-8D0D-93D63E7D500F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{F07F9554-EF85-4FA0-B0E3-9051EB4DA17F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{15BEC5AD-62A1-49E8-9815-BD66AE21388F}] => (Allow) LPort=54925
FirewallRules: [{1A9EF818-E1CF-4835-BE91-EF7224607897}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9580ED93-D243-4A45-9B4B-1982B1997440}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3C71D80C-3B5B-474B-95B8-064046CE220A}] => (Allow) C:\Users\perso\AppData\Local\Temp\WDD767.tmp\WDSetup64.exe
FirewallRules: [{0502A730-B287-4A72-BA77-07138CBC03C4}] => (Allow) C:\Users\perso\AppData\Local\Temp\WDD767.tmp\WDSetup64.exe
FirewallRules: [{E54BBD13-F183-425F-9EF8-9BCF668A006A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{5B21797D-A514-4CE1-B70B-4E8D8FD6110B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{7EE25BB3-AB8C-4866-A693-9C1A230E831F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{873E43ED-612D-486A-9E84-B8F7F3E056B2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{58049808-0E0F-40A0-AF80-C6CEFB63494E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{E436DB1A-5B25-4884-8B14-8E5CFE42AE44}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{33A0A781-1DE5-4A61-A546-98195C35FE10}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{E124B60F-E0EB-4BD7-9823-B3FDFFC82DDE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{4536A194-9104-4549-9607-1180AB692242}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{4F9951DA-61FE-4058-9ED3-6CC418B666E4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
09-10-2018 19:16:14 Point de contrôle planifié
15-10-2018 12:28:30 Installed HiJackThis
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/15/2018 10:11:49 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement.
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (10/15/2018 10:10:28 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement.
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (10/15/2018 10:09:46 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {e0521d76-f4e7-4119-b6bb-abf0c35b0333}
Error: (10/15/2018 09:53:28 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PAPA)
Description: httphttp-2147467263
Error: (10/15/2018 07:25:29 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333
Error: (10/14/2018 09:07:15 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333
Error: (10/13/2018 08:04:24 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333
Error: (10/12/2018 12:22:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme WINWORD.EXE version 16.0.10827.20138 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 2824
Heure de début : 01d462153de2d1fe
Heure de fin : 0
Chemin d'accès de l'application : C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
ID de rapport : 9879752c-b4e1-4ffa-a20f-416f8c37f807
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (10/12/2018 08:13:43 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: TWN BrtTWN: [2018/10/12 08:13:43.953]: [00001936]: Initialize TwdsMain Class failed!
Error: (10/12/2018 08:13:43 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: TWN BrtTWN: [2018/10/12 08:13:43.952]: [00001936]: ##### Fatal ERROR!! Create STI-device failed! #####
Erreurs système:
=============
Error: (10/15/2018 01:07:15 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 01:04:38 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:41:52 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalExécutionWindows.SecurityCenter.WscBrokerManagerNon disponibleAUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:40:04 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:39:37 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: RISD0001
Error: (10/15/2018 12:35:22 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalExécutionWindows.SecurityCenter.WscBrokerManagerNon disponibleAUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:33:34 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:33:04 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: RISD0001
Error: (10/15/2018 12:32:07 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:31:53 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
CodeIntegrity:
===================================
Date: 2018-10-15 09:48:40.079
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-15 09:48:39.846
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-15 09:48:39.552
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-15 09:48:39.244
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-14 15:25:23.718
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-14 15:24:39.968
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-13 19:28:21.005
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-07 18:04:16.691
