Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 07-12-2019
Exécuté par Raymond (10-12-2019 11:39:16)
Exécuté depuis C:\Users\Raymond\Downloads
Windows 10 Home Version 1903 18362.476 (X64) (2019-08-27 22:57:44)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1258690044-2682897043-1428058912-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1258690044-2682897043-1428058912-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1258690044-2682897043-1428058912-1002 - Limited - Enabled)
Invité (S-1-5-21-1258690044-2682897043-1428058912-501 - Limited - Disabled)
Raymond (S-1-5-21-1258690044-2682897043-1428058912-1001 - Administrator - Enabled) => C:\Users\Raymond
WDAGUtilityAccount (S-1-5-21-1258690044-2682897043-1428058912-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.021.20056 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Dynamic Disk Manager Pro Edition (HKLM-x32\...\AOMEI Dynamic Disk Manager Pro Edition_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Partition Assistant Pro Edition 6.0 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-5498165BF300}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apowersoft Photo Viewer V1.1.6 (HKLM-x32\...\{AA88C325-55DB-463A-801E-ED6929D0260E}_is1) (Version: 1.1.6 - APOWERSOFT LIMITED)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22391 - Microsoft Corporation)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1012.0301 - Micro-Star International Co., Ltd.)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.1102.2101 - Micro-Star International Co., Ltd.)
ccc-core-static (HKLM-x32\...\{59682D7F-15D4-4DE1-5B09-97F6F5BBE0EF}) (Version: 2010.1110.1539.28046 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6321 - CDBurnerXP)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.09.0.2018 - CDex.mu)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Clavier+ 10.6.8 (HKLM\...\Clavier+_is1) (Version: 10.6.8 - Guillaume Ryder)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CrystalDiskInfo 8.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.0.0 - Crystal Dew World)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Lighter (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\{CFA2CFAB-4B51-47D5-8ECF-5C007F37DB94}) (Version: 1.4 - DiMXSoft)
Duplicate Cleaner Free 4.1.0 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.1.0 - DigitalVolcano Software Ltd) <==== ATTENTION
EaseUS Todo Backup Free 8.9 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 8.9 - CHENGDU YIWO Tech Development Co., Ltd)
EasyViewer (HKLM-x32\...\{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI) Hidden
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI)
e-Carte Bleue Société Générale (HKLM-x32\...\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}) (Version: 2.2.7.0 - )
ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.)
EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.2.0.0 - )
EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GMail Backup (HKLM\...\{D29FF862-7F99-47A3-BACA-52943C09A8DE}) (Version: 1.0.3.783 - UpSafe) Hidden
GMail Backup (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\{e3fb6f50-0f60-48fd-b7ee-93820c678713}) (Version: 1.0.3.783 - UpSafe)
Google Chrome (HKLM-x32\...\{21E2140F-3DD6-3291-8E0A-DCC94E1D41C4}) (Version: 78.0.3904.108 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Home Sweet Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113784233}) (Version: - Oberon Media)
HP ENVY 4500 series Aide (HKLM-x32\...\{BAF28CCD-121D-4C6C-B29D-4F7B51B2D1B4}) (Version: 30.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HWiNFO64 Version 6.20 (HKLM\...\HWiNFO64_is1) (Version: 6.20 - Martin Malik - REALiX)
i-Charger (HKLM-x32\...\i-Charger_is1) (Version: - msi, Inc.)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
ITN Converter 1.92 (HKLM-x32\...\ITN Converter_is1) (Version: 1.92 - Benichou Software)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KLS Mail Backup 3.1.0.1 (HKLM-x32\...\KLS Mail Backup_is1) (Version: - KirySoft)
Logiciel de base du périphérique HP ENVY 4500 series (HKLM\...\{9A9B64A8-A9E8-4588-B924-D1898D3E6355}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.12228.20332 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mozilla Firefox 71.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 71.0 (x86 fr)) (Version: 71.0 - Mozilla)
Mozilla Thunderbird 52.5.2 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.5.2 (x86 fr)) (Version: 52.5.2 - Mozilla)
MSI Game Corner Console (HKLM-x32\...\{A86A4C1D-05B5-46B0-A808-1A15DCD17A17}_is1) (Version: 5.5.0.1 - Oberon Media, Inc.)
MSI HOUSE (HKLM-x32\...\{DA5597C9-9216-44FF-9670-D1E48817B998}) (Version: 10.07.1601 - MSI)
msi Software Install (HKLM-x32\...\{A840FFFB-3A80-4C24-AB34-BE9F56BEB4CE}) (Version: 3.1000.1005.1101 - Micro-Star International Co., Ltd.)
NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.2.0.5 - NETGEAR)
NetSpot (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\a6e43da6e76c5494) (Version: 1.0.0.334 - Etwok LLC)
Nightly 68.0a1 (x64 fr) (HKLM\...\Nightly 68.0a1 (x64 fr)) (Version: 68.0a1 - Mozilla)
Notification Mail (HKLM-x32\...\MailNotifier) (Version: 3.6.0-Fr1.0 - Orange)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.4.1 - pdfforge GmbH)
Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.32.1111.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0168 - )
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.)
