Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12.02.2018
Ran by Administrator (13-02-2018 09:35:23)
Running from C:\Users\Administrator\Desktop
Windows 10 Pro Version 1703 15063.877 (X64) (2017-09-06 17:23:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2507382405-551696494-1844724230-500 - Administrator - Enabled) => C:\Users\Administrator
Carole (S-1-5-21-2507382405-551696494-1844724230-1007 - Limited - Enabled) => C:\Users\Carole
DefaultAccount (S-1-5-21-2507382405-551696494-1844724230-503 - Limited - Disabled)
Guest (S-1-5-21-2507382405-551696494-1844724230-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2507382405-551696494-1844724230-1003 - Limited - Disabled)
Laura (S-1-5-21-2507382405-551696494-1844724230-1005 - Limited - Enabled) => C:\Users\Laura
Nicolas (S-1-5-21-2507382405-551696494-1844724230-1006 - Limited - Enabled) => C:\Users\Nicolas
Richard (S-1-5-21-2507382405-551696494-1844724230-1001 - Limited - Enabled) => C:\Users\Richard

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-2507382405-551696494-1844724230-500\...\uTorrent) (Version: 3.4.2.35702 - BitTorrent Inc.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_0_1) (Version: 15.0.1 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated)
Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_0_1) (Version: 11.0.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_0_1) (Version: 8.0.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.0.294 - Adobe Systems Incorporated)
Adobe Dreamweaver CC 2018 (HKLM-x32\...\DRWV_18_0) (Version: 18.0 - Adobe Systems Incorporated)
Adobe Illustrator CC 2018 (HKLM-x32\...\ILST_22_0_1) (Version: 22.0.1 - Adobe Systems Incorporated)
Adobe InCopy CC 2018 (HKLM-x32\...\AICY_13_0_1) (Version: 13.0.1 - Adobe Systems Incorporated)
Adobe InDesign CC 2018 (HKLM-x32\...\IDSN_13_0_1) (Version: 13.0.1 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.7 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1) (Version: 19.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM\...\{7DC3F900-68E5-40F1-869D-9D20A69D8A1D}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
adsl TV (HKLM-x32\...\{3AFDD2C6-8663-46B5-B195-6CEB00D44768}) (Version: 2017.1 - adsl TV / FM)
Advanced IP Scanner 2.4 (HKLM-x32\...\{2F9C7771-D05A-4DBB-9736-C6B52E002F15}) (Version: 2.4.3021 - Famatech)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
Antidote 9 - English module (HKLM-x32\...\{BFA17B4C-70D3-480F-8476-76197F614AB8}) (Version: 9.03.3747 - Druide informatique inc.)
Antidote 9 - Module français (HKLM-x32\...\{BFA17B4C-70D3-480F-8476-76197F614AB7}) (Version: 9.03.3747 - Druide informatique inc.)
Antidote 9 (HKLM-x32\...\{BFA17B4C-70D3-480F-8476-76197F614AB6}) (Version: 9.03.3757 - Druide informatique inc.)
Assistant de téléchargement (HKLM-x32\...\{93154A3C-9BB7-49D7-A571-4EB6373FA600}) (Version: 6.1.0 - Druide informatique inc.)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 17.9.2322 - AVAST Software)
Backup and Sync from Google (HKLM-x32\...\{AC62F3F2-61A2-4357-93EC-C308E3FEDF4E}) (Version: 3.39.8370.7843 - Google, Inc.)
Balabolka (HKLM-x32\...\Balabolka) (Version: 2.11.0.612 - Ilya Morozov)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Brother MFL-Pro Suite DCP-9010CN (HKLM-x32\...\{A1BBEE16-49B1-42F2-95B8-54C8C6A1C0C3}) (Version: 3.0.3.0 - Brother Industries, Ltd.)
Camtasia 9 (HKLM\...\{9A1BFE8E-398E-497D-B3BE-C1D8688010FC}) (Version: 9.1.1.2546 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{d298a2fc-0b3a-45ab-9711-d5ca8a3bda00}) (Version: 9.1.1.2546 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.28 - Piriform)
Device Remover (HKLM\...\{EFA597E4-73D3-4142-90DB-BE28E5589F99}_is1) (Version: 0.9 - Kerem Gümrükcü)
DxO OpticsPro 11 (HKLM\...\{5EA49F02-6A59-43ED-87B9-616317B40900}) (Version: 11.4.2 - DxO)
DxO PhotoLab (HKLM\...\{CB5E1B64-66EC-4042-A970-A2B98ECD2ABA}) (Version: 1.1.1 - DxO)
EaseUS Todo Backup 10.5 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 10.5 - CHENGDU YIWO Tech Development Co., Ltd)
Ext2Fsd 0.68 (HKLM\...\Ext2Fsd_is1) (Version: 0.68 - Matt Wu)
FreeFileSync 9.2 (HKLM-x32\...\FreeFileSync_is1) (Version: 9.2 - www.FreeFileSync.org)
GDR 5343 pour SQL Server 2012 (KB3045321) (64-bit) (HKLM\...\KB3045321) (Version: 11.2.5343.0 - Microsoft Corporation)
GDR 5388 pour SQL Server 2012 (KB3194719) (64-bit) (HKLM\...\KB3194719) (Version: 11.2.5388.0 - Microsoft Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.140 - Google Inc.)
