Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04.10.2018
Exécuté par Michel HP (06-10-2018 07:01:23)
Exécuté depuis C:\Users\Michel HP\Desktop
Windows 10 Home Version 1803 17134.285 (X64) (2018-07-14 08:52:49)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2273347787-3330624853-3301766171-500 - Administrator - Enabled)
DefaultAccount (S-1-5-21-2273347787-3330624853-3301766171-503 - Limited - Disabled)
Invité (S-1-5-21-2273347787-3330624853-3301766171-501 - Limited - Disabled)
Michel HP (S-1-5-21-2273347787-3330624853-3301766171-1001 - Administrator - Enabled) => C:\Users\Michel HP
WDAGUtilityAccount (S-1-5-21-2273347787-3330624853-3301766171-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Acronis True Image (HKLM-x32\...\{C13F9F48-9A65-46C7-B4A0-81D98A15DF74}) (Version: 23.2.13660 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{C13F9F48-9A65-46C7-B4A0-81D98A15DF74}Visible) (Version: 23.2.13660 - Acronis)
Acronis Universal Restore Bootable Media Builder (HKLM-x32\...\{859A32C6-077B-4AB3-80EA-EE3683BBBF63}) (Version: 11.5.39003 - Acronis)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.011.20055 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.12.0 - Ant Software)
AOMEI Backupper Professional (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.)
ArcSoft ShowBiz (HKLM-x32\...\{9D41D2EF-2D33-4CFD-8A3E-C7E6FCC3303B}) (Version: 5.0.1.420 - ArcSoft) Hidden
Backup and Sync from Google (HKLM\...\{AEFBDB5B-899F-4AE6-B789-BA56A652A476}) (Version: 3.42.9858.3671 - Google, Inc.)
BUFFALO LinkStation(LS-WSXL) Setup Guide (HKLM-x32\...\UN090929) (Version: - )
BUFFALO NAS Navigator2 (HKLM-x32\...\UN060501) (Version: 2.93 - Buffalo Inc.)
Cartoons (HKLM-x32\...\{CFC2041A-DCB9-47B2-A719-EF7E4359924E}) (Version: 1.00.0000 - MotionStudios)
CCleaner (HKLM\...\CCleaner) (Version: 5.44 - Piriform)
Classic FTP File Transfer Software (HKLM-x32\...\ClassicFTP) (Version: 2.38 - NCH Software)
Corel Graphics - Windows Shell Extension (HKLM\...\_{CD4FAF77-25BC-4838-9B4B-5C59AC8662D1}) (Version: 20.0.0.633 - Corel Corporation)
Corel Graphics - Windows Shell Extension (HKLM\...\{CD4FAF77-25BC-4838-9B4B-5C59AC8662D1}) (Version: 20.0.633 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit Keys (HKLM\...\{C0408619-0431-4B54-B63C-C3AB18B1E4B4}) (Version: 20.0.633 - Corel Corporation) Hidden
Corel Update Manager (HKLM\...\{7A731C52-8DC6-47AB-B2BC-3FE70F6C6968}) (Version: 2.8.364 - Corel corporation) Hidden
CorelDRAW Graphics Suite 2018 - BR (x64) (HKLM\...\{575AFBB6-FDF0-4191-97D0-E109C1A53E9B}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Capture (x64) (HKLM\...\{57B35A9E-2E5C-4CE4-AE54-61B02500ED6C}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Common (x64) (HKLM\...\{C9E9E21E-E375-4BAF-B647-22ABA6ABBACF}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Connect (x64) (HKLM\...\{BCAF055A-51F2-4266-BC27-E67AFE02B1CE}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - CS (x64) (HKLM\...\{71C1FD4A-E7D1-4C24-82AE-D4A07516B6DD}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - CT (x64) (HKLM\...\{D251081C-25F7-4EFA-9DF3-C3D3F751CFB2}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Custom Data (x64) (HKLM\...\{098FFEC8-98D9-4DE0-BC3F-B5A94547FF73}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - CZ (x64) (HKLM\...\{1EE74A96-A900-4607-9D63-25F120E19CC4}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - DE (x64) (HKLM\...\{78A4A2EA-7C1D-48A9-92F2-FF60E098EF53}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Docs (x64) (HKLM\...\{74127108-BAE6-4A9E-BE10-931292D9E1AC}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Draw (x64) (HKLM\...\{121B4D48-BDC1-4037-B150-28037FA47510}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - EN (x64) (HKLM\...\{FBA611A2-4060-4FF5-8A32-3A710A347EDA}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - ES (x64) (HKLM\...\{AF2C3573-F52E-4B52-AED8-58F14E626002}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Filters (x64) (HKLM\...\{9433E8C4-DD2E-40BE-A1AF-0832DFE89C92}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Font Manager (x64) (HKLM\...\{EFD5BDD5-CEF1-4209-ABF1-2387D0756D14}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - FR (x64) (HKLM\...\{F4A5C1FF-1BEB-40D1-81F7-460F4021AD76}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - IPM (x64) (HKLM\...\{A4DEA23F-2371-483E-93C1-1764CA80DDEF}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - IPM Content (HKLM-x32\...\{A6AF1536-0A19-42C7-8009-06AAE797FAFC}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - IT (x64) (HKLM\...\{8A87BFC9-69B9-4A0A-9D3C-5A8884380DE0}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - JP (x64) (HKLM\...\{D202A107-A207-4A8C-ABE9-29640818EC4F}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - NL (x64) (HKLM\...\{65DC3D32-2462-49EC-9263-FB0A5056F899}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - PHOTO-PAINT (x64) (HKLM\...\{CA42C3C9-6A8C-423E-885E-064B06DAD20E}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - PL (x64) (HKLM\...\{217124CA-CFDD-410E-A7F9-C9D43137467E}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Redist (x64) (HKLM\...\{E442BB6A-268E-4864-9780-C0A4789DA64F}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - RU (x64) (HKLM\...\{EF129473-7919-4CDF-875A-ABF57158901D}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Setup Files (x64) (HKLM\...\{CBBC5C20-F3ED-4425-9393-F77D50036592}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - VBA (x64) (HKLM\...\{8FE99871-8AF0-449F-A1C4-F18EE971DC84}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Workspaces (x64) (HKLM\...\{94B3EE65-9BD2-4C39-9E43-E1403F6A82F4}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 - Writing Tools (x64) (HKLM\...\{F5CC82A3-6FF2-4D76-AC4F-3A7C63E3487C}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 (64-Bit) (HKLM\...\_{CBBC5C20-F3ED-4425-9393-F77D50036592}) (Version: 20.0.0.633 - Corel Corporation)
CorelDRAW Graphics Suite 2018 (HKLM\...\{5F18CC22-B399-48EC-BB9D-E92510E218EF}) (Version: 20.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite 2018 -TR (x64) (HKLM\...\{AFB3227A-5276-4E51-A305-A893531C4895}) (Version: 20.0 - Corel Corporation) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.5.1.0230 - Disc Soft Ltd)
Dashlane (HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\Dashlane) (Version: 6.1839.0.13410 - Dashlane, Inc.)
Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 5.15 - NCH Software)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 398.82 - NVIDIA Corporation) Hidden
Doxillion Document Converter (HKLM-x32\...\Doxillion) (Version: 3.05 - NCH Software)
Dropbox (HKLM-x32\...\Dropbox) (Version: 59.3.89 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.143.1 - Dropbox, Inc.) Hidden
Duplicate Cleaner Pro 4.0.5 (HKLM-x32\...\Duplicate Cleaner Pro) (Version: 4.0.5 - DigitalVolcano Software Ltd)
EaseUS Partition Master 11.9 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
