Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30.01.2019
Exécuté par sophi (01-02-2019 12:53:09)
Exécuté depuis C:\Users\sophi\Desktop
Windows 10 Home Version 1803 17134.523 (X64) (2018-06-15 17:27:22)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-1542961776-2668204405-4042959533-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1542961776-2668204405-4042959533-503 - Limited - Disabled)
Invité (S-1-5-21-1542961776-2668204405-4042959533-501 - Limited - Disabled)
sophi (S-1-5-21-1542961776-2668204405-4042959533-1001 - Administrator - Enabled) => C:\Users\sophi
WDAGUtilityAccount (S-1-5-21-1542961776-2668204405-4042959533-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22395 - Microsoft Corporation)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.6.5 - ASUSTek Computer Inc)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.6 - ASUSTeK COMPUTER INC.)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.22 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.19.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.101 - ICEpower a/s)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 19.1.2360 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.50 - Piriform)
CyberLink PhotoDirector 5 (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.5.6515 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.4010.0 - CyberLink Corp.)
Dashlane (HKU\S-1-5-21-1542961776-2668204405-4042959533-1001\...\Dashlane) (Version: 6.1903.0.16930 - Dashlane, Inc.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.2.7 - ASUSTek COMPUTER INC.)
DriverPack Notifier (HKLM-x32\...\DriverPack Notifier) (Version: 2.0 - DriverPack Solution)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.123 - Google Inc.) Hidden
GoPro App (HKLM-x32\...\{F521FF84-E690-40CF-977C-4103A4D8E5D0}) (Version: 5.7.549 - GoPro, Inc.) Hidden
GoPro Studio 2.5.7 (HKLM-x32\...\{b996dca2-156c-4d2c-b9a3-59fac08cef33}) (Version: 2.5.7.549 - GoPro, Inc.)
IBM SPSS Statistics 20 (HKLM\...\{2AF8017B-E503-408F-AACE-8A335452CAD2}) (Version: 20.0.0.0 - IBM Corp)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5058 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Mendeley Desktop 1.17.13 (HKLM-x32\...\Mendeley Desktop) (Version: 1.17.13 - Mendeley Ltd.)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.11126.20266 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1542961776-2668204405-4042959533-1001\...\OneDriveSetup.exe) (Version: 19.002.0107.0008 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movavi Video Converter 18 Premium (HKLM-x32\...\Movavi Video Converter 18 Premium) (Version: 18.2.0 - Movavi)
Mozilla Firefox 59.0.3 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0.3 (x64 en-US)) (Version: 59.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.3 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11126.20266 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20266 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11126.20266 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.11126.20266 - Microsoft Corporation) Hidden
Opera Stable 56.0.3051.116 (HKU\S-1-5-21-1542961776-2668204405-4042959533-1001\...\Opera 56.0.3051.116) (Version: 56.0.3051.116 - Opera Software)
Popcorn Time (HKLM-x32\...\Popcorn Time_is1) (Version: 6.1.0.0 - Popcorn Time) <==== ATTENTION
QGIS 2.18.17 'Las Palmas' (HKLM\...\QGIS 2.18) (Version: - QGIS Development Team)
QGIS 3.4.1 'Madeira' (HKLM\...\QGIS 3.4) (Version: 3.4.1 - QGIS Development Team)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.15 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
R for Windows 3.4.4 (HKLM\...\R for Windows 3.4.4_is1) (Version: 3.4.4 - R Core Team)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10130.27054 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8569 - Realtek Semiconductor Corp.)
RStudio (HKLM-x32\...\RStudio) (Version: 1.1.442 - RStudio)
R-Studio 7.5 (HKLM-x32\...\R-Studio 7.5NSIS) (Version: 7.5.156292 - R-Tools Technology Inc.)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Soda PDF Desktop (HKLM-x32\...\SodaDesktop) (Version: 9.2.12.34416 - LULU Software)
Soda PDF Desktop Asian Fonts Pack (HKLM\...\{CBFF9D21-FBBB-48D7-9F84-C24370992AA4}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Convert Module (HKLM\...\{8FC1C3BD-A694-4E9E-B51F-207BCD6A2133}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Create Module (HKLM\...\{83A67DAD-E51A-4A3A-AD6A-49A5853F6D9A}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Edit Module (HKLM\...\{1F974010-6C8B-42B6-A669-B0A696FAFB29}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Forms Module (HKLM\...\{981FAAEC-D9AB-475A-985D-EF74A046A372}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Insert Module (HKLM\...\{511A21D3-BB6E-4336-80C8-E63CDF6A307C}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop OCR Module (HKLM\...\{438CF57D-B860-4A6F-95ED-7B6FD267040D}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Review Module (HKLM\...\{1368EEAD-7B14-47E1-BF26-4CD49C5B7BCF}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop Secure Module (HKLM\...\{B094A0C4-2225-4F9C-A3D6-50700AAFCA80}) (Version: 9.2.12.34356 - LULU Software) Hidden