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-07 17:48:01.368
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-02 14:30:36.671
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Pourcentage de mémoire utilisée: 36%
Mémoire physique - RAM - totale: 8046.09 MB
Mémoire physique - RAM - disponible: 5119.92 MB
Mémoire virtuelle totale: 9326.09 MB
Mémoire virtuelle disponible: 6489.04 MB
==================== Lecteurs ================================
Drive c: (Papa) (Fixed) (Total:468.34 GB) (Free:202.95 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 489 GB) (Disk ID: 27A783E8)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=204 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=468.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=500 MB) - (Type=27)
==================== Fin de Addition.txt ============================
Exécuté par Iron Man (2018-10-15 13:21:27)
Exécuté depuis C:\Users\perso\Downloads
Windows 10 Home Version 1803 (X64) (2018-05-14 20:37:18)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-2522663244-2547680880-3079984633-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2522663244-2547680880-3079984633-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2522663244-2547680880-3079984633-1010 - Limited - Enabled)
Invité (S-1-5-21-2522663244-2547680880-3079984633-501 - Limited - Disabled)
Iron Man (S-1-5-21-2522663244-2547680880-3079984633-1001 - Administrator - Enabled) => C:\Users\perso
WDAGUtilityAccount (S-1-5-21-2522663244-2547680880-3079984633-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
4K YouTube to MP3 3.3 (HKLM-x32\...\{65D9009F-7586-471D-A45A-4E94D7CC04DD}) (Version: 3.3.3.1777 - Open Media LLC)
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}Visible) (Version: 20.0.8058 - Acronis)
Acronis True Image (x32 Version: 20.0.8058 - Acronis) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.008.20074 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AOMEI Partition Assistant Standard Edition 6.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
ArteBeaute 64 bits (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\ARTEBEAUTEArteBeaute 64 bits) (Version: 8.1.0.1 - Biremont@Multimedia)
ArteBeaute64 (Installation cliente) (HKLM\...\ARTEBEAUTEArteBeaute 64 bitsCLT) (Version: - )
Assistant Support et récupération de Microsoft pour Office 365 (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\dacae1bed46e81d5) (Version: 16.0.2194.10 - Microsoft Corporation)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite DCP-9020CDW (HKLM-x32\...\{E98A9C92-E767-475B-8BC6-8780A86DDC72}) (Version: 1.0.5.0 - Brother Industries, Ltd.)
Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.8.20.0 - Canon Inc.)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.8.20.0 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.20.20.0 - Canon Inc.)
CMSClient 1.0.0.47 (HKLM-x32\...\CMSClient) (Version: 1.0.0.47 - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
EBP Mon Budget Perso 2010 10.0 (HKLM-x32\...\EBP Mon Budget Perso 2010 10.0) (Version: 10.0.0 - EBP)
EBP Mon Budget Perso 2010 10.0 (x32 Version: 10.0.0 - EBP) Hidden
Folder Colorizer version 1.4.7 (HKLM\...\{A133E9CD-2879-4F30-87D4-1604AFD5C5CC}_is1) (Version: 1.4.7 - Softorino)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Update Helper (x32 Version: 1.3.33.17 - Google Inc.) Hidden
HiJackThis (HKLM-x32\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
IP-Tools (HKLM-x32\...\IP-Tools) (Version: - )
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{718613F4-492D-4272-ACC3-D04A8EF0F883}) (Version: 19.0.0.1088 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 19.0.0.1088 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 18.0.0.405 - Kaspersky Lab) Hidden
KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 4.1.5.8 - PandoraTV)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Logitech Alert Commander (HKLM-x32\...\{635E34BC-AF78-43A9-B72D-1B6E94CA8125}) (Version: 3.0.215 - Nom de votre société)
Manager (x32 Version: 6.0.7.371 - pdfforge GmbH) Hidden
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.10827.20150 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
MKVToolNix 27.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 27.0.0 - Moritz Bunkus)
Molotov (HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\Molotov) (Version: 2.3.0 - Molotov)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 62.0.3 (x64 fr) (HKLM\...\Mozilla Firefox 62.0.3 (x64 fr)) (Version: 62.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0 - Mozilla)
Naviextras Toolbox (HKLM-x32\...\Naviextras Toolbox) (Version: 2.0.4.57 - Nav N Go Kft.)
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - Nav N Go Ltd.)
