Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 03-08-2016 Exécuté par Didier (2019-09-24 18:39:52) Exécuté depuis C:\Users\Didier\Downloads\FRST-OlderVersion Windows 8.1 (Update) (X64) (2014-04-06 16:50:50) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2731385879-58174941-3277747152-500 - Administrator - Disabled) => C:\Users\Administrateur Didier (S-1-5-21-2731385879-58174941-3277747152-1002 - Administrator - Enabled) => C:\Users\Didier Invité (S-1-5-21-2731385879-58174941-3277747152-501 - Limited - Enabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 19.02 alpha (x64) (HKLM\...\7-Zip) (Version: 19.02 alpha - Igor Pavlov) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) ACDSee for PENTAX 2.0 (HKLM-x32\...\{D8320DD6-FE47-41DE-B116-4158B7AE3F37}) (Version: 6.0.24 - ACD Systems Ltd.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.012.20040 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.255 - Adobe) Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.255 - Adobe) Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.) Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.8.142.61628 - Alcor Micro Corp.) Alcor Micro USB Card Reader (x32 Version: 3.8.142.61628 - Alcor Micro Corp.) Hidden Ansel (Version: 372.70 - NVIDIA Corporation) Hidden ANT Drivers 0.1.2.0 (HKLM-x32\...\ANT Drivers_is1) (Version: 0.1.2.1 - ANT Drivers) ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{5A659BE5-849B-484E-A83B-DCB78407F3A4}) (Version: 7.3 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{F8060941-C0AB-4BCE-88AC-F2FDA2E9F286}) (Version: 7.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.) ASUS Instant Connect (HKLM-x32\...\{89ECB85A-D933-4CEA-9116-5CBC9C2ED95B}) (Version: 1.2.8 - ASUS) ASUS Instant Key (HKLM-x32\...\{D97A1B80-131F-4692-9543-E652956D8B99}) (Version: 1.0.5 - ASUS) ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.2 - ASUS) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.5 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.8 - ASUS) ASUS N Series Demo (HKLM-x32\...\{246B4AFF-6540-4B72-93E8-B9EB86D37589}) (Version: 1.0.0002 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.0.4 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.03.0004 - ASUS) ASUS Tutor (HKLM-x32\...\{58172D66-2F69-4215-9AEC-ED8196023736}) (Version: 1.0.7 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.4 - ASUS) ASUS Video Magic (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.4712 - CyberLink Corp.) ASUS Video Magic (x32 Version: 6.0.4712 - CyberLink Corp.) Hidden ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.9.120 - ASUS Cloud Corporation) ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.) ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.15 - Atheros Communications Inc.) Atheros Outlook Addin 2010 (HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\BB108A893815B64BF41C4574C3324FB7371AA244) (Version: 1.0.0.0 - Atheros Outlook Addin 2010) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0022 - ASUS) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Booking (HKLM-x32\...\{13D4CD54-EA09-4FDB-B979-8B2BC0F020CA}_is1) (Version: 2.0.701 - Booking) BRAdmin Professional 3 (HKLM-x32\...\{75C885D4-C758-4896-A3B4-90DA34B44C31}) (Version: 3.70.0003 - Brother) Brother BRAdmin Light 1.12 (HKLM-x32\...\{DB75941E-30C4-4D97-B000-D17C764B998C}) (Version: 1.12 - Brother) Brother Driver Deployment Wizard (HKLM-x32\...\{0ED38503-B69A-44B4-98BE-21BFF284A9B6}) (Version: 1.09.000 - Brother) Brother MFL-Pro Suite MFC-5890CN (HKLM-x32\...\{20E970DF-A7B2-4345-9DEB-72213A29645E}) (Version: 2.0.0.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform) Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.1.0.0 - Citrix Systems, Inc.) Data Lifeguard Diagnostic version 1.36 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation) DivX 5.2.1 (Playback Only) (HKLM-x32\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 5.2.1 - DivXNetworks, Inc.) DriversCloud.com (64 bits) (HKLM\...\{8C7451C7-6D39-4DF6-9441-B4C593AF020C}) (Version: 10.0.10.0 - Cybelsoft) DVDVob2Mpg 2.0 (HKLM-x32\...\DVDVob2Mpg_is1) (Version: 2.0 - Smart Projects) E.M. PowerPoint Video Converter 3.20 (HKLM-x32\...\E.M. PowerPoint Video Converter_is1) (Version: - EffectMatrix, Inc.) EBP Btrieve 8.6 (x32 Version: 1.0 - EBP) Hidden EBP Compta 17.1 (x32 Version: - EBP) Hidden EBP Compta 19.0 (x32 Version: - EBP) Hidden EBP Gestion Commerciale 18.0 (x32 Version: - EBP) Hidden EBP Gestion Commerciale 19.0 (x32 Version: - EBP) Hidden Elevated Installer (x32 Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc) FastStone Capture 5.3 (French) (HKLM-x32\...\FastStone Capture) (Version: 5.3 (French) - FastStone Soft) File Type Advisor 1.7 (HKLM-x32\...\File Type Advisor_is1) (Version: - ) FileZilla Client 3.29.0 (HKLM-x32\...\FileZilla Client) (Version: 3.29.0 - Tim Kosse) Free M4a to MP3 Converter 9.5 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com) Garmin Express (HKLM-x32\...\{bd8bd200-9a60-4969-b267-6b565f36e3da}) (Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Garmin Express (x32 Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (x32 Version: 5.3.1.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 77.0.3865.90 - Google LLC) Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.34.11 - Google LLC) Hidden GPS (HKLM-x32\...\GPS) (Version: - ) GraphCalc v4.0.1 (HKLM-x32\...\GraphCalc v4.0.1_is1) (Version: - ) Intel Driver && Support Assistant (x32 Version: 19.8.34.6 - Intel) Hidden Intel(R) Computing Improvement Program (HKLM\...