EaseUS Todo Backup Home 11.5 Trial (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 11.5 - CHENGDU YIWO Tech Development Co., Ltd)
eEnjoy VIDEO DVR (HKLM-x32\...\{B6BF84B7-7CAF-4B3A-A46C-CF2E4BEF809D}) (Version: 2014.03.12 - eEnjoy)
Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation)
Everything 1.4.1.877 (x64) (HKLM\...\Everything) (Version: 1.4.1.877 (x64) - David Carpenter)
FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time)
Freemake Video Converter version 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation) Hidden
Golden Videos VHS to DVD Converter (HKLM-x32\...\GoldenVideos) (Version: 3.04 - NCH Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 69.0.3497.100 - Google Inc.)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Photos Backup (HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\Google Photos Backup) (Version: 1.1.4.11 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Hollywood FX Volumes 1-3 (HKLM-x32\...\{E3D181F8-246B-497F-945E-6DB98CBA6677}) (Version: 2.0.1 - Corel Corporation)
honestechTVR2.5 (HKLM-x32\...\{ABADD11D-1B48-4F23-BEBA-6B22CE8F5E58}) (Version: 2.5 - honestech)
honestechTVR2.5 (HKLM-x32\...\{B1DE0E2A-C1B1-4A61-A622-1F52CB37B183}) (Version: 2.5 - honestech) Hidden
Immobilier Loyer (HKLM-x32\...\ImmobilierLoyer) (Version: 3.4.3 - Immobilier Loyer)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4279 - Intel Corporation)
iZotope Music & Speech Cleaner (HKLM-x32\...\iZotope Music & Speech Cleaner_is1) (Version: 1.00 - iZotope, Inc.)
Java 10.0.2 (64-bit) (HKLM\...\{EECB2736-D013-5AC5-9917-7656712F6931}) (Version: 10.0.2.0 - Oracle Corporation)
Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation)
Java(TM) SE Development Kit 10.0.2 (64-bit) (HKLM\...\{71307D56-8005-5F5E-9227-BFA2754D6E54}) (Version: 10.0.2.0 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\OneDriveSetup.exe) (Version: 18.151.0729.0012 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2017 (HKLM-x32\...\{5a7dc0ad-cdb2-43b5-8b82-f81065fe6092}) (Version: 15.0.26717 - Microsoft Corporation)
Mises à jour NVIDIA 31.2.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.2.0.0 - NVIDIA Corporation) Hidden
Movavi Photo Editor 5 (HKLM-x32\...\Movavi Photo Editor 5) (Version: 5.1.0 - Movavi)
Movavi Video Converter 18 Premium (HKLM-x32\...\Movavi Video Converter 18 Premium) (Version: 18.1.2 - Movavi)
Movavi Video Editor 14 Plus (x64) (HKLM\...\Movavi Video Editor 14 Plus (x64)) (Version: 14.5.0 - Movavi)
Mozilla Firefox 62.0.3 (x64 fr) (HKLM\...\Mozilla Firefox 62.0.3 (x64 fr)) (Version: 62.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.3.6848 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 fr)) (Version: 52.9.1 - Mozilla)
MyRoute-app (HKLM-x32\...\{E3DB1CE9-7D21-420A-8934-27651ADCC336}) (Version: 4.4 - MyRouteApp BV)
NVIDIA CUDA Toolkit (HKLM-x32\...\{AF68235B-7FA7-4B91-AD10-C22867154174}) (Version: 3.1 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.14.1.48 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.14.1.48 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
NVIDIA Pilote graphique 352.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.84 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 352.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 352.84 - NVIDIA Corporation) Hidden
PaperScan 3 Professional Edition (HKLM-x32\...\{D28D46A4-5267-4DEC-96CA-A6F8659975D1}) (Version: 3.0.52 - ORPALIS)
PDF Shaper Professional 8.4 (HKLM-x32\...\PDF Shaper Professional_is1) (Version: - Burnaware)
PhotoFiltre 7 (HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\PhotoFiltre 7) (Version: - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pinnacle Creative Pack Volume 1 (HKLM-x32\...\{6A67F9B7-DFAF-490A-9B71-6109FA9606CE}) (Version: 4.0.0 - Corel Corporation)
Pinnacle MyDVD (HKLM-x32\...\{56435342-B072-4659-9E23-07526A54E364}) (Version: 2.0 - Pinnacle)
Pinnacle Studio 18 Add-Ons (HKLM-x32\...\{0BCCDCE5-D1AD-47A9-8864-D2A411403D89}) (Version: 18.0 - Corel) Hidden
Pinnacle Studio 21 - Standard Content Pack (HKLM-x32\...\{DB199FBB-76BB-4D03-9B11-DB25791440D4}) (Version: 21.0 - Corel Corporation)
Pinnacle Studio 21 (HKLM-x32\...\{41C196DB-9ED2-449E-A056-20E67255BFC8}) (Version: 21.5.0.10179 - Corel Corporation)
Premium Pack Volumes 1-2 (HKLM-x32\...\{88C4D8A6-9954-46A0-965D-92E55DAB8734}) (Version: 2.0.1 - Corel Corporation)
proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.108.2 - proDAD GmbH)
proDAD DeFishr 1.0 (HKLM-x32\...\proDAD-DeFishr-1.0) (Version: 1.0.71.1 - proDAD GmbH)
proDAD Heroglyph 4.0 (64bit) (HKLM\...\proDAD-Heroglyph-4.0) (Version: 4.0.255.1 - proDAD GmbH)
proDAD Mercalli 3.0 (64bit) (HKLM\...\proDAD-Mercalli-3.0) (Version: 3.0.258.2 - proDAD GmbH)
proDAD ProDRENALIN 1.0 (64bit) (HKLM\...\proDAD-ProDRENALIN-1.0) (Version: 1.0.74.2 - proDAD GmbH)
proDAD Vitascene 2.0 (HKLM-x32\...\proDAD-Vitascene-2.0) (Version: 2.0.251 - proDAD GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
RecordPad Sound Recorder (HKLM-x32\...\Recordpad) (Version: 5.35 - NCH Software)
Revo Uninstaller Pro 3.1.4 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.4 - VS Revo Group, Ltd.)
Route Generator (HKLM-x32\...\Route Generator) (Version: - )
ScoreFitter Volumes 1-2 (HKLM-x32\...\{0FDA9ECA-6DA3-480E-B7A9-76F353AF6B6C}) (Version: 2.0.1 - Corel Corporation)
Screenpresso (HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\Screenpresso) (Version: 1.7.2.0 - Learnpulse)
ShowBiz (HKLM-x32\...\InstallShield_{9D41D2EF-2D33-4CFD-8A3E-C7E6FCC3303B}) (Version: 5.0.1.420 - ArcSoft)
Skype version 8.27 (HKLM-x32\...\Skype_is1) (Version: 8.27 - Skype Technologies S.A.)
Sunny Explorer (HKLM-x32\...\{1B02C153-10F4-49F0-A12F-43C5357753EC}) (Version: 1.07.29.4 - SMA Solar Technology AG)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Title Extreme (HKLM-x32\...\{F7214014-27EE-4237-9978-2F9D1551559B}) (Version: 2.0.1 - Corel Corporation)
TomTom HOME (HKLM-x32\...\{9F1953B3-B0EE-402C-A29F-A8AB775A6D1D}) (Version: 2.11.3 - Nom de votre société)
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.2 - TrueCrypt Foundation)
Tyre (HKLM-x32\...\Tyre_is1) (Version: 7.0.0.11 - 't Schrijverke)
Vasco da Gama 10 HDPro Demo (HKLM-x32\...\{48C0451E-986B-4568-9BA3-06DF91E20E0C}) (Version: 10.00.0000 - MotionStudios)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.22 - IDRIX)
VH Toolkit 1.0.46.0 (HKLM-x32\...\VH Toolkit_is1) (Version: - Hmelyoff Labs)
Virtual VCR (HKLM-x32\...\{14F06853-8A15-4731-BBDC-C9B40A866A63}) (Version: - www.digtv.ws)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VueScan x64 (HKLM\...\VueScan x64) (Version: - Hamrick Software)
WebAcappella4 (HKLM-x32\...\WebAcappella4_is1) (Version: - Intuisphere)
Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - CACE Technologies)
WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CD}) (Version: 16.0.9715 - WinZip Computing, S.L. )