S-Bar (HKLM-x32\...\{297F53AA-3863-4CD5-A506-0F805630F1F4}) (Version: 20.011.02251 - MSI)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Soda PDF Desktop Create Module (HKLM\...\{CAF4D112-4D8C-4042-BBFA-52804874C98A}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Edit Module (HKLM\...\{C08ABE63-4126-498E-B096-2FEE27F4BD23}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Forms Module (HKLM\...\{09E3B8AA-B237-49E4-BD75-3C82652A413C}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Review Module (HKLM\...\{5388DA60-0CF8-4CE1-8AA5-D18CC60D6D2C}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Secure Module (HKLM\...\{EF49E7A1-3CBF-42DF-A331-65C5AAE60B0D}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop View Module (HKLM\...\{CAF75E2A-9CD6-49CC-962D-BFF08DBE5EEB}) (Version: 9.0.38.31757 - LULU Software) Hidden
SRS Premium Sound Control Panel (HKLM\...\{2998191E-A35E-47E2-BE38-7702C731D722}) (Version: 1.10.13.0 - SRS Labs, Inc.)
TomTom HOME (HKLM-x32\...\{C51F55EC-477D-4385-B951-BDEFA5DFC90B}) (Version: 2.11.6 - Nom de votre société)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Tomtomax Maxi-Box v3.4.3 (HKLM-x32\...\{3F2996B3-4900-457F-B33C-5777AB2952A9}_is1) (Version: - Tomtomax et KoakDesign)
Tyre (HKLM-x32\...\Tyre_is1) (Version: 6.4.7.3 - 't Schrijverke)
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{567756E0-361F-4E88-AF74-8B0E4628E5BC}) (Version: 1.12.0.0 - Microsoft Corporation) Hidden
Windows 7 Logon Background Changer (HKLM-x32\...\{2E6044C5-3495-485F-91BC-46D1B6430E51}) (Version: 1.5.2 - Julien MANICI)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (HKLM\...\{F61935B9-FD11-9CD8-ACCD-7B4FDE18506E}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Packages:
=========
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-12-08] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Studios) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-12-08] (Twitter Inc.)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{9dacfc8a-7242-4473-81cc-cd46ecdbc1bf}\InprocServer32 -> C:\WINDOWS\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2016-11-18] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2015-09-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [Fichier non signé]
ContextMenuHandlers1: [SodaPDFDesktop_ManagerExt] -> {526A2ADD-BD9B-40E5-9D45-75EF6313FCE4} => C:\Program Files\Soda PDF Desktop\creator-context-menu.dll [2017-01-25] (LULU Software -> LULU Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-08] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-08] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk -> C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation)
==================== Modules chargés (Avec liste blanche) =============
2016-10-24 14:05 - 2011-06-26 20:18 - 000245248 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\CommonDll.dll
2016-10-24 14:05 - 2011-06-24 21:51 - 000241664 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\DirMon.dll
2015-08-21 21:09 - 2015-08-21 21:09 - 000127488 _____ () [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2016-03-10 10:03 - 2015-08-01 08:10 - 000025128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000108072 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000037928 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000020008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000407080 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000037416 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000072232 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2016-03-10 11:21 - 2015-11-02 23:03 - 000169512 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudInterface.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000165416 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000015912 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000186408 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000022568 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2016-03-10 10:03 - 2015-09-21 18:00 - 000080936 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000017448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000020520 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000030760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2016-03-10 10:03 - 2015-03-14 04:54 - 000281128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000193064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000201768 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000148008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000032296 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000769064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000076840 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2016-03-10 11:21 - 2015-11-03 13:18 - 000111656 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000024616 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2016-03-10 10:03 - 2014-12-14 17:53 - 000158248 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 001296424 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2016-03-10 10:04 - 2015-09-23 17:58 - 000068136 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000115752 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000207912 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000064040 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2016-03-10 11:21 - 2015-11-10 11:07 - 000501800 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\StorageMgr.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000043048 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000088616 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
2016-03-10 10:04 - 2015-11-03 03:45 - 000058408 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000034856 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2016-03-10 10:04 - 2015-09-23 17:58 - 000139816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
2016-03-10 10:04 - 2015-06-22 17:58 - 000136232 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000060968 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2016-03-10 10:03 - 2015-11-03 13:18 - 000532520 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmdManager.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000020008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ControlPxe.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000689704 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EMail.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000044584 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuPipe.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000100904 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlBackupSize.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000590888 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlImgFile.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000044072 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlSearchImg.dll
2016-03-10 10:03 - 2015-08-01 08:10 - 000159272 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Ftp.dll
2016-03-10 10:03 - 2015-03-14 04:54 - 000017448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FTPTest.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000079400 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImageFileInfo.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000293928 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFileHlp.dll
2016-03-10 10:04 - 2015-03-14 04:54 - 000153128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MatchStr.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000026664 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Options.dll
2016-03-10 10:04 - 2015-11-02 23:03 - 000093224 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\PolicyManage.dll