\{85B6BF0F-EF1B-4F0F-892D-E68BD798950C}) (Version: 2.4.04669 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.0.1428 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.5.0.1066 - Intel Corporation) Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{87709708-b034-4cec-b6ef-0d162873cf83}) (Version: 19.8.34.6 - Intel) iTunes (HKLM\...\{2F044B6B-7F73-4FA3-A65B-27E11919E65C}) (Version: 12.9.3.3 - Apple Inc.) KiCad 4.0.4 (HKLM-x32\...\KiCad) (Version: 4.0.4 - KiCad) Le Cloud d'Orange - Transfert de fichiers (HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\Le Cloud d'Orange - Transfert de fichiers) (Version: 2.1.0 - Orange-France) <==== ATTENTION Le Cloud Orange 2.1.0 (HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\Le Cloud Orange) (Version: 2.1.0 - ) Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office Famille et Petite Entreprise 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Edition 2003 (HKLM-x32\...\{9111040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mindjet MindManager Pro 6 (HKLM-x32\...\{88961EBE-55F6-4B6B-B62C-B0982C105B53}) (Version: 6.2.399 - Mindjet LLC) Mises à jour NVIDIA 2.11.4.0 (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Montage Photo 2018 8.1 (HKLM-x32\...\Montage Photo 2018_is1) (Version: - logiciel-montage-photo) Mozilla Firefox 58.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 58.0.2 (x64 fr)) (Version: 58.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 58.0.2.6611 - Mozilla) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) ODIR (HKLM-x32\...\ODIR_is1) (Version: - Vaita) ONconnect (HKLM-x32\...\ONconnect_is1) (Version: 3.208 - Geonaute) Online Plug-in (x32 Version: 14.0.0.91 - Citrix Systems, Inc.) Hidden Online Plug-in (x32 Version: 14.1.0.0 - Citrix Systems, Inc.) Hidden OpenOffice 4.1.0 (HKLM-x32\...\{B3B009FC-6909-4E00-9F43-FFB5CA93D606}) (Version: 4.10.9764 - Apache Software Foundation) Opera Stable 63.0.3368.94 (HKLM-x32\...\Opera 63.0.3368.94) (Version: 63.0.3368.94 - Opera Software) Panneau de configuration NVIDIA 388.43 (Version: 388.43 - NVIDIA Corporation) Hidden PaperPort Image Printer 64-bit (HKLM\...\{ABA4FAF1-6389-45F9-92CE-3914A4E5C471}) (Version: 1.00.0000 - Nuance Communications, Inc.) PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.4.1 - pdfforge GmbH) Pervasive System Analyzer (HKLM-x32\...\Pervasive System Analyzer) (Version: - ) Pervasive.SQL V8 Workgroup (v8.6) (HKLM-x32\...\{5FCFC78C-438A-4F4D-B266-E32B8468BAFC}) (Version: 8.60.192.033 - Pervasive Software Inc. ) PhotoFiltre (HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\PhotoFiltre) (Version: - ) Photos de Famille 2 (HKLM-x32\...\{7C84D138-AA41-4CC3-8158-292A4CC75BA5}_is1) (Version: 2 - CDIP) Pinnacle VideoSpin (HKLM-x32\...\{FEB15887-0932-4D2D-BB85-6AC03FBF1AA8}) (Version: 2.0.0.669 - Pinnacle Systems) Plex Media Server (HKLM-x32\...\{0a25946e-e061-47a7-9da4-d055bb78571d}) (Version: 1.14.1.5488 - Plex, Inc.) Plex Media Server (x32 Version: 1.14.1488 - Plex, Inc.) Hidden Python 2.6.3 (HKLM-x32\...\{3D9AC095-E115-4E94-BDEF-7F7EDF17697D}) (Version: 2.6.3150 - Python Software Foundation) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.312 - Qualcomm Atheros Communications) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden RealPlayer (HKLM-x32\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.) RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden Recover My Files (HKLM-x32\...\Recover My Files v5_is1) (Version: 5.2.1.1964 - GetData Pty Ltd) Revo Uninstaller 2.1.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.0 - VS Revo Group, Ltd.) ScanSoft PaperPort 11 (HKLM-x32\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.) Self-service Plug-in (x32 Version: 4.1.0.41738 - Citrix Systems, Inc.) Hidden Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Silicon Laboratories USBXpress Device (Driver Removal) (HKLM-x32\...\SIUSBXP&10C4&EA61) (Version: - Silicon Laboratories) SketchUp 8 (HKLM-x32\...\{00280C97-E028-4563-8435-2BCA2786D03F}) (Version: 3.0.16938 - Trimble Navigation Limited) Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation) Skype Web Plugin (HKLM-x32\...\{EB96DF8B-65A7-4E72-BFB1-38DB36870D16}) (Version: 7.32.6.278 - Skype Technologies S.A.) Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\Spotify) (Version: 1.1.2.285.ga97985ef - Spotify AB) Stellar Phoenix Outlook PST Repair (HKLM\...\Stellar Phoenix Outlook PST Repair_is1) (Version: 6.0.0.1 - Stellar Information Technology Pvt. Ltd.) Stopping Plex (x32 Version: 1.14.1488 - Plex, Inc.) Hidden SugarSync (HKLM-x32\...\SugarSync) (Version: 3.6.0.1.139445 - SugarSync, Inc.) TuneUp Utilities 2013 (HKLM-x32\...\TuneUp Utilities 2013) (Version: 13.0.4000.250 - TuneUp Software) TuneUp Utilities 2013 (x32 Version: 13.0.4000.250 - TuneUp Software) Hidden TuneUp Utilities Language Pack (fr-FR) (x32 Version: 13.0.4000.250 - TuneUp Software) Hidden Uninstall Youtube to MP3 Converter (HKLM\...\YouTube To MP3 Converter_is1) (Version: 1.2 - Sofonica Ltd.) UT61E Interface Program Ver4.01 (HKLM-x32\...\{589EBE5F-8A02-4AE1-9494-B4C1C98BB0DA}) (Version: 4.01 - ) Utilitaire de mise à jour des logiciels EBP 1.1.4 (Version: 1.1.4 - EBP) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN) VSDC Free Video Editor version 5.8.2.797 (HKLM\...\VSDC Free Video Editor_is1) (Version: 5.8.2.797 - Flash-Integro LLC) Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.) WD Drive Utilities (HKLM-x32\...