Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 10.10.2018
Exécuté par samyd (11-10-2018 13:28:25)
Exécuté depuis E:\
Windows 10 Home Version 1803 17134.345 (X64) (2018-05-24 07:11:54)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3678928768-3751955489-2917896062-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3678928768-3751955489-2917896062-503 - Limited - Disabled)
Invité (S-1-5-21-3678928768-3751955489-2917896062-501 - Limited - Disabled)
samyd (S-1-5-21-3678928768-3751955489-2917896062-1001 - Administrator - Enabled) => C:\Users\samyd
WDAGUtilityAccount (S-1-5-21-3678928768-3751955489-2917896062-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}
FW: Bitdefender Pare-feu (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.008.20074 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_1_1) (Version: 15.1.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.7.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_4) (Version: 19.1.4 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_1_1) (Version: 12.1.1 - Adobe Systems Incorporated)
Advanced Archive Password Recovery (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\Advanced Archive Password Recovery) (Version: 4.53 - ElcomSoft Co. Ltd.)
AOMEI Partition Assistant Standard Edition 5.8 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version:  - AOMEI Technology Co., Ltd.)
Bandicam (HKLM-x32\...\Bandicam) (Version: 4.1.4.1413 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandicam.com)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 20.0.20.1143 - Bitdefender)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender)
BitTorrent (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\BitTorrent) (Version: 7.10.4.44521 - BitTorrent Inc.)
Chrome Remote Desktop Host (HKLM-x32\...\{67971EAD-F5D1-45A6-B281-A09D3193DB3F}) (Version: 69.0.3497.7 - Google Inc.)
CPUID HWMonitor 1.36 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.36 - CPUID, Inc.)
CyberGhost 6 (HKLM\...\CyberGhost 6_is1) (Version:  - CyberGhost S.R.L.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0192 - Disc Soft Ltd)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 416.16 - NVIDIA Corporation) Hidden
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.1.0 - IObit)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
FileViewPro (HKLM\...\FileViewPro_is1) (Version: 1.1.0.0 - Solvusoft Corporation)
Fraps (HKLM-x32\...\Fraps) (Version:  - )
Freemake Video Converter version 4.1.10 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10 - Ellora Assets Corporation)
Futuremark SystemInfo (HKLM-x32\...\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}) (Version: 4.15.0 - Futuremark Corporation)
Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Helium (HKLM-x32\...\{9A781940-AC41-4D5E-8E1E-76A04B916FB9}) (Version: 1.0.0 - ClockworkMod)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version:  - Logitech, Inc.)
MediaCoder x64 0.8.48.5882 (HKLM\...\MediaCoder x64) (Version: 0.8.48.5882 - Mediatronic)
MediaInfo 0.7.91 (HKLM\...\MediaInfo) (Version: 0.7.91 - MediaArea.net)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft OneDrive Entreprise 2013 - fr-fr (HKLM\...\GrooveRetail - fr-fr) (Version: 15.0.5041.1001 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{21a92a8d-968e-4b78-9af4-329f60d97ed7}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mises à jour NVIDIA 33.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 33.2.0.0 - NVIDIA Corporation) Hidden
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 62.0.3 (x64 fr) (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\Mozilla Firefox 62.0.3 (x64 fr)) (Version: 62.0.3 - Mozilla)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MSI Afterburner 4.5.0 (HKLM-x32\...\Afterburner) (Version: 4.5.0 - MSI Co., LTD)
NetLimiter 4 (HKLM\...\{B07F35DF-26BB-4009-8B49-B97AFB77B632}) (Version: 4.0.19.0 - Locktime Software) Hidden
NetLimiter 4 (HKLM-x32\...\NetLimiter 4 4.0.19.0) (Version: 4.0.19.0 - Locktime Software)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.61.23 - Black Tree Gaming)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.11 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.15.0.164 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.15.0.164 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 416.16 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.37.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.37.5 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Pilote graphique 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 416.16 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5041.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-008F-0000-1000-0000000FF1CE}) (Version: 15.0.5041.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-040C-0000-0000000FF1CE}) (Version: 15.0.5041.1001 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 416.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 416.16 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8264 - Realtek Semiconductor Corp.)
Restore Point Creator version 7.1 (HKLM\...\{CC48DE1C-8EC2-43BC-9201-29701CD9AE13}_is1) (Version: 7.1 - )
RivaTuner Statistics Server 7.1.0 (HKLM-x32\...\RTSS) (Version: 7.1.0 - Unwinder)
RomStation (HKLM-x32\...\{223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1) (Version:  - RomStation)
Spotify (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\Spotify) (Version: 1.0.90.268.ga8a0ceb4 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Unigine Valley Benchmark version 1.0 (HKLM-x32\...\Unigine Valley Benchmark_is1) (Version: 1.0 - Unigine Corp.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WavePad - Éditeur audio (HKLM-x32\...\WavePad) (Version: 8.08 - NCH Software)
WinDirStat 1.1.2 (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\WinDirStat) (Version:  - )
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinToUSB version 3.1 (HKLM\...\WinToUSB_is1) (Version: 3.1 - The EasyUEFI Development Team.)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