2016-03-10 10:04 - 2015-09-23 17:58 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Transmit.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000042536 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\XmlWrapper.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000898088 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2019-08-27 23:08 - 2019-08-27 23:08 - 000065536 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2011-02-25 20:18 - 2011-02-25 20:18 - 000217600 _____ (Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\S-Bar\MSIWmiAcpi.dll
2010-07-17 01:39 - 2010-07-17 01:39 - 000027136 _____ (MSI) [Fichier non signé] C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationLibrary.dll
2017-02-08 14:52 - 2017-02-08 14:52 - 000115200 _____ (pdfforge GmbH) [Fichier non signé] C:\WINDOWS\System32\pdfcmon.dll
2016-03-10 11:21 - 2015-09-07 10:31 - 002454016 _____ (Python Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\python27.dll
2009-07-14 02:20 - 2009-07-14 02:40 - 000077824 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\EP0SLM01.DLL
2016-10-24 14:04 - 2016-02-21 20:04 - 000548864 _____ (winfilelock) [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\FileLock.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer sites de confiance/sensibles ==========
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 22:03 - 2019-12-08 18:41 - 000003866 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
2017-12-30 18:02 - 2018-04-13 19:45 - 000000437 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
92.168.137.1 Raymond.mshome.net # 2023 4 3 12 5 58 40 951
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\Phone\;C:\Program Files (x86)\Common Files\Adobe\AGL;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\AOMEI Backupper
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Raymond\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
MSCONFIG\Services: lfsvc => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS PC Sound.lnk => C:\windows\pss\SRS PC Sound.lnk.CommonStartup
MSCONFIG\startupreg: BingSvc => C:\Users\Raymond\AppData\Local\Microsoft\BingSvc\BingSvc.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: EPSON Stylus DX4400 Series => C:\windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\windows\TEMP\E_S3701.tmp" /EF "HKCU"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Tomtomax MaxiBox => "C:\Program Files (x86)\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe" /hide /noabout
HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WNA3100M Genie.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Adobe Gamma Loader.lnk"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "ETDWare"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "BullGuardUpdate2"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "ETDWare"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "NPSStartup"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Wipe Tray Agent.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 - Capture d'écran et lancement.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Adobe Gamma.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Envoyer * OneNote.lnk<*>"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Clavier+"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "EPSON Stylus DX4400 Series"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Safe Startup Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Prevent Restore Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Secret Disk Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Wipe Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => " Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "DLIGHTER"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "AutoStartNPSAgent"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Tomtomax MaxiBox"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{0D49813A-FEDA-41D2-B895-62C43D412738}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A95D604B-797F-4685-97FD-B40B69EFD596}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F38CBC69-C39C-46E1-8618-319FD982A179}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8F2E42A4-1393-4E22-92F3-41E2251F8906}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5F60D55E-BD20-4731-A41D-702DA04E2FD1}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4FB7A49E-6F07-4B83-922B-3F5990582005}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D9D346F5-29E1-49D0-ADE5-9101687378AF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{40E553F6-8F9A-4E8F-8E8E-D31EFCB58666}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{7EAED349-1AD2-4E2E-B480-A3DAD3E069DB}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{E777FA28-926A-49AE-AF69-A26594919450}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{C38A642F-5D4B-4470-A044-FC69F4F2666C}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{2645F78C-3AB2-4BDC-A0A1-686BE0C7F72E}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [UDP Query User{735A3654-5E3D-4CDB-9D90-0F49355E62A2}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [TCP Query User{1947DB1D-EDE2-4858-8189-21E58D88E0EE}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{7AF21710-BF42-4DA6-98A8-1EC9299680BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{92465665-CA46-496A-AC2C-72F5F4520C9B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{372A9AEF-858D-4C54-A313-E257D0A432FC}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{733E9C77-6881-461A-A21F-0B1DD6F0C108}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{A9E8CF2F-5C82-44E6-92F9-9C6B9750AE4E}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{A3F54AF2-76BE-48A0-8747-51AF6965CA22}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{8D548EAD-2AD3-40B2-80C0-21A42F6CAEA5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B8C1853E-E903-4147-974B-2CD9411D5CF3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Points de restauration =========================
03-12-2019 11:05:08 Point de contrôle planifié
09-12-2019 06:39:10 ZHPcleaner
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (12/10/2019 11:41:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7908,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 11:26:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6604,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 11:17:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7304,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 11:00:12 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9568,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 10:42:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10512,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 10:31:54 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1764,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 10:11:08 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5468,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 09:50:34 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5404,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Erreurs système:
=============
Error: (12/10/2019 09:48:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070643 : Mise à jour intelligente de la sécurité pour Windows Defender Antivirus - KB2267602 (version 1.307.184.0).
Error: (12/08/2019 06:46:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 44ème fois.
Error: (12/08/2019 06:46:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 43ème fois.
Error: (12/08/2019 06:46:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 42ème fois.
Error: (12/08/2019 06:46:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 41ème fois.
Error: (12/08/2019 06:46:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 40ème fois.
Error: (12/08/2019 06:46:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 39ème fois.
Error: (12/08/2019 06:46:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 38ème fois.
