Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 08-05-2017 Exécuté par Anthony (13-05-2017 14:17:04) Exécuté depuis C:\Users\Anthony\Desktop Windows 7 Professional Service Pack 1 (X64) (2015-11-26 21:07:29) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1657199299-2534744859-2653050737-500 - Administrator - Disabled) Anthony (S-1-5-21-1657199299-2534744859-2653050737-1000 - Administrator - Enabled) => C:\Users\Anthony HomeGroupUser$ (S-1-5-21-1657199299-2534744859-2653050737-1002 - Limited - Enabled) Invité (S-1-5-21-1657199299-2534744859-2653050737-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\uTorrent) (Version: 3.5.0.43580 - BitTorrent Inc.) ACDSee Pro 9 (64-bit) (HKLM\...\{AAB2B2D2-1B27-4EEC-B033-6F9B6FFEEF4C}) (Version: 9.2.0.523 - ACD Systems International Inc.) Acronis True Image (HKLM-x32\...\{8CB77545-B85F-410C-A35A-F762A9C1BD84}Visible) (Version: 19.0.6559 - Acronis) Acronis True Image (x32 Version: 19.0.6559 - Acronis) Hidden Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated) Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Flash Player 25 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.8.198 - Adobe Systems, Inc.) Amazon Drive (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\Amazon Drive) (Version: 4.0.9 - Amazon.com, Inc.) Ansel (Version: 381.65 - NVIDIA Corporation) Hidden Antidote 9 (HKLM-x32\...\{BFA17B4C-70D3-480F-8476-76197F614AB6}) (Version: 9.04.3427 - Druide informatique inc.) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.13 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 1.0.36 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0002 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS) Audacity 1.3.13 (Unicode) (HKLM-x32\...\Audacity 1.3 Beta (Unicode)_is1) (Version: - Audacity Team) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software) Bandicam (HKLM-x32\...\Bandicam) (Version: 3.4.0.1226 - Bandicam.com) Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com) Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.) BitTorrent (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\BitTorrent) (Version: 7.9.5.41373 - BitTorrent Inc.) Chromium (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\Chromium) (Version: 58.0.3025.0 - Chromium) Ciel Compta 19.0 (HKLM-x32\...\{041F6B70-807E-4B21-ADEF-436E522596F4}) (Version: 230.00.530 - Ciel) Ciel Gestion commerciale 19.0 (HKLM-x32\...\{D2A9926B-E449-4894-B9A4-DF2C43712DDB}) (Version: 138.00.990 - Ciel) Ciel Immobilisations 19.0 (HKLM-x32\...\{543D8B47-41D9-4665-9ADC-570D0CCF104D}) (Version: 19.00.0000 - Ciel) Ciel Paye 19.00 (HKLM-x32\...\{FFD37ADD-37BC-48EE-AD63-613D4C40BC83}) (Version: 12.00.00000 - CIEL) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.2.0.0114 - Disc Soft Ltd) Déclarations Sociales (Client) (HKLM-x32\...\{A72C6762-BDB8-4329-802B-720099772079}) (Version: 1.0.0.0 - Sage) Deep Freeze 7 Enterprise (HKLM-x32\...\Deep Freeze 7 Enterprise) (Version: - ) Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform) DFX (HKLM-x32\...\DFX) (Version: 12.010.0.0 - Power Technology) DriversCloud.com (64 bits) (HKLM\...\{77EEC345-B758-45DF-94C2-25D91D520650}) (Version: 8.0.4.0 - Cybelsoft) DriverToolkit version 8.5.0.0 (HKLM-x32\...\{D66BF89F-B0A2-48F5-A2E4-242EB645AB76}_is1) (Version: 8.5.0.0 - Megaify Software) eMule (HKLM-x32\...\eMule) (Version: - ) Epson Event Manager (HKLM-x32\...\{8ED43F7E-A8F6-4898-AF11-B6158F2EDF94}) (Version: 2.50.0000 - SEIKO EPSON CORPORATION) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Evernote v. 6.5.4 (HKLM-x32\...\{D47E7D82-0D98-11E7-A6D6-005056951CAD}) (Version: 6.5.4.4720 - Evernote Corp.) ExpanDrive (HKLM-x32\...\{04039209-DC9D-4232-9C6D-DF58A93EEF37}) (Version: 5.4.6 - ExpanDrive, Inc.) f.lux (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\Flux) (Version: - ) FastStone Capture 8.4 (HKLM-x32\...\FastStone Capture) (Version: 8.4 - FastStone Soft) FileHippo.com Update Checker (HKLM-x32\...\FileHippo.com) (Version: - FileHippo.com) Fitbit Connect (HKLM-x32\...\{83A6E2CD-3774-455F-AB85-CE6D757EEF10}) (Version: 1.0.3.5512 - Fitbit Inc.) foobar2000 v1.3.8 (HKLM-x32\...\foobar2000) (Version: 1.3.8 - Peter Pawlowski) Full Tilt Poker (HKLM-x32\...\{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}) (Version: 5.45.16.WIN.FullTilt.COM - ) GitHub (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\5f7eb300e2ea4ebf) (Version: 3.3.4.0 - GitHub, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.) Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden Google Earth (HKLM-x32\...\{A2264E8F-1649-11E3-8BED-B8AC6F98CCE3}) (Version: 7.1.2.2019 - Google) HL-L2300D series (HKLM-x32\...\{46B58839-2405-48D6-A59D-F8246158A6ED}) (Version: 1.0.1.0 - Brother Industries, Ltd.) HMA! Pro VPN 2.8.24.0 (HKLM-x32\...\HMA! Pro VPN) (Version: 2.8.24.0 - Privax Ltd) Hotspot Shield 6.20.8 Embedded (x32 Version: 6.20.8.9847 - Buildbot) Hidden HP Support Solutions Framework (HKLM-x32\...\{B11FEAD6-F19E-473E-A8B1-AE58C058F575}) (Version: 12.6.14.19 - HP Inc.) hppLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden hppP1100P1560P1600SeriesLaserJetService (x32 Version: 001.001.0.0 - Hewlett-Packard) Hidden hppusgP1100P1560P1600Series (x32 Version: 1.0.0.1 - Hewlett-Packard) Hidden HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) IPFilter (HKLM-x32\...\{BAA919AB-2D0B-43D2-B258-B27FCD633334}) (Version: 2.2.2.0 - David Moore) ISO Recorder (HKLM\...\{2D7ED2A0-9553-412B-939F-D6E0AEB2ABE1}) (Version: 3.1.0 - Alex Feinman) Java 8 Update 121 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180121F0}) (Version: 8.0.1210.13 - Oracle Corporation) Java 8 Update 131 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180131F0}) (Version: 8.0.1310.11 - Oracle Corporation) Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech) MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden MediaInfo 0.7.94 (HKLM\...\MediaInfo) (Version: 0.7.94 - MediaArea.net) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Encarta 2009 - Études (HKLM-x32\...\{09181881-2C94-4A67-8E55-8483C019C7D2}) (Version: 2009 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) Mises à jour NVIDIA 24.0.0.0 (Version: 24.0.0.0 - NVIDIA Corporation) Hidden Mozilla Firefox 53.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 53.0.2 (x86 fr)) (Version: 53.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.0.6312 - Mozilla) MPC-BE x64 1.5.1.2513 (HKLM\...\{FE09AF6D-78B2-4093-B012-FCDAF78693CE}_is1) (Version: 1.5.1.2513 - MPC-BE Team) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) nodongle.biz dongle backup solution (HKLM-x32\...\AuDaS0) (Version: - ) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team) NVIDIA GeForce Experience 3.5.0.76 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.5.0.76 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation) NVIDIA Pilote graphique 381.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 381.65 - NVIDIA Corporation) NvNodejs (Version: 3.5.0.76 - NVIDIA Corporation) Hidden NvTelemetry (Version: 2.4.5.0 - NVIDIA Corporation) Hidden NvvHci (Version: 2.02.0.5 - NVIDIA Corporation) Hidden Opera Stable 44.0.2510.1457 (HKLM-x32\...\Opera 44.0.2510.1457) (Version: 44.0.2510.1457 - Opera Software) Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation) Package de pilotes Windows - ASUS (ATP) Mouse (11/09/2012 1.0.0.153) (HKLM\...