\{490aca2d-0bcf-4d7d-bfb8-c6785e2ba5f3}) (Version: 2.0.0.48 - Western Digital Technologies, Inc.) WD Drive Utilities (x32 Version: 2.0.0.48 - Western Digital Technologies, Inc.) Hidden Win Généalogic 2005 (HKLM-x32\...\Win Généalogic 2005) (Version: 2005.1.0.60 - INFODUC SA) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2731385879-58174941-3277747152-1002_Classes\CLSID\{41052F6E-3662-4584-BCD3-77BCCAAE8470}\InprocServer32 -> C:\Users\Didier\AppData\Local\SkypePlugin\7.32.6.278\GatewayActiveX-x64.dll (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2731385879-58174941-3277747152-1002_Classes\CLSID\{60813F68-E9F7-4B3C-80B4-A76A66211660}\localserver32 -> C:\Users\Didier\AppData\Local\SkypePlugin\7.32.6.278\GatewayVersion-x64.exe (Skype Technologies S.A.) CustomCLSID: HKU\S-1-5-21-2731385879-58174941-3277747152-1002_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\Didier\AppData\Local\SkypePlugin\7.32.6.278\EdgeCalling.exe (Skype Technologies S.A.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {02A225E3-E86D-4BFE-98FC-DE62D0D003C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {069690FB-EC20-458E-8F3D-B6BE221053AC} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2017-03-28] () Task: {076CE9F1-F4F3-4AC5-BED2-B42C940ED90B} - System32\Tasks\FileAdvisorUpdate => C:\Program Files (x86)\File Type Advisor\fileadvisor.exe [2017-07-28] (File Type Advisor) Task: {174186BF-A2B1-4EBE-85D2-E0B1935868BE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation) Task: {1AE15925-A7B1-4C8B-A1FB-A4821A4C0BB5} - System32\Tasks\BtvStack => C:\Program Task: {1B266C11-89E1-4796-81B9-C7E0C4FADF1C} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-07-25] (ASUSTeK Computer Inc.) Task: {2731016D-C278-4364-8226-5A0610EB9B25} - System32\Tasks\{4CF51C27-FD5D-44AA-95DB-2D466F9DF486} => Iexplore.exe hxxps://ui.skype.com/ui/0/7.33.0.104/fr/abandoninstall?source=lightinstaller&page=tsProgressBar Task: {2A927C43-B946-4607-9BC0-14F1D7E90CBA} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2731385879-58174941-3277747152-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {2D3B32E1-80B6-4B9F-9F36-0BD7E9BEAFF3} - System32\Tasks\BtTray => C:\Program Task: {3238243D-1BDF-48AA-A8A8-B747DF6B4852} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS) Task: {3C41E5BB-C2A0-44CB-BDF6-14D69BCB02EC} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-07-24] (Adobe Systems) Task: {4366228B-5595-40AE-9DE2-BB43F2C218AB} - System32\Tasks\Programme de mise à jour en ligne de Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2019-07-24] (Adobe Systems) Task: {4CAB441D-1A06-4D4A-A438-D73A50770922} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor) Task: {50546480-EF17-48E2-B9C6-87FAF86AD5A5} - System32\Tasks\Opera scheduled Autoupdate 1511685657 => C:\Program Files\Opera\launcher.exe [2019-09-18] (Opera Software) Task: {530836A3-D3CC-4CE4-9052-634A37135278} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-08-06] (ASUS) Task: {568B88E0-7A5B-43B1-8B6C-A04374B90961} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2731385879-58174941-3277747152-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {56D3B7AA-7252-4CC1-8E31-4CD7387F8524} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2014-01-28] (TuneUp Software) Task: {638EE592-B870-4E2E-9D38-2E343B9C6BAD} - System32\Tasks\ScanSoft Background Update => C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25] (Nuance Communications, Inc.) Task: {69D8262B-9A9B-480C-8377-163A29D30B0B} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2019-04-15] (Intel Corporation) Task: {6B48AA75-C6FD-42B4-AC5E-5E4FD109B124} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor) Task: {6CEF9E0F-2D4B-4169-83EF-45D4D51DD883} - System32\Tasks\{0553D4DA-A677-F1B9-7C85-7365C6F876BA} => C:\Program Files (x86)\Common Files\Gulosa\Sync.exe [2013-04-09] () Task: {6D8D9A66-2A4F-4781-958C-A1BCF5CFBA93} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs" Task: {6E368D43-F67E-4F37-8E73-68661F9F1274} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-07-24] (ASUSTek Computer Inc.) Task: {719AB6D6-CE53-417A-AF32-9D45AD467711} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe Task: {759D611B-94B3-4F37-8EA4-82460E88B424} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation) Task: {7B57BE28-E3E8-46F1-A55B-6E4E7D41CEE1} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.) Task: {8A9B26CA-C004-4E4E-A75C-B6594BE33697} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {8DC0C1A5-070E-4B99-B6D8-A413EF0425DC} - System32\Tasks\{E175792E-793A-48A5-A58B-0D14E835B147} => pcalua.exe -a C:\emme\Louvre_3\chapp.EXE -d C:\emme\Louvre_3 Task: {9272D7AC-52E8-48F7-81D3-C451C69FF37C} - System32\Tasks\{DAD33239-A6AE-4D5A-AAAC-F3AB6314D6D2} => pcalua.exe -a "C:\Program Files\TAP-Windows\Uninstall.exe" Task: {A98242CF-FB8A-4956-B60E-859F0EA9EA1F} - System32\Tasks\4Team updater => C:\Program Files\4Team Corporation\4Team-Updater\4Team-Updater.exe Task: {B05DC53F-6449-433F-8E82-460B5B147059} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2019-04-15] (Intel Corporation) Task: {B4EF9C7E-4062-4DB8-9D80-7736BF581031} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2731385879-58174941-3277747152-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {B66ED842-4ABA-416E-BC67-9F34A32C9C78} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2019-09-10] (Adobe) Task: {BEA79A5E-B554-409B-80B3-6271078F6636} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [2019-09-19] (AVG