WPS Office (10.2.0.6020) (HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\Kingsoft Office) (Version: 10.2.0.6020 - Kingsoft Corp.)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3678928768-3751955489-2917896062-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-EF119B25FB41}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3678928768-3751955489-2917896062-1001_Classes\CLSID\{70239788-4DAE-49B8-9270-5D8614384B49}\InprocServer32 -> C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll (Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-3678928768-3751955489-2917896062-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll -> Pas de fichier
ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\WINDOWS\SysWoW64\WSCM64.dll -> Pas de fichier
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-10-02] (NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] ()
ContextMenuHandlers1_S-1-5-21-3678928768-3751955489-2917896062-1001: [kpdf2wordshellext] -> {70239788-4DAE-49B8-9270-5D8614384B49} => C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\addons\kpdf2wordshellext\kpdf2wordshellext64.dll [2018-04-17] (Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {0138F800-8BFE-4453-B45F-4FA8640BF09B} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {082B0830-A1E0-4CD7-9046-C957C25C0B97} - \KMSAutoNet -> Pas de fichier <==== ATTENTION
Task: {0DCAAEDE-DC71-416D-A693-40733AA6E066} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {110406B7-456A-4D11-AA6C-7052747D83A5} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)
Task: {167CDC78-C7DA-49F5-AB11-EA08AFB40165} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-09-12] (NVIDIA Corporation)
Task: {26BD5B1C-726F-4DF4-B951-020FE4CB6AD3} - System32\Tasks\WpsUpdateTask_samyd => C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\wtoolex\wpsupdate.exe [2018-04-17] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {2DA1C868-F6BD-435E-939A-CF1E69B6924C} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {38E0C84D-6262-46A6-A9A6-FDCA7FA44C04} - System32\Tasks\AutoPico Daily Restart => C:\Program Files\KMSpico\AutoPico.exe
Task: {40E167B2-0C7A-46A7-8779-BE9465912BA7} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-samy.decort@gmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2018-04-11] (Adobe Systems Incorporated)
Task: {422286AA-CAEB-4C55-9857-90DB9D8A1EE1} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-09-12] (NVIDIA Corporation)
Task: {505A3E10-95F0-4705-AB16-07348C4A40E4} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {54B2C2B3-02E6-4AE6-B5B8-95EC927A00A2} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {57D015C9-E579-4794-9629-D9E48CDE2EA7} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (For User samyd) => C:\Program Files (x86)\Restore Point Creator\Restore Point Creator.exe [2018-07-24] ()
Task: {59B774B9-8E89-4FCC-851A-A7CAB96009D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-06] (Google Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {71E73A30-88C7-47A1-80D8-BF83487583B7} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-09-12] (NVIDIA Corporation)
Task: {8C9E8167-117C-45F9-ADE6-A3429BBC5CDB} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Keep X Number of Restore Points) (For User samyd) => C:\Program Files (x86)\Restore Point Creator\Restore Point Creator.exe [2018-07-24] ()
Task: {8F8B5B14-B55F-45B2-A22D-B2D95436F64C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {96196A69-C947-4B48-BD12-FF6CC1CA79C6} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {A15F8384-16AB-4ACF-BF6A-78EF46EB950C} - System32\Tasks\WpsExternal_samyd_20180417091137 => C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\ksolaunch.exe [2018-04-17] (Zhuhai Kingsoft Office Software Co.,Ltd)
Task: {A9DE7788-DD8A-45B0-A2DC-A40B7E531D33} - System32\Tasks\bvyvbvyf => C:\Users\samyd\AppData\Local\bvyvbvyf\bvyvbvyf.exe <==== ATTENTION
Task: {B937301B-A740-4839-A1F2-48B1EEC3C99E} - \Microsoft\Windows\UNP\RunCampaignManager -> Pas de fichier <==== ATTENTION
Task: {BADC3133-2B0F-4F70-B517-14CCBA1ED0A9} - System32\Tasks\Bitdefender AgentTask_AD394AE64E874073B10A89FEEC305A3C => C:\Program Files\Bitdefender\Bitdefender 2017\bdagent.exe [2018-09-23] (Bitdefender)
Task: {D0673A66-F3A9-41E6-81E2-D07ECEEB223E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)
Task: {DE5A19B5-16B8-4E65-9BEF-E601EB98B6FF} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-09-12] (NVIDIA Corporation)
Task: {E5255803-757F-4B03-827D-E6901427E295} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)
Task: {EA138532-29CD-4710-A5ED-DAF99D95D18D} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-07-31] (Bitdefender)
Task: {EC202331-4AA6-442E-A853-F662DFC158EB} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-09-12] (NVIDIA Corporation)
Task: {ED29E96F-7AFD-4DA3-996A-095CF7F71D07} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Create Custom Restore Point) (For User samyd) => C:\Program Files (x86)\Restore Point Creator\Restore Point Creator.exe [2018-07-24] ()
Task: {ED52EA17-4367-4E8C-92D7-743FA3F2AA38} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-11-06] (Google Inc.)
Task: {EDFC14A0-E60F-44E4-9593-9DBF34266A6A} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-samy.decort@gmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {EF9B43F1-395F-4E15-9227-9A37AB4A2AC0} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Create Restore Point) (For User samyd) => C:\Program Files (x86)\Restore Point Creator\Restore Point Creator.exe [2018-07-24] ()
Task: {F05A364E-95E9-4AE6-87D2-0DE51370B968} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\Scheduler.exe [2017-10-24] (IObit)
Task: {F27A3AC2-7F91-40BB-9F7B-77826651B48E} - System32\Tasks\Driver Booster SkipUAC (samyd) => C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe [2017-11-16] (IObit)
Task: {F2DB4A24-4627-455F-87A7-3BC7A531F055} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-09-12] (NVIDIA Corporation)
Task: {FAA5CE09-C1A4-4B88-88D2-0E21871CD1A4} - System32\Tasks\Restore Point Creator\Restore Point Creator -- Run with no UAC (Delete old Restore Points) (For User samyd) => C:\Program Files (x86)\Restore Point Creator\Restore Point Creator.exe [2018-07-24] ()
Task: {FC25AE16-DC0D-4787-B083-DC7CADAEAEE8} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe [2018-04-23] ()
Task: {FD641A02-156D-47FC-876F-4D3FD70E3E1B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-12-12] (Microsoft Corporation)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


