Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02.08.2018
Exécuté par basti (07-08-2018 16:14:28)
Exécuté depuis C:\Users\basti\Downloads
Windows 10 Home Version 1607 14393.447 (X64) (2016-08-12 11:07:42)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2088407286-2968114824-4063050614-500 - Administrator - Disabled)
basti (S-1-5-21-2088407286-2968114824-4063050614-1001 - Administrator - Enabled) => C:\Users\basti
DefaultAccount (S-1-5-21-2088407286-2968114824-4063050614-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-2088407286-2968114824-4063050614-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invité (S-1-5-21-2088407286-2968114824-4063050614-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Kaspersky Total Security (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Total Security (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Kaspersky Total Security (Disabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 version 13.0.1 (HKLM-x32\...\{A724DC44-6241-42D3-BA57-778B178ABC17}_is1) (Version: 13.0.1 - Adobe Systems, Inc.)
Adobe Premiere Pro CS6 (HKLM-x32\...\{7176B973-6011-43C1-AEBC-2D73FE7C6982}) (Version: 6.0 - Adobe Systems Incorporated)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 372.70 - NVIDIA Corporation) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 18.5.2342 - AVAST Software)
Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 67.1.664.99 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Discord (HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
DoNotSpy10 (HKLM-x32\...\{32D066BD-F94C-4948-8FA8-84653EE9617E}_is1) (Version: 1.1.0.0 - pXc-coding.com)
DriverMax 9 (HKLM-x32\...\DMX5_is1) (Version: 9.15.0.46 - Innovative Solutions)
f.lux (HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\Flux) (Version: - )
FileZilla Client 3.22.2 (HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\FileZilla Client) (Version: 3.22.2 - Tim Kosse)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 67.0.3396.99 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
GoPro (HKLM\...\{1E92618C-EB66-4C4C-9F45-93EC6EF53273}) (Version: 0.1.2733 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{88734dc7-c200-4ad3-b29f-bb5e436cb30f}) (Version: 1.4.0.2733 - GoPro, Inc.)
GoPro Studio (HKLM-x32\...\{99502BF0-655A-425D-8754-9EEC557D3D73}) (Version: 5.9.2733 - GoPro, Inc.) Hidden
Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
Kaspersky Total Security (HKLM-x32\...\{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab) Hidden
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
League of Legends (HKLM-x32\...\{8E0BDF1C-26D9-4579-A677-53A4CC0D3693}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
LibreOffice 5.2.0.4 (HKLM-x32\...\{8FA59B7B-1D26-408F-A798-BD11A65A68B9}) (Version: 5.2.0.4 - The Document Foundation)
LogMeIn Hamachi (HKLM-x32\...\{91B5DF26-717A-4A5F-AB10-CD450FAD428C}) (Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
Malwarebytes version 3.0.5.1299 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.5.1299 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.6.6168.8 - Waves Audio Ltd.) Hidden
Microsoft OneDrive (HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24210 (HKLM-x32\...\{f144e08f-9cbe-4f09-9a8c-f2b858b7ee7f}) (Version: 14.0.24210.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.3.3 - Notepad++ Team)
Nox APP Player (HKLM-x32\...\Nox) (Version: 3.7.1.0 - Duodian Technology Co. Ltd.)
NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NVIDIA Pilote graphique 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 372.70 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Panneau de configuration NVIDIA 372.70 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 372.70 - NVIDIA Corporation) Hidden
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
PhotoFiltre 7 (HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\PhotoFiltre 7) (Version: - )
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 7.4.12.47 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.104 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
Trackmania Turbo (HKLM-x32\...\Uplay Install 2070) (Version: - Ubisoft)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
Vegas Pro 13.0 (64-bit) (HKLM\...\{CE20A68F-BFBC-11E3-AA73-F04DA23A5C58}) (Version: 13.0.290 - Sony)