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Michel HP\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001_Classes\CLSID\{EA724FD3-844D-43A9-A8C9-A5BC35FC20E4}\InprocServer32 -> C:\Users\Michel HP\AppData\Local\Google\Update\1.3.33.17\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001_Classes\CLSID\{F09690BD-582D-4439-B6ED-5C2545D2F424}\InprocServer32 -> C:\Windows\system32\kernel32.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-08-20] ()
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-08-20] ()
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-08-20] ()
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2018-08-20] ()
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-05-30] (Google)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-08-14] (CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-03-08] (WinZip Computing, S.L.)
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-08-14] (CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-05-30] (Google)
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-08-14] (CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-03-08] (WinZip Computing, S.L.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll [2018-09-25] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-09-09] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-05-10] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems Inc.)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group)
ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2012-03-08] (WinZip Computing, S.L.)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {04BCB5EE-E3A8-4EDC-9A53-D0A0F2A76986} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-25] (Microsoft Corporation)
Task: {12421FA9-5D80-445D-A716-5281B060C824} - System32\Tasks\NCH Software\ClassicFTPSevenDays => C:\Program Files (x86)\NCH Software\ClassicFTP\ClassicFTP.exe [2016-08-24] (NCH Software)
Task: {1D977933-69FC-4477-92CA-680784D8D2A7} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-07-18] (Dropbox, Inc.)
Task: {216B80B7-13C2-4967-BB1C-2375550A60F4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2273347787-3330624853-3301766171-1001Core1d44e7fc5c48a12 => C:\Users\Michel HP\AppData\Local\Google\Update\GoogleUpdate.exe [2018-09-17] (Google Inc.)
Task: {29787E26-3BD6-43C2-9722-25D740D1C8AE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2273347787-3330624853-3301766171-1001Core => C:\Users\Michel HP\AppData\Local\Google\Update\GoogleUpdate.exe [2018-09-17] (Google Inc.)
Task: {35BC3B1C-1E93-440B-9421-75DB4AD1667D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-30] (NVIDIA Corporation)
Task: {3699074A-94F2-4F2A-B896-8EA6DC97EE7E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-19] (Google Inc.)
Task: {3D31D1A3-3D60-4A27-91B5-A19C0DD73928} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2018-07-30] (NVIDIA Corporation)
Task: {3E149A9F-EA06-4910-AD0A-6C88C63FAED2} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2018-07-30] (NVIDIA Corporation)
Task: {3FFE965C-A8CF-466F-8CBC-5317BAB185B0} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {40D59CC4-91BB-45F8-9300-E97C806E8519} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {461501EC-BD21-4A20-BA78-9C38A450B9E6} - System32\Tasks\madam_demingmadam_deming => C:\Program Files (x86)\Agriculturalists\Breakpoints.exe
Task: {46A69C99-B175-4E73-A25E-FCD94ADA18F0} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {4E3F53B5-D5ED-42CC-A2B2-2D04060FD000} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-07-19] (Google Inc.)
Task: {4F1A7FCA-35A7-4212-932C-1C29EFB5DD00} - System32\Tasks\counterrevolutionary decongestants generalitiescounterrevolutionary decongestants generalities => C:\Users\Michel HP\AppData\Local\Breakpoints.exe
Task: {59B19054-6625-4573-9890-169E3B1AD3FF} - System32\Tasks\NCH Software\DebutLikeSurvey => C:\Program Files (x86)\NCH Software\Debut\Debut.exe [2018-09-05] (NCH Software)
Task: {6120168E-6ABB-464B-A021-D35981F4042D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation)
Task: {629D082D-0A46-4E65-935C-B9DA3ADC3610} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2018-07-18] (Dropbox, Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\Windows\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {694471F4-4BA9-4FB6-92D1-348D77D54E77} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {6FFEC50C-70B2-4801-8973-F917DEDC4336} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-06-27] (Piriform Ltd)
Task: {74DD7018-F109-48A4-99F3-D9D56F312D1C} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-micmaz81@gmail.com => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2018-09-10] (Adobe Systems, Incorporated)
Task: {80E591F3-3C58-45D5-85E4-F5C63C78E74E} - System32\Tasks\apostolate_entinapostolate_entin => C:\Program Files (x86)\Hatt\Baptised.exe
