Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 29.12.2018
Exécuté par sangoku (30-12-2018 17:02:59)
Exécuté depuis C:\Users\sangoku\Desktop
Windows 10 Home Version 1803 17134.165 (X64) (2018-05-25 22:02:09)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1927228830-2583841606-2964579422-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1927228830-2583841606-2964579422-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1927228830-2583841606-2964579422-1005 - Limited - Enabled)
idir yassine (S-1-5-21-1927228830-2583841606-2964579422-1006 - Administrator - Enabled) => C:\Users\idir yassine
Invité (S-1-5-21-1927228830-2583841606-2964579422-501 - Limited - Disabled)
sangoku (S-1-5-21-1927228830-2583841606-2964579422-1001 - Administrator - Enabled) => C:\Users\sangoku
WDAGUtilityAccount (S-1-5-21-1927228830-2583841606-2964579422-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Reader 6.0.1 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A00000000001}) (Version: 006.000.001 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\{F9D72742-0351-447C-B160-F0A5AC9D87BF}) (Version: 3.4.117.01527 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.4.117.01527 - Alcor Micro Corp.)
AnyToISO (HKLM-x32\...\AnyToISO_is1) (Version: 3.6.1 - CrystalIdea Software, Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22514 - Microsoft Corporation)
ASUS Android USB Drivers (HKLM\...\{D3A8B9D5-EEE5-4F2A-9EDE-7EC3AADDA5D4}) (Version: 1.0.6351 - ASUSTeK Computer Inc.)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.4 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0005 - ASUS)
ASUS Sync (HKLM-x32\...\{6C2CB5E8-B928-4954-BEBB-A7C973ACC73C}) (Version: 1.0.83 - FutureDial Inc.)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.8 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.26 - ASUS)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.10.123 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.) Hidden
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0025 - ASUS)
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
AVG PC TuneUp 2015 (fr-FR) (HKLM-x32\...\{A740869A-1BFF-4688-AEA3-8F4A3F74B212}) (Version: 15.0.1001.403 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia 2018 (HKLM\...\{EA9A37D8-24A6-47D4-88DD-CE87A5EA18A0}) (Version: 18.0.2.3634 - TechSmith Corporation) Hidden
Camtasia 2018 (HKLM-x32\...\{43bf1bc0-7090-4218-8fe9-75a9cbd543d6}) (Version: 18.0.2.3634 - TechSmith Corporation)
Camtasia 9 (HKLM\...\{B8A4CB7E-7F5B-484F-A127-E4431000EDCE}) (Version: 9.0.4.1948 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{5957dd25-bb4e-4234-9dc0-b3e10a70f636}) (Version: 9.0.4.1948 - TechSmith Corporation)
Camtasia Studio 8 (HKLM-x32\...\{2B1F8DD0-873D-4AC3-8400-766F255FE263}) (Version: 8.1.0.1281 - TechSmith Corporation)
Carmen Sandiego (HKLM-x32\...\{3A07920C-BE0C-42FB-968E-5D1E1AFBBEBA}) (Version: 1.00 - Mindscape)
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
ControlMK 0.232 (HKLM-x32\...\ControlMK) (Version: 0.232 - Redcl0ud)
Coupe du monde 2014 V 1.2 (HKLM-x32\...\Coupe du monde 2014_is1) (Version: - Olivier RAVET)
CyberLink LabelPrint 2.5 (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5415 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.2914 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0630 - Disc Soft Ltd)
Disney Winnie l'Ourson Premiers Pas (HKLM-x32\...\Winnie l'Ourson Premiers Pas) (Version: - )
Dora La Cité Perdue (HKLM-x32\...\{FE978B11-8733-4CC0-B40A-2F5A4B0B33A5}) (Version: - )
Dragon NaturallySpeaking 11 (HKLM-x32\...\{EFFA53BC-8C04-2E21-3D90-A13B1697B0CA}) (Version: 11.50.100 - Nuance Communications Inc.)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.4.0 - IObit)
EPSON BX305 Series Manuel (HKLM-x32\...\EPSON BX305 Series Manual) (Version: - )
EPSON BX305 Series Printer Uninstall (HKLM\...\EPSON BX305 Series) (Version: - SEIKO EPSON Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}) (Version: 2.2.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.10.00 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Setup 3.3 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3a - SEIKO EPSON CORPORATION)
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
Fotogalerie (HKLM-x32\...\{3CBD94C1-BA15-488C-888B-D8DD296CC6DC}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (HKLM-x32\...\{446CC8CE-0E90-44F7-ADD0-774B243EF090}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Glary Utilities 2.56.0.1822 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.56.0.1822 - Glarysoft Ltd)
Google Chrome (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Guide réseau pour EPSON BX305 Series (HKLM-x32\...\EPSON BX305 Series Network Guide) (Version: - )
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
iCloud (HKLM\...\{29C6B346-C29C-40CE-89EB-DF7C149E0EB9}) (Version: 7.7.0.27 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
LG United Mobile Drivers (HKLM-x32\...\{55031CEF-CE75-4A5C-8DEA-60577820529B}) (Version: 3.10.1.0 - LG Electronics)
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
Ma-Config.com (64 bits) (HKLM\...\{9A3C5DC9-EEA9-4FB2-855A-26FE6DA733EA}) (Version: 7.1.3.1 - Cybelsoft)
MAGIX Screenshare (HKLM-x32\...\{3677B336-9F6D-45DF-9543-C049E35EE590}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Vidéo deluxe 17 Premium Version à télécharger (HKLM-x32\...\{655513BD-A11F-4937-BCD4-A21E316E66AC}) (Version: 10.0.0.33 - MAGIX AG) Hidden
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Media Player Utilities 4.41 (HKLM-x32\...\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}) (Version: 4.41 - )
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.5075.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{21a92a8d-968e-4b78-9af4-329f60d97ed7}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (HKLM-x32\...\{03CC9D58-B132-4CC0-A521-4F3660AA43C7}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{701FE1BC-834A-4857-AF62-6EBA50CFBC78}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{8E6E8CBB-8E58-493C-943F-4664F5F2FEDB}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{A17946CA-18E5-4CF0-8D55-A56D804718F8}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{AE8044B5-FCA3-4EBE-AC78-0FB3A6E8DC76}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 61.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.2 (x64 fr)) (Version: 61.0.2 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5075.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5075.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-040C-0000-0000000FF1CE}) (Version: 15.0.5075.1001 - Microsoft Corporation) Hidden
Online Games Manager v1.20 (HKLM-x32\...\Online Games Manager) (Version: 1.20.13 - Real Networks, Inc.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}) (Version: 3.41.9593 - Apache Software Foundation)
Oracle VM VirtualBox 6.0.0 (HKLM\...\{BD5F1226-4AA5-4E73-A3E9-D02DB07F96FF}) (Version: 6.0.0 - Oracle Corporation)
Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Package de pilotes Windows - Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION(R)3 Driver Package (01/20/2012 1.4.0.0) (HKLM\...\D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 - Sony Computer Entertainment Inc.)