Windows Defender:
===================================
Date: 2019-12-09 08:04:34.958
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0
Name: Trojan:Win32/Azden.A!cl
ID: 2147718745
Severity: Grave
Category: Cheval de Troie
Path: file:_C:\Users\Raymond\Downloads\ZHPCleaner.exe; process:_pid:1000,ProcessStart:132203411311657531
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: C:\Users\Raymond\Downloads\ZHPCleaner.exe
Security intelligence Version: AV: 1.305.3392.0, AS: 1.305.3392.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.16600.7, NIS: 0.0.0.0
Date: 2019-12-08 19:55:57.080
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0
Name: Trojan:Win32/Azden.A!cl
ID: 2147718745
Severity: Grave
Category: Cheval de Troie
Path: file:_C:\Users\Raymond\Downloads\ZHPCleaner.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.305.3392.0, AS: 1.305.3392.0, NIS: 1.305.3392.0
Engine Version: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-03 09:20:11.743
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {DA006352-81DF-4BA8-B879-91E65EFC1665}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-10-18 11:23:19.207
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {70749788-DD53-497D-BA0D-DD69FA77CAD6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-10-10 15:39:35.499
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {111DD813-0A2E-4A47-853A-DFE7C4730EC5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-12-08 11:05:13.449
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: Le chemin d’accès spécifié est introuvable.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
Date: 2019-12-08 10:23:34.510
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: Le chemin d’accès spécifié est introuvable.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
Date: 2019-12-07 19:29:44.450
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.3392.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2019-12-07 19:29:44.448
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.3392.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2019-12-07 19:29:44.447
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.3392.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: L’adresse ou le nom de serveur n’a pas pu être résolu
CodeIntegrity:
===================================
Date: 2019-12-08 18:05:53.286
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 18:05:36.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 18:05:28.395
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:29.436
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:20.337
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:10.892
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:00.034
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:52:44.699
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. E16GNAMS.105 01/27/2011
Carte mère: MSI MS-16GN
Processeur: AMD E-350 Processor
Pourcentage de mémoire utilisée: 61%
Mémoire physique - RAM - totale: 3691.75 MB
Mémoire physique - RAM - disponible: 1435.92 MB
Mémoire virtuelle totale: 8043.75 MB
Mémoire virtuelle disponible: 4303.34 MB
==================== Lecteurs ================================
Drive c: (OS_Install) (Fixed) (Total:272.35 GB) (Free:209.64 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Données) (Fixed) (Total:192.88 GB) (Free:157.17 GB) NTFS
Drive g: () (Removable) (Total:3.69 GB) (Free:0.31 GB) FAT32
\\?\Volume{298cd56d-d0f2-11e4-9215-806e6f6e6963}\ (System) (Fixed) (Total:0.08 GB) (Free:0.05 GB) NTFS
\\?\Volume{870c4a2e-0000-0000-0000-201c44000000}\ () (Fixed) (Total:0 GB) (Free:0 GB)
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 870C4A2E)
Partition 1: (Active) - (Size=86 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=272.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=192.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 94FF99C1)
Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C)
==================== Fin de Addition.txt =======================
Exécuté par Raymond (10-12-2019 11:39:16)
Exécuté depuis C:\Users\Raymond\Downloads
Windows 10 Home Version 1903 18362.476 (X64) (2019-08-27 22:57:44)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-1258690044-2682897043-1428058912-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1258690044-2682897043-1428058912-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1258690044-2682897043-1428058912-1002 - Limited - Enabled)
Invité (S-1-5-21-1258690044-2682897043-1428058912-501 - Limited - Disabled)
Raymond (S-1-5-21-1258690044-2682897043-1428058912-1001 - Administrator - Enabled) => C:\Users\Raymond
WDAGUtilityAccount (S-1-5-21-1258690044-2682897043-1428058912-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.021.20056 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 4.0.0.0 - AppEx Networks)
AOMEI Backupper Standard (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Dynamic Disk Manager Pro Edition (HKLM-x32\...\AOMEI Dynamic Disk Manager Pro Edition_is1) (Version: - AOMEI Technology Co., Ltd.)
AOMEI Partition Assistant Pro Edition 6.0 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-5498165BF300}_is1) (Version: - AOMEI Technology Co., Ltd.)
Apowersoft Photo Viewer V1.1.6 (HKLM-x32\...\{AA88C325-55DB-463A-801E-ED6929D0260E}_is1) (Version: 1.1.6 - APOWERSOFT LIMITED)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22391 - Microsoft Corporation)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
Battery Calibration (HKLM-x32\...\{619FA785-489B-4D22-911F-82D6EDF5BDB0}) (Version: 1.0.1012.0301 - Micro-Star International Co., Ltd.)
BurnRecovery (HKLM-x32\...\{2892E1B7-E24D-4CCB-B8A7-B63D4B66F89F}) (Version: 3.0.1102.2101 - Micro-Star International Co., Ltd.)
ccc-core-static (HKLM-x32\...\{59682D7F-15D4-4DE1-5B09-97F6F5BBE0EF}) (Version: 2010.1110.1539.28046 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6321 - CDBurnerXP)
CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.09.0.2018 - CDex.mu)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Clavier+ 10.6.8 (HKLM\...\Clavier+_is1) (Version: 10.6.8 - Guillaume Ryder)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
CrystalDiskInfo 8.0.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.0.0 - Crystal Dew World)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Desktop Lighter (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\{CFA2CFAB-4B51-47D5-8ECF-5C007F37DB94}) (Version: 1.4 - DiMXSoft)
Duplicate Cleaner Free 4.1.0 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.1.0 - DigitalVolcano Software Ltd) <==== ATTENTION
EaseUS Todo Backup Free 8.9 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 8.9 - CHENGDU YIWO Tech Development Co., Ltd)
EasyViewer (HKLM-x32\...\{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI) Hidden
EasyViewer (HKLM-x32\...\InstallShield_{EECD7B96-1416-4D3A-B12D-0D2512120C36}) (Version: 1.3.0.9 - MSI)
e-Carte Bleue Société Générale (HKLM-x32\...\{EC3CAFA6-1CDC-46D1-AD8D-B66CFDE59EE0}) (Version: 2.2.7.0 - )
ELAN Touchpad 11.5.22.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.22.2 - ELAN Microelectronic Corp.)