ShortcutWithArgument: C:\Users\samyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\File System for OneDrive.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=jbfdfcehgafdbfpniaimfbfomafoadgo
ShortcutWithArgument: C:\Users\samyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Torrent Stream.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=icocmgpofpimcojhefbcfbdldkmndpgj
ShortcutWithArgument: C:\Users\samyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Video Player.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=gdebnehfojpoccpaocfbelbclfnpbmij
ShortcutWithArgument: C:\Users\samyd\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Web Player for Spotify™.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) ->  --profile-directory=Default --app-id=fpcglidohpgnccfckgbgnflcbdmlcibj

==================== Modules chargés (Avec liste blanche) ==============

2018-09-25 09:13 - 2018-09-25 09:13 - 000994752 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02851_004\ashttpbr.mdl
2018-09-25 09:13 - 2018-09-25 09:13 - 000544880 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02851_004\ashttpdsp.mdl
2018-09-25 09:13 - 2018-09-25 09:13 - 003240080 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02851_004\ashttpph.mdl
2018-09-25 09:13 - 2018-09-25 09:13 - 001530368 _____ () C:\Program Files\Bitdefender\Bitdefender 2017\otengines_02851_004\ashttprbl.mdl
2018-03-21 16:40 - 2017-01-17 04:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2018-05-28 10:30 - 2018-09-12 13:45 - 001315024 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-23 17:16 - 2018-04-23 17:16 - 000739624 _____ () C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2018-03-05 20:47 - 2018-03-05 20:47 - 000614848 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-05-28 10:30 - 2018-09-12 13:45 - 101252304 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libcef.dll
2018-05-28 10:30 - 2018-09-12 13:45 - 004619984 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libglesv2.dll
2018-05-28 10:30 - 2018-09-12 13:45 - 000108752 _____ () C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\libegl.dll
2018-10-10 08:25 - 2018-09-20 05:38 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-08 12:36 - 2018-07-08 12:36 - 000020992 _____ () C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_2.5.4.0_x64__rcb0qdgx4z9ca\EasyMailReLaunch.exe
2018-07-08 12:36 - 2018-07-08 12:36 - 026521088 _____ () C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_2.5.4.0_x64__rcb0qdgx4z9ca\EasyMailReLaunch.dll
2018-01-08 19:42 - 2018-01-08 19:42 - 000948736 _____ () C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_2.5.4.0_x64__rcb0qdgx4z9ca\e_sqlite3.dll
2018-10-05 22:28 - 2018-10-05 22:28 - 000836096 _____ () C:\Program Files\WindowsApps\Microsoft.Services.Store.Engagement_10.0.18092.0_x64__8wekyb3d8bbwe\Microsoft.Services.Store.Engagement.dll
2018-08-05 21:18 - 2018-08-05 21:18 - 005670688 _____ () C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1807.9.0_x64__8wekyb3d8bbwe\Microsoft.Advertising.dll
2018-01-08 19:42 - 2018-01-08 19:42 - 001877928 _____ () C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_2.5.4.0_x64__rcb0qdgx4z9ca\winsdkfb.dll
2018-07-05 08:31 - 2018-07-05 08:31 - 000031696 _____ () C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGmail_2.5.4.0_x64__rcb0qdgx4z9ca\WatsonRegistrationUtility.dll
2018-10-05 22:28 - 2018-10-05 22:28 - 032535040 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\Music.UI.exe
2018-10-05 22:28 - 2018-10-05 22:28 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-04 12:36 - 2017-12-04 13:06 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2017-09-26 13:50 - 2017-09-26 13:50 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-10-05 22:28 - 2018-10-05 22:28 - 005951488 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-10-05 22:28 - 2018-10-05 22:28 - 009073152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\EntPlat.dll
2017-06-01 14:35 - 2017-06-01 14:35 - 000117920 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.18091.10321.0_x64__8wekyb3d8bbwe\GNSDK_FP.DLL
2018-09-12 23:00 - 2018-09-12 23:00 - 035124736 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-09-12 23:00 - 2018-09-12 23:00 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-09-12 23:00 - 2018-09-12 23:00 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2017-09-26 13:50 - 2017-09-26 13:50 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-12 23:00 - 2018-09-12 23:00 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18082.10311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2018-09-19 21:34 - 2018-09-15 10:26 - 005110616 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libglesv2.dll
2018-09-19 21:34 - 2018-09-15 10:26 - 000116056 _____ () C:\Program Files (x86)\Google\Chrome\Application\69.0.3497.100\libegl.dll
2017-02-26 16:02 - 2017-07-25 09:37 - 000080896 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2018-09-12 15:53 - 2018-09-12 15:53 - 037821384 _____ () C:\Program Files (x86)\Adobe\Adobe Sync\Coresync\Coresync.exe
2018-04-23 17:13 - 2018-04-23 17:13 - 000072704 _____ () C:\Program Files (x86)\MSI Afterburner\RTMUI.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000057344 _____ () C:\Program Files (x86)\MSI Afterburner\RTFC.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000232448 _____ () C:\Program Files (x86)\MSI Afterburner\RTCore.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000357888 _____ () C:\Program Files (x86)\MSI Afterburner\RTUI.dll
2018-04-23 17:13 - 2018-04-23 17:13 - 000567808 _____ () C:\Program Files (x86)\MSI Afterburner\RTHAL.dll