Office 16 Click-to-Run Extensibility Component (Version: 16.0.10827.20150 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.10827.20150 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.10827.20150 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{36C264F3-0458-42D9-A091-807B5CEB0FA8}) (Version: 4.1.1 - dotPDN LLC)
PDF Architect 6 (HKLM-x32\...\PDF Architect 6) (Version: 6.0.26.200 - pdfforge GmbH)
PDF Architect 6 Create Module (Version: 6.0.37.38653 - pdfforge GmbH) Hidden
PDF Architect 6 Edit Module (Version: 6.0.37.38653 - pdfforge GmbH) Hidden
PDF Architect 6 View Module (Version: 6.0.37.38653 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 1.7.13963 - Kakao Corp.)
Realtek HDMI Audio Driver for ATI (HKLM-x32\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.5992 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Renault Media Nav Toolbox (HKLM-x32\...\Renault Media Nav Toolbox) (Version: 3.18.5.647040 - NNG Llc.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Sage 50c Ciel 3.21 (HKLM-x32\...\{7AAA2CB4-FF54-4B91-95E9-195DDC77F56E}) (Version: 138.00.1110 - Sage-FR)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18014.6 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.2.18014.6 - Samsung Electronics Co., Ltd.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Watchtower Library - Français (HKLM-x32\...\{D17C5B85-FEA3-493D-97EE-E27C2E09908C}) (Version: 18.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2017 (HKLM-x32\...\{3CC29C1A-B5FE-457B-1234-32A2557A92C7}}_is1) (Version: - winmoviemaker)
Zedeo version 1.3.0 (HKLM-x32\...\{095074AE-E4BD-41EC-AE78-21969805AB7C}_is1) (Version: 1.3.0 - ZedSoft)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{021E4F06-9DCC-49AD-88CF-ECC2DA314C8A}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{389510b7-9e58-40d7-98bf-60b911cb0ea9}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{94269C4E-071A-4116-90E6-52E557067E4E}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{9489FEB2-1925-4D01-B788-6D912C70F7F2}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{A926714B-7BFC-4D08-A035-80021395FFA8}\localserver32 -> C:\Users\perso\AppData\Local\Microsoft\OneDrive\18.151.0729.0012\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\perso\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2522663244-2547680880-3079984633-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\perso\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {042D8A51-5878-4000-9C10-C04AFF122A1F} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleCommand
Task: {0A7AA876-862F-4F81-AA4B-B73950FA632C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Task: {0AC579FA-E6FA-4722-A217-5B96BCFC98E9} - System32\Tasks\Microsoft\Windows\Subscription\LicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2018-04-12] (Microsoft Corporation)
Task: {11A38B65-0EFC-4989-959F-86B541A52703} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-24] (Google Inc.)
Task: {1BE936D4-EE40-4F04-84E0-18FFD27C0A6A} - System32\Tasks\Microsoft\Windows\Chkdsk\SyspartRepair => C:\Windows\system32\bcdboot.exe [2018-04-12] (Microsoft Corporation)
Task: {1F7A0843-5E67-45BB-92DA-06686A7FD0D3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe [2018-10-13] (Microsoft Corporation)
Task: {2231CAFE-FABE-41F5-A0B3-842D9319DBF9} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierinstall => C:\Windows\system32\AppHostRegistrationVerifier.exe [2018-05-20] (Microsoft Corporation)
Task: {2810B6A4-9CA7-4121-99C0-11CC54A74AA3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-02-24] (Google Inc.)