EPSON Copy Utility 3 (HKLM-x32\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.2.0.0 - )
EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
FileHippo App Manager (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com)
Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GMail Backup (HKLM\...\{D29FF862-7F99-47A3-BACA-52943C09A8DE}) (Version: 1.0.3.783 - UpSafe) Hidden
GMail Backup (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\{e3fb6f50-0f60-48fd-b7ee-93820c678713}) (Version: 1.0.3.783 - UpSafe)
Google Chrome (HKLM-x32\...\{21E2140F-3DD6-3291-8E0A-DCC94E1D41C4}) (Version: 78.0.3904.108 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.341 - Google LLC) Hidden
HD Tune Pro 5.60 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
Home Sweet Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113784233}) (Version: - Oberon Media)
HP ENVY 4500 series Aide (HKLM-x32\...\{BAF28CCD-121D-4C6C-B29D-4F7B51B2D1B4}) (Version: 30.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HWiNFO64 Version 6.20 (HKLM\...\HWiNFO64_is1) (Version: 6.20 - Martin Malik - REALiX)
i-Charger (HKLM-x32\...\i-Charger_is1) (Version: - msi, Inc.)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version: - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version: - )
ITN Converter 1.92 (HKLM-x32\...\ITN Converter_is1) (Version: 1.92 - Benichou Software)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KLS Mail Backup 3.1.0.1 (HKLM-x32\...\KLS Mail Backup_is1) (Version: - KirySoft)
Logiciel de base du périphérique HP ENVY 4500 series (HKLM\...\{9A9B64A8-A9E8-4588-B924-D1898D3E6355}) (Version: 32.3.198.49673 - Hewlett-Packard Co.)
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.12228.20332 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mozilla Firefox 71.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 71.0 (x86 fr)) (Version: 71.0 - Mozilla)
Mozilla Thunderbird 52.5.2 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.5.2 (x86 fr)) (Version: 52.5.2 - Mozilla)
MSI Game Corner Console (HKLM-x32\...\{A86A4C1D-05B5-46B0-A808-1A15DCD17A17}_is1) (Version: 5.5.0.1 - Oberon Media, Inc.)
MSI HOUSE (HKLM-x32\...\{DA5597C9-9216-44FF-9670-D1E48817B998}) (Version: 10.07.1601 - MSI)
msi Software Install (HKLM-x32\...\{A840FFFB-3A80-4C24-AB34-BE9F56BEB4CE}) (Version: 3.1000.1005.1101 - Micro-Star International Co., Ltd.)
NETGEAR WNA3100M N300 Wireless USB Adapter (HKLM-x32\...\{D3580358-0F78-402A-BE53-2E9D06383E04}) (Version: 1.2.0.5 - NETGEAR)
NetSpot (HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\a6e43da6e76c5494) (Version: 1.0.0.334 - Etwok LLC)
Nightly 68.0a1 (x64 fr) (HKLM\...\Nightly 68.0a1 (x64 fr)) (Version: 68.0a1 - Mozilla)
Notification Mail (HKLM-x32\...\MailNotifier) (Version: 3.6.0-Fr1.0 - Orange)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.12228.20332 - Microsoft Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.4.1 - pdfforge GmbH)
Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.32.1111.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0168 - )
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16044.2 - Samsung Electronics Co., Ltd.)
S-Bar (HKLM-x32\...\{297F53AA-3863-4CD5-A506-0F805630F1F4}) (Version: 20.011.02251 - MSI)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Soda PDF Desktop Create Module (HKLM\...\{CAF4D112-4D8C-4042-BBFA-52804874C98A}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Edit Module (HKLM\...\{C08ABE63-4126-498E-B096-2FEE27F4BD23}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Forms Module (HKLM\...\{09E3B8AA-B237-49E4-BD75-3C82652A413C}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Review Module (HKLM\...\{5388DA60-0CF8-4CE1-8AA5-D18CC60D6D2C}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop Secure Module (HKLM\...\{EF49E7A1-3CBF-42DF-A331-65C5AAE60B0D}) (Version: 9.0.38.31757 - LULU Software) Hidden
Soda PDF Desktop View Module (HKLM\...\{CAF75E2A-9CD6-49CC-962D-BFF08DBE5EEB}) (Version: 9.0.38.31757 - LULU Software) Hidden
SRS Premium Sound Control Panel (HKLM\...\{2998191E-A35E-47E2-BE38-7702C731D722}) (Version: 1.10.13.0 - SRS Labs, Inc.)