Soda PDF Desktop View Module (HKLM\...\{165B875F-9B74-4434-97F9-1FCB926504F8}) (Version: 9.2.12.34356 - LULU Software) Hidden
SPSS SmartViewer 15.0 (HKLM-x32\...\{32FEA42D-3A59-49D9-8A2F-A3E2D8E663DF}) (Version: 15.0.1 - SPSS Inc.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1024 - SUPERAntiSpyware.com)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{E1D7CB46-BAE9-4D58-99C4-582332B1755A}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
VFW_Codec32 (HKLM-x32\...\{FD85BB37-D0AD-4684-B052-4CE9DF72455A}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (HKLM\...\{68413D4F-C3C9-4B6F-9B39-AC7444C8C05C}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.8 - VideoLAN)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.1.0 - ASUS)
WinRAR 5.60 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.60.0 - win.rar GmbH)
Wondershare Filmora(Build 8.5.3) (HKLM\...\Wondershare Filmora_is1) (Version: - Wondershare Software)
Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-04] (AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-04] (AVAST Software)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-04] (AVAST Software)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-09-13] (Intel Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-01-04] (AVAST Software)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2018-06-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2018-06-24] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1117F106-7A12-471C-AB16-EB5AF6512315} - System32\Tasks\ATK Package A22126881260 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-09-22] (ASUSTek Computer Inc.)
Task: {25402210-9983-4CBB-BA2E-14E42978CC0B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-02] (Microsoft Corporation)
Task: {2B9FD073-6357-4842-B777-3286B7EE7156} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Task: {5A1CC679-0F6B-41A3-AD0F-973903F4C3E9} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2018-11-07] (Realtek Semiconductor)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {689F7228-B84A-43CA-AFF4-BC2F3CFBAA3B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-18] (Microsoft Corporation)
Task: {783941FF-282E-4C3D-9ABD-4D728F994E53} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-13] (Microsoft Corporation)
Task: {7AEE2BF0-6712-407D-A1E7-F6C3EBB2883F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-11-28] (Piriform Software Ltd)
Task: {7D845174-1032-46AB-885A-A92BC2C92CD2} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-11-28] (Piriform Ltd)
Task: {7DD45D39-659F-43CD-85BA-D97A72E2D6AC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-18] (Microsoft Corporation)
Task: {913490DE-E894-4753-8AE7-90FA65127F82} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2016-10-12] (ASUS)
Task: {91E02E99-A098-4A61-B63E-4057B90903B0} - System32\Tasks\S-1-5-21-1542961776-2668204405-4042959533-1001\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe [2018-12-08] (Microsoft Corporation)
Task: {9C88D939-D561-4799-80DC-F51C2F61E34C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-18] (Google Inc.)
Task: {9FCE7C21-C999-4BC7-9195-07E0169DE4EE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-13] (Microsoft Corporation)
Task: {B2AACD1F-8466-464C-BB3A-F7D2A176FA7D} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2018-06-26] (AsusTek)
Task: {BE3DBB32-51FD-4B65-839C-A6D25F3C3B23} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-18] (Microsoft Corporation)
Task: {C03CB1BF-C1C2-4640-8DA2-C8BCA8EC0A6A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-11-18] (Google Inc.)
Task: {C4370CF2-ACB4-47F5-AEC3-2004E2C50E6F} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2018-11-07] (Realtek Semiconductor)
Task: {C95340A2-8B51-4059-B6A6-A9E75D2DD404} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-02] (Microsoft Corporation)
Task: {CA78A9DC-5CED-446F-BD58-0BFE72E2E79E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2016-11-09] (ASUSTek COMPUTER INC.)
Task: {D8D78F67-9993-4930-9E21-3503F38D797F} - System32\Tasks\ASUSTek Computer Inc\ASUS GIFTBOX => C:\Program Files (x86)\ASUS\Giftbox\asusgiftbox.exe [2017-09-18] (ASUSTek Computer Inc)
Task: {D9A2D033-0DED-4611-9984-66AE948AE1B8} - System32\Tasks\Opera scheduled Autoupdate 1543962680 => C:\Users\sophi\AppData\Local\Programs\Opera\launcher.exe [2018-11-26] (Opera Software)
Task: {DCCCFF04-41E1-4D0A-8244-73D2AF8BAD0F} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2019-01-04] (AVAST Software)
Task: {F08707E0-4EC4-451E-82EE-CF716858DD6F} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-18] (Microsoft Corporation)
Task: {F1F25ADD-BF02-44FA-9239-BC5E07A69842} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2019-01-16] (AVAST Software)
Task: {F22EB8BF-207B-4831-8942-3A1CB17FBAFC} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2015-09-22] (ASUSTek Computer Inc.)
Task: {F2A14E5E-3EC2-4A94-BF0F-CAB35EAE56F2} - System32\Tasks\DriverPack Notifier => C:\Program Files (x86)\DriverPack Notifier\DriverPackNotifier.exe
Task: {F9621BAE-FC66-43C3-8EBE-38112D6654D5} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2015-05-25] (ASUSTek Computer Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