Task: {294EF281-56B6-4F71-8115-BAC2919EF034} - System32\Tasks\Microsoft\Windows\EDP\EDP App Launch Task
Task: {29F3A47A-C0DC-48D8-ACAF-89413EE0731D} - System32\Tasks\Microsoft\Windows\UNP\RunUpdateNotificationMgr => C:\Windows\System32\UNP\UpdateNotificationMgr.exe [2018-07-15] (Microsoft Corporation)
Task: {2BB692C1-F60F-479E-ADC2-1CAF9422A2AC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyMonitorToastTask
Task: {2DBD790D-172A-4CFA-B3F7-824D7509680F} - System32\Tasks\Microsoft\Windows\PushToInstall\Registration => Sc.exe start pushtoinstall registration
Task: {38EA9748-0164-416F-99F1-0894D1E15598} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2522663244-2547680880-3079984633-1001 => C:\Users\perso\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2018-09-23] (Microsoft Corporation)
Task: {430852CB-A87C-492E-A659-075C7BF1710C} - System32\Tasks\Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Task: {51D31EBF-545E-411D-A21A-CB34004CC384} - System32\Tasks\Microsoft\Windows\ExploitGuard\ExploitGuard MDM policy Refresh
Task: {541BA5BF-1736-4A3E-B1E5-CE1C9EE13043} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdates
Task: {557C7D6B-9167-4FFE-A794-DB04C453FE8D} - System32\Tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition => C:\Windows\system32\ClipRenew.exe [2018-04-12] (Microsoft Corporation)
Task: {577C3956-E492-42A5-AEFB-FDC54A537C64} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDevicePolicyChange
Task: {57A7E0DF-F70E-43B1-AA2C-5BA67DBBE753} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyRefreshTask
Task: {5DB4FD20-4FF2-4C58-9801-ADD6F0149633} - System32\Tasks\Microsoft\Windows\EDP\EDP Inaccessible Credentials Task
Task: {62331915-A3E9-4B6E-9686-86034377E8CF} - System32\Tasks\Microsoft\Windows\USB\Usb-Notifications
Task: {644B516F-B09A-4B4D-B163-FAB0BAAFD38B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2522663244-2547680880-3079984633-1001UA => C:\Users\perso\AppData\Local\Google\Update\GoogleUpdate.exe [2018-10-15] (Google Inc.)
Task: {65A34F07-723D-4150-B109-13BD1AE3DFAA} - System32\Tasks\Microsoft\Windows\InstallService\SmartRetry
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {66C832CB-1466-40C8-829A-94DF10CE9C1A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2522663244-2547680880-3079984633-1001Core => C:\Users\perso\AppData\Local\Google\Update\GoogleUpdate.exe [2018-10-15] (Google Inc.)
Task: {6DE4F7DC-0B8D-404A-A6C9-83241658F8CA} - System32\Tasks\microsoft\windows\applicationdata\appuriverifierdaily => C:\Windows\system32\AppHostRegistrationVerifier.exe [2018-05-20] (Microsoft Corporation)
Task: {71320F65-C284-48D2-AB40-C204A9334706} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-13] (Microsoft Corporation)
Task: {7138D0D3-1873-4A77-86CF-4840F491C90F} - System32\Tasks\Microsoft\XblGameSave\XblGameSaveTask => C:\Windows\System32\XblGameSaveTask.exe [2018-04-12] (Microsoft Corporation)
Task: {7472FD65-898E-4941-A5D8-3C3907F77FFB} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {749E286C-C205-4C7C-B742-BE5023BF06DE} - System32\Tasks\Microsoft\Windows\PushToInstall\LoginCheck => Sc.exe start pushtoinstall login
Task: {78BABCCD-20B8-49B7-B4F8-87490C41C875} - System32\Tasks\Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Task: {7EAE5A6B-00F4-4B9F-A255-E1C163B587A1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\LocateCommandUserSession
Task: {868B63DA-9791-4712-B2AA-F6571C0CCAE4} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-29] (Microsoft Corporation)
Task: {88493490-CA22-4755-84A4-F4B469BC4881} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {892B6B88-93D1-4B00-A6B8-781F688A4879} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_pepper.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {8CCDCCC3-88F0-4860-84BE-5AC16A1C6FA9} - System32\Tasks\Microsoft\Windows\SharedPC\Account Cleanup => Rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
Task: {8F255F88-A87A-495F-B828-A4AFEC70BDB0} - System32\Tasks\Microsoft\Windows\DirectX\DXGIAdapterCache => C:\Windows\system32\dxgiadaptercache.exe [2018-04-12] (Microsoft Corporation)
Task: {90CAD751-C9E6-4ABF-96C2-729A0AB976EF} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {97E8D66D-0085-423C-BA11-DD777A1258AB} - System32\Tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask => C:\Windows\system32\MDMAgent.exe [2018-04-12] (Microsoft Corporation)