\5AB9160B769DD2E134ADCB8010377DECA2479378) (Version: 11/09/2012 1.0.0.153 - ASUS) Package de pilotes Windows - Intel net (11/19/2012 15.5.7.52) (HKLM\...\2A6865635DC773B9EC2AA80D715D3D7C626418D3) (Version: 11/19/2012 15.5.7.52 - Intel) paint.net (HKLM\...\{3F5F509B-E226-417C-8CD1-CAAE756C328A}) (Version: 4.0.0 - dotPDN LLC) Panneau de configuration NVIDIA 381.65 (Version: 381.65 - NVIDIA Corporation) Hidden PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.8 - Google, Inc.) PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version: - PokerStars.eu) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.147 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.105.123.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform) SafeZone Stable 3.55.2393.596 (x32 Version: 3.55.2393.596 - Avast Software) Hidden Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.) SHIELD Streaming (Version: 7.1.0360 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 3.5.0.76 - NVIDIA Corporation) Hidden Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform) Spotify (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden SysMetrix 3.45 (HKLM-x32\...\SysMetrix) (Version: 3.45 - Xymantix) T411 Navigator (HKLM-x32\...\{83D748D7-D44C-4579-9C6B-F7E6642BB3E2}) (Version: 1.1.0 - T411 Navigator) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer) TELL ME MORE (HKLM-x32\...\TMM90) (Version: - ) TuxGuitar 1.2 (HKLM-x32\...\TuxGuitar_0) (Version: - ) Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.9.26 - Tweaking.com) Unbound (HKLM-x32\...\Unbound) (Version: - NLnet Labs) Unchecky v1.0.2 (HKLM-x32\...\Unchecky) (Version: 1.0.2 - RaMMicHaeL) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Video Download Capture V6.2.4 (HKLM-x32\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.2.4 - APOWERSOFT LIMITED) VirusTotal Uploader (HKLM-x32\...\VirusTotalUploader) (Version: - ) VistaBootPRO 3.3 (HKLM-x32\...\{6C9FA746-8759-4040-A436-42922CB3492E}) (Version: 3.3.0 - PROnetworks) Visuel intégré (HKLM-x32\...\{D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}) (Version: 1.0.0003 - Druide informatique inc.) VMware Workstation (HKLM\...\{F4C0A853-FA3B-4404-954B-799299EB5A98}) (Version: 12.1.1 - VMware, Inc.) Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.) Watchtower Library 2015 - Français (HKLM-x32\...\{9AB55F75-C2F5-4C1D-BD7E-7B9F4E0DD69A}) (Version: 17.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.) WebFerret (HKLM-x32\...\WebFerret) (Version: - CNET Networks) WhatsApp (HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\WhatsApp) (Version: 0.2.4240 - WhatsApp) Windows Firewall Control (HKLM\...\Windows Firewall Control) (Version: 4.9.6.0 - BiniSoft.org) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.1 - ASUS) WinRAR 5.40 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.2 - win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0033D92F-D417-429A-9EE4-1FBD5D420573} - System32\Tasks\{4A3B1FE2-0D85-4ECE-B4E1-3A3F8DEE1D96} => pcalua.exe -a "H:\LOGS\Antidote 8 v.4\Installer Antidote 8 v4 (x64).exe" -d C:\Windows\SysWOW64 -c /groupsextract:100;101;102;103; /out:"C:\Users\Anthony\AppData\Roaming\Druide\Antidote 8 v4\prerequisites" /callbackid:5320 Task: {128A213E-466A-4D51-A972-549FA403AADB} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-26] (NVIDIA Corporation) Task: {130BA9AF-6FBB-4855-AD00-1096976261FD} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-26] (NVIDIA Corporation) Task: {14770256-54E0-4A82-9757-55B56C6747C8} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-26] (NVIDIA Corporation) Task: {16F9803D-2495-49EA-8718-7C52F4ED4881} - System32\Tasks\SafeZone scheduled Autoupdate 1494354105 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software) Task: {21249061-FEBC-4317-8C9C-6210C327E89E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-29] (Google Inc.) Task: {533DB21A-4547-441C-A32E-4B127C715CD7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-06] (HP Inc.) Task: {5B9CE485-D12D-4A89-8C21-E07B183186DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-29] (Google Inc.) Task: {5F6649EB-BDA4-4349-8DDA-CE7C1DCAAA5F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.) Task: {7472A462-3C08-4455-B7C8-68458CAD6002} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-09] (Adobe Systems Incorporated) Task: {7526E303-CCDA-4967-9E60-4E1E73923A01} - System32\Tasks\IPFilter => C:\Users\Anthony\AppData\Local\IPFilter\IPFilter.exe [2016-05-10] () <==== ATTENTION Task: {77E543E0-0754-4219-811A-2BDEBC87C8E7} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-04-26] (NVIDIA Corporation) Task: {77ED0E25-D139-49CC-BFF8-6AFDA784229B} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-09] (AVAST Software) Task: {7D90FDEF-6461-4609-984A-56F2E66885A2} - System32\Tasks\SafeZone scheduled Autoupdate 1494342271 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-03-22] (Avast Software) Task: {8102AAC9-54B4-4C71-B520-9F58CCDE930A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-05-09] (Adobe Systems Incorporated) Task: {975A8A1A-AFEA-45DA-894F-BB5D6629CA44} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.) Task: {AD56B37D-C7A4-47D0-A53E-D989381DB43C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-03-22] () Task: {B1EAC508-3AC8-45DD-87C2-DA4AAC6C546B} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-05-09] (AVAST Software) Task: {BC61287C-5EC4-4179-8E73-BDD265B6E0E1} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-04-26] (NVIDIA Corporation) Task: {C46F90C5-1C3B-4FF1-9EA0-97A2DA883F91} - System32\Tasks\Opera scheduled Autoupdate 1461507756 => C:\Program Files (x86)\Opera\launcher.exe [2017-04-26] (Opera Software) Task: {CAFAAA4E-9425-4F15-ACD3-8F91663AE7BC} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2017-05-07] () Task: {CD1C51F1-A71C-4EE0-B894-567397CF38AA} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-04-26] (NVIDIA Corporation) Task: {DC0A14E5-A4DC-4BBD-A4B3-9E25E65D1D45} - System32\Tasks\CCleanerSkipUAC => C:\Program Files (x86)\CCleaner\CCleaner.exe [2014-11-22] (Piriform Ltd) Task: {E53B3571-E96E-4BA5-977B-BF83AC9D030E} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-07-06] (ASUSTek Computer Inc.) Task: {F6E6A38C-1F5E-4D47-92D5-EB1E2648202E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-04-26] (NVIDIA Corporation) Task: {F73EEFBF-25AE-4CF8-B5B0-8C74517710E4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated) Task: {F7472815-2F5B-4C7B-8657-DC957F6150E6} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2012-11-20] (AsusTek) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Anthony\Desktop\Chrome Connectivity Diagnostics.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eemlkeanncmjljgehlbplemhmdmalhdc ShortcutWithArgument: C:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chromium\VKontakte Offline.lnk -> C:\Users\Anthony\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) -> --profile-directory=Default --app-id=jinklgkideaicpdgmomlckebafjfibjk ShortcutWithArgument: C:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Chrome Connectivity Diagnostics.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eemlkeanncmjljgehlbplemhmdmalhdc ==================== Modules chargés (Avec liste blanche) ============== 2016-04-24 22:13 - 2016-04-24 22:13 - 04463592 _____ () C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe 2016-04-14 17:16 - 2016-04-14 17:16 - 12471368 _____ () C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe 2017-05-09 20:01 - 2017-05-09 20:01 - 00162024 _____ () c:\Program Files\AVAST Software\Avast\x64\vaarclient.