ShortcutWithArgument: C:\Users\sophi\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7634a48803fa655b\ASUS GIFTBOX.lnk -> C:\Program Files (x86)\ASUS\Giftbox\Asusgiftbox.exe (ASUSTek Computer Inc) -> --user-data-dir="C:\Users\sophi\AppData\Local\ASUS GIFTBOX\User Data" --profile-directory=Default --app-id=gicdkbgeaegfghgkdgaejkfeppmlobel

==================== Modules chargés (Avec liste blanche) ==============

2016-02-15 20:01 - 2016-02-15 20:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2017-08-24 23:20 - 2014-04-14 18:59 - 000389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2018-04-12 00:34 - 2018-04-12 00:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-04-12 00:34 - 2018-04-12 00:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-12 15:28 - 2018-11-09 03:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2016-11-30 20:57 - 2018-09-13 13:23 - 000381928 _____ () C:\WINDOWS\system32\igfxTray.exe
2019-01-12 18:11 - 2019-01-01 07:42 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-10-16 14:30 - 2018-10-16 14:31 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2019-01-31 10:29 - 2019-01-31 10:29 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2019-01-31 10:29 - 2019-01-31 10:30 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2019-01-31 10:29 - 2019-01-31 10:29 - 011029504 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2019-01-31 10:29 - 2019-01-31 10:30 - 002923520 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\skypert.dll
2019-01-31 10:29 - 2019-01-31 10:29 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-12-14 19:38 - 2018-12-14 19:38 - 002384384 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\Processing.NDI.Lib.UWP.x64.dll
2019-01-31 10:29 - 2019-01-31 10:30 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.38.138.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2019-01-31 10:31 - 2019-01-31 10:31 - 028012544 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\Video.UI.exe
2019-01-31 10:31 - 2019-01-31 10:31 - 000305152 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\SharedUI.dll
2017-12-01 11:12 - 2017-12-01 11:13 - 000902656 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.UI.Xaml.dll
2018-11-29 12:13 - 2018-11-29 12:14 - 004202208 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2019-01-31 10:31 - 2019-01-31 10:31 - 006187520 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\EntCommon.dll
2019-01-31 10:31 - 2019-01-31 10:31 - 009388544 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18112.14311.0_x64__8wekyb3d8bbwe\EntPlat.dll
2019-01-04 12:17 - 2019-01-04 12:17 - 093695912 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2019-01-04 12:17 - 2019-01-04 12:17 - 000667016 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2019-02-01 12:34 - 2019-02-01 12:46 - 000481280 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2019-02-01 12:34 - 2019-02-01 12:46 - 080636416 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2017-10-09 17:51 - 2017-10-09 18:00 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2019-02-01 12:34 - 2019-02-01 12:40 - 003824640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2019-01-16 23:52 - 2019-01-16 23:52 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2019-02-01 12:34 - 2019-02-01 12:47 - 014225408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2019-02-01 12:34 - 2019-02-01 12:40 - 002871296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-09-01 13:28 - 2018-09-01 13:33 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-28 15:51 - 2018-07-28 15:57 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18114.17710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2015-08-07 01:09 - 2015-08-07 01:09 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\sophi\OneDrive\Documents\SPSSInc:${3D0CE612-FDEE-43f7-8ACA-957BEC0CCBA0}.Metadata [194]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 22:03 - 2019-01-05 14:18 - 000000866 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1542961776-2668204405-4042959533-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\sophi\Desktop\Image\Sri Lanka 2017\P1030480.JPG
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "GoPro Studio Importer"
HKU\S-1-5-21-1542961776-2668204405-4042959533-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-1542961776-2668204405-4042959533-1001\...\StartupApproved\Run: => "SUPERAntiSpyware"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{D11AD727-FDC6-4450-B245-7D17D93A5885}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [TCP Query User{555F7CAD-CB25-4228-99A1-249C9146C979}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{A6779AE7-C81D-4CD4-B9D4-256D036E366F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc.)