Technologies CZ, s.r.o.) Task: {BEDFDEA1-D758-4700-9BD2-F69A7A33D862} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation) Task: {C42D27C7-7F83-4A5B-B8EE-1040323EF722} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_pepper.exe [2019-09-10] (Adobe) Task: {C588D04D-6CB0-4D5D-8C41-031192604CBA} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe Task: {C60F4B2E-11B4-4760-B442-B6E770B1750F} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2731385879-58174941-3277747152-1002 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {C7030DB3-C386-414E-B6AB-167D9EF0B666} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_255_Plugin.exe [2019-09-10] (Adobe) Task: {DC31E21C-1672-412B-A669-387D7C95533C} - System32\Tasks\Programme de mise à jour en ligne de Real Player => C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe [2013-09-24] (RealNetworks, Inc.) Task: {DC3F3BF7-550E-4C18-9C37-D696AAE711BE} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2731385879-58174941-3277747152-1002 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.) Task: {E40A2679-CD03-4A65-9EC6-9F95E6501F48} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\Program Files\Windows Defender\\MpCmdRun.exe [2017-01-12] (Microsoft Corporation) Task: {FBB04101-F499-418C-9F3C-E9CA991F290C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Didier\Desktop\TestComptaDemat.lnk -> C:\Test_Compta_Demat\testeur\testeur.bat () Shortcut: C:\Users\Didier\AppData\Local\Microsoft\Windows\RoamingTiles\14329278420.lnk -> hxxp://search.arch.be/ Shortcut: C:\Users\Didier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TestComptaDemat.lnk -> C:\Test_Compta_Demat\testeur\testeur.bat () ShortcutWithArgument: C:\Users\Didier\AppData\Local\Microsoft\Windows\Application Shortcuts\Microsoft.InternetExplorer.Default\14329278420.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> -contentTile -formatVersion 0x00000003 -pinnedTimeLow 0xe157d467 -pinnedTimeHigh 0x01d0282a -securityFlags 0x00000000 -tileType 0x00000000 -url 0x00000016 hxxp://search.arch.be/ ShortcutWithArgument: C:\Users\Didier\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Modules chargés (Avec liste blanche) ============== 2006-12-07 17:08 - 2006-12-07 17:08 - 00032768 _____ () C:\PVSW\Bin\WGE_SRV.exe 2006-12-07 17:08 - 2006-12-07 17:08 - 00032768 _____ () C:\PVSW\bin\WGE_SRV.EXE 2019-09-21 12:45 - 2019-06-21 06:30 - 02717624 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2004-07-22 14:40 - 2004-07-22 14:40 - 00106546 _____ () C:\PVSW\BIN\W3dbsmgr.EXE 2012-08-24 18:26 - 2012-08-24 18:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll 2017-11-06 21:32 - 2017-11-06 21:32 - 00076456 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll 2013-11-28 22:38 - 2013-11-28 22:38 - 00384128 _____ () C:\Program Files (x86)\Bluetooth Suite\ContactsApi.dll 2013-11-28 22:35 - 2013-11-28 22:35 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2013-11-28 22:32 - 2013-11-28 22:32 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll 2013-11-28 22:38 - 2013-11-28 22:38 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe 2013-07-16 17:09 - 2012-09-25 12:26 - 01163264 ____N () C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe 2018-11-20 04:46 - 2018-11-20 04:46 - 04310296 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf 2018-07-19 08:54 - 2018-07-19 08:54 - 00019968 _____ () C:\Users\Didier\AppData\Local\assembly\dl3\NE9ZY2E4.C59\MEBXLEWE.TYA\50e78e12\bf09cb61_2d1fd401\Atheros Outlook Addin 2010.DLL 2019-03-13 21:06 - 2019-03-13 21:06 - 01567840 _____ () C:\Program Files\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2019-09-19 08:52 - 2019-09-19 08:52 - 00993816 _____ () C:\Program Files\Opera\63.0.3368.94\opera_elf.dll 2019-09-19 08:52 - 2019-09-19 08:52 - 115331096 _____ () C:\Program Files\Opera\63.0.3368.94\opera_browser.dll 2019-09-19 08:52 - 2019-09-19 08:52 - 06706200 _____ () C:\Program Files\Opera\63.0.3368.94\libglesv2.dll 2019-09-19 08:52 - 2019-09-19 08:52 - 00378904 _____ () C:\Program Files\Opera\63.0.3368.94\libegl.dll 2004-07-22 14:19 - 2004-07-22 14:19 - 00700464 _____ () C:\PVSW\BIN\W3MKDE.DLL 2004-07-22 14:25 - 2004-07-22 14:25 - 00127026 _____ () C:\PVSW\BIN\W3COMSRV.DLL 2016-09-03 19:24 - 2016-08-26 01:28 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2013-07-16 17:09 - 2009-02-27 17:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2019-08-21 14:00 - 2019-08-21 14:00 - 27754544 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll 2019-05-03 04:33 - 2019-05-03 04:33 - 00439344 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll 2019-07-31 23:42 - 2019-07-31 23:42 - 99313712 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Windows:CM_5488453c5f239a783794a6208f1013c74786ea71b6eb95db552ebf5bca08ce23 [74] AlternateDataStreams: C:\Windows:CM_90842e5c6680b3922a03b07d97eb0c989b33c58eee48faa0c1f684f43765bfba [74] AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0] AlternateDataStreams: C:\ProgramData\Temp:FCA8C9CD [266] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\.DEFAULT\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\localhost -> localhost ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2013-08-22 15:25 - 2018-10-25 10:10 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2731385879-58174941-3277747152-1002\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: AeLookupSvc => 3 MSCONFIG\Services: ALG => 3 MSCONFIG\Services: AppIDSvc => 3 MSCONFIG\Services: Apple