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 00825960 _____ () C:\Program Files\AVAST Software\Avast\x64\ffl2.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 00275776 _____ () c:\Program Files\AVAST Software\Avast\x64\StreamBack.dll 2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00087368 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libQtDispatchDruide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00088392 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libxdispatchDruide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00063816 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libdispatchDruide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00467784 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_locale-vc120-mt-1_58-Druide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00025928 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_system-vc120-mt-1_58-Druide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00036168 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_chrono-vc120-mt-1_58-Druide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00108360 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_thread-vc120-mt-1_58-Druide9.dll 2015-10-22 01:49 - 2015-10-22 01:49 - 00106824 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libwebsocketsDruide9.dll 2016-09-15 15:58 - 2016-09-15 15:58 - 00021360 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\LibrairiesQt\libEGL.dll 2016-09-15 15:58 - 2016-09-15 15:58 - 02021744 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\LibrairiesQt\libGLESv2.dll 2016-11-22 21:16 - 2016-11-22 21:16 - 00118384 _____ () C:\Program Files (x86)\Druide\Antidote 9\LingEN\Bin64\libYamChaDruide9.dll 2015-11-27 11:10 - 2014-11-22 06:33 - 00061440 _____ () C:\Program Files (x86)\CCleaner\lang\lang-1036.dll 2015-11-27 11:10 - 2014-04-15 02:11 - 00039192 _____ () C:\Program Files (x86)\CCleaner\branding.dll 2015-03-17 18:55 - 2015-03-17 18:55 - 00199336 _____ () C:\Program Files (x86)\HMA! Pro VPN\bin\liblzo2-2.dll 2015-03-17 18:55 - 2015-03-17 18:55 - 00122504 _____ () C:\Program Files (x86)\HMA! Pro VPN\bin\libpkcs11-helper-1.dll 2017-04-25 14:00 - 2017-04-26 07:40 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll 2017-03-15 01:40 - 2016-04-29 00:08 - 00606208 _____ () C:\Users\Anthony\Desktop\SXCU.exe 2017-05-12 10:20 - 2017-05-09 11:13 - 03767640 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libglesv2.dll 2017-05-12 10:20 - 2017-05-09 11:13 - 00100696 _____ () C:\Program Files (x86)\Google\Chrome\Application\58.0.3029.110\libegl.dll 2017-05-09 20:02 - 2017-05-09 20:02 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll 2017-05-09 20:02 - 2017-05-09 20:02 - 00230632 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll 2017-05-12 22:07 - 2017-05-12 22:07 - 06084088 _____ () C:\Program Files\AVAST Software\Avast\defs\17051204\algo.dll 2017-05-13 01:42 - 2017-05-13 01:42 - 05978624 _____ () C:\Program Files\AVAST Software\Avast\defs\17051208\algo.dll 2016-04-14 17:16 - 2016-04-14 17:16 - 01309768 _____ () C:\Program Files (x86)\VMware\VMware Workstation\libxml2.dll 2016-04-14 17:16 - 2016-04-14 17:16 - 00199752 _____ () C:\Program Files (x86)\VMware\VMware Workstation\LIBEXPAT.dll 2016-04-14 17:16 - 2016-04-14 17:16 - 00396872 _____ () C:\Program Files (x86)\VMware\VMware Workstation\ssoClient.dll 2016-04-14 17:16 - 2016-04-14 17:16 - 00173128 _____ () C:\Program Files (x86)\VMware\VMware Workstation\nfc-types.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll 2017-05-09 20:03 - 2017-05-09 20:03 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2017-05-09 20:00 - 2017-05-09 20:00 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll 2017-03-15 19:24 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2017-04-25 14:00 - 2017-04-26 07:40 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll 2013-05-04 13:57 - 2013-05-04 13:57 - 00095712 _____ () C:\Program Files (x86)\foobar2000\zlib1.dll 2015-03-26 09:45 - 2015-03-26 09:45 - 00160528 _____ () C:\Program Files (x86)\foobar2000\shared.dll 2015-03-07 12:19 - 2015-03-07 12:19 - 00307200 _____ () C:\Program Files (x86)\foobar2000\components\foo_freedb2.dll 2015-03-26 09:45 - 2015-03-26 09:45 - 01401120 _____ () C:\Program Files (x86)\foobar2000\components\foo_input_std.dll 2015-03-26 09:42 - 2015-03-26 09:42 - 00536064 _____ () C:\Program Files (x86)\foobar2000\components\foo_converter.dll 2015-03-26 09:42 - 2015-03-26 09:42 - 00205824 _____ () C:\Program Files (x86)\foobar2000\components\foo_dsp_std.dll 2015-03-26 09:42 - 2015-03-26 09:42 - 00263168 _____ () C:\Program Files (x86)\foobar2000\components\foo_unpack.dll 2015-03-26 09:42 - 2015-03-26 09:42 - 00310272 _____ () C:\Program Files (x86)\foobar2000\components\foo_cdda.dll 2015-03-26 09:43 - 2015-03-26 09:43 - 00368640 _____ () C:\Program Files (x86)\foobar2000\components\foo_rgscan.dll 2015-03-07 12:19 - 2015-03-07 12:19 - 00294912 _____ () C:\Program Files (x86)\foobar2000\components\foo_fileops.dll 2015-03-26 09:42 - 2015-03-26 09:42 - 00356864 _____ () C:\Program Files (x86)\foobar2000\components\foo_albumlist.dll 2015-10-21 17:02 - 2015-10-21 17:02 - 00456376 _____ () C:\Program Files (x86)\foobar2000\components\foo_dfx.dll 2015-03-07 12:19 - 2015-03-07 12:19 - 00204800 _____ () C:\Program Files (x86)\foobar2000\components\foo_dsp_eq.dll 2015-03-26 09:45 - 2015-03-26 09:45 - 01087272 _____ () C:\Program Files (x86)\foobar2000\components\foo_ui_std.dll 2015-10-21 15:42 - 2015-10-21 15:42 - 00050872 _____ () C:\Program Files (x86)\Common Files\DFX\Dlls\dfxShared32.dll 2015-11-27 10:58 - 2013-09-03 15:01 - 00736768 _____ () C:\Program Files (x86)\Last.fm\unicorn.dll 2015-11-27 10:58 - 2013-09-03 15:01 - 00032768 _____ () C:\Program Files (x86)\Last.fm\logger.dll 2015-11-27 10:58 - 2013-09-03 11:54 - 00351232 _____ () C:\Program Files (x86)\Last.fm\lastfm.dll 2015-11-27 10:58 - 2013-09-03 15:01 - 00126976 _____ () C:\Program Files (x86)\Last.fm\listener.dll 2015-11-27 10:58 - 2013-01-18 13:39 - 00302592 _____ () C:\Program Files (x86)\Last.fm\phonon.dll 2015-11-27 10:58 - 2013-01-18 13:49 - 00182784 _____ () C:\Program Files (x86)\Last.fm\plugins\phonon_backend\phonon_vlc.dll 2015-11-27 10:58 - 2012-12-13 02:12 - 00111104 _____ () C:\Program Files (x86)\Last.fm\libvlc.dll 2015-11-27 10:58 - 2012-12-13 02:13 - 02286592 _____ () C:\Program Files (x86)\Last.fm\libvlccore.dll 2015-11-27 10:58 - 2012-12-13 02:13 - 00049664 _____ () C:\Program Files (x86)\Last.fm\plugins\audio_output\libaout_directx_plugin.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [119] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\...\100sexlinks.com -> 100sexlinks.com Il y a 5317 plus de sites. ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-04-28 14:37 - 2017-05-12 03:43 - 00001935 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 keystone.mwbsys.com 0.0.0.0 pubads.g.doubleclick.net 0.0.0.0 securepubads.g.doubleclick.net 0.0.0.0 www.googletagservices.com 0.0.0.0 gads.pubmatic.com 0.0.0.0 ads.pubmatic.com 0.0.0.0 spclient.wg.spotify.com 0.0.0.0 pubads.g.doubleclick.net 0.0.0.0 securepubads.g.doubleclick.net 0.0.0.0 www.googletagservices.com 0.0.0.0 gads.pubmatic.com 0.0.0.0 ads.pubmatic.com 0.0.0.0 spclient.wg.spotify.com 127.0.0.1 idb.iobit.com 127.0.0.1 asc55.iobit.com 127.0.0.1 is360.iobit.com 127.0.0.1 asc.iobit.com 127.0.0.1 pf.iobit.com 127.0.0.1 licensing.ultraedit.com 127.0.0.1 licensing2.ultraedit.com0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net Il y a 27 plus de lignes. ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1657199299-2534744859-2653050737-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Anthony\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 10.200.140.1 - 216.146.35.35 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupfolder: C:^Users^Anthony^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk => C:\Windows\pss\EvernoteClipper.lnk.Startup MSCONFIG\startupfolder: C:^Users^Anthony^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Sync.LNK => C:\Windows\pss\Sync.LNK.Startup MSCONFIG\startupreg: ACDSeeCommanderPro9 => C:\Program Files\ACD Systems\ACDSee Pro\9.0\ACDSeeCommanderPro9.exe MSCONFIG\startupreg: ACPW09EN => "C:\Program Files\ACD Systems\ACDSee Pro\9.0\acdIDInTouch2.exe" MSCONFIG\startupreg: AcronisTibMounterMonitor => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe MSCONFIG\startupreg: AgentAntidote32 => "C:\Program Files (x86)\Druide\Programmes32\AgentAntidote.exe" /LancementSession MSCONFIG\startupreg: Aimersoft Helper Compact.exe => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files (x86)\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: DAEMON Tools Lite Automount => "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun MSCONFIG\startupreg: Fitbit Connect => "C:\Program Files (x86)\Fitbit Connect\Fitbit Connect.exe" /autorun MSCONFIG\startupreg: HPUsageTrackingLEDM => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\" MSCONFIG\startupreg: pCloud => MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: Spotify => "C:\Users\Anthony\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Anthony\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: TrueImageMonitor.exe => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe MSCONFIG\startupreg: vmware-tray.exe => "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{9E2281F6-22E5-47F3-97FF-B136E14A44DE}] => (Allow) C:\Program Files\Windows Firewall Control\wfc.exe FirewallRules: [{750CBDCE-A1B9-46A2-ACB8-8301FB52BCCA}] => (Allow) C:\Users\Anthony\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{893F2507-9AFB-4034-9DD0-710F4800361C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{7BF95CC0-2F78-4E79-AAF5-A714FD699506}] => (Allow) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpssfupdater.exe FirewallRules: [{AD7FDA14-A2B5-424A-A3D2-EFE1369633F9}] => (Allow) C:\windows\system32\compattelrunner.exe FirewallRules: [{4719159A-0276-43DF-BDC5-A254E3456DC3}] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe FirewallRules: [{A6165CC6-86B8-4022-89F8-DBBB00DBE6E8}] => (Allow) C:\program files\windows sidebar\sidebar.exe FirewallRules: [{DE62647D-EBE6-4136-8E77-14AACEBC6CC0}] => (Allow) C:\program files (x86)\hma! pro vpn\bin\hma! pro vpn.exe FirewallRules: [{38C54AFC-D07F-49D8-8AEB-0BEBDA80E803}] => (Allow) C:\program files (x86)\k-lite codec pack\tools\codectweaktool.exe FirewallRules: [{43BB5599-6EBA-4FA9-AB68-D2D17CECEBBA}] => (Allow) C:\program files (x86)\hma! pro vpn\bin\openvpn.exe FirewallRules: [{8DDE3C54-72DA-4ABB-8206-7122D5BD0480}] => (Allow) C:\windows\system32\rundll32.exe FirewallRules: [{92B5B07D-E387-448F-B8EB-98D32942AAE1}] => (Allow) C:\program files (x86)\google\update\googleupdate.exe FirewallRules: [{0B0B085E-1FC4-411B-AFDB-AAAE919E835C}] => (Allow) C:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe FirewallRules: [{CC8ADB38-9F71-442A-931D-CEB11794AE2C}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.1144\opera.exe FirewallRules: [{E0007F60-B776-4C0F-960A-9988AFAA032B}] => (Allow) C:\windows\system32\taskhost.exe FirewallRules: [{F4A9EA76-DB5A-48E7-B532-5994CA9E3690}] => (Allow) C:\program files\malwarebytes\anti-malware\mbamservice.exe FirewallRules: [{1694443D-B6FC-49A9-8D98-A0147074D166}] => (Allow) C:\windows\helppane.exe FirewallRules: [{194B2D8B-4045-414B-A090-A68E18EC803F}] => (Allow) C:\windows\system32\wermgr.exe FirewallRules: [{03E31632-84EF-4E66-AB30-1BB2C9CD2018}] => (Allow) C:\windows\temp\{2de8f674-05d6-47b7-8cb2-d1e5a68e1a97}\.cr\avira.exe FirewallRules: [{EE4A1C76-4488-479C-AC15-6C1CF5F53F88}] => (Allow) C:\program files (x86)\internet download manager\idman.exe FirewallRules: [{F3496E6F-1E5E-4195-A572-5B52B63FF741}] => (Allow) C:\program files (x86)\internet download manager\idman.exe FirewallRules: [{43C8DEEC-B54C-41C8-99CB-F16C1870C538}] => (Allow) C:\program files (x86)\windows media player\wmplayer.exe FirewallRules: [{916DB173-70B0-4D49-BC49-A90D1644628C}] => (Allow) C:\program files (x86)\last.fm\last.fm scrobbler.exe FirewallRules: [{E8F3AC6C-7863-4E8B-B79A-DD4F2CE53792}] => (Allow) C:\program files (x86)\dfx\dfx.exe FirewallRules: [{37BF42C0-B0F1-4C57-A07F-4283151524C1}] => (Allow) C:\program files\internet explorer\iexplore.exe FirewallRules: [{17369A0F-6A13-491B-B1CA-35BFBC807902}] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{B7C0A428-C1FC-415D-A37A-5E58B5928383}] => (Allow) C:\users\anthony\desktop\sxcu.exe FirewallRules: [{FE0491D2-7A6E-4245-A9C6-1B8B2CA70ED8}] => (Allow) C:\program files (x86)\efficient wma mp3 converter\e-wma-mp3-converter.exe FirewallRules: [{7008540B-A204-40F2-A0FC-7911FE838BAA}] => (Allow) C:\users\anthony\appdata\local\fluxsoftware\flux\flux.exe FirewallRules: [{F0AA25CD-C4F7-4001-A24D-88DB611336AE}] => (Allow) C:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe FirewallRules: [{C13D04F7-52FA-499F-ADD6-30DD437DF7B7}] => (Allow) C:\program files\peerblock\peerblock.exe FirewallRules: [{8B7B4299-FE9C-4EB9-9CDE-B249AA5A44A1}] => (Allow) C:\program files (x86)\opera\43.0.2442.1144\opera_autoupdate.exe FirewallRules: [{1F0FA254-DAB9-45A6-8A80-68816294E245}] => (Allow) C:\program files (x86)\brother\firmware\firmwareupdater.exe FirewallRules: [{6A88612F-913C-4888-BFB6-C09E6CBF4921}] => (Allow) C:\program files\zguidetvdotnet\zguidetvdotnet.exe FirewallRules: [{D067CC72-D452-4AAB-9431-FCA17268ACBF}] => (Allow) G:\logs\amazondrivesetup.exe FirewallRules: [{2779394A-C930-4C22-ADB0-75EAD91EE740}] => (Allow) C:\Program Files\ZGuideTVDotNet\ZGuideTVDotNet.exe FirewallRules: [{145F2711-005B-4A4A-9E2E-275325BAF89E}] => (Allow) C:\Program Files\ZGuideTVDotNet\ZGuideTVDotNet.exe FirewallRules: [{680A4442-8AE1-476B-8142-913756505772}] => (Allow) C:\users\anthony\appdata\local\amazon drive\amazondrive.exe FirewallRules: [{9F10CCAD-02F9-4D5C-A3A2-706DBBB8B291}] => (Allow) C:\users\anthony\appdata\local\temp\{3c347e90-d77b-4975-8e39-231093bd031f}\.cr\giga-transfer-0.0.31.exe FirewallRules: [{F01D2833-5A11-40B6-A40C-9D93EA6166F5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{9BC22755-B976-4AF7-8FC5-50E3A381F982}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{356E2B49-CB0C-444A-B870-7AAF1C30CA97}] => (Allow) C:\program files (x86)\alertinfo\alertinfo.exe FirewallRules: [{CD82A710-C753-4B5D-B61A-BAD3B9D54319}] => (Allow) G:\logs\unchecky_setup.exe FirewallRules: [{D3855B74-4048-408E-80C3-4EA953F3A9A7}] => (Allow) C:\Program Files (x86)\WebFerret\WebFerret.exe FirewallRules: [{25F9F9FD-51BE-4CF5-8D63-02F6A636860B}] => (Allow) C:\Program Files (x86)\WebFerret\WebFerret.exe FirewallRules: [{F8106777-D93A-4EE6-824E-511B80226E80}] => (Allow) C:\program files (x86)\webferret\webferret.exe FirewallRules: [{2C848CBF-2CFB-4D43-BE8C-56DD94E2E4CD}] => (Allow) C:\program files (x86)\unchecky\bin\unchecky_svc.exe FirewallRules: [{F988B634-EB9E-4FC2-84DC-5BA5CEC9EA90}] => (Allow) C:\program files (x86)\microsoft office\office12\winword.exe FirewallRules: [{B72922EF-0F06-404E-9FA1-FA0634A8AB4B}] => (Allow) C:\program files (x86)\microsoft office\office12\winword.exe FirewallRules: [{2F5C3EC6-F8B8-4365-B61E-3C2C5E568D42}] => (Allow) C:\program files (x86)\filehippo.com\updatechecker.exe FirewallRules: [{BEBF9E92-B708-4BAE-A70F-53FBCBEE2347}] => (Allow) C:\users\anthony\appdata\local\temp\{87aa865c-af09-4ba3-9ba1-ea10b8d98eec}\dotnetinstaller.exe FirewallRules: [{9A61DC91-406A-4278-8265-9D8761A6753B}] => (Allow) G:\logs\patchmypc.exe FirewallRules: [{8F632743-397F-44DA-9559-2C6A77EA17F9}] => (Allow) C:\pmpcupdaterepository\patchmypcupdater.exe FirewallRules: [{DF7228F8-83E0-4220-85B7-08CD78E6AC2C}] => (Allow) C:\program files (x86)\common files\java\java update\jusched.exe FirewallRules: [{9D7346D2-8DCA-4E06-B6A8-56E6F690E552}] => (Allow) C:\program files (x86)\hewlett-packard\hp support solutions\modules\hpsfreport.exe FirewallRules: [{3A9AAA02-9891-47C3-9D59-0ABCD11B5E36}] => (Allow) C:\program files (x86)\microsoft office\office12\excel.exe FirewallRules: [{62BCB35D-17E6-4A4E-84B4-84F378174BDF}] => (Allow) C:\program files\acd systems\acdsee pro\9.0\acdidintouch2.exe FirewallRules: [{E96E5AD1-DD6C-4F05-B6E7-DEBFE03E184D}] => (Allow) C:\program files\acd systems\acdsee pro\9.0\acdseepro9.exe FirewallRules: [{E0DE37A5-A021-40DC-B8D5-0250859640D5}] => (Allow) C:\Program Files (x86)\eMule\emule.exe FirewallRules: [{8023E909-7733-4E69-955D-43A26AF022A5}] => (Allow) C:\program files\windows media player\wmpnetwk.exe FirewallRules: [{E799284A-D76A-42C8-B490-16E3C4E27E20}] => (Allow) C:\windows\syswow64\werfault.exe FirewallRules: [{A21EE540-5266-4C0F-BC93-0D510B99683D}] => (Allow) C:\windows\system32\msiexec.exe FirewallRules: [{A7926C08-F2B9-46C8-8256-889FB0023FA4}] => (Allow) C:\windows\system32\mrt.exe FirewallRules: [{24755787-03CB-4A4D-93B0-5656E110ED67}] => (Allow) C:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe FirewallRules: [{D65DBDC7-4C0A-4C78-BE8A-42EA926C40D4}] => (Allow) C:\program files (x86)\adobe\acrobat reader dc\reader\acrord32.exe FirewallRules: [{04D8808D-47B5-4314-A68A-096E32626276}] => (Allow) C:\Users\Anthony\AppData\Local\Chromium\Application\chrome.exe FirewallRules: [{528D2218-2C94-412A-8996-FCF8CD1E2AAC}] => (Allow) C:\windows\syswow64\macromed\flash\flashutil32_25_0_0_148_pepper.exe FirewallRules: [{D0559A09-CC02-462B-B238-13B47E126A6D}] => (Allow) C:\windows\system32\werfault.exe FirewallRules: [{2E1F4B9D-520C-4D36-88FE-2243EF555B05}] => (Allow) C:\windows\system32\devicedisplayobjectprovider.exe FirewallRules: [{14A2E059-0162-471F-8D75-54672B84CCB6}] => (Allow) C:\program files\recuva\recuva64.exe FirewallRules: [{39E89CB2-7091-4530-A0DE-3A872DA7F005}] => (Allow) C:\windows\syswow64\msiexec.exe FirewallRules: [{C5AD094C-4E91-4EA5-915D-2E5079E13AD3}] => (Allow) C:\program files (x86)\evernote\evernote\evernote.exe FirewallRules: [{EA6EA7BA-407E-408B-9E0F-6F3DAA49A976}] => (Allow) C:\program files\daemon tools lite\dtagent.exe FirewallRules: [{464F72E5-D55F-4E5B-A349-F976B20F721E}] => (Allow) C:\program files\driverscloud.com\mcdetection.exe FirewallRules: [{23C23101-2D15-4BD7-A91C-69A7350ABA81}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{311AB39B-257B-470B-9CF3-8733055C9064}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe FirewallRules: [{EA95E999-96D5-40F4-98CD-A5DEDC199CF0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{1E776930-8C01-4042-A8D6-A617FD5AC7AE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{901F3BB3-BB4A-444B-A141-5927E532638E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{730C7A03-4FCD-413B-87A8-C4A7AF3C95C4}] => (Allow) C:\program files\nvidia corporation\nvcontainer\nvcontainer.exe FirewallRules: [{3C6A63DD-2148-46A4-B181-D06A5401BD96}] => (Allow) C:\program files (x86)\nvidia corporation\nvcontainer\nvcontainer.exe FirewallRules: [{70185CD1-4346-4554-A91B-5391C4E79247}] => (Allow) C:\program files (x86)\nvidia corporation\nvtelemetry\nvtelemetrycontainer.exe FirewallRules: [{AB16ED77-D934-442F-8346-2E450B8023A4}] => (Allow) C:\program files (x86)\nvidia corporation\nvidia geforce experience\nvidia geforce experience.exe FirewallRules: [{25ECCA28-1B70-43DE-98CC-F6FD0FF5C3AD}] => (Allow) C:\users\anthony\downloads\programs\spotifysetup.exe FirewallRules: [{2A5637E5-8A6B-4D31-8763-778FCCCE1291}] => (Allow) C:\users\anthony\appdata\roaming\spotify\spotify.exe FirewallRules: [{701092E1-BF02-4326-A4D5-96C7D9EFDCAF}] => (Allow) C:\program files (x86)\virustotaluploader\virustotalupload.exe FirewallRules: [{C1560558-741F-461A-B232-8E6CC34424EE}] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\regasm.exe FirewallRules: [{CAEE941E-250F-484C-AF73-3F50F1854A89}] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\installutil.exe FirewallRules: [{09C16B2C-6CF2-489B-AAC3-47FEB1ADEF5F}] => (Allow) C:\program files (x86)\wondershare\waf\2.3.1.1\wsappservice.exe FirewallRules: [{0B2C3E22-6A88-4965-A50F-7FD7C7F3766A}] => (Allow) C:\windows\microsoft.net\framework64\v2.0.50727\regasm.exe FirewallRules: [{3AE2848B-A5C8-4E39-95BD-6B43303EAE3A}] => (Allow) C:\program files (x86)\common files\aimersoft\aimersoft helper compact\ashelper.exe FirewallRules: [{AC2F46FD-10F0-4543-898E-4BD8EED85B3E}] => (Allow) C:\program files (x86)\wondershare\waf\2.3.1.1\wsappclient.exe FirewallRules: [TCP Query User{63FA1C16-4B3C-40FC-A2EE-CA34DBA0A7C2}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{8E460F62-20FF-418D-BCA6-407D94FA5039}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [{AAA11164-9402-476C-A70E-F82C245A2BE6}] => (Allow) C:\program files (x86)\nvidia corporation\nvnode\nvidia web helper.exe FirewallRules: [{FF850AF2-A8BD-4610-80C0-D3B9048B011F}] => (Allow) C:\program files\windows defender\mpcmdrun.exe FirewallRules: [{62828B5B-EC5A-4966-9CE4-0A121BFC1F63}] => (Allow) C:\program files\windows defender\msascui.exe FirewallRules: [{FD9B7045-370B-4561-A473-A438A8B917BA}] => (Allow) C:\program files (x86)\bandicam\bdcam.exe FirewallRules: [{6E7938BB-6D6C-4A6C-B697-0E4864425ED5}] => (Allow) C:\program files (x86)\filehippo.com\filehippo.appmanager.exe FirewallRules: [{DEBFED12-E998-4214-9578-C39AF2F263DF}] => (Allow) C:\program files (x86)\filehippo.com\filehippo.appmanager.exe FirewallRules: [{BC308672-056B-430C-9C5B-A5FD11CB7AD9}] => (Allow) C:\users\anthony\downloads\programs\sync-installer.exe FirewallRules: [{606A7EA0-4F2B-4323-8C3F-DF8CECEF2F6C}] => (Allow) C:\users\anthony\downloads\programs\t411_unblock_v1.7.exe FirewallRules: [{D0A2ED03-3433-4CAF-9CA9-4D3788CF9F23}] => (Allow) C:\program files (x86)\t411 navigator\t411 navigator.exe FirewallRules: [{D477059E-6B34-425A-8C6D-D6B12AC5F3C8}] => (Allow) C:\program files (x86)\winhttrack\winhttrack.exe FirewallRules: [{ABD51166-DA11-43B4-BBD0-81223E63B71C}] => (Allow) C:\program files\cpuid\hwmonitor\hwmonitor.exe FirewallRules: [{89755156-9EAC-473F-B0BB-06CF32609CE4}] => (Allow) C:\program files\nvidia corporation\update core\nvprofileupdater64.exe FirewallRules: [TCP Query User{3C4A3DE4-A278-4CFE-9AD7-286585A03C2F}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [UDP Query User{A3EDDE0B-2C26-47B5-BF44-DC736051CF69}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe FirewallRules: [{5AF269AB-29DE-4BD7-BB07-602BAA9811BA}] => (Allow) C:\program files (x86)\druide\antidote 9\application\bin64\antidote.exe FirewallRules: [{AEE9CEF4-2228-4BE1-A674-67F1D73EC428}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{C6B8607C-D779-4A0E-8DDE-DA523011BCC9}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{5DF4261C-40E8-47EC-9453-2F9EDE5529F1}] => (Allow) C:\program files (x86)\utorrent\utorrent.exe FirewallRules: [{CBEC534D-5AAB-4E47-AFAC-85F5727277EA}] => (Allow) C:\users\anthony\downloads\programs\mediainfo_gui_0.7.92.1_windows.exe FirewallRules: [{4D121D67-ACDC-4BC2-A522-C8C9B9611F1B}] => (Allow) C:\program files\mediainfo\mediainfo.exe FirewallRules: [{8645E97C-DC1A-4E2D-B056-BF765936B638}] => (Allow) C:\users\anthony\downloads\programs\mediainfo_gui_0.7.94_windows.exe FirewallRules: [{9652C882-ED0B-4AB7-99AB-E4E998246612}] => (Allow) C:\program files\paint.net\paintdotnet.exe FirewallRules: [{5F2BCCFD-C0F3-4B72-A7C4-A92974D3DC4F}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{5C710BD7-D49D-49C8-A24E-7CB986D7B379}] => (Allow) C:\users\anthony\desktop\tor browser\browser\torbrowser\tor\tor.exe FirewallRules: [{15CE0C38-24C6-4FC6-A8CE-1E4DE99E63F1}] => (Allow) C:\users\anthony\desktop\tor browser\browser\torbrowser\tor\tor.exe FirewallRules: [{E635B3FB-3B90-4674-82C6-1846E8C87FCF}] => (Allow) C:\users\anthony\downloads\programs\utorrent.exe FirewallRules: [{956FF5E5-0D39-418F-93AD-01B5BB197C6B}] => (Allow) C:\windows\syswow64\mshta.exe FirewallRules: [{DAC35DDD-296A-4BB5-8FF3-E241F860B3F6}] => (Allow) C:\windows\syswow64\cscript.exe FirewallRules: [{9E43EEE8-6CE5-4070-87BF-4AF7E22D9890}] => (Allow) C:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe FirewallRules: [{001B52C8-ED4F-4A40-A2FC-EA2EFD257A28}] => (Allow) G:\app@port\chromiumportable\app\chromium\64\chrome.exe FirewallRules: [{92B13245-D2E5-47FE-86AB-561EF52C3247}] => (Allow) C:\program files (x86)\emule\emule.exe FirewallRules: [{E70736F6-C67C-4174-BA2F-76EA8F5415BB}] => (Allow) \device\harddiskvolume4\users\anthony\appdata\local\squirreltemp\update.exe FirewallRules: [{DC2D64FA-AA44-4CCD-8F07-A4A009CBEF61}] => (Allow) C:\users\anthony\appdata\local\whatsapp\app-0.2.4240\whatsapp.exe FirewallRules: [{F281E1CF-9348-4BE2-B1CB-558C277C71E5}] => (Allow) C:\users\anthony\appdata\local\whatsapp\update.exe FirewallRules: [{8F8193E9-6EB8-47DF-99FB-2858C77B4564}] => (Allow) C:\users\anthony\downloads\programs\opera_44.0.2510.1457_setup.exe FirewallRules: [{40B71C0B-57F8-4880-87A0-EAE82BC1CFE9}] => (Allow) C:\Program Files (x86)\Opera\44.0.2510.1457\opera.exe FirewallRules: [{2D571128-B501-4F84-8BE3-B2DD358F19D5}] => (Allow) C:\program files (x86)\opera\44.0.2510.1457\opera.exe FirewallRules: [{0201D8DF-6B36-4A5C-9E6D-1FCF139B8C40}] => (Allow) C:\Program Files (x86)\Opera\launcher.exe FirewallRules: [{8B7495FD-A31C-4EE0-BE27-960EBE3C9721}] => (Allow) C:\program files\vs revo group\revo uninstaller pro\revouninpro.exe FirewallRules: [{6014A56A-D60D-4CFB-8A44-57CFFF7E4C4D}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F286C038-06CA-4FAA-AE89-3848F94E312C}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{EB3BF272-A08F-48D4-8EA8-4D1410329123}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5162C7E2-942F-4404-9DA4-F0B43EEF5469}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{A3873788-9C64-480B-97BD-EE9F6C03F30A}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{30540B91-70AA-4F39-86BA-6EA9395E91D3}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F17AA77A-AE78-45EE-9454-A0FEE033FEF4}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{77A546E2-3987-44CB-9D33-55555E4BA8B3}] => (Allow) C:\users\anthony\downloads\programs\t411_unblock_v1.7_2.exe FirewallRules: [{45BA43F5-1C4B-498D-9056-D2F908C34AD2}] => (Allow) C:\users\anthony\downloads\programs\githubsetup.exe FirewallRules: [{7FDD0263-97CA-4C38-B9AA-F017BA8E483B}] => (Allow) C:\windows\microsoft.net\framework64\v4.0.30319\dfsvc.exe FirewallRules: [{31CD471C-D540-4AB2-A066-7E8DC08F6D7C}] => (Allow) C:\users\anthony\appdata\local\apps\2.0\hmjovkxc.jg5\yeq2gka2.41o\gith..tion_317444273a93ac29_0003.0003_5794af8169eeff14\github.exe FirewallRules: [{D5D534A3-542F-4EB8-8D35-4DF05A66525D}] => (Allow) C:\windows\explorer.exe FirewallRules: [{A126EC73-55B8-42AA-96F7-5B86EAA7FC39}] => (Allow) C:\program files (x86)\ashampoo\ashampoo snap 9\ashsnap.exe FirewallRules: [{140626ED-840B-4D48-9519-84601A6FE126}] => (Allow) C:\program files (x86)\iobit\driver booster\4.4.0\inststat.exe FirewallRules: [{D7222030-C264-494D-A82F-221E5F84672A}] => (Allow) C:\program files (x86)\iobit\driver booster\4.4.0\iobitdownloader.exe FirewallRules: [{C2739E4F-E1A3-4B04-AE7F-2714E14CFE7E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe FirewallRules: [{5B6BC572-EB39-480A-B623-9DC619920EC3}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DriverBooster.exe FirewallRules: [{7AC29263-A5AE-42D7-A5F7-89DAB58B9399}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe FirewallRules: [{66134BDF-99EC-4D04-936C-B540669420F9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\DBDownloader.exe FirewallRules: [{8028F177-C908-42BD-AB59-EC6D5BFBBD77}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe FirewallRules: [{9C5147CC-4E16-49D5-A15F-408A103CB148}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\4.4.0\AutoUpdate.exe FirewallRules: [{BFE90E3B-CBBF-49B7-ABFE-F3043CCF0701}] => (Allow) C:\program files (x86)\iobit\driver booster\4.4.0\autoupdate.exe FirewallRules: [{3FD9C3DA-1586-4DC6-8005-5E3CD83B1308}] => (Allow) C:\program files (x86)\iobit\driver booster\4.4.0\aupdate.exe FirewallRules: [{9CF0903F-EB10-475B-96A8-9E09C9E25F52}] => (Allow) \device\harddiskvolume6\cff45e28326db83b85563657b2536f7c\setup.exe FirewallRules: [{3E36241F-3003-4712-9079-62EAB15662CF}] => (Allow) C:\program files\speccy\speccy64.exe FirewallRules: [{3E2AAD11-0000-458D-8DE7-CA424A28990C}] => (Allow) C:\program files (x86)\belarc\belarcadvisor\belarcadvisor.exe FirewallRules: [{14252FBE-6631-4A8A-875B-EA38231A8192}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe FirewallRules: [{3F2393C1-30A2-48F9-B038-110CC815E256}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe FirewallRules: [{0D843000-B4D8-4C3F-92F2-8C3276A83150}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe FirewallRules: [{3FA3A2AA-9B37-496B-9DCA-8DBE1059057A}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe FirewallRules: [{CA1FEC8A-D1BB-4125-BB67-D0361CFC2B80}] => (Allow) C:\program files (x86)\opera\44.0.2510.1457\opera_autoupdate.exe FirewallRules: [{6368AFEA-B194-4ACC-BD77-A38CDD8D1CB5}] => (Allow) C:\program files (x86)\iobit\driver booster\4.4.0\autonts.exe FirewallRules: [{238CBFCF-20D0-4E47-833C-650D944AE286}] => (Allow) C:\programdata\avira\antivirus\temp\selfupdate\update.exe FirewallRules: [{62C74AE8-96AC-435E-9DD4-1E22FF0F0640}] => (Allow) C:\users\anthony\downloads\programs\zhpcleaner 2017.4.20.67 x86 x64[walibi2016]\zhp.exe FirewallRules: [{FD4F304B-449D-4708-8E27-56305D5897AD}] => (Allow) C:\users\anthony\desktop\adwcleaner_6.046.exe FirewallRules: [{921DB71E-8443-467F-8A22-594EF5238876}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{0BC100CF-E391-4B92-A293-DFA0CB296DD2}] => (Allow) C:\Users\Anthony\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{E9B861AB-DD40-4BD9-B20F-6917F5F57437}] => (Allow) C:\users\anthony\appdata\local\temp\{5efa5bcc-80a4-4ad5-a0ce-ea8ea46118fc}\.cr\avira_en_avprodl_3002827605__wsd.exe