Task: {A167F6E0-ED47-419C-807E-2A11ECBA98D4} - System32\Tasks\Microsoft\Windows\WaaSMedic\PerformRemediation
Task: {A305A840-EC8B-4C66-8EA8-5FF15F129CD2} - System32\Tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask => C:\Windows\system32\speech_onecore\common\SpeechModelDownload.exe [2018-04-12] (Microsoft Corporation)
Task: {A3C99F17-E1F7-4D1C-9159-3E56554E5A32} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceWnsFallback
Task: {A7022EEB-7B43-4ED6-A000-DED9EB07BA1B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {B0952E0A-C54F-4E8B-95E9-90E560086B37} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\HandleWnsCommand
Task: {B14C88F4-4AAC-4F00-A94E-8EA180D7AEDC} - System32\Tasks\Microsoft\Windows\DiskFootprint\StorageSense
Task: {B2F4AC84-A8D0-4524-9363-BFF5A5911A00} - System32\Tasks\Microsoft\Windows\BrokerInfrastructure\BgTaskRegistrationMaintenanceTask
Task: {BBC43F10-CFAC-44DB-8EAD-002C9D8A4114} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-09-29] (Microsoft Corporation)
Task: {C2098BE2-A29A-4EB1-97F6-F0C57E086D4F} - System32\Tasks\Microsoft\Windows\Speech\HeadsetButtonPress => C:\Windows\system32\speech_onecore\common\SpeechRuntime.exe [2018-05-20] (Microsoft Corporation)
Task: {C64007AE-AD8D-463A-9891-CB9B9399227A} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2018-10-13] (Microsoft Corporation)
Task: {CDA5D686-5D6C-4730-9907-B66710DC3670} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceLocationRightsChange
Task: {D010978C-B666-4072-B7F3-DD6340CDD629} - System32\Tasks\Microsoft\Windows\EDP\StorageCardEncryption Task
Task: {D1CC320B-9A47-4DB4-AFE4-2BCE1A964E7A} - System32\Tasks\Microsoft\Windows\LanguageComponentsInstaller\ReconcileLanguageResources
Task: {DD710A69-86C6-4932-97B1-01FB13ACFEF1} - System32\Tasks\Microsoft\Windows\DeviceDirectoryClient\RegisterDeviceProtectionStateChanged
Task: {E0862994-9083-482D-A921-27B4860FFA21} - System32\Tasks\Microsoft\Windows\Printing\EduPrintProv => C:\Windows\system32\eduprintprov.exe [2018-04-12] (Microsoft Corporation)
Task: {E4CCBA15-C480-4F1E-91F8-4F9A213AB113} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-10-13] (Microsoft Corporation)
Task: {EFA86FF7-22AE-4997-AFD9-E89E1BF9B7D6} - System32\Tasks\Microsoft\Windows\Device Information\Device => C:\Windows\system32\devicecensus.exe [2018-04-12] (Microsoft Corporation)
Task: {F955A09C-E83A-4AD5-9ABC-7D5D7A055117} - System32\Tasks\Microsoft\Windows\EDP\EDP Auth Task
Task: {FC779438-B7FD-4774-AA55-4DE2A4B098A4} - System32\Tasks\Microsoft\Windows\BitLocker\BitLocker MDM policy Refresh
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
==================== Raccourcis =============================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\perso\Documents\françois\Spirituel\Congrégation\ecole\EMT.lnk -> C:\PYTHON34\EMT.bat ()
==================== Modules chargés (Avec liste blanche) ==============
2017-06-22 14:49 - 2017-06-22 14:49 - 01278720 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
2017-12-22 09:49 - 2017-12-22 09:49 - 06086232 _____ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
2017-12-21 10:10 - 2005-04-22 06:36 - 00143360 _____ () C:\WINDOWS\system32\BrSNMP64.dll
2017-06-22 14:37 - 2017-06-22 14:37 - 00588360 _____ () C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\Windows\System32\InputHost.dll
2017-03-02 12:46 - 2017-03-02 12:46 - 05823600 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 02759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\WINDOWS\SYSTEM32\InputHost.dll
2018-10-10 07:37 - 2018-09-20 05:38 - 02185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-12 21:37 - 2018-07-12 21:37 - 01922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-09-12 07:40 - 2018-09-12 07:41 - 35124736 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-09-12 07:40 - 2018-09-12 07:40 - 00290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-09-12 07:40 - 2018-09-12 07:40 - 06417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-12-21 10:20 - 2017-12-21 10:21 - 03553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-12 07:40 - 2018-09-12 07:40 - 09010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2017-03-07 12:57 - 2017-03-07 12:57 - 07014728 _____ () C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