TomTom HOME (HKLM-x32\...\{C51F55EC-477D-4385-B951-BDEFA5DFC90B}) (Version: 2.11.6 - Nom de votre société)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Tomtomax Maxi-Box v3.4.3 (HKLM-x32\...\{3F2996B3-4900-457F-B33C-5777AB2952A9}_is1) (Version: - Tomtomax et KoakDesign)
Tyre (HKLM-x32\...\Tyre_is1) (Version: 6.4.7.3 - 't Schrijverke)
Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{567756E0-361F-4E88-AF74-8B0E4628E5BC}) (Version: 1.12.0.0 - Microsoft Corporation) Hidden
Windows 7 Logon Background Changer (HKLM-x32\...\{2E6044C5-3495-485F-91BC-46D1B6430E51}) (Version: 1.5.2 - Julien MANICI)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Resource Kit Tools - SubInAcl.exe (HKLM-x32\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
WMV9/VC-1 Video Playback (HKLM\...\{F61935B9-FD11-9CD8-ACCD-7B4FDE18506E}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Packages:
=========
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_105.1.623.0_x64__v10z8vjag6ke6 [2019-12-08] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.33.13094.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.11052.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Studios) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.33.13253.0_x64__8wekyb3d8bbwe [2019-12-08] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-12-08] (Twitter Inc.)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-1258690044-2682897043-1428058912-1001_Classes\CLSID\{9dacfc8a-7242-4473-81cc-cd46ecdbc1bf}\InprocServer32 -> C:\WINDOWS\system32\dfshim.dll (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2016-11-18] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2015-09-23] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd) [Fichier non signé]
ContextMenuHandlers1: [SodaPDFDesktop_ManagerExt] -> {526A2ADD-BD9B-40E5-9D45-75EF6313FCE4} => C:\Program Files\Soda PDF Desktop\creator-context-menu.dll [2017-01-25] (LULU Software -> LULU Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-08] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-08-21] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-08] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Nightly.lnk -> C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation)
==================== Modules chargés (Avec liste blanche) =============
2016-10-24 14:05 - 2011-06-26 20:18 - 000245248 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\CommonDll.dll
2016-10-24 14:05 - 2011-06-24 21:51 - 000241664 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\DirMon.dll
2015-08-21 21:09 - 2015-08-21 21:09 - 000127488 _____ () [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2016-03-10 10:03 - 2015-08-01 08:10 - 000025128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000108072 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000037928 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000020008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000407080 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000037416 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000072232 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2016-03-10 11:21 - 2015-11-02 23:03 - 000169512 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudInterface.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000165416 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000015912 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000186408 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2016-03-10 10:03 - 2015-11-03 03:45 - 000022568 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2016-03-10 10:03 - 2015-09-21 18:00 - 000080936 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000017448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000020520 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000030760 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2016-03-10 10:03 - 2015-03-14 04:54 - 000281128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000193064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000201768 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000148008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000032296 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000769064 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000076840 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2016-03-10 11:21 - 2015-11-03 13:18 - 000111656 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll
2016-03-10 10:03 - 2015-06-22 17:58 - 000024616 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2016-03-10 10:03 - 2014-12-14 17:53 - 000158248 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 001296424 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2016-03-10 10:04 - 2015-09-23 17:58 - 000068136 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000115752 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000207912 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000064040 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2016-03-10 11:21 - 2015-11-10 11:07 - 000501800 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\StorageMgr.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000043048 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000088616 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
2016-03-10 10:04 - 2015-11-03 03:45 - 000058408 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000034856 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2016-03-10 10:04 - 2015-09-23 17:58 - 000139816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
2016-03-10 10:04 - 2015-06-22 17:58 - 000136232 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000060968 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2016-03-10 10:03 - 2015-11-03 13:18 - 000532520 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmdManager.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000020008 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ControlPxe.dll
2016-03-10 10:03 - 2015-09-23 17:58 - 000689704 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EMail.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000044584 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuPipe.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000100904 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlBackupSize.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000590888 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlImgFile.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000044072 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FlSearchImg.dll
2016-03-10 10:03 - 2015-08-01 08:10 - 000159272 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Ftp.dll
2016-03-10 10:03 - 2015-03-14 04:54 - 000017448 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\FTPTest.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000079400 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImageFileInfo.dll
2016-03-10 10:03 - 2015-11-02 23:03 - 000293928 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFileHlp.dll
2016-03-10 10:04 - 2015-03-14 04:54 - 000153128 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\MatchStr.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000026664 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Options.dll
2016-03-10 10:04 - 2015-11-02 23:03 - 000093224 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\PolicyManage.dll
2016-03-10 10:04 - 2015-09-23 17:58 - 000077864 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Transmit.dll
2016-03-10 10:04 - 2014-12-15 00:53 - 000042536 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\XmlWrapper.dll