FirewallRules: [{16442E47-A0DD-4990-ABBC-50521E8ACB79}] => (Allow) \device\harddiskvolume4\users\anthony\appdata\local\temp\{5efa5bcc-80a4-4ad5-a0ce-ea8ea46118fc}\.cr\avira_en_avprodl_3002827605__wsd.exe FirewallRules: [{BD097092-1507-4A31-840D-1AC7CAEEE6BF}] => (Allow) C:\users\anthony\appdata\local\apps\2.0\hmjovkxc.jg5\yeq2gka2.41o\ipfi..tion_0000000000000000_0001.0000_6c6173749080692d\ipfilter.ui.exe FirewallRules: [{743257E0-AD39-4166-B29B-AAFC81473F71}] => (Allow) C:\users\anthony\appdata\local\ipfilter\ipfilter.exe FirewallRules: [{A85D4915-A3DF-4556-BE1F-8D5F376DF800}] => (Allow) C:\program files (x86)\caphyon\advanced installer 14.0\bin\x86\advinst.exe FirewallRules: [{80A21A2D-13B3-4FE4-8969-2B163227AC63}] => (Allow) C:\program files (x86)\caphyon\advanced installer 14.0\bin\x86\updater.exe FirewallRules: [{B74A998B-C4B4-4A35-86BF-7645EBFA7399}] => (Allow) C:\program files (x86)\vmware\vmware workstation\vmware.exe FirewallRules: [{3D17B52E-2879-47F6-B45D-95BDDAD7A5C5}] => (Allow) C:\windows\syswow64\nslookup.exe FirewallRules: [{8B7C887B-27AE-4BC1-A6E9-D412F8F1105B}] => (Allow) C:\users\anthony\desktop\frst64.exe FirewallRules: [{E2D248CA-0D09-430C-9E96-F8722A3250F0}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe FirewallRules: [{CD861576-137B-435F-AD82-8B7C20294E11}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe FirewallRules: [{0599883F-14B7-43AF-A0DE-F368879FE5C7}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe FirewallRules: [{874D3838-1C4D-4874-BD16-259840981F84}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe FirewallRules: [{55300266-34C7-4803-AEF3-34F318CCB1D6}] => (Allow) C:\users\anthony\appdata\local\temp\{30e57fe9-0e4f-44b8-afbc-42a4e5662263}\.cr\avira_en____fm.exe FirewallRules: [{B37F5CE6-ED5C-4A93-9423-B3BFC3AA7112}] => (Allow) C:\program files (x86)\avira\softwareupdater\avira.softwareupdater.servicehost.exe FirewallRules: [{CED5D808-2261-46F3-8EF2-69B676AE389A}] => (Allow) C:\windows\syswow64\rundll32.exe FirewallRules: [{1215AA68-D110-44D3-BD48-D0E885527AA1}] => (Allow) C:\program files (x86)\avira\softwareupdater\avirasoftwareupdater.exe FirewallRules: [{F8F918AD-C7C3-4E02-BBCB-C5E20BBDFF1A}] => (Allow) C:\programdata\avira\launcher\temp\e9536b9f-d105-4407-a753-471b965931aa\vpninstaller.exe FirewallRules: [{608026E9-6492-4461-B5DD-1CF7DB766EDF}] => (Allow) C:\program files (x86)\avira\vpn\avira.vpnservice.exe FirewallRules: [{C93E5AB6-6EA2-4108-965D-0B05B4081C27}] => (Allow) C:\program files (x86)\avira\vpn\avira.webapphost.exe FirewallRules: [{806181F2-6BB3-476F-A4E5-2CB5E9B22DD4}] => (Allow) C:\program files (x86)\avira\scout update\scoutupdate.exe FirewallRules: [{04F1458A-B07B-49B0-8151-54EAB1B388FA}] => (Allow) C:\windows\temp\cr_8ab20.tmp\setup.exe FirewallRules: [{9D8C2FE5-80E7-432C-AB00-BBD7E4F43A9C}] => (Allow) C:\program files (x86)\tweaking.com\windows repair (all in one)\repair_windows.exe FirewallRules: [{F879138B-ED13-4E5B-9EC8-B97641BF0E8E}] => (Allow) \device\harddiskvolume4\programdata\package cache\{9bffeb8a-bd07-4f43-aca3-3266700f4029}\avira.oe.setup.bundle.exe FirewallRules: [{A4B32362-74FB-4832-AF36-92C2032B9501}] => (Allow) C:\program files\avast software\avast\avastsvc.exe FirewallRules: [{80484650-3659-4378-8909-55183E7CD68A}] => (Allow) C:\program files\avast software\avast\setup\instup.exe FirewallRules: [{EB0A87C2-15AE-4ABF-A6C0-055FAFD411D1}] => (Allow) C:\program files\avast software\avast\avastui.exe FirewallRules: [{CFA5BB9C-C1E6-4E00-B998-34C45B4DC4A2}] => (Allow) C:\program files\avast software\avast\avemupdate.exe FirewallRules: [{D973724E-9714-4523-88D3-A7629435FD5F}] => (Allow) C:\program files\common files\av\avast! antivirus\backup.exe FirewallRules: [{B4A65F9F-101F-40D4-9985-21CE7BE533E5}] => (Allow) C:\program files\avast software\avast\setup\new_110408f6\instup.exe FirewallRules: [{EDA25DF9-D0F2-417C-8D82-FA2FB97E943C}] => (Allow) C:\users\anthony\downloads\programs\microsoftfixit.power.run.exe FirewallRules: [{DCD113B6-565B-4423-BBCA-E6398DD77B42}] => (Allow) C:\windows\temp\runboot-temp_.2cb0e07e-a368-481e-b6e1-cc78b57749e5\matsboot.exe FirewallRules: [{EC4E8946-DBBF-41EA-A8FE-F004DBEF0E3C}] => (Allow) C:\windows\temp\runboot-temp_.defbacd2-1874-4075-83d7-e8f4232d05a1\matsboot.exe FirewallRules: [{506655EB-5551-4789-A6DC-33D93536DB37}] => (Allow) C:\windows\temp\runboot-temp_.3906677c-fc55-4ebc-9c84-39e3e1b28c15\matsboot.exe FirewallRules: [{206B6B5C-64A9-4C09-8E8C-597D24AC5A3A}] => (Allow) C:\users\anthony\appdata\local\temp\mats-temp\cabvv4pp54l.yeh\matswiz.exe FirewallRules: [{C2EC1E7C-0433-4D65-9EF1-6F3099789B56}] => (Allow) C:\program files\avast software\szbrowser\3.55.2393.527\szbrowser_autoupdate.exe FirewallRules: [{4C550C1E-5F35-42A1-8C28-4197B9B9524C}] => (Allow) C:\program files\avast software\avast\setup\sfx\instup.exe FirewallRules: [{0EA6F33C-D8B1-46C0-A7BD-FC593594B3CA}] => (Allow) \device\harddiskvolume6\a2aea4b995e4ffe5dc7cba\setup.exe FirewallRules: [{ACC32F95-5349-4682-911F-EC64B7A88863}] => (Allow) \device\harddiskvolume6\f78802bb1bf1f9d80fde5239049854f8\setup.exe FirewallRules: [{573A5F88-5F8D-4A53-89D2-835B466EAD2C}] => (Allow) D:\839c5952af4164476a5c477d\setup.exe FirewallRules: [{26115ECC-2885-4FE1-A592-225439BAB0BC}] => (Allow) C:\users\public\desktop\avast_free_antivirus_setup_online.exe FirewallRules: [{FD8C994B-AF69-41AD-BE39-ED8BCE679474}] => (Allow) C:\program files (x86)\druide\antidote 9\application\bin64\agentantidote.exe FirewallRules: [{21D43FDA-18B4-4706-8FDF-007D6688D113}] => (Allow) C:\program files (x86)\tweaking.com\windows repair (all in one)\repair_windows.exe FirewallRules: [{FD9A7D9C-60DE-4147-8178-E78C2DA39C13}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.596\SZBrowser.exe FirewallRules: [{3C8DB7D2-78DB-47A2-80FE-A0DBF8EC25AE}] => (Allow) C:\program files\avast software\avast\x64\aswidsagenta.exe FirewallRules: [{3385EA11-5681-41DD-B6DB-193954D12371}] => (Allow) C:\windows\syswow64\wermgr.exe FirewallRules: [{4D5AF044-493A-467D-8512-DDF7FA50E02B}] => (Allow) C:\program files\avast software\szbrowser\3.55.2393.596\szbrowser.exe FirewallRules: [{99450AB7-E168-4F27-A882-78EA75829DE5}] => (Allow) C:\program files\avast software\szbrowser\3.55.2393.596\szbrowser_autoupdate.exe FirewallRules: [{970BE4C8-C5D4-41AC-B28D-D6E5478C68FB}] => (Allow) %ProgramFiles% (x86)\eMule\emule.exe FirewallRules: [{5B1E3E74-1707-405C-8668-C22726C5FCCA}] => (Allow) %ProgramFiles% (x86)\eMule\emule.exe FirewallRules: [{CC4C252A-B87D-4207-8023-926BDF298998}] => (Allow) C:\program files (x86)\adobe\acrobat reader dc\reader\acrocef\rdrcef.exe FirewallRules: [{ED95C573-2A78-46DF-A444-983A05015C57}] => (Allow) C:\program files\avast software\avast\avbugreport.exe FirewallRules: [{E9DE8C14-5AB7-46D4-93C9-658481FB29BD}] => (Allow) C:\users\anthony\appdata\local\temp\amazondrivesetup.exe FirewallRules: [{71FB31E8-4CAD-4785-B2A9-A962727C8EED}] => (Allow) C:\Users\Anthony\AppData\Local\Amazon Drive\AmazonDrive.exe FirewallRules: [{8B411DE2-F070-48CB-B7D2-367BEEB6C587}] => (Allow) C:\program files (x86)\expandrive\expandrive.exe FirewallRules: [{E9C95F61-4057-431F-A6B1-4F85E049A7CC}] => (Allow) C:\program files (x86)\expandrive\exfs\exfs.exe FirewallRules: [{5C670824-89B7-410E-B89F-9F08BA3D546B}] => (Allow) C:\windows\syswow64\macromed\flash\flashplayerplugin_25_0_0_171.exe FirewallRules: [{2C8AB780-BF43-4F5F-B33E-989420B8D015}] => (Allow) C:\program files (x86)\adobe\acrobat reader dc\reader\adobecollabsync.exe FirewallRules: [{F060F2E3-6FBE-4EC2-AA4E-7B1D338F332B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{3F307A56-46BA-4C57-834E-C2DC2E3FBB4E}] => (Allow) C:\windows\syswow64\macromed\flash\flashutil32_25_0_0_171_pepper.exe FirewallRules: [{7463DB7D-D615-4674-A917-CA5FD378ACC2}] => (Allow) C:\program files (x86)\drivertoolkit\drivertoolkit.exe FirewallRules: [{4B615756-2B09-4309-BE59-1AE791DF0AA9}] => (Allow) C:\users\anthony\appdata\local\temp\rar$exa0.503\dnsjumper\dnsjumper.exe ==================== Points de restauration ========================= 13-05-2017 03:11:38 Point de contrôle planifié 13-05-2017 14:05:38 JRT Pre-Junkware Removal ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Qualcomm Atheros AR9485 Wireless Network Adapter Description: Qualcomm Atheros AR9485 Wireless Network Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Qualcomm Atheros Communications Inc. Service: athr Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: ZAM Helper Driver Description: ZAM Helper Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ZAM Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: ZAM Guard Driver Description: ZAM Guard Driver Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: ZAM_Guard Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Contrôleur de bus USB Description: Contrôleur de bus USB Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: VMware Virtual Ethernet Adapter for VMnet1 Description: VMware Virtual Ethernet Adapter for VMnet1 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: VMware, Inc. Service: VMnetAdapter Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: VMware Virtual Ethernet Adapter for VMnet8 Description: VMware Virtual Ethernet Adapter for VMnet8 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: VMware, Inc. Service: VMnetAdapter Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (05/12/2017 10:39:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante alertinfo.exe, version : 0.0.0.0, horodatage : 0x2a425e19 Nom du module défaillant : alertinfo.exe, version : 0.0.0.0, horodatage : 0x2a425e19 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00003aa6 ID du processus défaillant : 0x2c30 Heure de début de l’application défaillante : 0x01d2cb54ef924109 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\AlertInfo\alertinfo.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\AlertInfo\alertinfo.exe ID de rapport : 2099b40b-3753-11e7-8e7f-74d02b6061a3 Error: (05/12/2017 11:47:28 AM) (Source: Software Protection Platform Service) (EventID: 8208) (User: ) Description: Échec de l’acquisition d’un ticket authentique (hr=0x80072EFD) pour l’Id de modèle 66c92734-d682-4d71-983e-d6ec3f16059f Error: (05/12/2017 11:47:28 AM) (Source: Software Protection Platform Service) (EventID: 8200) (User: ) Description: Détails de l’échec d’acquisition de la licence. hr=0x80072EFD Error: (05/12/2017 03:52:12 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante alertinfo.exe, version : 0.0.0.0, horodatage : 0x2a425e19 Nom du module défaillant : alertinfo.exe, version : 0.0.0.0, horodatage : 0x2a425e19 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00003aa6 ID du processus défaillant : 0x18f4 Heure de début de l’application défaillante : 0x01d2cac1b3a134f3 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\AlertInfo\alertinfo.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\AlertInfo\alertinfo.exe ID de rapport : 9d21b400-36b5-11e7-8e7f-74d02b6061a3 Error: (05/12/2017 03:50:36 AM) (Source: usbperf) (EventID: 2001) (User: ) Description: Impossible de lire la valeur « First Counter » sous la clé usbperf\Performance. Les codes d’état sont renvoyés dans les données. Error: (05/12/2017 03:48:17 AM) (Source: usbperf) (EventID: 2001) (User: ) Description: Impossible de lire la valeur « First Counter » sous la clé usbperf\Performance. Les codes d’état sont renvoyés dans les données. Error: (05/12/2017 03:43:38 AM) (Source: Windows Search Service) (EventID: 10021) (User: ) Description: Impossible d’obtenir les informations de registre des compteurs de performances pour WSearchIdxPi pour l’instance en raison de l’erreur suivante : L’opération a réussi. 0x0. Error: (05/12/2017 03:43:33 AM) (Source: Windows Search Service) (EventID: 3007) (User: ) Description: Impossible d’initialiser le contrôle des performances pour l’objet rassembleur. Les compteurs ne sont pas chargés ou l’objet mémoire partagée ne peut pas être ouvert. Cela affecte seulement la disponibilité des compteurs. Redémarrez l’ordinateur. Contexte : Application , Catalogue SystemIndex Error: (05/12/2017 03:43:33 AM) (Source: Windows Search Service) (EventID: 3006) (User: ) Description: Impossible d’initialiser le contrôle des performances pour le service rassembleur, car les compteurs ne sont pas chargés ou l’objet mémoire partagée ne peut pas être ouvert. Cela affecte seulement la disponibilité des compteurs de performances. Redémarrez l’ordinateur. Error: (05/12/2017 03:43:19 AM) (Source: unbound) (EventID: 4) (User: ) Description: [C:\Program Files (x86)\Unbound\unbound.exe:0] fatal error: failed to setup modules Erreurs système: ============= Error: (05/13/2017 02:12:54 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 40. Error: (05/13/2017 02:12:33 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 70. Error: (05/13/2017 02:10:13 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 40. Error: (05/13/2017 02:09:51 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 70. Error: (05/13/2017 02:06:41 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA LocalSystem Container s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service. Error: (05/13/2017 02:06:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service NVIDIA Display Container LS s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service. Error: (05/13/2017 01:55:59 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 112. Error: (05/13/2017 01:12:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 112. Error: (05/13/2017 12:30:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 112. Error: (05/13/2017 11:46:48 AM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 112. CodeIntegrity: =================================== Date: 2017-02-15 22:42:52.037 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume4\ComboFix\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-02-15 22:42:51.990 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume4\ComboFix\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz Pourcentage de mémoire utilisée: 18% Mémoire physique - RAM - totale: 16261.52 MB Mémoire physique - RAM - disponible: 13256.4 MB Mémoire virtuelle totale: 32521.23 MB Mémoire virtuelle disponible: 29019.98 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:1117.47 GB) (Free:527.22 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (Data) (Fixed) (Total:1645.4 GB) (Free:1606.67 GB) NTFS Drive e: (SWAP) (Fixed) (Total:10 GB) (Free:9.99 GB) FAT32 Drive g: (ANTHO 32 GB) (Removable) (Total:29.8 GB) (Free:1.67 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 2794.5 GB) (Disk ID: E959C3CF) Partition: GPT. ======================================================== Disk: 1 (Size: 29.8 GB) (Disk ID: 6134C20E) Partition 1: (Not Active) - (Size=29.8 GB) - (Type=0C) ==================== Fin de Addition.txt ============================