2017-02-25 14:08 - 2018-09-12 13:45 - 001032912 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-05-02 15:03 - 2016-10-08 16:48 - 001506304 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2018-05-02 15:03 - 2016-07-21 10:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2018-07-31 10:57 - 2018-07-31 10:57 - 081764304 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2018-07-31 10:57 - 2018-07-31 10:57 - 002257360 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\swiftshader\libglesv2.dll
2018-07-31 10:57 - 2018-07-31 10:57 - 000110552 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\swiftshader\libegl.dll
2018-09-24 19:24 - 2018-09-24 19:24 - 000142888 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\fs-ext\build\Release\fs-ext.node
2018-09-24 19:24 - 2018-09-24 19:24 - 000278056 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2018-09-24 19:24 - 2018-09-24 19:24 - 000142888 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\ref\build\Release\binding.node
2018-09-24 19:24 - 2018-09-24 19:24 - 000152616 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\ffi\build\Release\ffi_bindings.node
2018-09-24 19:24 - 2018-09-24 19:24 - 000097320 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2018-09-24 19:24 - 2018-09-24 19:24 - 000110120 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\js\node_modules\idle-gc\build\Release\idle-gc.node
2018-08-02 23:04 - 2018-08-02 23:04 - 000142360 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\fs-ext\build\Release\fs-ext.node
2018-08-02 23:04 - 2018-08-02 23:04 - 000142360 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\ref\build\Release\binding.node
2018-08-02 23:04 - 2018-08-02 23:04 - 000150552 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\ffi\build\Release\ffi_bindings.node
2018-08-02 23:04 - 2018-08-02 23:04 - 000271896 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2018-08-02 23:04 - 2018-08-02 23:04 - 000097816 _____ () C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2018-08-02 23:04 - 2018-08-02 23:04 - 000122392 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\bufferutil\build\Release\bufferutil.node
2018-08-02 23:04 - 2018-08-02 23:04 - 000110104 _____ () \\?\C:\Program Files (x86)\Common Files\Adobe\Creative Cloud Libraries\js\node_modules\idle-gc\build\Release\idle-gc.node
2018-04-17 09:11 - 2018-04-17 09:11 - 000062592 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\krpt.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 009108096 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\QtCore4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000198784 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\wpscloudsvrimp.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000895616 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\QtNetwork4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000274560 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\curls.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 011409536 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\QtWebKit4.DLL
2018-04-17 09:11 - 2018-04-17 09:11 - 000246400 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\phonon4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000187520 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\addons\kpluginrunner\kpluginrunner.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000052352 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\rubyenv.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 002252416 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\ruby.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 000249984 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\qtruby4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000030336 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\smokebase.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 003613312 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\smokeqtcore.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 001013888 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\smokekso.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 000045184 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\win32api.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 000080512 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\win32ole.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 000027264 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\qtwebkitruby.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 000275072 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\smokeqtwebkit.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 001047168 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\QtScript4.dll
2018-04-18 09:05 - 2018-04-18 09:05 - 000028800 _____ () C:\Users\samyd\AppData\Roaming\Kingsoft\wps\addons\pool\win-i386\ruby_1.0.201803.0\strscan.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000035968 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\qt\plugins\imageformats\qgif4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000037504 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\qt\plugins\imageformats\qico4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000173184 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\qt\plugins\imageformats\qjpeg4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000273024 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\qt\plugins\imageformats\qtiff4.dll
2018-04-17 09:11 - 2018-04-17 09:11 - 000134272 _____ () C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\qt\plugins\imageformats\qwdp4.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\samyd\Desktop\GPU-Z.exe:AGC [0]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)