paint.net (HKLM\...\{E637E0EF-6EB3-44C4-97B8-6F9EA444D649}) (Version: 4.1.5 - dotPDN LLC)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Peter Jackson's King Kong - The Official Game of the Movie (HKLM-x32\...\{111E336D-30BF-4CD4-8D69-4541732AFB27}) (Version: 1.00.0000 - Ubisoft)
PhotoFiltre 7 (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\PhotoFiltre 7) (Version: - )
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
PlayStation™Now (HKLM-x32\...\{FC861970-C3F1-429A-8D68-DF5261452217}) (Version: 11.0.0 - Sony Interactive Entertainment Network America LLC)
qBittorrent 4.1.2 (HKLM-x32\...\qBittorrent) (Version: 4.1.2 - The qBittorrent project)
Raccolta foto (HKLM-x32\...\{D04EBB49-C985-4A38-8695-62000861293A}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
RUNAWAY - The dream of the turtle - DEMO (HKLM-x32\...\{84CD7384-0B42-40C5-9A56-AD7145169314}) (Version: - )
ScanTool.net for Windows v1.13 (HKLM-x32\...\ScanTool.net for Windows) (Version: v1.13 - ScanTool.net, LLC)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.16 - ASUS)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Spirit (remove only) (HKLM-x32\...\spirit-9.17fr) (Version: - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{906B34E5-573C-445A-A5D3-40B6BF0A2EC4}) (Version: 6.0.21.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{3D520163-2C70-4330-A621-1CAA531C42A8}) (Version: 2.0.0.0 - Husdawg, LLC)
Unity Web Player (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\UnityWebPlayer) (Version: 5.3.8f2 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking 64bit (x64) (HKLM\...\{4A5A427F-BA39-4BF0-7777-9A47FBE60C9F}) (Version: 11.0.0 - Nuance Communications Inc.)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
Web Companion (HKLM-x32\...\{a83f7034-3775-44ad-95c0-f7df8c09e278}) (Version: 4.3.1908.3686 - Lavasoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wondershare Filmora(Build 8.7.1) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
WPS Office (10.1.0.5975) (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\Kingsoft Office) (Version: 10.1.0.5975 - Kingsoft Corp.)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{70239788-4DAE-49B8-9270-5D8614384B49}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{795602D7-7885-4E92-91DF-778E89D29F50}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\datamastershellext\datamastershellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\71.0.3578.98\notification_helper.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll => Pas de fichier
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-05-27] (Glarysoft Ltd)
ContextMenuHandlers1-x32: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-10-01] (Apple Inc.)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-09-13] (Disc Soft Ltd)
ContextMenuHandlers2-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-05-27] (Glarysoft Ltd)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Windows\system32\mscoree.dll [2018-04-12] (Microsoft Corporation)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-09-13] (Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers6-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-05-27] (Glarysoft Ltd)
ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1927228830-2583841606-2964579422-1001: [kpdf2wordshellext] -> {70239788-4DAE-49B8-9270-5D8614384B49} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers1_S-1-5-21-1927228830-2583841606-2964579422-1001: [qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers2_S-1-5-21-1927228830-2583841606-2964579422-1001: [datamastershellext] -> {795602D7-7885-4E92-91DF-778E89D29F50} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\datamastershellext\datamastershellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers4_S-1-5-21-1927228830-2583841606-2964579422-1001: [qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers5_S-1-5-21-1927228830-2583841606-2964579422-1001: [qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {04A11EBA-63C0-4DCA-BB6A-8FF04B7A8B95} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {12365642-7913-4E8F-9A1A-98C4DC24E894} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {144A3294-E6BE-4E27-968E-516AD5C177F2} - System32\Tasks\{9C5ADB00-1F06-4B53-AECD-3D31B05C70DB} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\sangoku\Downloads\TerraTec_Grabby_Drv_Setup_5.09.0813.00_XP_Vista_7.exe -d C:\Users\sangoku\Downloads
Task: {18694421-7C0E-464B-A9C4-DC55791EB1EB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {1CD54CE8-987C-45B5-8D2F-878F4EF8DFEF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {1E0F88A1-BBAB-4218-93A7-986D1E71DA98} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {1E6AE250-DC8C-447B-9ED4-F814C3FE42AC} - System32\Tasks\WpsUpdateTask_sangoku => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsupdate.exe
Task: {24EC6F6C-A127-4341-B41F-0C5BA9B58FF8} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [2018-06-24] (Piriform Ltd)
Task: {30ACE64F-B3FD-4030-935A-AD35B80FE60C} - System32\Tasks\{5CD4265F-5763-4E5E-A778-4BB04E97BE89} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\sangoku\Downloads\JDownloader\JDUninstall.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe
Task: {366B1464-F78B-48C8-BE5E-E5B1AB552DE0} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06] (Oracle Corporation)
Task: {49D30639-A97B-48E5-8246-6264790094BE} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-05-27] (Glarysoft Ltd)
Task: {4F25EA65-C514-416C-B54E-00C46346C349} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2018-03-13] (Microsoft Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {69D7DD65-1434-40DD-82C5-BE944BEE0A0E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => D:\Program Files\Windows Media Player\wmpnscfg.exe
Task: {72DD9F48-5F75-4586-9D7B-88D3327A9ACB} - System32\Tasks\WpsExternal_sangoku_20160914203910 => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {7323C668-CBB6-4651-BF4E-386C4BE47EC1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {7990FD9E-9604-4734-B417-B7F10754C057} - System32\Tasks\Driver Booster SkipUAC (sangoku) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe [2018-04-28] (IObit)
Task: {8230CDE5-ACFC-4B71-B118-347F7B1BDD27} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {9A9AF20B-4F27-4D08-815F-C022572E0A07} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2018-06-24] (Piriform Ltd)
Task: {A062C94C-48B2-4588-987B-92E41A432B19} - \WPD\SqmUpload_S-1-5-21-1927228830-2583841606-2964579422-1001 -> Pas de fichier <==== ATTENTION
Task: {A369D052-AD35-4EC3-AA25-D9CC785D3FE8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {A8A12DA6-0850-4C23-9163-17FE2B35200E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-29] (Adobe Systems Incorporated)
Task: {B330371C-E62B-49E2-89AD-7420485EF6D4} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-03-09] (AsusTek)
Task: {B6A171DB-A532-426F-A732-BD021F7423F5} - System32\Tasks\DandelionStarter => C:\Users\sangoku\AppData\Roaming\Alimama\Dandelion.exe
Task: {B8C6FB7C-2EEF-468D-8ED0-929960CD301F} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1927228830-2583841606-2964579422-1001 => C:\Users\sangoku\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2018-11-11] ()
Task: {BDC6F98D-66CF-48EB-B1BF-EE45A3083025} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1927228830-2583841606-2964579422-1001Core => C:\Users\sangoku\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-30] (Google Inc.)
Task: {C638E830-7CD8-4DB8-9B93-A42EA976D1E4} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
Task: {D2EE4601-EAE7-43DE-92FC-2E367E9D0875} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-09-24] (ASUS)
Task: {DBBB2A61-0999-44B9-A9B5-C78083CDBBE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {E3061A6F-1D07-447C-8DB5-49E0AB54BA72} - System32\Tasks\DB Bigupgrade Task ( One Time ) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\BigUpgrade.exe [2018-12-29] (IObit)
Task: {E312E28B-E2A4-465E-BAEA-2B9744626719} - System32\Tasks\Launch ASUS Sync Loader => C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [2012-06-15] (Futuredial Inc.)