Task: {832373A3-DA36-4A99-8A26-456254888AEE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-25] (Microsoft Corporation)
Task: {877B3196-EE18-472F-BF87-F4BB27230E66} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-06-27] (Piriform Ltd)
Task: {8DE96732-E5FE-4B85-AE4F-54B9BCEE8A90} - System32\Tasks\salinitysalinity => C:\Program Files (x86)\Flexibility\ballin.exe
Task: {9A72BC7D-D3EA-4B8B-BF70-D5AC1A1BDA54} - System32\Tasks\spicingspicing => C:\Program Files (x86)\catalogues\catalogues.exe
Task: {9E402E4A-70BB-431A-8E0F-8087BF455D67} - System32\Tasks\NCH Software\DebutSevenDays => C:\Program Files (x86)\NCH Software\Debut\Debut.exe [2018-09-05] (NCH Software)
Task: {A1512C20-6F67-499C-8AEB-F4F7906EB8C9} - System32\Tasks\SmartStats Service => C:\Users\Michel HP\AppData\Local\SmartStats\smassvc.exe
Task: {A221B62A-2E27-44E6-836F-7A813A810AFB} - System32\Tasks\ap-divisorsap-divisors => C:\Program Files (x86)\chummy\Placentas.exe
Task: {A58AADC2-EE28-49CB-B450-7D48F7230984} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2273347787-3330624853-3301766171-1001UA1d44e7fc5ef715b => C:\Users\Michel HP\AppData\Local\Google\Update\GoogleUpdate.exe [2018-09-17] (Google Inc.)
Task: {AB6F37A7-5171-423D-8AC0-38563E75C5DC} - System32\Tasks\loving inaudibly fontaineloving inaudibly fontaine => C:\Users\Michel HP\AppData\Local\Baptised.exe
Task: {ABDE33DB-F28E-49BF-BE58-BC2BDF0173AB} - System32\Tasks\tanningtanning => C:\Program Files (x86)\Tame\Breakpoints.exe
Task: {B01F21DC-CB71-4248-9BF9-A13713515715} - System32\Tasks\Chameleon Folder-Michel HP => "C:\Program Files (x86)\Chameleon Explorer\ChameleonFolder.exe"
Task: {B1CF4915-5F25-4CEC-92F3-FB1EE6FE2199} - System32\Tasks\nonmembersnonmembers => C:\Program Files (x86)\job\job.exe
Task: {B973E5EA-DA79-4BF1-9CE3-BECAD7302083} - System32\Tasks\triertrier => C:\Program Files (x86)\Translators\keeney.exe
Task: {BDAE1A6F-234F-4BA5-B800-CDBE059E8CB9} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2018-07-30] (NVIDIA Corporation)
Task: {C1BD6B44-D7A1-49D7-B58E-39C5A8B5EF90} - System32\Tasks\criollo-nefcriollo-nef => C:\Program Files (x86)\microchip\Ahlers.exe
Task: {C34712FE-8A61-45A4-A7A7-8880325106BE} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2018-07-30] (NVIDIA Corporation)
Task: {C87339EA-749C-4215-A608-AC6576709322} - System32\Tasks\NCH Software\DoxillionSevenDays => C:\Program Files (x86)\NCH Software\Doxillion\Doxillion.exe [2018-08-22] (NCH Software)
Task: {C90847F0-D99B-4526-8549-4C62E74D986E} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2018-09-22] ()
Task: {CB50978E-F7C9-451A-B13C-994612109EF2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2273347787-3330624853-3301766171-1001UA => C:\Users\Michel HP\AppData\Local\Google\Update\GoogleUpdate.exe [2018-09-17] (Google Inc.)
Task: {CF54AF42-A838-4E95-9DEF-B0E0BC042FEB} - System32\Tasks\NCH Software\GoldenVideosSevenDays => C:\Program Files (x86)\NCH Software\GoldenVideos\GoldenVideos.exe [2016-08-24] (NCH Software)
Task: {D8AFE981-4CC8-4150-9687-7AA8A6511BF5} - System32\Tasks\luxemburg_whimperluxemburg_whimper => C:\Users\Michel HP\AppData\Local\Placentas.exe
Task: {DB05B954-5BEB-4B54-9636-4B4E3C90503E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-25] (Microsoft Corporation)
Task: {DEE9CA79-BD3C-4F96-8B64-125348512F66} - System32\Tasks\fastball thodefastball thode => C:\Program Files (x86)\Agriculturalists\Ahlers.exe
Task: {E271B180-8C8A-46E0-8F93-89548263F5D3} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1809.2-0\MpCmdRun.exe [2018-09-25] (Microsoft Corporation)
Task: {E506A0F6-820C-43A9-A86D-5009A8FF5E08} - System32\Tasks\biopharmaceuticalbiopharmaceutical => C:\Program Files (x86)\Banja\Baptised.exe
Task: {E6E2323E-1F1E-4E83-9D3D-031AAE7D0D4A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2018-07-30] (NVIDIA Corporation)
Task: {E897E255-E587-4FCA-8333-196B0370B947} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2018-07-30] (NVIDIA Corporation)
Task: {E983A664-850B-4783-BE1B-836D3776D694} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {EA17D966-6F6D-4A48-966D-C83AD207B23F} - System32\Tasks\cryptically vomitcryptically vomit => C:\Program Files (x86)\Hatt\Placentas.exe
Task: {F03D87F3-200F-4F82-B880-726DD919E8FD} - System32\Tasks\shortcutsshortcuts => C:\Program Files (x86)\Sault\balls.exe [2018-09-21] ()
Task: {FA92D3C8-3AF7-4345-8935-A16446A9EE8C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {FB37007A-1886-4DF1-9BBD-CE6703EAF240} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2015-07-31] (Microsoft Corporation)
Task: {FD9AAB14-7E2E-4222-BB88-76D8AA77A27D} - System32\Tasks\doored_safforddoored_safford => C:\Users\Michel HP\AppData\Local\Ahlers.exe