2016-03-10 10:03 - 2014-12-15 00:53 - 000898088 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2019-08-27 23:08 - 2019-08-27 23:08 - 000065536 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
2011-02-25 20:18 - 2011-02-25 20:18 - 000217600 _____ (Micro-Star International Co., Ltd.) [Fichier non signé] C:\Program Files (x86)\S-Bar\MSIWmiAcpi.dll
2010-07-17 01:39 - 2010-07-17 01:39 - 000027136 _____ (MSI) [Fichier non signé] C:\Program Files (x86)\MSI\MSI HOUSE\MSIFoundationLibrary.dll
2017-02-08 14:52 - 2017-02-08 14:52 - 000115200 _____ (pdfforge GmbH) [Fichier non signé] C:\WINDOWS\System32\pdfcmon.dll
2016-03-10 11:21 - 2015-09-07 10:31 - 002454016 _____ (Python Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\python27.dll
2009-07-14 02:20 - 2009-07-14 02:40 - 000077824 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\EP0SLM01.DLL
2016-10-24 14:04 - 2016-02-21 20:04 - 000548864 _____ (winfilelock) [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\FileLock.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer sites de confiance/sensibles ==========
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 22:03 - 2019-12-08 18:41 - 000003866 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 rp.yefeneri2.com
0.0.0.0 os.yefeneri2.com
0.0.0.0 os2.yefeneri2.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
2017-12-30 18:02 - 2018-04-13 19:45 - 000000437 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
92.168.137.1 Raymond.mshome.net # 2023 4 3 12 5 58 40 951
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\Phone\;C:\Program Files (x86)\Common Files\Adobe\AGL;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\AOMEI Backupper
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Raymond\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
MSCONFIG\Services: lfsvc => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SRS PC Sound.lnk => C:\windows\pss\SRS PC Sound.lnk.CommonStartup
MSCONFIG\startupreg: BingSvc => C:\Users\Raymond\AppData\Local\Microsoft\BingSvc\BingSvc.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: EPSON Stylus DX4400 Series => C:\windows\system32\spool\DRIVERS\x64\3\E_IATICAE.EXE /FU "C:\windows\TEMP\E_S3701.tmp" /EF "HKCU"
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Tomtomax MaxiBox => "C:\Program Files (x86)\Tomtomax Maxi-Box V3\Tomtomax_MaxiBox.exe" /hide /noabout
HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WNA3100M Genie.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Adobe Gamma Loader.lnk"
HKLM\...\StartupApproved\Run: => "RtHDVCpl"
HKLM\...\StartupApproved\Run: => "ETDWare"
HKLM\...\StartupApproved\Run: => "Classic Start Menu"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "StartCCC"
HKLM\...\StartupApproved\Run: => "BullGuardUpdate2"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "StartCCC"
HKLM\...\StartupApproved\Run32: => "GrooveMonitor"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "ETDWare"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "NPSStartup"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Wipe Tray Agent.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 - Capture d'écran et lancement.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Adobe Gamma.lnk"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\StartupFolder: => "Envoyer * OneNote.lnk<*>"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Clavier+"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "EPSON Stylus DX4400 Series"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Safe Startup Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Prevent Restore Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Secret Disk Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Wipe Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => " Maintance"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "DLIGHTER"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "AutoStartNPSAgent"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "Tomtomax MaxiBox"
HKU\S-1-5-21-1258690044-2682897043-1428058912-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{0D49813A-FEDA-41D2-B895-62C43D412738}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A95D604B-797F-4685-97FD-B40B69EFD596}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F38CBC69-C39C-46E1-8618-319FD982A179}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8F2E42A4-1393-4E22-92F3-41E2251F8906}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5F60D55E-BD20-4731-A41D-702DA04E2FD1}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4FB7A49E-6F07-4B83-922B-3F5990582005}] => (Allow) C:\Program Files\Firefox Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D9D346F5-29E1-49D0-ADE5-9101687378AF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{40E553F6-8F9A-4E8F-8E8E-D31EFCB58666}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{7EAED349-1AD2-4E2E-B480-A3DAD3E069DB}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{E777FA28-926A-49AE-AF69-A26594919450}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{C38A642F-5D4B-4470-A044-FC69F4F2666C}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [{2645F78C-3AB2-4BDC-A0A1-686BE0C7F72E}] => (Allow) C:\Program Files (x86)\AOMEI Backupper\ABService.exe (CHENGDU AOMEI Tech Co., Ltd. -> AOMEI Tech Co., Ltd.)
FirewallRules: [UDP Query User{735A3654-5E3D-4CDB-9D90-0F49355E62A2}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [TCP Query User{1947DB1D-EDE2-4858-8189-21E58D88E0EE}C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp envy 4500 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{7AF21710-BF42-4DA6-98A8-1EC9299680BF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{92465665-CA46-496A-AC2C-72F5F4520C9B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{372A9AEF-858D-4C54-A313-E257D0A432FC}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{733E9C77-6881-461A-A21F-0B1DD6F0C108}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{A9E8CF2F-5C82-44E6-92F9-9C6B9750AE4E}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{A3F54AF2-76BE-48A0-8747-51AF6965CA22}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé]
FirewallRules: [{8D548EAD-2AD3-40B2-80C0-21A42F6CAEA5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B8C1853E-E903-4147-974B-2CD9411D5CF3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Points de restauration =========================
03-12-2019 11:05:08 Point de contrôle planifié
09-12-2019 06:39:10 ZHPcleaner
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (12/10/2019 11:41:56 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7908,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 11:26:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6604,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 11:17:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7304,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 11:00:12 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9568,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 10:42:21 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10512,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 10:31:54 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1764,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 10:11:08 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5468,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (12/10/2019 09:50:34 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5404,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Erreurs système:
=============
Error: (12/10/2019 09:48:55 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070643 : Mise à jour intelligente de la sécurité pour Windows Defender Antivirus - KB2267602 (version 1.307.184.0).