Mobile Device Service => 2 MSCONFIG\Services: AppReadiness => 3 MSCONFIG\Services: ASLDRService => 2 MSCONFIG\Services: ASUS InstantOn => 2 MSCONFIG\Services: AtherosSvc => 2 MSCONFIG\Services: ATKGFNEXSrv => 2 MSCONFIG\Services: AudioEndpointBuilder => 2 MSCONFIG\Services: Audiosrv => 2 MSCONFIG\Services: AxInstSV => 3 MSCONFIG\Services: BDESVC => 3 MSCONFIG\Services: BFE => 2 MSCONFIG\Services: BITS => 2 MSCONFIG\Services: Bonjour Service => 3 MSCONFIG\Services: BRA_Scheduler => 2 MSCONFIG\Services: Browser => 3 MSCONFIG\Services: BthHFSrv => 3 MSCONFIG\Services: bthserv => 3 MSCONFIG\Services: CertPropSvc => 3 MSCONFIG\Services: CodeMeter.exe => 2 MSCONFIG\Services: COMSysApp => 3 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: CryptSvc => 2 MSCONFIG\Services: defragsvc => 3 MSCONFIG\Services: DeviceAssociationService => 2 MSCONFIG\Services: DeviceInstall => 3 MSCONFIG\Services: Dhcp => 2 MSCONFIG\Services: DiagTrack => 2 MSCONFIG\Services: Dnscache => 2 MSCONFIG\Services: dot3svc => 3 MSCONFIG\Services: DPS => 3 MSCONFIG\Services: DSAService => 2 MSCONFIG\Services: DSAUpdateService => 3 MSCONFIG\Services: DsmSvc => 3 MSCONFIG\Services: Eaphost => 3 MSCONFIG\Services: EBP Pervasive.SQL => 2 MSCONFIG\Services: EFS => 2 MSCONFIG\Services: ESRV_SVC_QUEENCREEK => 2 MSCONFIG\Services: EventLog => 2 MSCONFIG\Services: EventSystem => 2 MSCONFIG\Services: Fax => 3 MSCONFIG\Services: fdPHost => 3 MSCONFIG\Services: FDResPub => 3 MSCONFIG\Services: fhsvc => 3 MSCONFIG\Services: FontCache => 3 MSCONFIG\Services: FontCache3.0.0.0 => 3 MSCONFIG\Services: Garmin Device Interaction Service => 2 MSCONFIG\Services: GfExperienceService => 2 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: hidserv => 3 MSCONFIG\Services: hkmsvc => 3 MSCONFIG\Services: HomeGroupListener => 3 MSCONFIG\Services: HomeGroupProvider => 3 MSCONFIG\Services: IAStorDataMgrSvc => 2 MSCONFIG\Services: IEEtwCollectorService => 3 MSCONFIG\Services: IKEEXT => 2 MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: Intel(R) SUR QC SAM => 3 MSCONFIG\Services: iphlpsvc => 3 MSCONFIG\Services: iPod Service => 3 MSCONFIG\Services: jhi_service => 2 MSCONFIG\Services: KeyIso => 3 MSCONFIG\Services: KtmRm => 3 MSCONFIG\Services: LanmanServer => 2 MSCONFIG\Services: LanmanWorkstation => 2 MSCONFIG\Services: lfsvc => 3 MSCONFIG\Services: lltdsvc => 3 MSCONFIG\Services: lmhosts => 2 MSCONFIG\Services: LMS => 2 MSCONFIG\Services: MMCSS => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: MpsSvc => 2 MSCONFIG\Services: MSiSCSI => 3 MSCONFIG\Services: napagent => 3 MSCONFIG\Services: NcaSvc => 3 MSCONFIG\Services: NcbService => 3 MSCONFIG\Services: NcdAutoSetup => 3 MSCONFIG\Services: Netlogon => 3 MSCONFIG\Services: Netman => 3 MSCONFIG\Services: netprofm => 3 MSCONFIG\Services: NlaSvc => 2 MSCONFIG\Services: nsi => 2 MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2 MSCONFIG\Services: NvNetworkService => 2 MSCONFIG\Services: NvStreamNetworkSvc => 3 MSCONFIG\Services: NvStreamSvc => 2 MSCONFIG\Services: ose => 3 MSCONFIG\Services: ose64 => 3 MSCONFIG\Services: osppsvc => 3 MSCONFIG\Services: p2pimsvc => 3 MSCONFIG\Services: p2psvc => 2 MSCONFIG\Services: PcaSvc => 2 MSCONFIG\Services: PerfHost => 3 MSCONFIG\Services: Pervasive.SQL Workgroup => 2 MSCONFIG\Services: pla => 3 MSCONFIG\Services: PlexUpdateService => 2 MSCONFIG\Services: PlugPlay => 3 MSCONFIG\Services: PNRPAutoReg => 2 MSCONFIG\Services: PNRPsvc => 2 MSCONFIG\Services: PolicyAgent => 3 MSCONFIG\Services: Power => 2 MSCONFIG\Services: PrintNotify => 3 MSCONFIG\Services: QWAVE => 3 MSCONFIG\Services: RasAuto => 3 MSCONFIG\Services: RasMan => 3 MSCONFIG\Services: RpcLocator => 3 MSCONFIG\Services: SamSs => 2 MSCONFIG\Services: SCardSvr => 3 MSCONFIG\Services: ScDeviceEnum => 3 MSCONFIG\Services: SCPolicySvc => 3 MSCONFIG\Services: seclogon => 3 MSCONFIG\Services: SENS => 2 MSCONFIG\Services: SensrSvc => 3 MSCONFIG\Services: SessionEnv => 3 MSCONFIG\Services: SharedAccess => 2 MSCONFIG\Services: ShellHWDetection => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: smphost => 3 MSCONFIG\Services: SNMPTRAP => 3 MSCONFIG\Services: Spooler => 2 MSCONFIG\Services: SstpSvc => 3 MSCONFIG\Services: stisvc => 2 MSCONFIG\Services: StorSvc => 3 MSCONFIG\Services: svsvc => 3 MSCONFIG\Services: SysMain => 2 MSCONFIG\Services: SystemUsageReportSvc_QUEENCREEK => 2 MSCONFIG\Services: TabletInputService => 3 MSCONFIG\Services: TapiSrv => 3 MSCONFIG\Services: TermService => 3 MSCONFIG\Services: Themes => 2 MSCONFIG\Services: THREADORDER => 3 MSCONFIG\Services: TrkWks => 3 MSCONFIG\Services: TrustedInstaller => 3 MSCONFIG\Services: TuneUp.UtilitiesSvc => 2 MSCONFIG\Services: UI0Detect => 3 MSCONFIG\Services: UmRdpService => 3 MSCONFIG\Services: upnphost => 2 MSCONFIG\Services: USER_ESRV_SVC_QUEENCREEK => 3 MSCONFIG\Services: UxTuneUp => 2 MSCONFIG\Services: VaultSvc => 3 MSCONFIG\Services: vds => 3 MSCONFIG\Services: vmicguestinterface => 3 MSCONFIG\Services: vmicheartbeat => 3 MSCONFIG\Services: vmickvpexchange => 3 MSCONFIG\Services: vmicrdv => 3 MSCONFIG\Services: vmicshutdown => 3 MSCONFIG\Services: vmictimesync => 3 MSCONFIG\Services: vmicvss => 3 MSCONFIG\Services: VSS => 3 MSCONFIG\Services: W32Time => 3 MSCONFIG\Services: wbengine => 3 MSCONFIG\Services: WbioSrvc => 3 MSCONFIG\Services: Wcmsvc => 2 MSCONFIG\Services: wcncsvc => 3 MSCONFIG\Services: WcsPlugInService => 3 MSCONFIG\Services: WDDriveService => 2 MSCONFIG\Services: WdiServiceHost => 3 MSCONFIG\Services: WdiSystemHost => 3 MSCONFIG\Services: WebClient => 3 MSCONFIG\Services: Wecsvc => 3 MSCONFIG\Services: WEPHOSTSVC => 3 MSCONFIG\Services: wercplsupport => 3 MSCONFIG\Services: WerSvc => 3 MSCONFIG\Services: WiaRpc => 3 MSCONFIG\Services: WinHttpAutoProxySvc => 3 MSCONFIG\Services: Winmgmt => 2 MSCONFIG\Services: WinRM => 3 MSCONFIG\Services: WlanSvc => 2 MSCONFIG\Services: wlidsvc => 3 MSCONFIG\Services: wmiApSrv => 3 MSCONFIG\Services: WMPNetworkSvc => 3 MSCONFIG\Services: workfolderssvc => 3 MSCONFIG\Services: WPCSvc => 3 MSCONFIG\Services: wscsvc => 2 MSCONFIG\Services: WSearch => 2 MSCONFIG\Services: wuauserv => 2 MSCONFIG\Services: wudfsvc => 3 MSCONFIG\Services: WwanSvc => 3 HKLM\...