VFW_Codec32 (HKLM-x32\...\{4275850F-4E2E-4F60-9E73-8BD8F70891D3}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (HKLM\...\{7010885D-3378-4C9B-B330-88271728EDE5}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
WinRAR 5.31 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2088407286-2968114824-4063050614-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\WINDOWS\system32\oleaut32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-07] (AVAST Software)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-03-08] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-07] (AVAST Software)
ContextMenuHandlers1: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-07] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2016-12-14] (Malwarebytes)
ContextMenuHandlers4: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2015-08-27] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-08-25] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-08-07] (AVAST Software)
ContextMenuHandlers6: [Kaspersky Anti-Virus 16.0.1] -> {7E2FE095-E536-4F69-AC17-997E9EAEBD4D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\x64\shellex.dll [2015-12-22] (AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2016-12-14] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\rarext64.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\rarext.dll [2016-02-04] (Alexander Roshal)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {1A3D16E1-E5C0-4C81-9D05-60EFEA2A1504} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {1DBD0C1F-C85C-478E-A3CB-EFB2C495C2B7} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24] (Realtek Semiconductor)
Task: {38785614-2899-419E-8102-BE28FC90094D} - System32\Tasks\AvastUpdateTaskMachineUA => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-07] (AVAST Software)
Task: {41C283D4-FE19-4DCA-870B-1ADF9A36893E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-12] (Google Inc.)
Task: {46277C71-8E18-4A7B-BA64-877438832024} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-bastien.lenfant@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-05-11] (Adobe Systems, Incorporated)
Task: {4FE35A95-82A9-45CF-9C3B-164C12FF9366} - System32\Tasks\{56BE0546-3DD2-42F0-B134-6D4033748DBD} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\basti\AppData\Local\{BB7C8D20-9FD4-E198-F24C-C470D62438E8}\uninst.exe -c -FN="C:\Users\basti\AppData\Roaming\{BB218D9A-9E73-E0EC-F545-C73E29973A00}\helper.exe"-P=/Uninstall /s /noun /DelSelfDir
Task: {5C8A77BC-ADB5-46BD-87A4-3D559152F40C} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24] (Realtek Semiconductor)
Task: {5FCFA7AD-909E-42FA-A1CC-16C0FC592317} - System32\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c => C:\Program Files (x86)\Innovative Solutions\DriverMax\innostp.exe [2017-01-03] (Innovative Solutions)
Task: {77103D51-242B-4460-B01B-D197009539CB} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [2018-08-07] (AVAST Software)
Task: {846E4D56-30AE-467C-89AC-D2DA852CAC88} - System32\Tasks\DriverMaxAgent => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [2017-01-03] (Innovative Solutions)
Task: {864A7450-B4D6-408F-85DA-A120C3821D98} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {8719326E-5194-4FA1-96F9-7CA507A05D51} - System32\Tasks\{2A15252C-A62B-4259-B856-4CA49946060D} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\basti\Desktop\ScpServer\bin\ScpService.exe -d C:\Users\basti\Desktop\ScpServer\bin
Task: {985A3606-CBFE-4042-90CF-2E8387B18089} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24] (Realtek Semiconductor)
Task: {A8254C9B-BABA-48B9-9B78-A717555757C3} - System32\Tasks\DriverMax Notification => C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe [2017-01-03] (Innovative Solutions)
Task: {AF8A427D-92DC-4302-B0BA-563A8D4D43F9} - System32\Tasks\AvastUpdateTaskMachineCore => C:\Program Files (x86)\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [2018-08-07] (AVAST Software)
Task: {B9E829A0-A9C3-4FAF-9C66-4C60D1629FF5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-08-12] (Google Inc.)
Task: {C0E04F84-2DDC-464E-BE81-9ECF27FF7174} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-bastien.lenfant@hotmail.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
Task: {D0A055C5-5F56-41D9-9A16-71E2E702BD2D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-08-07] (AVAST Software)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)