Task: {EA059A96-C4F8-422D-9C3D-61831F6AE9A9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-29] (Adobe Systems Incorporated)
Task: {EC0B485F-3132-4BD1-B1B2-4D85E086CDF0} - System32\Tasks\WpsNotifyTask_sangoku => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsnotify.exe [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {F6B025EC-4867-4CF7-B5EB-CAF14E92A4CA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1927228830-2583841606-2964579422-1001UA => C:\Users\sangoku\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-30] (Google Inc.)
Task: {FED39531-6A6F-4EF1-B415-27B7F61C5D61} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\DandelionStarter.job => C:\Users\sangoku\AppData\Roaming\Alimama\Dandelion.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\WpsExternal_sangoku_20160914203910.job => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe~/wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll
Task: C:\Windows\Tasks\WpsNotifyTask_sangoku.job => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_sangoku.job => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsupdate.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\": <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2: <==== ATTENTION
Shortcut: C:\Users\sangoku\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
ShortcutWithArgument: C:\Users\sangoku\Desktop\Les dessins animés de mon enfance. - .._ (1).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\Desktop\Les dessins animés de mon enfance. - .._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\Desktop\Wiki Death Note _ FANDOM powered by W.._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=hopnegaopegamjkmehkjbkapklpikbjd
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Floating for YouTube™.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=jjphmlaoffndcnecccgemfdaaoighkel
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._ (1).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._ (2).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._ (3).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Wiki Death Note _ FANDOM powered by W.._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=hopnegaopegamjkmehkjbkapklpikbjd
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=adnlfjpnmidfimlkaohpidplnoimahfh
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\67f661658230698e\Google Chrome.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Modules chargés (Avec liste blanche) ==============
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2014-03-23 17:54 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-07-10 20:59 - 2018-07-06 07:55 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-09 20:43 - 2018-07-09 20:46 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-13 18:33 - 2018-12-13 18:36 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-23 19:58 - 2018-10-23 20:00 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 010927616 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 002916864 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\skypert.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-12-11 18:47 - 2018-12-11 18:51 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-11 18:47 - 2018-12-11 18:51 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 17:57 - 2017-12-01 17:59 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-28 18:55 - 2018-11-28 19:01 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-11 18:47 - 2018-12-11 18:51 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-11 18:47 - 2018-12-11 18:51 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-14 22:03 - 2018-11-14 22:04 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-10-05 18:23 - 2017-10-05 18:27 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-22 19:07 - 2018-08-22 19:10 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-03-29 19:24 - 2018-03-29 19:26 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-22 19:07 - 2018-08-22 19:10 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 20:37 - 2018-08-30 20:39 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 15:49 - 2018-07-27 15:50 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\SKU.dll
2015-11-07 02:35 - 2015-11-07 02:35 - 001279488 _____ () C:\Program Files\WindowsApps\GoogleInc.GoogleSearch_2.1.19.0_x64__yfg5n0ztvskxp\SpeechCaptureServerComponent.dll
2014-01-26 22:40 - 2014-10-16 10:26 - 000622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2014-08-13 12:39 - 2013-12-09 15:27 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-09-14 19:34 - 2016-09-14 19:34 - 000058112 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\krpt.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 009077504 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\QtCore4.dll
2017-08-28 00:27 - 2017-08-28 00:27 - 000208640 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\wpscloudsvrimp_1.0.0.9\wpscloudsvrimp.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000903936 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\QtNetwork4.dll
2016-09-14 19:32 - 2016-09-14 19:32 - 000274176 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\curls.dll
2016-09-14 19:37 - 2016-09-14 19:37 - 011397888 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\QtWebKit4.dll
2016-09-14 19:32 - 2016-09-14 19:32 - 000179968 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\kpluginrunner\kpluginrunner.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 001667328 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\ruby.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000251136 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\qtruby4.dll
2016-09-14 19:37 - 2016-09-14 19:37 - 000032000 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\smokebase.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000909056 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\smokekso.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 003695360 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\smokeqtcore.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 001048832 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\QtScript4.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000046848 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\win32api.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000077568 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\win32ole.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000030464 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\strscan.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000037632 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qgif4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000039168 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qico4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000174848 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qjpeg4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000274688 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qtiff4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000135936 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qwdp4.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Temp:7FFED16F [139]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\ma-config.com -> hxxp://ma-config.com
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\ma-config.com -> hxxps://ma-config.com
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\touslesdrivers.com -> hxxp://touslesdrivers.com
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2012-07-26 06:26 - 2018-07-31 18:39 - 000002284 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 platform.wondershare.com# Copyright (c) 1993-1999 Microsoft Corp.
127.0.0.1 localhost
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Internet Explorer;C:\Users\sangoku\AppData\Local\Smartbar\Application\;%PROGRAMFILES%\Internet Explorer;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
MSCONFIG\Services: TrustedInstaller => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: wuauserv => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "HDAudDeck"
HKLM\...\StartupApproved\Run: => "ACMON"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "DNS7reminder"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "CLMLServer"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Power2GoExpress"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_514F46C3C813F2D403DAEEF4A8CC5152"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{619D8533-7464-4C46-8D37-E985C4650055}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{D9237EB6-5C68-4C2D-8C10-DAF2450DFE6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{BE64801D-F57C-471C-94F4-C5F10A56D42B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{15C5D551-655A-473C-951C-A94F271F359A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{9228A91F-7A97-4A8E-B978-B71876E82B0B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{E2F0FC01-A607-42FA-8CC9-2DA773084C01}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{2DA2F443-E861-4787-A05E-64542B77025F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{1FF64F7E-9C07-43B8-AFF6-CEA606DFCB40}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{97259711-29BE-496F-A427-E13E79B3CD81}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe (IObit)
FirewallRules: [{272D5712-F146-46AE-8F70-26953668BAA8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe (IObit)
FirewallRules: [{549369AC-18BA-4911-B3BF-075AAEBA0DFC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DBDownloader.exe (IObit)
FirewallRules: [{91F019EF-FFB1-4319-9368-C6B998C2E114}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DBDownloader.exe (IObit)
FirewallRules: [{E4A20DEC-D979-4BB0-9B15-D28A2E17E158}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\AutoUpdate.exe (IObit)
FirewallRules: [{B6E6DCC3-DD67-4703-9EF8-A583FA6D86F6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\AutoUpdate.exe (IObit)
==================== Points de restauration =========================
16-12-2018 17:18:50 Removed Java 8 Update 102 (64-bit)
26-12-2018 17:36:26 Point de contrôle planifié
28-12-2018 15:40:59 Supprimé Gameshow
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (12/30/2018 04:54:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante TiWorker.exe, version : 10.0.17134.400, horodatage : 0x07110af8
Nom du module défaillant : KERNELBASE.dll, version : 10.0.17134.165, horodatage : 0xb0bb231d
Code d’exception : 0x80000003
Décalage d’erreur : 0x00000000000ac902
ID du processus défaillant : 0x1d3c
Heure de début de l’application défaillante : 0x01d4a056fc536f56
Chemin d’accès de l’application défaillante : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.400_none_eb2ff40c1d41442d\TiWorker.exe
Chemin d’accès du module défaillant: C:\Windows\System32\KERNELBASE.dll
ID de rapport : efc47b4f-c45d-4c08-abaf-4b3b587e4cae
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/30/2018 04:50:00 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/30/2018 02:55:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante TiWorker.exe, version : 10.0.17134.400, horodatage : 0x07110af8
Nom du module défaillant : KERNELBASE.dll, version : 10.0.17134.165, horodatage : 0xb0bb231d
Code d’exception : 0x80000003
Décalage d’erreur : 0x00000000000ac902
ID du processus défaillant : 0x1c6c
Heure de début de l’application défaillante : 0x01d4a0469dd3f691
Chemin d’accès de l’application défaillante : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.400_none_eb2ff40c1d41442d\TiWorker.exe
Chemin d’accès du module défaillant: C:\Windows\System32\KERNELBASE.dll
ID de rapport : 0cee79de-71cf-4a85-afbb-b0cdc8849b27
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/30/2018 02:41:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname pcdesalon.local already in use; will try pcdesalon-2.local instead
Error: (12/30/2018 02:41:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 pcdesalon.local. Addr 192.168.0.39
Error: (12/30/2018 02:41:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.39:5353 16 pcdesalon.local. AAAA 2A01:0E35:39F3:C760:A5EE:231C:4391:2C26
Error: (12/29/2018 06:56:54 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows.