\StartupApproved\Run: => "ACMON" HKLM\...\StartupApproved\Run: => "WindowsDefender" HKLM\...\StartupApproved\Run32: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "TkBellExe" HKU\S-1-5-21-2731385879-58174941-3277747152-1002\...\StartupApproved\Run: => "Chromium" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [UDP Query User{79D3C925-AE6D-49D3-90B3-8CAA973010A2}C:\program files (x86)\ebp\gestioncommerciale18.0\gestion.exe] => (Allow) C:\program files (x86)\ebp\gestioncommerciale18.0\gestion.exe FirewallRules: [TCP Query User{EF8EC569-4070-4A38-9873-13552A6CBBE4}C:\program files (x86)\ebp\gestioncommerciale18.0\gestion.exe] => (Allow) C:\program files (x86)\ebp\gestioncommerciale18.0\gestion.exe FirewallRules: [{2CEE89F2-DFA3-47C0-ADD9-71C586F6686E}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{7F043AF7-2F27-41D5-B7A9-0119AD863B1D}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{EC715384-26F2-4573-86F5-3958F3673291}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [{F52E280B-5505-415D-AA71-CF5F1FCB899B}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe FirewallRules: [UDP Query User{C713530F-1512-4FF6-9D9F-FF5DD1062009}C:\program files (x86)\ebp\compta17.1\compta.exe] => (Allow) C:\program files (x86)\ebp\compta17.1\compta.exe FirewallRules: [TCP Query User{839718B6-F47D-47F7-883A-4BBCB0C6B88E}C:\program files (x86)\ebp\compta17.1\compta.exe] => (Allow) C:\program files (x86)\ebp\compta17.1\compta.exe FirewallRules: [{DEF1E2E5-9632-43D7-B8E1-E06FA80C03F7}] => (Allow) C:\PVSW\Bin\w3dbsmgr.exe FirewallRules: [{CAC44688-9AD5-4057-972D-38947B94364A}] => (Allow) C:\PVSW\Bin\w3dbsmgr.exe FirewallRules: [{61377C74-D7FA-4DFC-8D77-8A54990441A7}] => (Allow) C:\PVSW\Bin\w3dbsmgr.exe FirewallRules: [{EE32505E-EE41-4CD6-8DD9-557B8373A284}] => (Allow) C:\PVSW\Bin\w3dbsmgr.exe FirewallRules: [{DF208A7F-F3B0-4E4E-9D1B-CA7D44742904}] => (Allow) C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{D1B80AFF-451C-49F4-88BF-4AF569FA1786}] => (Allow) C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{28B1B241-9E9C-48E5-9CC4-34E8F6EACBB5}] => (Allow) %systemroot%\system32\alg.exe FirewallRules: [{6C528455-398B-4C28-881A-1B52092A5EDF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{E46AF2F8-10D5-4143-9E5E-1512F2310084}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{2693458A-38E0-4007-A258-3FFB0BF50BB5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C62EB178-19D9-4981-84F2-93845271DD22}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{8F5598DF-A36B-4C31-B2CF-E5101A1B8CB4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AE5AE8C2-A309-4433-8C60-FD8167581344}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08y\FAXRX.exe FirewallRules: [{EE2B5783-9951-43B4-96E3-78D2303CD864}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08y\FAXRX.exe FirewallRules: [{AC72B0B1-FCE2-4CE7-B090-84CC3AE6F6DE}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Light\BRAdmLight.exe FirewallRules: [{A9060F58-37BC-4FDA-A2EA-E04F3AE4F558}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Light\BRAdmLight.exe FirewallRules: [{08CA7341-607F-479B-A673-2ED09E35ED53}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{4EFD5E6F-23E8-4E78-B5A4-8E1B4CEAD434}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{28DFF26F-6DC9-4B4C-A10E-E3743B062EB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{2D1542B9-BCFD-4014-831E-6E2497FD5359}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{FD9855C0-1191-47F2-9497-2F58EBC04591}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe FirewallRules: [{C7FC304F-DBE3-40E6-89AF-887808E5EBB2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{CA794779-C365-4A70-8683-A457A38A57D1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{81CE205A-D554-4E29-A1D8-D8E054686F84}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E79CEA14-E634-40A8-98EC-877ED620716B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{5B21FDC2-2607-46C0-988C-66BA507650D5}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\RM.exe FirewallRules: [{0B1C6F43-7493-4F28-8FC9-BCB5D28B8C47}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\RM.exe FirewallRules: [{171EDD4E-EE9F-4ED3-87E2-A63840C6D586}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\umi.exe FirewallRules: [{896405AE-FB3E-463B-A59D-38E8D205A131}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\umi.exe FirewallRules: [{98590199-35B0-4B63-A644-111222CF3BEB}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\VideoSpin.exe FirewallRules: [{705F7B49-FD94-4BDB-BAEB-C8C215568F85}] => (Allow) C:\Program Files (x86)\Pinnacle\VideoSpin\Programs\VideoSpin.exe FirewallRules: [TCP Query User{92BBBA4A-0509-4C11-99E3-22D02E93650C}C:\users\didier\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\didier\appdata\local\skypeplugin\pluginhost.exe