==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-10-30 09:24 - 2018-10-11 13:27 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\Control Panel\Desktop\\Wallpaper -> E:\frank-zane-conquer 2.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\StartupApproved\Run: => "BlueStacks Agent"
HKU\S-1-5-21-3678928768-3751955489-2917896062-1001\...\StartupApproved\Run: => "NetLimiter"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{A7F600E3-C0B2-4F6A-A944-CE6E2CA19C09}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\x64\Talos_Unrestricted.exe
FirewallRules: [{0B5DCACE-31B7-43CB-BCB9-121CB9CAAF9F}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\x64\Talos_Unrestricted.exe
FirewallRules: [{627F1F05-08BD-4B10-AA6D-AD49F07FCEB7}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\x64\Talos.exe
FirewallRules: [{48F2C496-85E0-4799-89B1-AEBC244936FF}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\x64\Talos.exe
FirewallRules: [{85F152BC-3B33-4FB1-9811-2A1B8B47BFD5}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{2BC3A639-12F1-4049-9016-E4497258E76F}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\Talos_Unrestricted.exe
FirewallRules: [{C2DB05AC-8194-4FE0-A6D3-767D3AB55526}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{A2EFCFFA-B44F-45C3-A747-BFE352FDDCCA}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Talos Principle\Bin\Talos.exe
FirewallRules: [{6A80449B-94B4-4379-A94F-E6D55717BAF9}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans for Android\AnyTrans for Android.exe
FirewallRules: [{385B9E8B-9B8B-497A-A784-59A786C660A3}] => (Allow) C:\Program Files (x86)\iMobie\AnyTrans for Android\AnyTrans for Android.exe
FirewallRules: [{B8BB590D-C9F8-4EE7-895B-E2F396C89133}] => (Allow) LPort=9098
FirewallRules: [{1A18E996-5313-42C8-9236-C4DA7DB93766}] => (Allow) LPort=9098
FirewallRules: [{7C7D7F07-6264-4E8C-B2EF-AA772574B28E}] => (Allow) C:\Users\samyd\AppData\Local\Kingsoft\WPS Office\10.2.0.6020\office6\wpscloudsvr.exe
FirewallRules: [{2AFA2BA3-2ACC-4D05-91AA-A1BFCE1276DB}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{C598B868-E230-457D-9010-CABDB11C4411}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{190086C7-8DF5-4A07-B680-B04F18F12497}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\AutoUpdate.exe
FirewallRules: [{9796F56B-FD00-45AD-AE9D-16C3BCA33FFA}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\AutoUpdate.exe
FirewallRules: [{BCF71436-1086-4C48-B393-F3DF65202B0E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DBDownloader.exe
FirewallRules: [{1E30376D-B899-432C-9DD7-1577FC81B31E}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DBDownloader.exe
FirewallRules: [{5C980989-040A-4BBB-BAFB-40484E3C6524}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
FirewallRules: [{A054C658-EFE3-47D9-BF6B-ED0AC0FA51A8}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.1.0\DriverBooster.exe
FirewallRules: [{7CC49605-755B-47A3-8F5A-D7012B09EF36}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{7165C4C1-9FB1-4773-AC4E-5A0CDCDC7E7D}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe
FirewallRules: [{E825E848-7605-4E57-B3DA-984476EAFB72}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{17ADFDAD-1C12-4CAE-89C8-1D439F224A41}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{F1021C8F-2965-4AED-8C75-54D39D366418}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{784E0488-7E4F-42F3-BBC8-93E3CC8CD771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{286E436A-B2A4-4C7D-9EFF-51BED8AB7DFB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A534E641-6F32-4E5F-B856-584556B8312D}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{89A126CF-1008-4512-B709-81F4D0D6C1DD}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Portal 2\portal2.exe