Error: (12/29/2018 06:56:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Erreurs système:
=============
Error: (12/30/2018 03:50:36 PM) (Source: DCOM) (EventID: 10016) (User: PCDESALON)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
et l’APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
au SID pcdesalon\sangoku de l’utilisateur (S-1-5-21-1927228830-2583841606-2964579422-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 03:25:20 PM) (Source: DCOM) (EventID: 10010) (User: PCDESALON)
Description: Le serveur {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (12/30/2018 03:24:36 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 03:04:43 PM) (Source: DCOM) (EventID: 10016) (User: PCDESALON)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID pcdesalon\sangoku de l’utilisateur (S-1-5-21-1927228830-2583841606-2964579422-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 02:52:30 PM) (Source: DCOM) (EventID: 10010) (User: PCDESALON)
Description: Le serveur {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (12/30/2018 02:51:59 PM) (Source: DCOM) (EventID: 10010) (User: PCDESALON)
Description: Le serveur {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (12/30/2018 02:51:15 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 02:44:40 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2018-12-30 17:06:24.333
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 17:06:24.325
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:56:24.211
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:56:24.199
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:51:21.779
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:51:21.768
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:41:33.906
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:41:33.898
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i3-2370M CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 51%
Mémoire physique - RAM - totale: 3979.68 MB
Mémoire physique - RAM - disponible: 1915.01 MB
Mémoire virtuelle totale: 6155.68 MB
Mémoire virtuelle disponible: 3134.75 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:372.17 GB) (Free:112.77 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Data) (Fixed) (Total:537.6 GB) (Free:501.49 GB) NTFS
\\?\Volume{5975917d-3891-4e85-83f2-fc6400bc7ed7}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.51 GB) NTFS
\\?\Volume{3e8fc2a2-1158-442d-bc49-1ef339f1f09c}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.13 GB) NTFS
\\?\Volume{2825be3c-a830-413a-b913-334f17389c83}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 04A53D1B)
Partition: GPT.
==================== Fin de Addition.txt ============================
Exécuté par sangoku (30-12-2018 17:02:59)
Exécuté depuis C:\Users\sangoku\Desktop
Windows 10 Home Version 1803 17134.165 (X64) (2018-05-25 22:02:09)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1927228830-2583841606-2964579422-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1927228830-2583841606-2964579422-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1927228830-2583841606-2964579422-1005 - Limited - Enabled)
idir yassine (S-1-5-21-1927228830-2583841606-2964579422-1006 - Administrator - Enabled) => C:\Users\idir yassine
Invité (S-1-5-21-1927228830-2583841606-2964579422-501 - Limited - Disabled)
sangoku (S-1-5-21-1927228830-2583841606-2964579422-1001 - Administrator - Enabled) => C:\Users\sangoku
WDAGUtilityAccount (S-1-5-21-1927228830-2583841606-2964579422-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Reader 6.0.1 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A00000000001}) (Version: 006.000.001 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.4.204 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\{F9D72742-0351-447C-B160-F0A5AC9D87BF}) (Version: 3.4.117.01527 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.4.117.01527 - Alcor Micro Corp.)
AnyToISO (HKLM-x32\...\AnyToISO_is1) (Version: 3.6.1 - CrystalIdea Software, Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{308F2F8C-9D33-4B22-8A6C-D9C13DBEF8C6}) (Version: 7.0.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{0CB84A7D-9697-4526-A819-60FB050E8F05}) (Version: 7.0.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22514 - Microsoft Corporation)
ASUS Android USB Drivers (HKLM\...\{D3A8B9D5-EEE5-4F2A-9EDE-7EC3AADDA5D4}) (Version: 1.0.6351 - ASUSTeK Computer Inc.)
ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.4 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.9 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.18 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0005 - ASUS)
ASUS Sync (HKLM-x32\...\{6C2CB5E8-B928-4954-BEBB-A7C973ACC73C}) (Version: 1.0.83 - FutureDial Inc.)
ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.8 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.26 - ASUS)
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.10.123 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.) Hidden
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Atheros Communications Inc.)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0025 - ASUS)
Audacity 2.2.2 (HKLM-x32\...\Audacity_is1) (Version: 2.2.2 - Audacity Team)
AVG PC TuneUp 2015 (fr-FR) (HKLM-x32\...\{A740869A-1BFF-4688-AEA3-8F4A3F74B212}) (Version: 15.0.1001.403 - AVG Technologies) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camtasia 2018 (HKLM\...\{EA9A37D8-24A6-47D4-88DD-CE87A5EA18A0}) (Version: 18.0.2.3634 - TechSmith Corporation) Hidden
Camtasia 2018 (HKLM-x32\...\{43bf1bc0-7090-4218-8fe9-75a9cbd543d6}) (Version: 18.0.2.3634 - TechSmith Corporation)
Camtasia 9 (HKLM\...\{B8A4CB7E-7F5B-484F-A127-E4431000EDCE}) (Version: 9.0.4.1948 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{5957dd25-bb4e-4234-9dc0-b3e10a70f636}) (Version: 9.0.4.1948 - TechSmith Corporation)
Camtasia Studio 8 (HKLM-x32\...\{2B1F8DD0-873D-4AC3-8400-766F255FE263}) (Version: 8.1.0.1281 - TechSmith Corporation)
Carmen Sandiego (HKLM-x32\...\{3A07920C-BE0C-42FB-968E-5D1E1AFBBEBA}) (Version: 1.00 - Mindscape)
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
ControlMK 0.232 (HKLM-x32\...\ControlMK) (Version: 0.232 - Redcl0ud)
Coupe du monde 2014 V 1.2 (HKLM-x32\...\Coupe du monde 2014_is1) (Version: - Olivier RAVET)
CyberLink LabelPrint 2.5 (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.5415 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.2914 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0630 - Disc Soft Ltd)
Disney Winnie l'Ourson Premiers Pas (HKLM-x32\...\Winnie l'Ourson Premiers Pas) (Version: - )
Dora La Cité Perdue (HKLM-x32\...\{FE978B11-8733-4CC0-B40A-2F5A4B0B33A5}) (Version: - )
Dragon NaturallySpeaking 11 (HKLM-x32\...\{EFFA53BC-8C04-2E21-3D90-A13B1697B0CA}) (Version: 11.50.100 - Nuance Communications Inc.)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.4.0 - IObit)
EPSON BX305 Series Manuel (HKLM-x32\...\EPSON BX305 Series Manual) (Version: - )
EPSON BX305 Series Printer Uninstall (HKLM\...\EPSON BX305 Series) (Version: - SEIKO EPSON Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{39F58DDB-B2B8-4B86-AF20-4706A80EB30D}) (Version: 2.2.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.10.00 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EpsonNet Setup 3.3 (HKLM-x32\...\{C9D8A041-2963-4B31-8FFC-1500F3DB9293}) (Version: 3.3a - SEIKO EPSON CORPORATION)
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
Fotogalerie (HKLM-x32\...\{3CBD94C1-BA15-488C-888B-D8DD296CC6DC}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (HKLM-x32\...\{446CC8CE-0E90-44F7-ADD0-774B243EF090}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Glary Utilities 2.56.0.1822 (HKLM-x32\...\Glary Utilities_is1) (Version: 2.56.0.1822 - Glarysoft Ltd)
Google Chrome (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Guide réseau pour EPSON BX305 Series (HKLM-x32\...\EPSON BX305 Series Network Guide) (Version: - )
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
iCloud (HKLM\...\{29C6B346-C29C-40CE-89EB-DF7C149E0EB9}) (Version: 7.7.0.27 - Apple Inc.)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
LG United Mobile Drivers (HKLM-x32\...\{55031CEF-CE75-4A5C-8DEA-60577820529B}) (Version: 3.10.1.0 - LG Electronics)
LogMeIn Hamachi (HKLM-x32\...\{892DB406-ADF8-4C30-9840-8438AF5B8763}) (Version: 2.2.0.607 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.607 - LogMeIn, Inc.)
Ma-Config.com (64 bits) (HKLM\...\{9A3C5DC9-EEA9-4FB2-855A-26FE6DA733EA}) (Version: 7.1.3.1 - Cybelsoft)
MAGIX Screenshare (HKLM-x32\...\{3677B336-9F6D-45DF-9543-C049E35EE590}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Vidéo deluxe 17 Premium Version à télécharger (HKLM-x32\...\{655513BD-A11F-4937-BCD4-A21E316E66AC}) (Version: 10.0.0.33 - MAGIX AG) Hidden
Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Media Player Utilities 4.41 (HKLM-x32\...\{8B9852AF-B0B0-47B7-9BC5-89A95D77B6C9}) (Version: 4.41 - )
Microsoft Office 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 15.0.5075.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\OneDriveSetup.exe) (Version: 18.192.0920.0015 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{21a92a8d-968e-4b78-9af4-329f60d97ed7}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25017 (HKLM-x32\...\{d6f233bd-3f8c-43f6-878b-07bd0568d595}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25017 (HKLM-x32\...\{cb7c3049-21de-415b-bd85-b65c14e547df}) (Version: 14.10.25017.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (HKLM-x32\...\{03CC9D58-B132-4CC0-A521-4F3660AA43C7}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{701FE1BC-834A-4857-AF62-6EBA50CFBC78}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{8E6E8CBB-8E58-493C-943F-4664F5F2FEDB}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{A17946CA-18E5-4CF0-8D55-A56D804718F8}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{AE8044B5-FCA3-4EBE-AC78-0FB3A6E8DC76}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{ED6C77F9-4D7E-447C-9EC0-9A212D075535}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 61.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 61.0.2 (x64 fr)) (Version: 61.0.2 - Mozilla)
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 17.0.0 - OBS Project)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5075.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5075.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-040C-0000-0000000FF1CE}) (Version: 15.0.5075.1001 - Microsoft Corporation) Hidden
Online Games Manager v1.20 (HKLM-x32\...\Online Games Manager) (Version: 1.20.13 - Real Networks, Inc.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}) (Version: 3.41.9593 - Apache Software Foundation)
Oracle VM VirtualBox 6.0.0 (HKLM\...\{BD5F1226-4AA5-4E73-A3E9-D02DB07F96FF}) (Version: 6.0.0 - Oracle Corporation)
Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Package de pilotes Windows - Sony Computer Entertainment Inc. Wireless controller for PLAYSTATION(R)3 Driver Package (01/20/2012 1.4.0.0) (HKLM\...\D5410AE5FA467EF0F19558D5F60C991A79E11B51) (Version: 01/20/2012 1.4.0.0 - Sony Computer Entertainment Inc.)
paint.net (HKLM\...\{E637E0EF-6EB3-44C4-97B8-6F9EA444D649}) (Version: 4.1.5 - dotPDN LLC)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Peter Jackson's King Kong - The Official Game of the Movie (HKLM-x32\...\{111E336D-30BF-4CD4-8D69-4541732AFB27}) (Version: 1.00.0000 - Ubisoft)
PhotoFiltre 7 (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\PhotoFiltre 7) (Version: - )
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.) Hidden
PlayStation™Now (HKLM-x32\...\{FC861970-C3F1-429A-8D68-DF5261452217}) (Version: 11.0.0 - Sony Interactive Entertainment Network America LLC)
qBittorrent 4.1.2 (HKLM-x32\...\qBittorrent) (Version: 4.1.2 - The qBittorrent project)
Raccolta foto (HKLM-x32\...\{D04EBB49-C985-4A38-8695-62000861293A}) (Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
RUNAWAY - The dream of the turtle - DEMO (HKLM-x32\...\{84CD7384-0B42-40C5-9A56-AD7145169314}) (Version: - )
ScanTool.net for Windows v1.13 (HKLM-x32\...\ScanTool.net for Windows) (Version: v1.13 - ScanTool.net, LLC)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.16 - ASUS)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Spirit (remove only) (HKLM-x32\...\spirit-9.17fr) (Version: - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System Requirements Lab CYRI (HKLM-x32\...\{906B34E5-573C-445A-A5D3-40B6BF0A2EC4}) (Version: 6.0.21.0 - Husdawg, LLC)
System Requirements Lab Detection (HKLM-x32\...\{3D520163-2C70-4330-A621-1CAA531C42A8}) (Version: 2.0.0.0 - Husdawg, LLC)
Unity Web Player (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\UnityWebPlayer) (Version: 5.3.8f2 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9CBA860F-7437-4A75-941C-8EF559F2D145}) (Version: 2.52.0.0 - Microsoft Corporation)
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.39 - VIA Technologies, Inc.)