2018-09-26 13:36 - 2018-09-26 13:42 - 00479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-09-26 13:36 - 2018-09-26 13:42 - 69128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-09-26 13:36 - 2018-09-26 13:42 - 00010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-12-21 10:29 - 2017-12-21 10:42 - 02523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-04-26 08:23 - 2018-04-26 08:25 - 00009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-30 09:37 - 2018-08-30 09:40 - 03699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-30 09:37 - 2018-08-30 09:43 - 00035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 08:21 - 2018-08-17 08:24 - 02480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 08:21 - 2018-08-17 08:24 - 02280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-04-05 08:24 - 2018-04-05 08:25 - 02283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-09-26 13:36 - 2018-09-26 13:42 - 14171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-30 09:37 - 2018-08-30 09:40 - 03544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-09-26 13:36 - 2018-09-26 13:36 - 02866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 09:37 - 2018-08-30 09:43 - 00973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 16:27 - 2018-07-27 16:27 - 04584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-26 13:36 - 2018-09-26 13:42 - 00145920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\SKU.dll
2018-10-06 08:52 - 2018-10-06 08:58 - 00194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-07-31 07:52 - 2018-07-31 07:52 - 02447072 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-06 08:52 - 2018-10-06 08:54 - 01689088 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11809.1001.8.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-09-26 13:35 - 2018-09-26 13:36 - 04178432 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1808.2461.0_x64__8wekyb3d8bbwe\Calculator.exe
2018-09-26 13:35 - 2018-09-26 13:36 - 04472952 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1808.2461.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-12-20 23:46 - 2018-10-13 09:06 - 01437272 _____ () C:\Program Files\Microsoft Office\Root\Office16\ADDINS\UmOutlookAddin.dll
2018-10-15 10:18 - 2018-09-15 10:26 - 05110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-10-15 10:18 - 2018-09-15 10:26 - 00116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 00491744 _____ () C:\WINDOWS\system32\InputHost.dll
2018-10-09 08:25 - 2018-10-09 08:26 - 04389888 _____ () C:\Program Files\WindowsApps\Microsoft.OneConnect_5.1809.2571.0_x64__8wekyb3d8bbwe\OneConnect.dll
2017-06-22 15:56 - 2017-06-22 15:56 - 03637720 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\atih_mms_addon.dll
2017-06-22 15:55 - 2017-06-22 15:55 - 01314952 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\services_mms_addon.dll
2016-08-29 22:16 - 2016-08-29 22:16 - 00685488 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2017-06-22 15:55 - 2017-06-22 15:55 - 20921440 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2017-06-22 14:36 - 2017-06-22 14:36 - 00396720 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2016-08-15 12:28 - 2016-08-15 12:28 - 00129968 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2017-03-07 12:48 - 2017-03-07 12:48 - 00248240 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2016-11-23 15:41 - 2016-11-23 15:41 - 00160168 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\libevent.dll
2016-08-30 00:57 - 2016-08-30 00:57 - 00444336 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2016-08-29 22:16 - 2016-08-29 22:16 - 00115632 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\expat.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioEndpointBuilder => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AudioSrv => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudAddService.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HdAudBus.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetSetupSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SerCx2.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\usbaudio.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => ""="Media"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96C-E325-11CE-BFC1-08002BE10318} => "SafeBootDrivers"="1"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-12-20 22:57 - 2017-12-20 22:54 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2522663244-2547680880-3079984633-1001\...\StartupApproved\Run: => "OneDrive"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [WirelessDisplay-Infra-In-TCP] => (Allow) %systemroot%\system32\CastSrv.exe