FirewallRules: [{B21B53B6-6A17-49B0-A319-511479A7B97D}] => (Allow) C:\Program Files\CyberLink\PowerDirector12\PDR10.EXE Pas de fichier
FirewallRules: [{B30DDBA5-5A07-4BCE-AE99-3513F2C9A76C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{D27E8676-165F-4FF9-93F7-80D784871633}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C645E654-9973-4503-BAB8-4B36AC545412}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{54F1C476-A465-4C8A-90AC-D4FBDA4D4D3E}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe Pas de fichier
FirewallRules: [{EF03875F-2587-4E80-B06A-585359A02681}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe Pas de fichier
FirewallRules: [{8D945658-0E70-4E09-B6D7-7ABECCD920B0}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{E4E5BA0B-A1D6-4138-B946-14D6B9F1DCB0}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{2E2BD653-3461-4932-AE3D-689F5147806D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{EE4789B8-F661-4F77-948F-A8016EED49F6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{BA6D34DD-834B-47A3-A464-CFB58554B36A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [{0FF57E18-5D5B-46FD-BBC9-3F69A2A76487}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{8ADF97DF-0FBE-40A8-8156-1AB9EBC5BF01}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{AD2EB99A-ED5E-4155-97A7-C0AE8AC5DD51}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time)
FirewallRules: [{52FCE166-457D-4A74-934B-0E589D070479}] => (Allow) C:\Program Files (x86)\Popcorn Time\Updater.exe (Popcorn Time)
FirewallRules: [{157B62E7-6207-496D-903F-3BCF86B7D425}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe ()
FirewallRules: [{D281293B-A6BD-4F45-9D3A-424DC568F74B}] => (Allow) C:\Program Files (x86)\Popcorn Time\PopcornTimeDesktop.exe ()
FirewallRules: [{685EF931-B628-45FC-A25F-B96DA954E7A9}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js)
FirewallRules: [{CB6F49E8-DA04-4B9A-B319-2605EF7FD2A2}] => (Allow) C:\Program Files (x86)\Popcorn Time\nodejs\node.exe (Node.js)
FirewallRules: [TCP Query User{82A43A6A-ECA6-440A-A7C9-73C98E2C7528}C:\users\sophi\desktop\rstudio\bin\x64\rsession.exe] => (Block) C:\users\sophi\desktop\rstudio\bin\x64\rsession.exe (RStudio, Inc.)
FirewallRules: [UDP Query User{44594518-C555-45D3-A89E-E25A9AC55C3C}C:\users\sophi\desktop\rstudio\bin\x64\rsession.exe] => (Block) C:\users\sophi\desktop\rstudio\bin\x64\rsession.exe (RStudio, Inc.)
FirewallRules: [{89C7B44B-DE2C-461C-AAAC-701DDA6F8B07}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\WinWrapIDE.exe (IBM Corp.)
FirewallRules: [{4B0D400F-5AED-4CA1-AEF9-5F1C88BC8332}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\WinWrapIDE.exe (IBM Corp.)
FirewallRules: [{2367F89B-A844-4133-A950-91B20259EA5E}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.com (IBM Corp.)
FirewallRules: [{08867938-EF61-4F1D-8CF2-ABE89421E303}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.com (IBM Corp.)
FirewallRules: [{6DDBA2CA-334B-44A9-BECD-F29C3C7DCBAB}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe (IBM Corp.)
FirewallRules: [{4BE519C4-1619-4292-8B03-220E814BA5A9}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe (IBM Corp.)
FirewallRules: [TCP Query User{F5109564-E8F7-4BAE-9BCD-4CA14AFED459}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe (IBM)
FirewallRules: [UDP Query User{5B56DDB3-C166-4036-BCB5-D09F01A8F11E}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe (IBM)
FirewallRules: [{172CF2D6-951A-482D-A6B5-C4E22CCCEB2B}] => (Allow) C:\Users\sophi\AppData\Local\Temp\7ZipSfx.002\bin\tools\aria2c.exe Pas de fichier
FirewallRules: [{0AB19C62-1294-4F65-A4AF-A39367D6AA17}] => (Allow) C:\Users\sophi\AppData\Local\Programs\Opera\55.0.2994.37\opera.exe (Opera Software)
FirewallRules: [{8D8846AB-ABA9-4B47-8D8B-2AAF4CEA98C1}] => (Allow) C:\Users\sophi\AppData\Local\Programs\Opera\56.0.3051.116\opera.exe (Opera Software)
FirewallRules: [{50E2B4C9-C04D-4CFE-A405-ED8C71F4254F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{50E8775E-920C-4330-9AE0-78A3ED4D70CB}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{D07C3764-79FC-421C-8B27-7C0ABC2E8CFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{0AF7BBB1-A5E0-401E-ADEF-A919A160B408}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)
FirewallRules: [{22D5995E-1A07-41E6-A41E-A1D9BB39F796}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe (AVAST Software)