FirewallRules: [UDP Query User{E9921A5E-CD06-4894-A581-58D163621CBB}C:\users\didier\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\didier\appdata\local\skypeplugin\pluginhost.exe FirewallRules: [TCP Query User{79AA920F-2DA3-4199-804C-DB263669B7B3}C:\program files (x86)\ebp\compta19.0\compta.exe] => (Allow) C:\program files (x86)\ebp\compta19.0\compta.exe FirewallRules: [UDP Query User{0AC4A16E-C2EC-4C86-B310-58BFDCFB4A79}C:\program files (x86)\ebp\compta19.0\compta.exe] => (Allow) C:\program files (x86)\ebp\compta19.0\compta.exe FirewallRules: [{A9D461CE-BF0E-4362-9048-C0B0AA39E7A1}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{6F43B5C5-5A09-481A-A622-B9628D2B90F6}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{5E35FC43-D6F8-4D24-A870-B14C6E8D8646}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe FirewallRules: [{C0ACB576-6A63-41E5-BE25-2EB360C626C8}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe FirewallRules: [{B16D65BC-262E-457D-9503-29F2441B527B}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{2E3D1EE5-A721-4BA9-B653-FC8555406AC3}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [TCP Query User{8D3B373B-499A-4F59-9036-43D8315C32B5}C:\program files (x86)\ebp\compta19.0\compta.exe] => (Block) C:\program files (x86)\ebp\compta19.0\compta.exe FirewallRules: [UDP Query User{4881CCD9-279E-4582-A604-CE2F1C20970D}C:\program files (x86)\ebp\compta19.0\compta.exe] => (Block) C:\program files (x86)\ebp\compta19.0\compta.exe FirewallRules: [TCP Query User{40E06CC0-6EA7-4C5D-A00B-EF7403806562}C:\program files (x86)\google\chrome\application\google.exe] => (Block) C:\program files (x86)\google\chrome\application\google.exe FirewallRules: [UDP Query User{1FF92B59-3906-4BBE-B55A-FC0D304D0DC1}C:\program files (x86)\google\chrome\application\google.exe] => (Block) C:\program files (x86)\google\chrome\application\google.exe FirewallRules: [{0EDD911B-10B2-42CE-B6B6-00A36AF54916}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08y\FAXRX.exe FirewallRules: [{8211F5D2-7310-4DD6-9247-B8CE67D1D4DE}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08y\FAXRX.exe FirewallRules: [{494ECBC9-DBB3-428C-9214-F1B93EAEB560}] => (Allow) LPort=54925 FirewallRules: [{18EEA85A-9DAA-4F9C-BBB4-F92BD6F6FC75}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Professional 3\discover.exe FirewallRules: [{FF1ED0E9-F5D1-49BF-9614-3E52A7BB0F18}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Professional 3\discover.exe FirewallRules: [{A321BEF0-CC65-4306-9036-DF80CE435548}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Professional 3\auditorserver.exe FirewallRules: [{9A35EDD1-4AA2-4C4D-A28E-B44180556F99}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Professional 3\auditorserver.exe FirewallRules: [{C6995FE1-F5E6-49FA-ACD9-34B923DFB499}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Professional 3\bradminv3.exe FirewallRules: [{59F7E093-AE7D-4A72-BEF8-7E58F4E4B3C4}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Professional 3\bradminv3.exe FirewallRules: [{BFD42DC6-7564-4FEE-ADDD-43FA610DCA6A}] => (Allow) LPort=54925 FirewallRules: [{B4B17FB1-4300-4E6F-AE56-9A556B8AD954}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Light\BRAdmLight.exe FirewallRules: [{42102BB7-D4D5-45F8-B71E-A313467A255A}] => (Allow) C:\Program Files (x86)\Brother\BRAdmin Light\BRAdmLight.exe FirewallRules: [TCP Query User{95EDD61F-46C0-4388-A957-8B4709B2BBDA}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{7D119003-881C-4499-87D5-115F9B559681}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [TCP Query User{DBC69AF1-034E-4C47-BC16-07080B19F9E4}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{CF2FCC37-FF65-40BC-AFC5-F6EDCB8CE80E}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{66EC6141-7AE4-4B37-85B5-33CC851C6645}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe FirewallRules: [{DD88E14B-22BE-4112-B20A-628675AB1B90}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\PlexScriptHost.exe FirewallRules: [{74A6963F-4B7A-4F57-A2B8-BECF128DEFC2}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex DLNA Server.exe FirewallRules: [{E24E997F-4EF1-4F5F-BCD3-37190B9DDAC2}] => (Allow) C:\Program Files (x86)\Plex\Plex Media Server\Plex Tuner Service.exe FirewallRules: [TCP Query User{7E7738E9-BE51-4F44-B352-6FF9195C86E9}C:\users\didier\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\didier\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{FCC7757C-8BE9-4249-9903-D6BF20B2E5E4}C:\users\didier\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\didier\appdata\roaming\spotify\spotify.exe FirewallRules: [TCP Query User{4B170A4C-4A07-490F-B46F-2F5B4A1407ED}C:\users\didier\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\didier\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{05112FA8-FD53-4B8C-847C-20486922AC24}C:\users\didier\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\didier\appdata\roaming\spotify\spotify.exe FirewallRules: [{1F2509B7-9641-4055-8755-F06880A2861F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe FirewallRules: [{F1637B7D-704E-4253-8BCB-9884BD4AA274}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{384781E2-25DF-4BE1-BEC4-BC280088148E}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{8747CEC3-F77F-465A-809E-648ECAD5A108}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{3117EE7C-EE10-4353-8F07-0952A626C797}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{58305055-9910-42EC-A7FE-DB01297C481C}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe FirewallRules: [{4B52605E-39FC-4D0C-A785-61F32DE7DF69}] => (Allow) C:\Program Files\Opera\63.0.3368.71\opera.exe FirewallRules: [{1B80B935-C224-44EC-B7A0-43C253FC53D2}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe FirewallRules: [{C4794481-0740-4DE6-8FDA-899B310785E1}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe FirewallRules: [{27328023-462F-45B4-9896-D7A58AC28867}] => (Allow) C:\Users\Didier\AppData\Local\Temp\DriverPack-20190917161341\tools\aria2c.exe FirewallRules: [{1FC884E4-034B-44F7-A9D8-1B33B6294356}] => (Allow) C:\Users\Didier\AppData\Roaming\DRPSu\Alice\cloud.exe FirewallRules: [{BDBA3903-178E-4054-B0F9-3F99120CA956}] => (Allow) C:\Program Files\Opera\63.0.3368.94\opera.exe FirewallRules: [{AA3D0780-4164-4F1F-B406-C1B018B96E06}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= 21-09-2019 10:08:24 Revo Uninstaller's restore point - DriverMax 10 21-09-2019 10:33:40 Revo Uninstaller's restore point - Java 7 Update 45 21-09-2019 10:34:12 Removed Java 7 Update 45 21-09-2019 10:56:44 Restore Point Created by FRST 21-09-2019 11:37:06 Revo Uninstaller's restore point - Malwarebytes version 3.8.3.2965 23-09-2019 14:46:56 Revo Uninstaller's restore point - Qualcomm Atheros Client Installation Program ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Intel(R) HD Graphics 4000 Description: Intel(R) HD Graphics 4000 Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: igfx Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Périphérique Bluetooth (réseau personnel) Description: Périphérique Bluetooth (réseau personnel) Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: BthPan Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter Description: Qualcomm Atheros AR9485WB-EG Wireless Network Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Qualcomm Atheros Communications Inc. Service: athr Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (09/24/2019 04:52:01 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8 Error: (09/24/2019 04:52:01 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Error: (09/24/2019 04:52:00 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8 Error: (09/24/2019 04:52:00 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: LsaC:\Windows\System32\Secur32.dll8 Error: (09/24/2019 04:52:00 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: ESENTC:\WINDOWS\system32\esentprf.dll8 Error: (09/24/2019 04:52:00 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (09/24/2019 01:51:59 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: WmiApRplC:\WINDOWS\system32\wbem\wmiaprpl.dll8 Error: (09/24/2019 01:51:59 PM) (Source: PerfNet) (EventID: 2004) (User: ) Description: Error: (09/24/2019 01:51:59 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: MSDTCC:\WINDOWS\system32\msdtcuiu.DLL8 Error: (09/24/2019 01:51:59 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: LsaC:\Windows\System32\Secur32.dll8 Erreurs système: ============= Error: (09/24/2019 01:51:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:51:48 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:47:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:47:20 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:47:10 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:47:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:46:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 01:46:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Fournisseur du Groupement résidentiel dépend du service Hôte du fournisseur de découverte de fonctions qui n’a pas pu démarrer en raison de l’erreur : %%1058 = Le service ne peut pas être démarré parce qu’il est désactivé ou qu’aucun périphérique activé ne lui est associé. Error: (09/24/2019 08:03:56 AM) (Source: DCOM) (EventID: 10010) (User: DIDIER) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Error: (09/24/2019 08:03:26 AM) (Source: DCOM) (EventID: 10010) (User: DIDIER) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} CodeIntegrity: =================================== Date: 2019-09-21 11:03:17.887 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-21 11:03:17.419 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-21 11:03:02.823 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-21 11:03:02.370 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-21 11:03:01.104 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-21 11:03:00.620 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-15 17:26:03.278 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Users\Didier\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-09-15 17:26:02.995 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Lavalys\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2019-09-14 13:48:38.394 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2019-09-14 11:41:27.805 Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM) i7-3630QM CPU @ 2.40GHz Pourcentage de mémoire utilisée: 45% Mémoire physique - RAM - totale: 8077.5 MB Mémoire physique - RAM - disponible: 4388.53 MB Mémoire virtuelle totale: 27533.5 MB Mémoire virtuelle disponible: 22269.72 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:163.11 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (Data) (Fixed) (Total:498.84 GB) (Free:421.18 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F97C441A) Partition: GPT. ==================== Fin de Addition.txt ============================