Error: (12/08/2019 06:46:45 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 44ème fois.
Error: (12/08/2019 06:46:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 43ème fois.
Error: (12/08/2019 06:46:33 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 42ème fois.
Error: (12/08/2019 06:46:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 41ème fois.
Error: (12/08/2019 06:46:23 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 40ème fois.
Error: (12/08/2019 06:46:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 39ème fois.
Error: (12/08/2019 06:46:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 38ème fois.
Windows Defender:
===================================
Date: 2019-12-09 08:04:34.958
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0
Name: Trojan:Win32/Azden.A!cl
ID: 2147718745
Severity: Grave
Category: Cheval de Troie
Path: file:_C:\Users\Raymond\Downloads\ZHPCleaner.exe; process:_pid:1000,ProcessStart:132203411311657531
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: System
Process Name: C:\Users\Raymond\Downloads\ZHPCleaner.exe
Security intelligence Version: AV: 1.305.3392.0, AS: 1.305.3392.0, NIS: 0.0.0.0
Engine Version: AM: 1.1.16600.7, NIS: 0.0.0.0
Date: 2019-12-08 19:55:57.080
Description:
Windows Defender Antivirus has detected malware or other potentially unwanted software.
For more information please see the following:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.A!cl&threatid=2147718745&enterprise=0
Name: Trojan:Win32/Azden.A!cl
ID: 2147718745
Severity: Grave
Category: Cheval de Troie
Path: file:_C:\Users\Raymond\Downloads\ZHPCleaner.exe
Detection Origin: Local machine
Detection Type: FastPath
Detection Source: Real-Time Protection
Process Name: C:\Windows\explorer.exe
Security intelligence Version: AV: 1.305.3392.0, AS: 1.305.3392.0, NIS: 1.305.3392.0
Engine Version: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2019-12-03 09:20:11.743
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {DA006352-81DF-4BA8-B879-91E65EFC1665}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-10-18 11:23:19.207
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {70749788-DD53-497D-BA0D-DD69FA77CAD6}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-10-10 15:39:35.499
Description:
Windows Defender Antivirus scan has been stopped before completion.
Scan ID: {111DD813-0A2E-4A47-853A-DFE7C4730EC5}
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2019-12-08 11:05:13.449
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: Le chemin d’accès spécifié est introuvable.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
Date: 2019-12-08 10:23:34.510
Description:
Windows Defender Antivirus has encountered an error trying to load security intelligence and will attempt reverting back to a known-good version.
Security intelligence Attempted: Current
Error Code: 0x80070003
Error description: Le chemin d’accès spécifié est introuvable.
Security intelligence version: 0.0.0.0;0.0.0.0
Engine version: 0.0.0.0
Date: 2019-12-07 19:29:44.450
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.3392.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2019-12-07 19:29:44.448
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.3392.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiSpyware
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: L’adresse ou le nom de serveur n’a pas pu être résolu
Date: 2019-12-07 19:29:44.447
Description:
Windows Defender Antivirus has encountered an error trying to update security intelligence.
New security intelligence Version:
Previous security intelligence Version: 1.305.3392.0
Update Source: Microsoft Malware Protection Center
Security intelligence Type: AntiVirus
Update Type: Full
Current Engine Version:
Previous Engine Version: 1.1.16500.1
Error code: 0x80072ee7
Error description: L’adresse ou le nom de serveur n’a pas pu être résolu
CodeIntegrity:
===================================
Date: 2019-12-08 18:05:53.286
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 18:05:36.197
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 18:05:28.395
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:29.436
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:20.337
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:10.892
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:53:00.034
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2019-12-08 17:52:44.699
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. E16GNAMS.105 01/27/2011
Carte mère: MSI MS-16GN
Processeur: AMD E-350 Processor
Pourcentage de mémoire utilisée: 61%
Mémoire physique - RAM - totale: 3691.75 MB
Mémoire physique - RAM - disponible: 1435.92 MB
Mémoire virtuelle totale: 8043.75 MB
Mémoire virtuelle disponible: 4303.34 MB
==================== Lecteurs ================================
Drive c: (OS_Install) (Fixed) (Total:272.35 GB) (Free:209.64 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (Données) (Fixed) (Total:192.88 GB) (Free:157.17 GB) NTFS
Drive g: () (Removable) (Total:3.69 GB) (Free:0.31 GB) FAT32
\\?\Volume{298cd56d-d0f2-11e4-9215-806e6f6e6963}\ (System) (Fixed) (Total:0.08 GB) (Free:0.05 GB) NTFS
\\?\Volume{870c4a2e-0000-0000-0000-201c44000000}\ () (Fixed) (Total:0 GB) (Free:0 GB)
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 870C4A2E)
Partition 1: (Active) - (Size=86 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=272.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=192.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (Size: 3.7 GB) (Disk ID: 94FF99C1)
Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C)
==================== Fin de Addition.txt =======================