==================== Points de restauration =========================

18-01-2019 19:13:22 Windows Update
31-01-2019 12:53:56 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (02/01/2019 12:17:34 PM) (Source: DPTF) (EventID: 17) (User: AUTORITE NT)
Description: ESIF(8.5.10100.6838) TYPE: ERROR MODULE: DPTF TIME 11459 ms

DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:
DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function: EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message: Error returned from ESIF services interface function call
Participant: TCPU [0]
Domain: PKG [0]
ESIF Primitive: SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance: 0
ESIF Return Code: ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant: TCPU [0]
Domain: PKG [0]
Policy: ConfigTDP Policy [0]

Error: (02/01/2019 12:17:34 PM) (Source: DPTF) (EventID: 17) (User: AUTORITE NT)
Description: ESIF(8.5.10100.6838) TYPE: ERROR MODULE: DPTF TIME 11456 ms

DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:
DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function: EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message: Error returned from ESIF services interface function call
Participant: TCPU [0]
Domain: PKG [0]
ESIF Primitive: SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance: 0
ESIF Return Code: ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant: TCPU [0]
Domain: PKG [0]
Policy: ConfigTDP Policy [0]

Error: (02/01/2019 12:17:34 PM) (Source: DPTF) (EventID: 17) (User: AUTORITE NT)
Description: ESIF(8.5.10100.6838) TYPE: ERROR MODULE: DPTF TIME 11455 ms

DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:
DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function: EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message: Error returned from ESIF services interface function call
Participant: TCPU [0]
Domain: PKG [0]
ESIF Primitive: SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance: 0
ESIF Return Code: ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant: TCPU [0]
Domain: PKG [0]
Policy: ConfigTDP Policy [0]

Error: (02/01/2019 12:16:14 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Le service de recherche Windows a été arrêté à cause d’un problème avec l’indexeur : The catalog is corrupt.