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Visual C++ 9.0 Runtime for Dragon NaturallySpeaking 64bit (x64) (HKLM\...\{4A5A427F-BA39-4BF0-7777-9A47FBE60C9F}) (Version: 11.0.0 - Nuance Communications Inc.)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version: - VB-Audio Software)
Web Companion (HKLM-x32\...\{a83f7034-3775-44ad-95c0-f7df8c09e278}) (Version: 4.3.1908.3686 - Lavasoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Wondershare Filmora(Build 8.7.1) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)
WPS Office (10.1.0.5975) (HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\Kingsoft Office) (Version: 10.1.0.5975 - Kingsoft Corp.)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{70239788-4DAE-49B8-9270-5D8614384B49}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{795602D7-7885-4E92-91DF-778E89D29F50}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\datamastershellext\datamastershellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\71.0.3578.98\notification_helper.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{A804CF1A-91E5-4F0C-9E8C-DB39E74056DD}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Google\Update\1.3.33.23\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\sangoku\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll => Pas de fichier
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-05-27] (Glarysoft Ltd)
ContextMenuHandlers1-x32: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2018-10-01] (Apple Inc.)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-09-13] (Disc Soft Ltd)
ContextMenuHandlers2-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-05-27] (Glarysoft Ltd)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Windows\system32\mscoree.dll [2018-04-12] (Microsoft Corporation)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-09-13] (Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Intel Corporation)
ContextMenuHandlers6-x32: [Glary Utilities] -> {72923739-5A47-40A3-9895-25AF0DFBB9E4} => C:\Program Files (x86)\Glary Utilities\ContextHandler.dll [2013-05-27] (Glarysoft Ltd)
ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers6-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2012-06-09] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-1927228830-2583841606-2964579422-1001: [kpdf2wordshellext] -> {70239788-4DAE-49B8-9270-5D8614384B49} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers1_S-1-5-21-1927228830-2583841606-2964579422-1001: [qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers2_S-1-5-21-1927228830-2583841606-2964579422-1001: [datamastershellext] -> {795602D7-7885-4E92-91DF-778E89D29F50} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\datamastershellext\datamastershellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers4_S-1-5-21-1927228830-2583841606-2964579422-1001: [qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers5_S-1-5-21-1927228830-2583841606-2964579422-1001: [qingshellext] -> {67F4D210-BFC2-4ADD-9A2A-C9B9E1F42C4F} => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qingshellext64.dll [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {04A11EBA-63C0-4DCA-BB6A-8FF04B7A8B95} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {12365642-7913-4E8F-9A1A-98C4DC24E894} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {144A3294-E6BE-4E27-968E-516AD5C177F2} - System32\Tasks\{9C5ADB00-1F06-4B53-AECD-3D31B05C70DB} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\sangoku\Downloads\TerraTec_Grabby_Drv_Setup_5.09.0813.00_XP_Vista_7.exe -d C:\Users\sangoku\Downloads
Task: {18694421-7C0E-464B-A9C4-DC55791EB1EB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {1CD54CE8-987C-45B5-8D2F-878F4EF8DFEF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {1E0F88A1-BBAB-4218-93A7-986D1E71DA98} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {1E6AE250-DC8C-447B-9ED4-F814C3FE42AC} - System32\Tasks\WpsUpdateTask_sangoku => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsupdate.exe
Task: {24EC6F6C-A127-4341-B41F-0C5BA9B58FF8} - System32\Tasks\CCleaner Update => D:\Program Files\CCleaner\CCUpdate.exe [2018-06-24] (Piriform Ltd)
Task: {30ACE64F-B3FD-4030-935A-AD35B80FE60C} - System32\Tasks\{5CD4265F-5763-4E5E-A778-4BB04E97BE89} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\sangoku\Downloads\JDownloader\JDUninstall.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe
Task: {366B1464-F78B-48C8-BE5E-E5B1AB552DE0} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-10-06] (Oracle Corporation)
Task: {49D30639-A97B-48E5-8246-6264790094BE} - System32\Tasks\GlaryInitialize => C:\Program Files (x86)\Glary Utilities\initialize.exe [2013-05-27] (Glarysoft Ltd)
Task: {4F25EA65-C514-416C-B54E-00C46346C349} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2018-03-13] (Microsoft Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {69D7DD65-1434-40DD-82C5-BE944BEE0A0E} - System32\Tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary => D:\Program Files\Windows Media Player\wmpnscfg.exe
Task: {72DD9F48-5F75-4586-9D7B-88D3327A9ACB} - System32\Tasks\WpsExternal_sangoku_20160914203910 => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {7323C668-CBB6-4651-BF4E-386C4BE47EC1} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {7990FD9E-9604-4734-B417-B7F10754C057} - System32\Tasks\Driver Booster SkipUAC (sangoku) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe [2018-04-28] (IObit)
Task: {8230CDE5-ACFC-4B71-B118-347F7B1BDD27} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {9A9AF20B-4F27-4D08-815F-C022572E0A07} - System32\Tasks\CCleanerSkipUAC => D:\Program Files\CCleaner\CCleaner.exe [2018-06-24] (Piriform Ltd)
Task: {A062C94C-48B2-4588-987B-92E41A432B19} - \WPD\SqmUpload_S-1-5-21-1927228830-2583841606-2964579422-1001 -> Pas de fichier <==== ATTENTION
Task: {A369D052-AD35-4EC3-AA25-D9CC785D3FE8} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {A8A12DA6-0850-4C23-9163-17FE2B35200E} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_pepper.exe [2018-12-29] (Adobe Systems Incorporated)
Task: {B330371C-E62B-49E2-89AD-7420485EF6D4} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2017-03-09] (AsusTek)
Task: {B6A171DB-A532-426F-A732-BD021F7423F5} - System32\Tasks\DandelionStarter => C:\Users\sangoku\AppData\Roaming\Alimama\Dandelion.exe
Task: {B8C6FB7C-2EEF-468D-8ED0-929960CD301F} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1927228830-2583841606-2964579422-1001 => C:\Users\sangoku\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe [2018-11-11] ()
Task: {BDC6F98D-66CF-48EB-B1BF-EE45A3083025} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1927228830-2583841606-2964579422-1001Core => C:\Users\sangoku\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-30] (Google Inc.)
Task: {C638E830-7CD8-4DB8-9B93-A42EA976D1E4} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
Task: {D2EE4601-EAE7-43DE-92FC-2E367E9D0875} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-09-24] (ASUS)
Task: {DBBB2A61-0999-44B9-A9B5-C78083CDBBE5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => D:\Program Files\Windows Defender\MpCmdRun.exe
Task: {E3061A6F-1D07-447C-8DB5-49E0AB54BA72} - System32\Tasks\DB Bigupgrade Task ( One Time ) => C:\Program Files (x86)\IObit\Driver Booster\5.4.0\BigUpgrade.exe [2018-12-29] (IObit)
Task: {E312E28B-E2A4-465E-BAEA-2B9744626719} - System32\Tasks\Launch ASUS Sync Loader => C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [2012-06-15] (Futuredial Inc.)