FirewallRules: [{43F90EC0-50C1-41E9-9523-173BA731B875}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{72B4302C-B2EA-4F93-84F6-D771A850B1AB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{110A7DFB-71EC-4CBE-923F-685D83DCBA24}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{67E76F19-46BD-43C8-A771-3D97A8DC4B0B}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\The Stanley Parable\stanley.exe
FirewallRules: [{1A86425A-4DE9-4443-BB47-7C49CDCB92BC}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{7E0AE8A0-0100-4632-81DE-2A33F88939D3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{0962F023-DEE3-445C-A661-134FDF82B6C7}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{80D720A6-DA6B-430F-A7AA-5BCC0F6FC669}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe
FirewallRules: [{9B894E95-263D-4FC1-8FE2-E18DE18E1E1D}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe
FirewallRules: [{BDA9AB4D-DF5D-40B7-96BD-E930FE4D77C6}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe
FirewallRules: [{26D34657-8567-4A49-8AAF-014D37DF314F}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe
FirewallRules: [{EEB4C679-8B41-4303-8F3B-078DAD51A9CB}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe
FirewallRules: [{D92A0DBB-468B-49AB-8C55-837E93F83692}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
FirewallRules: [{3755E95E-C305-4336-ADA9-3122C8908E69}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe
FirewallRules: [{452DAFF2-E5B5-4A41-B7FC-1CDDF09C874D}] => (Allow) C:\Users\samyd\Desktop\Steam.exe
FirewallRules: [{E9F9B99F-980C-47DC-B051-98DB2CBD9F12}] => (Allow) C:\Users\samyd\Desktop\Steam.exe
FirewallRules: [{CBC99B32-F1B9-486D-B0F9-32A5E8BB4822}] => (Allow) C:\Users\samyd\Desktop\bin\steamwebhelper.exe
FirewallRules: [{E8B3E099-C4A6-48B2-AE82-CA236B2E548B}] => (Allow) C:\Users\samyd\Desktop\bin\steamwebhelper.exe
FirewallRules: [{0AEFB076-0F21-461D-844A-E071F298780D}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{330BCFD6-AF66-4E3D-8BA1-48EC9A6A03E9}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{D3F8BFF2-0486-4977-A2CD-0450EF8E894F}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{106FBA90-6898-44C1-9BE3-CB132D8A98EE}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{24AB1863-A766-4306-A86E-50E1968983E8}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{38201800-36D4-4CBB-BE51-C2E3A76D2DCE}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1D3DF91F-1B06-4297-ABF6-3426138E23D7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{6DC865BD-1224-45F0-87BF-2267F8D7A7D2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{C29374B6-D4BE-42D5-B1C5-3C79FFFC10CD}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0C9A7CAA-8FCC-4351-B9D2-13FE5D10398E}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{DF62DA39-3A2F-4FAE-A3B0-37823EFFDFE9}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe
FirewallRules: [{4EA3D3DB-B097-4728-BDCB-316EE46A024F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Elite Dangerous\EDLaunch.exe
FirewallRules: [{669811CF-959D-4855-96DB-169340BF68E1}] => (Allow) D:\Program Files (x86)\Driver Booster\DriverBooster.exe
FirewallRules: [{428B0EB6-7160-47F0-B210-540FFC85A2E7}] => (Allow) D:\Program Files (x86)\Driver Booster\DriverBooster.exe
FirewallRules: [{B8C2125E-810B-42E5-8C2B-8BE093476F57}] => (Allow) D:\Program Files (x86)\Driver Booster\DBDownloader.exe
FirewallRules: [{C09FD244-8D37-45A7-86F8-1DD7AAC5D187}] => (Allow) D:\Program Files (x86)\Driver Booster\DBDownloader.exe
FirewallRules: [{3691192D-ED5F-4DA8-AF47-B7796F7E0962}] => (Allow) D:\Program Files (x86)\Driver Booster\AutoUpdate.exe
FirewallRules: [{03A49ABF-F91E-4A1F-83AD-530E87DC5ED2}] => (Allow) D:\Program Files (x86)\Driver Booster\AutoUpdate.exe
FirewallRules: [{7AEED1A8-E94A-4BD1-A760-60DF27A9BBDD}] => (Allow) D:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe
FirewallRules: [{DB8B07D7-A258-470F-BB2F-40E84E8D2305}] => (Allow) D:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{54EDEF88-63C5-4BA6-979E-C4B1657610F3}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{12DB364F-F07A-4BBE-9A8D-529441949D36}] => (Allow) LPort=2869
FirewallRules: [{745CA800-EC59-4D26-88E6-0C92BD58FB28}] => (Allow) LPort=1900
FirewallRules: [{297F461D-5124-4BBF-A547-1A6A668144AC}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{5CB7974B-9916-47CE-A5BC-706CD3CA4332}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{FBAAD6C4-35A3-444D-A9A2-A94620FDCC36}] => (Allow) C:\ProgramData\BlueStacksGameManager\OBS\HD-OBS.exe
FirewallRules: [{8A5FF873-35A3-4A7B-9DD3-252F7C41630B}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{AA6010B7-D00B-4B8F-AD82-93E598C5386F}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{65688602-2271-4572-9B56-5C7223EF37CC}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{483CE06B-B86D-4457-8898-02F00487F5C3}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{EEAA96EB-E3F2-4746-9324-889474B059E7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{963C432D-A068-46A4-A316-146D46999DCB}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe
FirewallRules: [{49D5785D-7148-4E07-9ACB-FB0FA200C433}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Always Sometimes Monsters\Game.exe
FirewallRules: [{54361CE2-2C9E-4CBC-A402-1ECE366322FF}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Always Sometimes Monsters\Game.exe
FirewallRules: [TCP Query User{EB1D0FBE-7085-4597-9092-5D4AC7D020E4}C:\users\samyd\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\samyd\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{61596BBF-C324-438F-9B33-FB8C7C6F7CFD}C:\users\samyd\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\samyd\appdata\roaming\spotify\spotify.exe
FirewallRules: [{5B56E65F-6A83-4B26-BB7E-4019849BD216}] => (Allow) LPort=1688
FirewallRules: [{6CB8B6AB-99F4-4FCA-A35F-EC63A8DF3609}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\CostumeQuest2\CostumeQuest2.exe
FirewallRules: [{7309ADB9-63D8-4BB1-AFC2-2883A9E8A1DE}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\CostumeQuest2\CostumeQuest2.exe
FirewallRules: [{7F4A1162-4A38-44E3-BD9C-E74818BA8111}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\CostumeQuest2\CostumeQuest2_DX9.exe
FirewallRules: [{79128E91-0423-4CC0-B25E-31DE4BF8E61E}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\CostumeQuest2\CostumeQuest2_DX9.exe
FirewallRules: [{D5E0DABE-2568-4FA4-8540-092D82875FF6}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{68539050-54A6-4CD7-B868-10EA8A4FC769}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win32\UDK.exe
FirewallRules: [{26D47116-E5C2-4209-BED4-DAF34358EE21}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{19322231-5945-465D-A347-863B02D3B093}] => (Allow) E:\Program Files (x86)\Steam\steamapps\common\Viscera Cleanup Detail Shadow Warrior\Binaries\Win64\UDK.exe
FirewallRules: [{608BD7F0-AB6B-4BB7-AF26-F15D46C10D5E}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{DDBA9102-875C-4C41-9F9B-505BED075EAA}] => (Allow) C:\Users\samyd\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{8B24C09A-F537-489B-9E5A-DA55FC0A9761}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{53AA7E36-CB94-44E4-BE02-3262D57AC21F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{9C4964BB-939F-442E-BC7D-66888C511E7A}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\69.0.3497.7\remoting_host.exe
FirewallRules: [{A04C3968-BBF2-41CE-8006-3CC44BEEEAA6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{CDED593C-6163-46CF-B6D6-2462EE427244}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{D3813B23-4535-4532-B1C8-825937D6A353}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B690BC50-C4D0-40E1-A018-CFA3BEC2F4F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{BBE3358D-0A68-4CEC-9912-0F870293BF66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Points de restauration =========================