Détails :
Le catalogue d’index des contenus est endommagé. 0xc0041801 (0xc0041801)

Error: (02/01/2019 12:16:01 PM) (Source: Windows Search Service) (EventID: 7040) (User: )
Description: Le service de recherche a détecté des fichiers de données endommagés dans l’index {id=4810 - onecoreuap\base\appmodel\search\search\ytrip\tripoli\inverted\decodinglayerpages.h (609)}. Le service tentera de corriger automatiquement ce problème en recréant l’index.

Détails :
Données non valides. 0x8007000d (0x8007000d)

Error: (02/01/2019 12:08:09 PM) (Source: DPTF) (EventID: 17) (User: AUTORITE NT)
Description: ESIF(8.5.10100.6838) TYPE: ERROR MODULE: DPTF TIME 11665 ms

DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:
DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function: EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message: Error returned from ESIF services interface function call
Participant: TCPU [0]
Domain: PKG [0]
ESIF Primitive: SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance: 0
ESIF Return Code: ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant: TCPU [0]
Domain: PKG [0]
Policy: ConfigTDP Policy [0]

Error: (02/01/2019 12:08:09 PM) (Source: DPTF) (EventID: 17) (User: AUTORITE NT)
Description: ESIF(8.5.10100.6838) TYPE: ERROR MODULE: DPTF TIME 11662 ms

DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:
DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function: EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message: Error returned from ESIF services interface function call
Participant: TCPU [0]
Domain: PKG [0]
ESIF Primitive: SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance: 0
ESIF Return Code: ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant: TCPU [0]
Domain: PKG [0]
Policy: ConfigTDP Policy [0]

Error: (02/01/2019 12:08:09 PM) (Source: DPTF) (EventID: 17) (User: AUTORITE NT)
Description: ESIF(8.5.10100.6838) TYPE: ERROR MODULE: DPTF TIME 11661 ms

DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\..\Sources\Policies\ConfigTdpPolicy\ConfigTdpPolicy.cpp @ line 206
Executing Function: ConfigTdpPolicy::onDomainPowerControlCapabilityChanged
Message:
DPTF Build Version: 8.5.10100.6838
DPTF Build Date: Aug 2 2018 16:10:00
Source File: ..\..\..\Sources\Manager\EsifServices.cpp @ line 589
Executing Function: EsifServices::primitiveExecuteSetAsTimeInMilliseconds
Message: Error returned from ESIF services interface function call
Participant: TCPU [0]
Domain: PKG [0]
ESIF Primitive: SET_RAPL_POWER_LIMIT_TIME_WINDOW [340]
ESIF Instance: 0
ESIF Return Code: ESIF_E_PRIMITIVE_NOT_FOUND_IN_DSP [2404]


Participant: TCPU [0]
Domain: PKG [0]
Policy: ConfigTDP Policy [0]


Erreurs système:
=============
Error: (02/01/2019 12:27:42 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (02/01/2019 12:18:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (02/01/2019 12:18:01 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (02/01/2019 12:17:34 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:08:09 le ‎01/‎02/‎2019 n’était pas prévu.

Error: (02/01/2019 12:16:38 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-ARDG9DE)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
et l’APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
au SID DESKTOP-ARDG9DE\sophi de l’utilisateur (S-1-5-21-1542961776-2668204405-4042959533-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (02/01/2019 12:08:33 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (02/01/2019 12:08:33 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (02/01/2019 12:08:09 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 11:59:16 le ‎01/‎02/‎2019 n’était pas prévu.


==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz
Pourcentage de mémoire utilisée: 50%
Mémoire physique - RAM - totale: 8093.44 MB
Mémoire physique - RAM - disponible: 3978.95 MB
Mémoire virtuelle totale: 9373.44 MB
Mémoire virtuelle disponible: 5842.86 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:118.19 GB) (Free:41.51 GB) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:809.05 GB) NTFS

\\?\Volume{7545366c-59b0-4713-8f48-a0434781f025}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.39 GB) NTFS
\\?\Volume{c1e986f1-d47d-487c-9443-a7f3acdbe7f2}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.23 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 78F8647B)

Partition: GPT.

========================================================
Disk: 1 (Size: 119.2 GB) (Disk ID: 85D8240F)

Partition: GPT.

==================== Fin de Addition.txt ============================