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


Shortcut: C:\Users\Michel HP\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Virtual VCR\Virtual VCR Web Site.lnk -> hxxp://www.digtv.ws

==================== Modules chargés (Avec liste blanche) ==============

2018-09-18 07:57 - 2015-05-10 21:41 - 000116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2018-08-19 11:50 - 2018-07-30 21:14 - 001314856 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\SYSTEM32\inputhost.dll
2018-09-30 00:43 - 2018-08-14 09:41 - 000270480 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
2018-06-18 19:31 - 2018-08-20 21:47 - 005833864 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-09-21 12:08 - 2018-09-21 12:08 - 000061432 _____ () C:\Program Files (x86)\Sault\balls.exe
2018-09-13 17:25 - 2018-08-31 05:12 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002068480 _____ () C:\Windows\ShellExperiences\PeopleCommonControls.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 001465856 _____ () C:\Windows\ShellExperiences\PeopleBarFlyout.dll
2018-07-14 19:53 - 2018-06-08 10:55 - 003037184 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.PeoplePicker.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000580608 _____ () C:\Windows\ShellExperiences\WindowsInternal.People.Relevance.QueryClient.dll
2018-10-04 03:20 - 2018-10-04 03:22 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2018-10-04 03:20 - 2018-10-04 03:22 - 000058880 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\ChakraBridge.dll
2018-10-04 03:21 - 2018-10-04 03:24 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2018-10-04 03:20 - 2018-10-04 03:22 - 010927104 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\LibWrapper.dll
2018-10-04 03:21 - 2018-10-04 03:24 - 002756096 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\skypert.dll
2018-10-04 03:21 - 2018-10-04 03:23 - 000683520 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-10-04 03:21 - 2018-10-04 03:24 - 000181248 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.30.98.1000_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2018-09-26 17:05 - 2018-09-26 17:08 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-09-26 17:05 - 2018-09-26 17:08 - 069128192 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-07-15 14:51 - 2018-07-15 14:57 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-09-26 17:05 - 2018-09-26 17:09 - 000010752 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-08-31 23:34 - 2018-09-01 00:11 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-07-15 14:51 - 2018-07-15 14:55 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-31 23:34 - 2018-09-01 00:54 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-21 07:08 - 2018-08-21 07:12 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-21 07:08 - 2018-08-21 07:12 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-07-15 14:51 - 2018-07-15 14:57 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-09-26 17:05 - 2018-09-26 17:09 - 014171648 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-31 23:34 - 2018-09-01 00:02 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-09-26 17:05 - 2018-09-26 17:05 - 002866176 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-31 23:34 - 2018-09-01 00:54 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 10:54 - 2018-07-27 10:57 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-09-26 17:05 - 2018-09-26 17:09 - 000145920 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\SKU.dll
2018-09-26 17:05 - 2018-09-26 17:07 - 000048128 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\ImageDecoding.dll
2018-09-26 17:05 - 2018-09-26 17:07 - 000094720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\MediaEngineVideoDataProvider.UWP.dll
2018-08-20 23:23 - 2018-08-20 23:23 - 003511448 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\atih_mms_addon.dll
2018-08-20 23:23 - 2018-08-20 23:23 - 001165832 _____ () C:\Program Files (x86)\Common Files\Acronis\Infrastructure\services_mms_addon.dll
2018-06-18 19:31 - 2018-06-18 19:31 - 000685488 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sqlite3.dll
2018-08-20 23:16 - 2018-08-20 23:16 - 022977464 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\ti_managers.dll
2018-08-20 22:05 - 2018-08-20 22:05 - 000415448 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\resource.dll
2018-08-20 22:08 - 2018-08-20 22:08 - 000155128 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\archive3_adapter.dll
2018-08-20 21:45 - 2018-08-20 21:45 - 000271392 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\pcs_io.dll
2018-08-20 21:48 - 2018-08-20 21:48 - 000042928 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\winpthreads4.dll
2018-08-20 21:49 - 2018-08-20 21:49 - 000225312 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\zstd.dll
2018-08-20 21:46 - 2018-08-20 21:46 - 001089608 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\schedule.dll
2018-08-20 21:35 - 2018-08-20 21:35 - 000143904 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\afcdpapi.dll
2018-06-18 19:31 - 2018-06-18 19:31 - 000255008 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\sync_agent_api.dll
2018-06-18 19:31 - 2018-06-18 19:31 - 000160168 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\libevent.dll
2018-09-30 00:44 - 2017-02-21 17:19 - 000083136 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000220304 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll
2018-08-19 11:50 - 2018-07-30 21:14 - 001032744 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\AcroTray.fra
2018-09-30 00:43 - 2018-08-14 09:38 - 000019600 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2018-09-30 00:44 - 2016-03-07 18:08 - 001291264 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2018-09-30 00:44 - 2004-10-05 03:08 - 000055808 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000024720 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000188560 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000195728 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000163472 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt_RTTO.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000055952 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000018064 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000058000 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000704144 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EuActiveOnline.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000487568 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EULicenseDLL.DLL
2018-09-30 00:43 - 2018-08-14 09:39 - 000021648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\fsclog.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000264336 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AuthorizedMng.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000112272 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CalcScheduleTime.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000085648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000032912 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000070800 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000169616 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000539280 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000078480 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000318608 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSUtil.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000211088 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000026256 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CallbackOperator.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000074384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000141968 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000089232 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 002458768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000266384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000162960 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000029328 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceAdapter.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000131216 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000026768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000024720 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000034448 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000054416 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000066192 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000026768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000072848 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000292496 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000078992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000021648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000138384 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000075408 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SqlExBrowser.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000585872 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SqlSMOCPlusPlus.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000119952 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSearch.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000045200 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000367760 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceManager.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000142992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Device.dll
2018-09-30 00:43 - 2018-08-14 09:40 - 000149136 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Partition.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000052368 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSystemAnalyser.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000064144 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FATFileSystemAnalyser.dll
2018-09-30 00:43 - 2018-08-14 09:38 - 000091792 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Common.dll
2018-09-30 00:43 - 2018-08-14 09:39 - 000058512 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSFileSystemAnalyser.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\TEMP:264B2CC4 [121]
AlternateDataStreams: C:\ProgramData\TEMP:B946D9EE [147]
AlternateDataStreams: C:\Users\Michel HP\Documents\Attestation Collecteam.pdf:com.dropbox.attributes [168]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\cleverreach.com -> hxxp://novastor.cleverreach.com
IE trusted site: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\google-analytics.com -> hxxp://google-analytics.com
IE trusted site: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\novastor.com -> hxxp://novastor.com
IE trusted site: HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\novastor.com -> hxxps://novastor.com

==================== Hosts contenu: ==========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-09-24 17:14 - 2018-10-02 22:39 - 000001297 _____ C:\Windows\system32\Drivers\etc\hosts