Task: {EA059A96-C4F8-422D-9C3D-61831F6AE9A9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-29] (Adobe Systems Incorporated)
Task: {EC0B485F-3132-4BD1-B1B2-4D85E086CDF0} - System32\Tasks\WpsNotifyTask_sangoku => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsnotify.exe [2016-09-14] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {F6B025EC-4867-4CF7-B5EB-CAF14E92A4CA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1927228830-2583841606-2964579422-1001UA => C:\Users\sangoku\AppData\Local\Google\Update\GoogleUpdate.exe [2016-09-30] (Google Inc.)
Task: {FED39531-6A6F-4EF1-B415-27B7F61C5D61} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\Windows\Tasks\DandelionStarter.job => C:\Users\sangoku\AppData\Roaming\Alimama\Dandelion.exe
Task: C:\Windows\Tasks\GlaryInitialize.job => C:\Program Files (x86)\Glary Utilities\initialize.exe
Task: C:\Windows\Tasks\WpsExternal_sangoku_20160914203910.job => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe~/wpscloudlaunch /run_plugin /plugin_name=ktaskschdtool /plugin_entry=ktaskschdtool.dll
Task: C:\Windows\Tasks\WpsNotifyTask_sangoku.job => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsnotify.exe
Task: C:\Windows\Tasks\WpsUpdateTask_sangoku.job => C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\wtoolex\wpsupdate.exe
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:ActiveScriptEventConsumer.Name=\"ASEC\"",Filter="\\.\root\subscription:__EventFilter.Name=\"EventFilter sethomePage2\": <==== ATTENTION
WMI:subscription\__TimerInstruction->SethomePage Interval Timer: <==== ATTENTION
WMI:subscription\__IntervalTimerInstruction->SethomePage Interval Timer: <==== ATTENTION
WMI:subscription\__EventFilter->EventFilter sethomePage2: <==== ATTENTION
Shortcut: C:\Users\sangoku\Favorites\NCH Software Download Site.lnk -> hxxp://www.nchsoftware.com/index.htm
ShortcutWithArgument: C:\Users\sangoku\Desktop\Les dessins animés de mon enfance. - .._ (1).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\Desktop\Les dessins animés de mon enfance. - .._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\Desktop\Wiki Death Note _ FANDOM powered by W.._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=hopnegaopegamjkmehkjbkapklpikbjd
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Floating for YouTube™.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=jjphmlaoffndcnecccgemfdaaoighkel
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._ (1).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._ (2).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._ (3).lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Les dessins animés de mon enfance. - .._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=ffoheaalmanofiffckgphldeohpgcdmi
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Wiki Death Note _ FANDOM powered by W.._.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=hopnegaopegamjkmehkjbkapklpikbjd
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData --app-id=adnlfjpnmidfimlkaohpidplnoimahfh
ShortcutWithArgument: C:\Users\sangoku\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\67f661658230698e\Google Chrome.lnk -> C:\Users\sangoku\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ChromeDefaultData
==================== Modules chargés (Avec liste blanche) ==============
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2014-03-23 17:54 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-07-10 20:59 - 2018-07-06 07:55 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-09 20:43 - 2018-07-09 20:46 - 001922224 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftOfficeHub_17.10314.31700.1000_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-12-13 18:33 - 2018-12-13 18:36 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-23 19:58 - 2018-10-23 20:00 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 010927616 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 002916864 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\skypert.dll
2018-12-13 18:33 - 2018-12-13 18:36 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.36.52.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-12-11 18:47 - 2018-12-11 18:51 - 034870272 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-12-11 18:47 - 2018-12-11 18:51 - 000292352 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 17:57 - 2017-12-01 17:59 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-28 18:55 - 2018-11-28 19:01 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-12-11 18:47 - 2018-12-11 18:51 - 005967872 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-12-11 18:47 - 2018-12-11 18:51 - 009072128 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18102.12011.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-11-14 22:03 - 2018-11-14 22:04 - 066031104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2017-10-05 18:23 - 2017-10-05 18:27 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-08-22 19:07 - 2018-08-22 19:10 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-03-29 19:24 - 2018-03-29 19:26 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-22 19:07 - 2018-08-22 19:10 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 014097920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-08 20:14 - 2018-11-08 20:18 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 002863616 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 20:37 - 2018-08-30 20:39 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 15:49 - 2018-07-27 15:50 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-14 22:03 - 2018-11-14 22:04 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18091.17210.0_x64__8wekyb3d8bbwe\SKU.dll
2015-11-07 02:35 - 2015-11-07 02:35 - 001279488 _____ () C:\Program Files\WindowsApps\GoogleInc.GoogleSearch_2.1.19.0_x64__yfg5n0ztvskxp\SpeechCaptureServerComponent.dll
2014-01-26 22:40 - 2014-10-16 10:26 - 000622880 _____ () C:\Program Files (x86)\IObit\LiveUpdate\ProductStatistics.dll
2014-08-13 12:39 - 2013-12-09 15:27 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-09-14 19:34 - 2016-09-14 19:34 - 000058112 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\krpt.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 009077504 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\QtCore4.dll
2017-08-28 00:27 - 2017-08-28 00:27 - 000208640 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\wpscloudsvrimp_1.0.0.9\wpscloudsvrimp.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000903936 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\QtNetwork4.dll
2016-09-14 19:32 - 2016-09-14 19:32 - 000274176 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\curls.dll
2016-09-14 19:37 - 2016-09-14 19:37 - 011397888 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\QtWebKit4.dll
2016-09-14 19:32 - 2016-09-14 19:32 - 000179968 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\addons\kpluginrunner\kpluginrunner.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 001667328 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\ruby.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000251136 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\qtruby4.dll
2016-09-14 19:37 - 2016-09-14 19:37 - 000032000 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\smokebase.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000909056 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\smokekso.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 003695360 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\smokeqtcore.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 001048832 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\QtScript4.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000046848 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\win32api.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000077568 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\win32ole.dll
2016-09-14 19:39 - 2016-09-14 19:39 - 000030464 _____ () C:\Users\sangoku\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.0.48\strscan.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000037632 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qgif4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000039168 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qico4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000174848 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qjpeg4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000274688 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qtiff4.dll
2016-09-14 19:36 - 2016-09-14 19:36 - 000135936 _____ () C:\Users\sangoku\AppData\Local\Kingsoft\WPS Office\10.1.0.5975\office6\qt\plugins\imageformats\qwdp4.dll
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\ProgramData\Temp:7FFED16F [139]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\ma-config.com -> hxxp://ma-config.com
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\ma-config.com -> hxxps://ma-config.com
IE trusted site: HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\touslesdrivers.com -> hxxp://touslesdrivers.com
==================== Hosts contenu: ==========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2012-07-26 06:26 - 2018-07-31 18:39 - 000002284 _____ C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 platform.wondershare.com# Copyright (c) 1993-1999 Microsoft Corp.
127.0.0.1 localhost
127.0.0.1 down.baidu2016.com
127.0.0.1 123.sogou.com
127.0.0.1 www.czzsyzgm.com
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files (x86)\Internet Explorer;C:\Users\sangoku\AppData\Local\Smartbar\Application\;%PROGRAMFILES%\Internet Explorer;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.