FirewallRules: [{416117B5-301D-4AE0-AB52-91662BA01FD9}] => (Allow) C:\Users\perso\AppData\Local\Temp\upd4A78.tmp\WDSetup64.exe
FirewallRules: [{5D1E734D-9E52-4110-A4B4-9234681425C6}] => (Allow) C:\Users\perso\AppData\Local\Temp\upd4A78.tmp\WDSetup64.exe
FirewallRules: [{2CE122EA-3668-4EFD-A9C6-AD9699DEF59E}] => (Allow) C:\ArteBeaute64\INSTALL\WDSetup.exe
FirewallRules: [{BC16F55E-194B-4759-9E13-BA64EEDDCD71}] => (Allow) C:\ArteBeaute64\INSTALL\WDSetup.exe
FirewallRules: [{E9B6FF1B-EEB7-46C0-B907-BF474CD08B26}] => (Allow) LPort=1900
FirewallRules: [{58F66B7D-12CA-4413-AA67-8B8EA5304C52}] => (Allow) LPort=2869
FirewallRules: [{89CBD110-77E3-4333-BF66-BE6E95404275}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{317F9FC9-39F8-4835-AC05-E4B74456E1AD}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{915C23DE-5A88-485F-AD3A-D898A082C6A4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{235A683C-3B06-40F7-80AF-6590D8BB9948}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4822CE6A-C8A0-4F82-938C-DDFE5011C65C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FA76BA22-2464-43DE-AB9B-37B74762D909}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
FirewallRules: [{E1AE52A8-565B-4DBA-ABC0-ABC8B35C437D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
FirewallRules: [{6F133CEE-B909-4B01-821F-252BE2CBB86C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe
FirewallRules: [{6596A28E-F1DC-4B77-988A-90A138306C8B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe
FirewallRules: [{CC3B3305-8042-4F28-AF87-EEDD79EBEBC7}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe
FirewallRules: [{E61A1751-A79B-4E1F-B4B1-699993F0859A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
FirewallRules: [{0E473D8F-8A68-49DF-9565-757FD331579A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe
FirewallRules: [{0E4F117A-9CBF-450E-8129-1299D426494B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
FirewallRules: [{C8C7A3A5-289A-4474-81FC-FD552BC2E0EF}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe
FirewallRules: [{3FA49202-3CEE-4C98-8D0D-93D63E7D500F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{F07F9554-EF85-4FA0-B0E3-9051EB4DA17F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{15BEC5AD-62A1-49E8-9815-BD66AE21388F}] => (Allow) LPort=54925
FirewallRules: [{1A9EF818-E1CF-4835-BE91-EF7224607897}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9580ED93-D243-4A45-9B4B-1982B1997440}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3C71D80C-3B5B-474B-95B8-064046CE220A}] => (Allow) C:\Users\perso\AppData\Local\Temp\WDD767.tmp\WDSetup64.exe
FirewallRules: [{0502A730-B287-4A72-BA77-07138CBC03C4}] => (Allow) C:\Users\perso\AppData\Local\Temp\WDD767.tmp\WDSetup64.exe
FirewallRules: [{E54BBD13-F183-425F-9EF8-9BCF668A006A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{5B21797D-A514-4CE1-B70B-4E8D8FD6110B}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{7EE25BB3-AB8C-4866-A693-9C1A230E831F}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{873E43ED-612D-486A-9E84-B8F7F3E056B2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{58049808-0E0F-40A0-AF80-C6CEFB63494E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\iTunes.exe
FirewallRules: [{E436DB1A-5B25-4884-8B14-8E5CFE42AE44}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{33A0A781-1DE5-4A61-A546-98195C35FE10}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{E124B60F-E0EB-4BD7-9823-B3FDFFC82DDE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{4536A194-9104-4549-9607-1180AB692242}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12090.167.37085.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
FirewallRules: [{4F9951DA-61FE-4058-9ED3-6CC418B666E4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Points de restauration =========================
09-10-2018 19:16:14 Point de contrôle planifié
15-10-2018 12:28:30 Installed HiJackThis
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/15/2018 10:11:49 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement.