==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2016-07-16 13:42 - 2016-07-16 13:42 - 000231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-01 11:39 - 2016-09-15 19:25 - 002681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-08-11 05:33 - 2016-08-25 23:12 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-11-11 13:19 - 2015-03-12 04:43 - 000022528 _____ () C:\WINDOWS\System32\us003lm.dll
2016-02-15 22:01 - 2016-02-15 22:01 - 000031256 _____ () C:\WINDOWS\System32\us008lm.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-09-01 18:12 - 2016-09-01 18:12 - 001353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-01-11 20:05 - 2017-03-25 13:04 - 002264352 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\PoliciesControllerImpl.dll
2016-09-16 21:52 - 2016-09-07 06:56 - 000134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 20:44 - 2016-11-02 12:30 - 000474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-09 20:43 - 2016-11-02 12:21 - 009760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 20:44 - 2016-11-02 12:15 - 001401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 20:44 - 2016-11-02 12:14 - 000757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 20:44 - 2016-11-02 12:15 - 001033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-09 20:44 - 2016-11-02 12:16 - 002424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 20:44 - 2016-11-02 12:17 - 004853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2018-08-06 22:04 - 2018-06-22 21:15 - 004608856 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libglesv2.dll
2018-08-06 22:04 - 2018-06-22 21:15 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\67.0.3396.99\libegl.dll
2017-03-25 14:19 - 2017-03-25 14:23 - 000077312 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-03-25 14:19 - 2017-03-25 14:23 - 000182784 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.12.112.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-05-12 00:39 - 2016-05-12 00:39 - 000037808 _____ () C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
2015-12-22 02:47 - 2015-12-22 02:47 - 000794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 16.0.1\kpcengine.2.3.dll
2017-01-14 22:12 - 2017-01-03 15:35 - 000010728 _____ () C:\Program Files (x86)\Innovative Solutions\DriverMax\sync.dll
2018-08-06 19:52 - 2018-07-21 23:07 - 000854304 _____ () D:\Steam\SDL2.dll
2016-10-15 19:03 - 2016-09-01 03:02 - 004969248 _____ () D:\Steam\v8.dll
2018-08-06 19:52 - 2018-08-02 01:37 - 002644768 _____ () D:\Steam\video.dll
2016-10-15 19:03 - 2016-09-01 03:02 - 001563936 _____ () D:\Steam\icui18n.dll
2016-10-15 19:03 - 2016-09-01 03:02 - 001195296 _____ () D:\Steam\icuuc.dll
2018-08-06 19:52 - 2017-12-20 03:43 - 005137696 _____ () D:\Steam\libavcodec-57.dll
2018-08-06 19:52 - 2017-12-20 03:43 - 000695584 _____ () D:\Steam\libavformat-57.dll
2018-08-06 19:52 - 2017-12-20 03:43 - 000351520 _____ () D:\Steam\libavresample-3.dll
2018-08-06 19:52 - 2017-12-20 03:43 - 000847136 _____ () D:\Steam\libavutil-55.dll
2018-08-06 19:52 - 2017-12-20 03:43 - 000783648 _____ () D:\Steam\libswscale-4.dll
2018-08-06 19:52 - 2018-08-02 01:37 - 001015072 _____ () D:\Steam\bin\chromehtml.DLL
2016-10-15 19:03 - 2016-07-05 00:17 - 000266560 _____ () D:\Steam\openvr_api.dll