10-10-2018 08:24:54 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (10/11/2018 01:03:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Microsoft.Photos.exe version 2018.18081.14710.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 364c

Heure de début : 01d4612d02abbfc7

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

ID de rapport : fb5080e7-4f84-4a53-9a37-e6318fc5e0bf

Nom complet du package défaillant : Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : App

Error: (10/08/2018 03:09:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SystemSettings.exe, version : 10.0.17134.112, horodatage : 0x2a3c4e62
Nom du module défaillant : ntdll.dll, version : 10.0.17134.254, horodatage : 0xa5a334d4
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000918c4
ID du processus défaillant : 0x3aa8
Heure de début de l’application défaillante : 0x01d45f05d4f2136c
Chemin d’accès de l’application défaillante : C:\Windows\ImmersiveControlPanel\SystemSettings.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : a5f543b0-ca7c-4fe6-93f6-9a02bdeda888
Nom complet du package défaillant : windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy
ID de l’application relative au package défaillant : microsoft.windows.immersivecontrolpanel

Error: (10/08/2018 02:45:48 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: BLACKSAM)
Description: Impossible de fermer l’application ou le service « Explorateur Windows ».

Error: (10/08/2018 02:43:06 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.


Opération :
   Opération asynchrone en cours d’exécution

Contexte :
   État actuel: DoSnapshotSet

Error: (10/08/2018 02:39:25 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.


Opération :
   Opération asynchrone en cours d’exécution

Contexte :
   État actuel: DoSnapshotSet

Error: (10/07/2018 09:16:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme windirstat.exe version 1.1.2.80 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 3b2c

Heure de début : 01d45e6ae62b3e2d

Heure de fin : 11

Chemin d'accès de l'application : C:\Program Files (x86)\WinDirStat\windirstat.exe

ID de rapport : 20309272-7f0f-456d-a91d-49a855b357a6

Nom complet du package défaillant : 

ID de l'application relative au package défaillant :

Error: (10/07/2018 03:29:03 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: BLACKSAM)
Description: httphttp-2147467263

Error: (10/05/2018 09:31:52 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_WpnUserService, version : 10.0.17134.1, horodatage : 0xa38b9ab2
Nom du module défaillant : NotificationController.dll, version : 10.0.17134.165, horodatage : 0xe0385185
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000007a24d
ID du processus défaillant : 0x1230
Heure de début de l’application défaillante : 0x01d45bb0ba22eabf
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\svchost.exe
Chemin d’accès du module défaillant: C:\Windows\System32\NotificationController.dll
ID de rapport : 8f71fc60-08f9-4d29-9f08-53616e7d2715
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (10/10/2018 09:14:44 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Exécution pour l’application serveur COM avec le CLSID 
Windows.SecurityCenter.WscBrokerManager
 et l’APPID 
Non disponible
 au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/10/2018 09:12:45 PM) (Source: DCOM) (EventID: 10016) (User: BLACKSAM)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 et l’APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 au SID BLACKSAM\samyd de l’utilisateur (S-1-5-21-3678928768-3751955489-2917896062-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/10/2018 09:12:39 PM) (Source: DCOM) (EventID: 10016) (User: BLACKSAM)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 et l’APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 au SID BLACKSAM\samyd de l’utilisateur (S-1-5-21-3678928768-3751955489-2917896062-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (10/10/2018 09:12:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Update service n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (10/10/2018 09:09:23 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Update Orchestrator Service s’est arrêté avec l’erreur : 
Cette opération s’est terminée car le délai d’attente a expiré.

Error: (10/10/2018 09:09:08 PM) (Source: DCOM) (EventID: 10010) (User: BLACKSAM)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/10/2018 09:09:07 PM) (Source: DCOM) (EventID: 10010) (User: BLACKSAM)
Description: Le serveur {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/10/2018 09:09:07 PM) (Source: DCOM) (EventID: 10010) (User: BLACKSAM)
Description: Le serveur {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


CodeIntegrity:
===================================

Date: 2018-10-10 21:12:04.616
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-09 07:38:38.443
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-08 10:43:34.701
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-07 19:29:43.867
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-06 16:39:18.135
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-10-02 22:03:05.376
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-24 08:17:54.448
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2018-09-23 02:26:48.902
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\vsservp.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bitdefender\Bitdefender 2017\dbghelp.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Pourcentage de mémoire utilisée: 71%
Mémoire physique - RAM - totale: 8120 MB
Mémoire physique - RAM - disponible: 2312.92 MB
Mémoire virtuelle totale: 27576 MB
Mémoire virtuelle disponible: 20461.79 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:111.25 GB) (Free:35.26 GB) NTFS
Drive e: (Master) (Fixed) (Total:2794.52 GB) (Free:319.17 GB) NTFS

\\?\Volume{73f063cc-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{73f063cc-0000-0000-0000-70d61b000000}\ () (Fixed) (Total:0.44 GB) (Free:0.05 GB) NTFS
\\?\Volume{2d9e81eb-46b0-11e6-9eff-d8cb8a5cd2b3}\ () (CDROM) (Total:0 GB) (Free:0 GB) 

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 2794.5 GB) (Disk ID: D0046B19)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 73F063CC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.3 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=449 MB) - (Type=27)

==================== Fin de Addition.txt ============================