0.0.0.0 anchorfree.net
0.0.0.0 rss2search.com
0.0.0.0 techbrowsing.com
0.0.0.0 box.anchorfree.net
0.0.0.0 www.mefeedia.com
0.0.0.0 www.anchorfree.net
0.0.0.0 www.mefeedia.com
0.0.0.0 anchorfree.us
0.0.0.0 a433.com
0.0.0.0 anchorfree.net
0.0.0.0 rpt.anchorfree.net
0.0.0.0 delivery.anchorfree.us/land.php
0.0.0.0 hsselite.com
0.0.0.0 www.hsselite.com
127.0.0.1 keystone.mwbsys.com
127.0.0.1 telemetry.malwarebytes.com
127.0.0.1 fvc_stat.freemake.com

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Michel HP\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKLM\...\StartupApproved\StartupFolder: => "TVR Scheduler.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NAS Scheduler.lnk"
HKLM\...\StartupApproved\StartupFolder: => "BUFFALO NAS Navigator2.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NovaBACKUP Tray Control.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "Everything"
HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "Stauffer"
HKLM\...\StartupApproved\Run: => "Adroit"
HKLM\...\StartupApproved\Run: => "Hauling"
HKLM\...\StartupApproved\Run32: => "ABNotify"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Famille"
HKLM\...\StartupApproved\Run32: => "Reintegrate"
HKLM\...\StartupApproved\Run32: => "Decaying"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "EaseUS Cleanup"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "NAS Scheduler.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "midsmids.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "mids.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "BUFFALO NAS Navigator2.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "WindowsNetwork.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "combecombe.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\StartupFolder: => "combe.lnk"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "riyals"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "dostoyevsky"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Screenwriters"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Tortorella"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Unshaded"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Havemann"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Negros"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Unallocated"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "networkfx.exe"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "Google Update"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "confuse"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "reprising"
HKU\S-1-5-21-2273347787-3330624853-3301766171-1001\...\StartupApproved\Run: => "WinOff"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [TCP Query User{D19EF37F-B711-4023-BFA3-F3945848986E}C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{D2AF19F3-30BA-4C6C-8115-B83C8E5DF7E3}C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{681C992D-0286-4F27-94E2-DC689D376AC7}] => (Allow) C:\Program Files (x86)\ImmobilierLoyer\rocherdigital\apache\bin\apache.exe
FirewallRules: [{7BF7175F-9D34-4B40-A934-C1454A12C50C}] => (Allow) C:\Program Files (x86)\ImmobilierLoyer\rocherdigital\apache\bin\apache.exe
FirewallRules: [{785DF865-B776-42FB-ADAA-DBDA925953B0}] => (Allow) C:\Program Files (x86)\ImmobilierLoyer\rocherdigital\GUI.exe
FirewallRules: [{C0BAF65B-0907-4E60-B88A-F9E589BCC1DD}] => (Allow) C:\Program Files (x86)\ImmobilierLoyer\rocherdigital\GUI.exe
FirewallRules: [{CBFD03D7-E77E-43CE-ABA6-4E3132EE7F7A}] => (Allow) C:\Program Files (x86)\ImmobilierLoyer\rocherdigital\mysql\bin\mysqld.exe
FirewallRules: [{562CB665-9760-4FD5-A2F2-704D6380CB9C}] => (Allow) C:\Program Files (x86)\ImmobilierLoyer\rocherdigital\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{4792D30C-BA7F-4B50-B1E3-558C15558437}C:\program files (x86)\acronis\trueimagehome\trueimage.exe] => (Allow) C:\program files (x86)\acronis\trueimagehome\trueimage.exe
FirewallRules: [UDP Query User{04249CF6-A24B-413E-9C20-51B12DAF20B2}C:\program files (x86)\acronis\trueimagehome\trueimage.exe] => (Allow) C:\program files (x86)\acronis\trueimagehome\trueimage.exe
FirewallRules: [{82AFEBB0-DB56-4601-9E88-8FF6D76C8FB8}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
FirewallRules: [{8E5A9687-ADD3-449F-A949-0C1FF2E2F8C8}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{DB6E6949-DE4F-40FF-8752-4FB1E1DBB697}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
FirewallRules: [{984B0B66-1C19-4797-8F13-D260791739C1}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe
FirewallRules: [{FE64ECBF-0D0E-4720-AE3D-FD48C622C52F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
FirewallRules: [{EF470112-025A-43F6-BE4B-3A94F7C60F19}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe
FirewallRules: [{186C316F-99D4-4D29-9CD1-F90F2066C119}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe
FirewallRules: [{C52C4D16-8B25-4A2F-9A76-FA86F9DAC90E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe
FirewallRules: [{2AEBEC3E-DC9B-4E54-B34D-99FE720C11B3}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe
FirewallRules: [{A0CEDCF6-E795-4439-B12A-7CE80E67FFD4}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe
FirewallRules: [{4187012E-FF33-4FFF-9519-60A93562A0DF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe
FirewallRules: [{98762912-FC07-4382-BAF8-43A2EBEFABE4}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe
FirewallRules: [{336B4099-F9D8-40C6-80C5-81948ADE4450}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe
FirewallRules: [{3C20E8FB-89F1-4EB4-9FD9-852E615EE82C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe
FirewallRules: [{006FA67C-EE59-4A51-8419-741B9C9054BD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{E2C3736D-5ED6-4658-9594-ED2E5047B866}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3B809022-A4FF-424F-96BF-8D71A83C0227}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite 2018\Programs64\CorelDrw.exe
FirewallRules: [{C813BA8F-88AF-4931-84BA-634D0CF403E2}] => (Block) c:\Program Files\Corel\CorelDRAW Graphics Suite 2018\Programs64\CorelPP.exe
FirewallRules: [{77A35720-8F2B-4925-BF81-FE66B2B571EA}] => (Block) %ProgramFiles%\Corel\CorelDRAW Graphics Suite 2018\Programs64\CorelDRW.exe
FirewallRules: [{E8A9E09F-CA60-44B1-ADE6-D8A7CA0DFB0C}] => (Block) %ProgramFiles%\Corel\CorelDRAW Graphics Suite 2018\Programs64\BarCode.exe
FirewallRules: [{1031ADA7-9C12-41CD-B028-DAABEC67C8F3}] => (Block) %ProgramFiles%\Corel\CorelDRAW Graphics Suite 2018\Programs64\Capture.exe
FirewallRules: [{1F925A0A-7259-4115-98B7-0703EF65F0C0}] => (Block) %ProgramFiles%\Corel\CorelDRAW Graphics Suite 2018\Programs64\CorelPP.exe
FirewallRules: [{0691C79F-DF60-4247-BD82-ADC007B96E50}] => (Block) %ProgramFiles%\Corel\CorelDRAW Graphics Suite 2018\Programs64\CorelPP.exe
FirewallRules: [{AF9A2D6F-F939-4243-A8BE-5D0AD645D335}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{E1C8CA1A-D08C-4A48-81EA-24F67C6165A6}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{B6A95585-0253-4473-8DC6-9B0AC5241D99}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{3738A80F-44F1-41A6-9118-0EF5E2A3A4BD}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{372592E0-1F12-49E3-95DD-61A42B1E9758}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{CB40310C-D854-4FFE-9DDB-765A1056BF9A}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe
FirewallRules: [{BFD23B73-C639-43F9-962E-0C0BF2A35AF9}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{E2979B66-49C3-42FC-B673-F9AD238F6D94}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe
FirewallRules: [{128D4C57-4F5D-4A31-A386-C73F6FE6F9AC}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVC.exe
FirewallRules: [{B05A8561-466C-465F-82C9-227C940F3EEF}] => (Block) %ProgramFiles% (x86)\Freemake\Freemake Video Converter\FreemakeVideoConverter.exe
FirewallRules: [{034D03B2-CE55-4302-9451-D6A2E6FC77BF}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{6029BB81-E10A-4F9C-A4AA-203002B98D13}] => (Block) %ProgramFiles% (x86)\EaseUS\EaseUS Partition Master 11.9\bin\Main.exe
FirewallRules: [{52666E77-6AC2-431F-A67E-41334A8A93F1}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe
FirewallRules: [{0EAA2F36-9732-4BA0-A52C-CB6B994B0647}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe
FirewallRules: [{83BDEF0A-171B-4198-90AE-69CBED564608}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{99092072-BC71-44F9-BF7D-DBC9C3E82E4D}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{4066084F-3845-4DCE-AD80-930F95AECCEF}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{AF4FD199-A107-437A-BFE3-3E124B8F799D}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{D8C11FBC-7DCC-4A15-8BA3-420856E4545E}] => (Allow) C:\Program Files (x86)\BUFFALO\NASNAVI\NasNavi.exe
FirewallRules: [TCP Query User{B1060544-00DA-403F-A871-680A2F504FD8}C:\program files (x86)\buffalo\nasnavi\nasnavi.exe] => (Allow) C:\program files (x86)\buffalo\nasnavi\nasnavi.exe
FirewallRules: [UDP Query User{DF5E1F7C-C0C2-4091-8759-A135953098A0}C:\program files (x86)\buffalo\nasnavi\nasnavi.exe] => (Allow) C:\program files (x86)\buffalo\nasnavi\nasnavi.exe
FirewallRules: [{E7B045B2-FC8D-4C61-BB73-8236C5CB0144}] => (Allow) C:\program files (x86)\buffalo\nasnavi\nasnavi.exe
FirewallRules: [{50CE7557-A326-45AC-B273-11FD448964E6}] => (Allow) C:\program files (x86)\buffalo\nasnavi\nasnavi.exe
FirewallRules: [TCP Query User{B738A04B-0815-41D7-9AD9-DC5D58FED25D}C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{AA5D4F01-C6AE-4D45-849B-1DFB35D6C891}C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\michel hp\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{76B614A4-450B-4A89-B42E-EBBFE9FCCD75}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{D7EB2070-AC96-4EEB-B7AA-CC7D66884491}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe

==================== Points de restauration =========================

01-10-2018 08:30:47 Programme d’installation pour les modules Windows
02-10-2018 10:15:06 Programme d’installation pour les modules Windows
04-10-2018 23:14:04 Programme d’installation pour les modules Windows
06-10-2018 01:14:52 Programme d’installation pour les modules Windows

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (10/06/2018 01:17:33 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme SecHealthUI.exe version 10.0.17134.137 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 33ec

Heure de début : 01d45d01338b5d6c

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

ID de rapport : d8c3a7e7-ef44-482c-9b4b-0b3fef3edbdd

Nom complet du package défaillant : Microsoft.Windows.SecHealthUI_10.0.17134.1_neutral__cw5n1h2txyewy

ID de l'application relative au package défaillant : SecHealthUI

Error: (10/04/2018 10:06:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Microsoft.Photos.exe version 2018.18081.14710.0 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 1af8

Heure de début : 01d45bb23848a240

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe

ID de rapport : ff7ed2ef-f929-4e5b-8806-823036ad881e

Nom complet du package défaillant : Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe

ID de l'application relative au package défaillant : App

Error: (10/03/2018 11:32:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante PaintStudio.View.exe, version : 0.0.0.0, horodatage : 0x5b89e5b6
Nom du module défaillant : nvwgf2umx.dll, version : 9.18.13.5284, horodatage : 0x554fa558
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000e55b1
ID du processus défaillant : 0x3114
Heure de début de l’application défaillante : 0x01d45b607b77b05a
Chemin d’accès de l’application défaillante : C:\Program Files\WindowsApps\Microsoft.MSPaint_5.1809.1017.0_x64__8wekyb3d8bbwe\PaintStudio.View.exe
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\nvwgf2umx.dll
ID de rapport : 8b34ec69-be40-457f-85ed-6cdf65fc1715
Nom complet du package défaillant : Microsoft.MSPaint_5.1809.1017.0_x64__8wekyb3d8bbwe
ID de l’application relative au package défaillant : Microsoft.MSPaint

Error: (10/03/2018 09:15:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme SecHealthUI.exe version 10.0.17134.137 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 84b8

Heure de début : 01d45b4d634d963d

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

ID de rapport : 08ebd46e-12c3-45b0-bf4c-f5ed030c38f2

Nom complet du package défaillant : Microsoft.Windows.SecHealthUI_10.0.17134.1_neutral__cw5n1h2txyewy

ID de l'application relative au package défaillant : SecHealthUI

Error: (10/03/2018 09:17:52 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme firefox.exe version 62.0.3.6848 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 7b24

Heure de début : 01d45ae071d20400

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Program Files\Mozilla Firefox\firefox.exe

ID de rapport : 568bb166-2a39-4b4d-8ba1-681b326dd6c7

Nom complet du package défaillant :

ID de l'application relative au package défaillant :

Error: (10/03/2018 09:12:22 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Everything.exe version 1.4.1.877 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 69b0

Heure de début : 01d45ae70942e43a

Heure de fin : 212

Chemin d'accès de l'application : C:\Program Files\Everything\Everything.exe

ID de rapport : a52578f3-2d77-48e6-9906-9216744d3cd9

Nom complet du package défaillant :

ID de l'application relative au package défaillant :

Error: (10/03/2018 09:06:11 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme SecHealthUI.exe version 10.0.17134.137 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le panneau de configuration Sécurité et maintenance.