2018-08-07 12:51 - 2018-08-07 12:51 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-08-07 12:26 - 2018-08-07 12:26 - 000483544 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-08-07 12:26 - 2018-08-07 12:26 - 000282840 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-01-30 13:52 - 2017-01-30 13:52 - 001926632 ____R () C:\Program Files (x86)\Skype\Phone\roottools.dll
2018-08-06 20:31 - 2018-04-30 23:01 - 001891672 _____ () C:\Users\basti\AppData\Local\Discord\app-0.0.301\ffmpeg.dll
2018-08-06 20:31 - 2018-04-30 23:01 - 001937752 _____ () C:\Users\basti\AppData\Local\Discord\app-0.0.301\libglesv2.dll
2018-08-06 20:31 - 2018-04-30 23:01 - 000095576 _____ () C:\Users\basti\AppData\Local\Discord\app-0.0.301\libegl.dll
2018-08-06 20:31 - 2018-08-06 20:31 - 001910104 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\cld\build\Release\cld.node
2018-08-06 20:31 - 2018-08-06 20:31 - 000422744 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\spellchecker\build\Release\spellchecker.node
2018-08-06 20:31 - 2018-08-06 20:31 - 000145240 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_spellcheck\node_modules\keyboard-layout\build\Release\keyboard-layout-manager.node
2018-08-06 20:31 - 2018-08-06 20:32 - 011303256 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_voice\discord_voice.node
2018-08-06 20:31 - 2018-08-06 20:32 - 001635160 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_utils\discord_utils.node
2018-08-06 20:31 - 2018-08-06 20:31 - 000512856 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_erlpack\discord_erlpack.node
2018-08-06 20:31 - 2018-08-06 20:32 - 001648984 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_game_utils\discord_game_utils.node
2018-08-06 20:31 - 2018-08-07 11:36 - 001734488 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_overlay2\discord_overlay2.node
2018-08-06 20:31 - 2018-08-06 20:31 - 002722648 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_rpc\discord_rpc.node
2018-08-06 20:33 - 2018-08-06 20:33 - 001249112 _____ () \\?\C:\Users\basti\AppData\Roaming\discord\0.0.301\modules\discord_vigilante\discord_vigilante.node
2018-08-06 19:52 - 2018-07-21 23:07 - 000854304 _____ () D:\Steam\bin\cef\cef.win7\SDL2.dll
2018-08-06 19:52 - 2018-07-21 00:24 - 083524896 _____ () D:\Steam\bin\cef\cef.win7\libcef.dll
2018-08-06 19:52 - 2018-07-21 00:24 - 003732256 _____ () D:\Steam\bin\cef\cef.win7\libglesv2.dll
2018-08-06 19:52 - 2018-07-21 00:24 - 000086304 _____ () D:\Steam\bin\cef\cef.win7\libegl.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\basti\Local Settings:es6A6kCmHjRU5x3QjWVmU [1914]
AlternateDataStreams: C:\Users\basti\AppData\Local:es6A6kCmHjRU5x3QjWVmU [1914]
AlternateDataStreams: C:\Users\basti\AppData\Local\Application Data:es6A6kCmHjRU5x3QjWVmU [1914]
AlternateDataStreams: C:\Users\basti\AppData\Local\Temp:pxfxKsbc76uJ4i7CvXfb8JeDP [2330]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2016-08-10 01:47 - 2018-08-07 12:52 - 000004430 _____ C:\WINDOWS\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2088407286-2968114824-4063050614-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\basti\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{fd50bac6-23ad-4d79-89df-8ee2842b9e3e}.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