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (10/15/2018 10:10:28 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement.
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (10/15/2018 10:09:46 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {e0521d76-f4e7-4119-b6bb-abf0c35b0333}
Error: (10/15/2018 09:53:28 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PAPA)
Description: httphttp-2147467263
Error: (10/15/2018 07:25:29 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333
Error: (10/14/2018 09:07:15 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333
Error: (10/13/2018 08:04:24 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073422333
Error: (10/12/2018 12:22:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme WINWORD.EXE version 16.0.10827.20138 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.
ID de processus : 2824
Heure de début : 01d462153de2d1fe
Heure de fin : 0
Chemin d'accès de l'application : C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
ID de rapport : 9879752c-b4e1-4ffa-a20f-416f8c37f807
Nom complet du package défaillant :
ID de l'application relative au package défaillant :
Error: (10/12/2018 08:13:43 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: TWN BrtTWN: [2018/10/12 08:13:43.953]: [00001936]: Initialize TwdsMain Class failed!
Error: (10/12/2018 08:13:43 AM) (Source: Brother BrLog) (EventID: 1001) (User: )
Description: TWN BrtTWN: [2018/10/12 08:13:43.952]: [00001936]: ##### Fatal ERROR!! Create STI-device failed! #####
Erreurs système:
=============
Error: (10/15/2018 01:07:15 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 01:04:38 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:41:52 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalExécutionWindows.SecurityCenter.WscBrokerManagerNon disponibleAUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:40:04 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:39:37 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: RISD0001
Error: (10/15/2018 12:35:22 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: propres à l’applicationLocalExécutionWindows.SecurityCenter.WscBrokerManagerNon disponibleAUTORITE NTSystèmeS-1-5-18LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:33:34 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:33:04 PM) (Source: Application Popup) (EventID: 56) (User: )
Description: RISD0001
Error: (10/15/2018 12:32:07 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
Error: (10/15/2018 12:31:53 PM) (Source: DCOM) (EventID: 10016) (User: PAPA)
Description: propres à l’applicationLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}PAPAIron ManS-1-5-21-2522663244-2547680880-3079984633-1001LocalHost (avec LRPC)Non disponibleNon disponible
CodeIntegrity:
===================================
Date: 2018-10-15 09:48:40.079
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-15 09:48:39.846
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-15 09:48:39.552
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-15 09:48:39.244
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll that did not meet the Microsoft signing level requirements.
Date: 2018-10-14 15:25:23.718
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-14 15:24:39.968
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-13 19:28:21.005
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-07 18:04:16.691
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-07 17:48:01.368
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2018-10-02 14:30:36.671
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 19.0.0\avp.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i3 CPU M 330 @ 2.13GHz
Pourcentage de mémoire utilisée: 36%
Mémoire physique - RAM - totale: 8046.09 MB
Mémoire physique - RAM - disponible: 5119.92 MB
Mémoire virtuelle totale: 9326.09 MB
Mémoire virtuelle disponible: 6489.04 MB
==================== Lecteurs ================================
Drive c: (Papa) (Fixed) (Total:468.34 GB) (Free:202.95 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 489 GB) (Disk ID: 27A783E8)
Partition 1: (Not Active) - (Size=20 GB) - (Type=27)
Partition 2: (Active) - (Size=204 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=468.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=500 MB) - (Type=27)
==================== Fin de Addition.txt ============================