MSCONFIG\Services: TrustedInstaller => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: wuauserv => 2
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "IgfxTray"
HKLM\...\StartupApproved\Run: => "HotKeysCmds"
HKLM\...\StartupApproved\Run: => "HDAudDeck"
HKLM\...\StartupApproved\Run: => "ACMON"
HKLM\...\StartupApproved\Run: => "Persistence"
HKLM\...\StartupApproved\Run32: => "RemoteControl10"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "DNS7reminder"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "CLMLServer"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Power2GoExpress"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1927228830-2583841606-2964579422-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_514F46C3C813F2D403DAEEF4A8CC5152"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{619D8533-7464-4C46-8D37-E985C4650055}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{D9237EB6-5C68-4C2D-8C10-DAF2450DFE6E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{BE64801D-F57C-471C-94F4-C5F10A56D42B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{15C5D551-655A-473C-951C-A94F271F359A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{9228A91F-7A97-4A8E-B978-B71876E82B0B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{E2F0FC01-A607-42FA-8CC9-2DA773084C01}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{2DA2F443-E861-4787-A05E-64542B77025F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{1FF64F7E-9C07-43B8-AFF6-CEA606DFCB40}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.96.181.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify Ltd)
FirewallRules: [{97259711-29BE-496F-A427-E13E79B3CD81}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe (IObit)
FirewallRules: [{272D5712-F146-46AE-8F70-26953668BAA8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe (IObit)
FirewallRules: [{549369AC-18BA-4911-B3BF-075AAEBA0DFC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DBDownloader.exe (IObit)
FirewallRules: [{91F019EF-FFB1-4319-9368-C6B998C2E114}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DBDownloader.exe (IObit)
FirewallRules: [{E4A20DEC-D979-4BB0-9B15-D28A2E17E158}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\AutoUpdate.exe (IObit)
FirewallRules: [{B6E6DCC3-DD67-4703-9EF8-A583FA6D86F6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\AutoUpdate.exe (IObit)
==================== Points de restauration =========================
16-12-2018 17:18:50 Removed Java 8 Update 102 (64-bit)
26-12-2018 17:36:26 Point de contrôle planifié
28-12-2018 15:40:59 Supprimé Gameshow
==================== Éléments en erreur du Gestionnaire de périphériques =============
Name: LogMeIn Hamachi Virtual Ethernet Adapter
Description: LogMeIn Hamachi Virtual Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: LogMeIn Inc.
Service: Hamachi
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (12/30/2018 04:54:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante TiWorker.exe, version : 10.0.17134.400, horodatage : 0x07110af8
Nom du module défaillant : KERNELBASE.dll, version : 10.0.17134.165, horodatage : 0xb0bb231d
Code d’exception : 0x80000003
Décalage d’erreur : 0x00000000000ac902
ID du processus défaillant : 0x1d3c
Heure de début de l’application défaillante : 0x01d4a056fc536f56
Chemin d’accès de l’application défaillante : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.400_none_eb2ff40c1d41442d\TiWorker.exe
Chemin d’accès du module défaillant: C:\Windows\System32\KERNELBASE.dll
ID de rapport : efc47b4f-c45d-4c08-abaf-4b3b587e4cae
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/30/2018 04:50:00 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/30/2018 02:55:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante TiWorker.exe, version : 10.0.17134.400, horodatage : 0x07110af8
Nom du module défaillant : KERNELBASE.dll, version : 10.0.17134.165, horodatage : 0xb0bb231d
Code d’exception : 0x80000003
Décalage d’erreur : 0x00000000000ac902
ID du processus défaillant : 0x1c6c
Heure de début de l’application défaillante : 0x01d4a0469dd3f691
Chemin d’accès de l’application défaillante : C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.17134.400_none_eb2ff40c1d41442d\TiWorker.exe
Chemin d’accès du module défaillant: C:\Windows\System32\KERNELBASE.dll
ID de rapport : 0cee79de-71cf-4a85-afbb-b0cdc8849b27
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/30/2018 02:41:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Local Hostname pcdesalon.local already in use; will try pcdesalon-2.local instead
Error: (12/30/2018 02:41:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 0; will deregister 4 pcdesalon.local. Addr 192.168.0.39
Error: (12/30/2018 02:41:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.0.39:5353 16 pcdesalon.local. AAAA 2A01:0E35:39F3:C760:A5EE:231C:4391:2C26
Error: (12/29/2018 06:56:54 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows.
Error: (12/29/2018 06:56:52 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: Échec de la procédure d’ouverture pour le service « BITS » dans la DLL « C:\Windows\System32\bitsperf.dll ». Les données de performance de ce service ne seront pas disponibles. Le premier mot (DWORD) de la section Données contient le code d’erreur.
Erreurs système:
=============
Error: (12/30/2018 03:50:36 PM) (Source: DCOM) (EventID: 10016) (User: PCDESALON)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
et l’APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
au SID pcdesalon\sangoku de l’utilisateur (S-1-5-21-1927228830-2583841606-2964579422-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy du conteneur d’applications (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 03:25:20 PM) (Source: DCOM) (EventID: 10010) (User: PCDESALON)
Description: Le serveur {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (12/30/2018 03:24:36 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 03:04:43 PM) (Source: DCOM) (EventID: 10016) (User: PCDESALON)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID pcdesalon\sangoku de l’utilisateur (S-1-5-21-1927228830-2583841606-2964579422-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 02:52:30 PM) (Source: DCOM) (EventID: 10010) (User: PCDESALON)
Description: Le serveur {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (12/30/2018 02:51:59 PM) (Source: DCOM) (EventID: 10010) (User: PCDESALON)
Description: Le serveur {71DCE5D6-4B57-496B-AC21-CD5B54EB93FD} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (12/30/2018 02:51:15 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (12/30/2018 02:44:40 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
CodeIntegrity:
===================================
Date: 2018-12-30 17:06:24.333
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 17:06:24.325
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:56:24.211
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:56:24.199
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:51:21.779
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:51:21.768
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:41:33.906
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-12-30 16:41:33.898
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i3-2370M CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 51%
Mémoire physique - RAM - totale: 3979.68 MB
Mémoire physique - RAM - disponible: 1915.01 MB
Mémoire virtuelle totale: 6155.68 MB
Mémoire virtuelle disponible: 3134.75 MB
==================== Lecteurs ================================
Drive c: (OS) (Fixed) (Total:372.17 GB) (Free:112.77 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Data) (Fixed) (Total:537.6 GB) (Free:501.49 GB) NTFS
\\?\Volume{5975917d-3891-4e85-83f2-fc6400bc7ed7}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.51 GB) NTFS
\\?\Volume{3e8fc2a2-1158-442d-bc49-1ef339f1f09c}\ (Restore) (Fixed) (Total:20.01 GB) (Free:9.13 GB) NTFS
\\?\Volume{2825be3c-a830-413a-b913-334f17389c83}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.24 GB) FAT32
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 04A53D1B)
Partition: GPT.
==================== Fin de Addition.txt ============================