HKLM\...\StartupApproved\Run: => "GoPro Tray App"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\StartupApproved\Run: => "f.lux"
HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\StartupApproved\Run: => "AdobeBridge"
HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-2088407286-2968114824-4063050614-1001\...\StartupApproved\Run: => "OneDrive"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{F16330DD-0346-463E-BEA2-00017833B4B4}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro.exe
FirewallRules: [{E3753D75-4C69-4C63-9A5B-1786231D724F}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe
FirewallRules: [{570B8B18-D971-4BD0-A6CC-3E64682627EF}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe
FirewallRules: [{AD2A716A-4ACA-48E2-8950-DB4CF1B6F8F1}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe
FirewallRules: [{8C14F023-E22C-49B8-85E5-F0790815B0ED}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{8D9096B4-9D70-4FF4-8E2A-7604C5388284}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{48A9447E-56FA-4A63-B400-4CCAFABB44C6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{FE125156-260C-416B-9CDB-2A5B8DF0DC2A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{3DE7589C-B6EE-4755-B7A4-FD80A29463F6}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{58E8F18A-F612-4255-845A-88D21AB4F100}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{D09AC10C-F2DA-4909-A38F-B696E2ECB121}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{85F3BCDB-CE6B-4B1A-B7F7-3093EE371737}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{5DFA61B4-5F1D-4647-9610-ED9AF65430B1}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{683000E4-0BED-4EDC-8479-751DE22DB4F4}] => (Allow) C:\Users\basti\AppData\Roaming\Nox\bin\Nox.exe
FirewallRules: [{0FCA2A90-2348-439E-A8C6-300973B43A95}] => (Allow) C:\Program Files\Bignox\BigNoxVM\RTNoxVMHandle.exe
FirewallRules: [{7B27BC93-D597-4A03-95AC-99561D43AFAD}] => (Allow) D:\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe
FirewallRules: [{B6FC1B57-B30C-4F89-93A5-45F7B3F918DD}] => (Allow) D:\FormatFactory\FormatFactory.exe
FirewallRules: [{8AA4EDAA-4074-4C5C-A764-E9DAADFE0001}] => (Allow) D:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{479717F2-73F9-42A9-93C3-6963A0F7A99B}] => (Allow) D:\Steam\steamapps\common\SNOW\Bin64\playSNOW.exe
FirewallRules: [{60B46739-9CD3-4C98-84E9-D680F200C7FC}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{009A2DBF-B73C-4CDF-9BF9-3839DB2CC2E0}] => (Allow) D:\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{FD53CF1E-C008-4471-B82E-041D26D8F3F1}] => (Allow) D:\Steam\steamapps\common\The First Spark\TheFirstSpark.exe
FirewallRules: [{70C63DED-9760-42B3-9A64-71570E53E010}] => (Allow) D:\Steam\steamapps\common\The First Spark\TheFirstSpark.exe
FirewallRules: [{9869DA53-EF68-4F9C-9A30-932263C3D29C}] => (Allow) D:\Steam\steamapps\common\Splintercell Chaos Theory\System\splintercell3.exe
FirewallRules: [{B55ECB2D-4247-4A44-B2DE-D88FC0BB02F4}] => (Allow) D:\Steam\steamapps\common\Splintercell Chaos Theory\System\splintercell3.exe
FirewallRules: [{55BAB2DE-99FD-482B-9411-453649ADC115}] => (Allow) D:\Steam\steamapps\common\BEEP\BEEP.exe
FirewallRules: [{C5E6CD11-A1E4-4688-8443-D20E7796B9ED}] => (Allow) D:\Steam\steamapps\common\BEEP\BEEP.exe
FirewallRules: [{530753C7-C70D-4423-A26E-566746A7109E}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{6ECB06F2-7324-4D0E-8ED8-0F8E1973DE10}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect.exe
FirewallRules: [{C8833CAB-BC11-4545-935F-CD18B59C4A4F}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{CA2B8A38-FDED-4B66-899A-C6D146C6225A}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect Safe Mode.exe
FirewallRules: [{8ADD1892-287C-4BEF-96F6-7A675D260F28}] => (Allow) D:\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{089539B4-F423-4959-AEF6-F52500D027BE}] => (Allow) D:\Steam\steamapps\common\Worms Clan Wars\WormsClanWars.exe
FirewallRules: [{73C9759A-067B-4716-A992-8FCBFC836C35}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{5468625B-B73C-40CB-A37E-A746E809D2CF}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{04DB0653-55C7-4823-ADA6-D35EE78E380E}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{222563AD-3FC3-4DB4-9252-33A618BED648}] => (Allow) D:\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{76BBC433-A62D-4FBC-82B3-8E6C257A1DF1}] => (Allow) C:\Users\basti\AppData\Local\Temp\Ins12B4\Setup.exe
FirewallRules: [{055AF164-2CA8-4517-A3D2-137575F16598}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{70C55C93-026A-4B9D-9510-D5404D220EEA}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect64.exe
FirewallRules: [{994BFAFD-50F8-4B39-9D2B-2CE060B32326}] => (Allow) D:\Steam\steamapps\common\Prison Architect\Prison Architect64.exe
FirewallRules: [{5FFA7A0A-9738-49B2-B883-B4EA03791FDD}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{B7CC196D-B7EB-4FB6-80D1-EFC6E48CB1FA}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
FirewallRules: [{94B1469A-95F7-4FF9-8299-07D40F4E2CF6}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe

==================== Points de restauration =========================

25-03-2017 14:34:51 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: MEDIA
Description: MEDIA
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (08/07/2018 04:02:00 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-BASTIEN)
Description: Échec de l’activation de l’application Microsoft.Windows.Apprep.ChxApp_cw5n1h2txyewy!App avec l’erreur : -2144927142 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (08/07/2018 03:34:27 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: PC-BASTIEN)
Description: Le package windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel a été interrompu, car sa suspension a été trop longue.

Error: (08/07/2018 03:33:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: PC-BASTIEN)
Description: Le package windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel a été interrompu, car sa suspension a été trop longue.

Error: (08/07/2018 02:25:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe, version : 10.0.14393.0, horodatage : 0x57899b1c
Nom du module défaillant : LicenseManager.dll, version : 10.0.14393.206, horodatage : 0x57dacdbc
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000023bbb
ID du processus défaillant : 0x648
Heure de début de l’application défaillante : 0x01d42e4960457f85
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\svchost.exe
Chemin d’accès du module défaillant: c:\windows\system32\LicenseManager.dll
ID de rapport : b3a8b782-da29-4920-b8c1-4ed8213f3141
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (08/07/2018 02:14:00 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: Windows ne parvient pas à charger la DLL de compteur extensible rdyboost. Le premier mot (DWORD) de la section Données contient le code d’erreur Windows.

Error: (08/07/2018 01:33:30 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft.

System Error:
Accès refusé.
.

Error: (08/07/2018 01:06:33 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-BASTIEN)
Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error: (08/07/2018 01:06:26 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-BASTIEN)
Description: Échec de l’activation de l’application Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy!App avec l’erreur : -2144927141 Pour plus d’informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.


Erreurs système:
=============
Error: (08/07/2018 03:57:43 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/07/2018 03:57:43 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate).

Error: (08/07/2018 03:57:11 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service GoPro Device Detection Service est en attente de démarrage.

Error: (08/07/2018 03:54:51 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Optimisation de livraison est en attente de démarrage.

Error: (08/07/2018 03:54:38 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {4991D34B-80A1-4291-83B6-3328366B9097} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (08/07/2018 03:48:27 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
et l’APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
au SID AUTORITE NT\Système de l’utilisateur (S-1-5-18) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.

Error: (08/07/2018 03:48:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Hamachi2Svc n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/07/2018 03:48:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Hamachi2Svc.


Windows Defender:
===================================
Date: 2018-08-06 23:41:01.787
Description:
L’analyse Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {0F266B68-0F89-4C41-8B42-4EFBCCA4CE20}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2016-12-08 14:05:50.548
Description:
Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.233.184.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.13303.0
Code d’erreur : 0x80240017
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.

Date: 2016-11-13 17:07:31.331
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Système d’inspection réseau
Code d’erreur : 0x80070006
Description de l’erreur : Descripteur non valide
Raison : Le pilote de filtre a redémarré.

Date: 2016-11-13 17:07:30.580
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Système d’inspection réseau
Code d’erreur : 0x80070006
Description de l’erreur : Descripteur non valide
Raison : Le pilote de filtre a été déchargé de façon inattendue.

Date: 2016-11-13 17:07:30.580
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Analyse du comportement
Code d’erreur : 0x80070006
Description de l’erreur : Descripteur non valide
Raison : Le pilote de filtre a été déchargé de façon inattendue.

Date: 2016-11-13 17:07:19.807
Description:
La fonctionnalité de protection en temps réel Windows Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x80004005
Description de l’erreur : Erreur non spécifiée
Raison : Le pilote de filtre a ignoré l’analyse des éléments et est en mode relais. Cela peut être dû à des ressources insuffisantes.

CodeIntegrity:
===================================

Date: 2018-08-06 23:35:48.680
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\nvami.inf_amd64_fd2cdd92cf7ee187\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2017-03-25 12:59:38.985
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-25 12:59:38.588
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-12-26 16:15:26.098
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\rzpnk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-26 14:25:15.521
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\rzpnk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-25 22:08:09.339
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\rzpnk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-24 15:50:35.368
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\rzpnk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-12-23 18:26:27.345
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\drivers\rzpnk.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz
Pourcentage de mémoire utilisée: 58%
Mémoire physique - RAM - totale: 3981.69 MB
Mémoire physique - RAM - disponible: 1633.27 MB
Mémoire virtuelle totale: 7821.69 MB
Mémoire virtuelle disponible: 5152.53 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:185.87 GB) (Free:93.66 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (DATA) (Fixed) (Total:258.34 GB) (Free:173.28 GB) NTFS

\\?\Volume{58fa7ef7-1d60-4edf-b905-ac3848736e2f}\ (Recovery) (Fixed) (Total:0.88 GB) (Free:0.52 GB) NTFS
\\?\Volume{e743731f-fd0e-4dd7-956d-afc17025f9f6}\ () (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS
\\?\Volume{122d0591-5cae-47d8-b5df-94764b00401d}\ (Restore) (Fixed) (Total:20.01 GB) (Free:7.51 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 568814A2)

Partition: GPT.

==================== Fin de Addition.txt ============================