ID de processus : 44ac

Heure de début : 01d45ae75fba4ded

Heure de fin : 4294967295

Chemin d'accès de l'application : C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe

ID de rapport : b5300e0d-0b6c-42c8-95b3-b5f1f4dc0ae9

Nom complet du package défaillant : Microsoft.Windows.SecHealthUI_10.0.17134.1_neutral__cw5n1h2txyewy

ID de l'application relative au package défaillant : SecHealthUI

Error: (10/03/2018 03:01:48 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Microsoft.Photos.exe, version : 2018.18081.14710.0, horodatage : 0x5b9d00b1
Nom du module défaillant : SharedLibrary.dll, version : 1.7.25531.0, horodatage : 0x597af36c
Code d’exception : 0x00001007
Décalage d’erreur : 0x0000000000493b3f
ID du processus défaillant : 0x8f4
Heure de début de l’application défaillante : 0x01d45a974ea0ee33
Chemin d’accès de l’application défaillante : C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
Chemin d’accès du module défaillant: C:\Program Files\WindowsApps\Microsoft.NET.Native.Framework.1.7_1.7.25531.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
ID de rapport : 80c32e24-e034-4902-860f-02dac0559a64
Nom complet du package défaillant : Microsoft.Windows.Photos_2018.18081.14710.0_x64__8wekyb3d8bbwe
ID de l’application relative au package défaillant : App


Erreurs système:
=============
Error: (10/06/2018 07:00:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:58:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:56:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:54:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:52:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:50:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:48:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/06/2018 06:46:20 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-CF3L6MN)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


Windows Defender:
===================================
Date: 2018-10-05 01:32:53.742
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen!rfn&threatid=2147692398&enterprise=0
Nom : HackTool:Win32/Keygen!rfn
ID : 2147692398
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Michel HP\Desktop\Malwarebytes.Premium.3.5.1.2522.rar; file:_C:\Users\Michel HP\Desktop\Malwarebytes.Premium.3.5.1.2522.rar->Malwarebytes.Premium.3.5.1.2522.KaranPC\Fixed-URET.rar
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la signature : AV: 1.277.605.0, AS: 1.277.605.0, NIS: 1.277.605.0
Version du moteur : AM: 1.1.15300.6, NIS: 1.1.15300.6

Date: 2018-10-04 23:31:39.944
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {040C9754-EE18-4534-A715-CB0508A38B9C}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2018-10-04 08:29:52.625
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Neshta.C&threatid=2147603721&enterprise=0
Nom : Virus:Win32/Neshta.C
ID : 2147603721
Gravité : Grave
Catégorie : Virus
Chemin : containerfile:_C:\Users\Michel HP\Downloads\Adobe CC 2018 Collection For Windows (X64) October 2017 Setup + Crack\Adobe After Effects CC 2018 v15.0.0.180 Setup + Crack.zip; file:_C:\Users\Michel HP\Downloads\Adobe CC 2018 Collection For Windows (X64) October 2017 Setup + Crack\Adobe After Effects CC 2018 v15.0.0.180 Setup + Crack.zip->Crack/Adobe CC 2015 Universal Patcher 1.5/adobe.snr.patch-painter.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la signature : AV: 1.277.515.0, AS: 1.277.515.0, NIS: 1.277.515.0
Version du moteur : AM: 1.1.15300.6, NIS: 1.1.15300.6

Date: 2018-10-04 08:29:52.624
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Neshta.C&threatid=2147603721&enterprise=0
Nom : Virus:Win32/Neshta.C
ID : 2147603721
Gravité : Grave
Catégorie : Virus
Chemin : containerfile:_C:\Users\Michel HP\Downloads\Adobe CC 2018 Collection For Windows (X64) October 2017 Setup + Crack\Adobe After Effects CC 2018 v15.0.0.180 Setup + Crack.zip; file:_C:\Users\Michel HP\Downloads\Adobe CC 2018 Collection For Windows (X64) October 2017 Setup + Crack\Adobe After Effects CC 2018 v15.0.0.180 Setup + Crack.zip->Crack/Adobe CC 2015.5 XFORCE Activation/CreativeCloud_DesktopApplication/Adobe Creative Cloud Remover Cleaner.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la signature : AV: 1.277.515.0, AS: 1.277.515.0, NIS: 1.277.515.0
Version du moteur : AM: 1.1.15300.6, NIS: 1.1.15300.6

Date: 2018-10-04 08:29:52.623
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Virus:Win32/Neshta.C&threatid=2147603721&enterprise=0
Nom : Virus:Win32/Neshta.C
ID : 2147603721
Gravité : Grave
Catégorie : Virus
Chemin : containerfile:_C:\Users\Michel HP\Downloads\Adobe CC 2018 Collection For Windows (X64) October 2017 Setup + Crack\Adobe After Effects CC 2018 v15.0.0.180 Setup + Crack.zip; file:_C:\Users\Michel HP\Downloads\Adobe CC 2018 Collection For Windows (X64) October 2017 Setup + Crack\Adobe After Effects CC 2018 v15.0.0.180 Setup + Crack.zip->Crack/Adobe CC 2015.5 XFORCE Activation/CreativeCloud_DesktopApplication/CreativeCloudSet-Up.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la signature : AV: 1.277.515.0, AS: 1.277.515.0, NIS: 1.277.515.0
Version du moteur : AM: 1.1.15300.6, NIS: 1.1.15300.6

CodeIntegrity:
===================================

Date: 2018-09-24 12:01:50.444
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.434
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.425
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files\Google\Drive\googledrivesync64.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.377
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.362
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.348
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.332
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll that did not meet the Microsoft signing level requirements.

Date: 2018-09-24 12:01:50.317
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Dropbox\Client\DropboxExt64.25.0.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

Processeur: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 43%
Mémoire physique - RAM - totale: 8114.27 MB
Mémoire physique - RAM - disponible: 4550.7 MB
Mémoire virtuelle totale: 16818.27 MB
Mémoire virtuelle disponible: 13034.01 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:930.91 GB) (Free:117.98 GB) NTFS

\\?\Volume{ccfee69c-4563-4758-b2a7-1e1dc0b65ea9}\ (Récupération) (Fixed) (Total:0.49 GB) (Free:0.11 GB) NTFS
\\?\Volume{4e2bc6af-9516-4edc-aee4-e7c299814eb1}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 417F4B98)

Partition: GPT.

==================== Fin de Addition.txt ============================