Google Earth Pro (HKLM\...\{D9EF644E-2FAE-493B-8180-5617CC774C4F}) (Version: 7.3.1.4507 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4338 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 7.2.0.11 - IObit)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
K-Lite Mega Codec Pack 10.1.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.1.0 - )
Lernout & Hauspie TruVoice American English TTS Engine (HKLM-x32\...\tv_enua) (Version: - )
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{619e726e-d2b4-4e28-9568-c964fd81ee6c}) (Version: 10.1.1.14 - Intel(R) Corporation) Hidden
Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech)
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.9001.2138 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2507382405-551696494-1844724230-500\...\OneDriveSetup.exe) (Version: 17.3.7294.0108 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C79A7EAB-9D6F-4072-8A6D-F8F54957CD93}) (Version: 10.0.1600.22 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{B40EE88B-400A-4266-A17B-E3DE64E94431}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (64-bit) (HKLM\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{2B9EE1FE-105F-4093-A40E-C1BF12F873B7}) (Version: 11.2.5388.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{C23DBA16-E075-41BE-AE2E-C1B0DD0B4535}) (Version: 11.2.5388.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{E721A8AA-2632-4798-B439-6D4C8A689BB8}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{9B3F0A88-790D-3AD9-9F96-B19CF2746452}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{4549ceb8-695a-42eb-a183-4820d542a15f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{3E0DD83F-BE4C-4478-86A0-AD0D79D1353E}) (Version: 11.2.5058.0 - Microsoft Corporation)
Module externe DxO OpticsPro 11 pour Adobe Lightroom (HKLM-x32\...\{13E8E1D4-CA2E-4A5C-BBD4-EB4F7CA66014}) (Version: 1.0.36 - DxO Labs)
Module externe DxO PhotoLab pour Adobe Lightroom (HKLM-x32\...\{91E4E071-DE20-45D9-91A1-F1A3BBD8333A}) (Version: 1.0.38 - DxO Labs)
Mozilla Firefox 58.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 58.0.1 (x64 fr)) (Version: 58.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 58.0.1.6602 - Mozilla)
Narzędzia sprawdzające pakietu Microsoft Office 2013 — polski (HKLM\...\{90150000-001F-0415-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Nero 2016 (HKLM-x32\...\{4297E807-5633-466A-8AC0-5AC48D310471}) (Version: 17.0.02000 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.4 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.9001.2138 - Microsoft Corporation) Hidden
PatchFrSvc (HKLM\...\{f3502388-23f3-474a-bf80-e28815b1d927}.sdb) (Version: - )
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.43 - VIA Technologies, Inc.) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.6 - Power Software Ltd)
Prerequisite installer (HKLM-x32\...\{5F284483-EE8D-447E-BEBE-2BF13B08C4BF}) (Version: 17.0.0002 - Nero AG) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
SafeInCloud Password Manager (HKLM-x32\...\{1AA1FC02-2D9D-4E49-9C79-C800233394B3}) (Version: 17.4.6 - Andrey Shcherbakov)
SafeZone Stable 4.58.2552.909 (HKLM-x32\...\SafeZone 4.58.2552.909) (Version: 4.58.2552.909 - Avast Software) Hidden
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.0.0.790 - Samsung Electronics)
Service Pack 2 pour SQL Server 2012 (KB2958429) (64-bit) (HKLM\...\KB2958429) (Version: 11.2.5058.0 - Microsoft Corporation)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
Snagit 9.1.3 (HKLM-x32\...\{5C47C8B6-77FF-4FC7-A388-66FCF9CFC24C}) (Version: 9.1.3.19 - TechSmith Corporation)
SQL Server 2012 Common Files (HKLM\...\{1D411379-9CE0-4B13-A19B-72D3222DD620}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Common Files (HKLM\...\{202AAF1F-69AA-442A-B59F-6B54B1AD07C6}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (HKLM\...\{18B2A97C-92C3-4AC7-BE72-F823E0BC895B}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (HKLM\...\{84FBCA4A-D650-4B0D-8094-EC0671FA9B91}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{54FF8FAB-DE27-4187-82F1-EBAE6AEE869A}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (HKLM\...\{6603C2CE-3C54-4F1D-92F9-8390CD4CCCA8}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM-x32\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.2.5058.0 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (HKLM\...\{BED1EA3D-592D-4305-9D1F-20F03726EFC1}) (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
Stashimi Stub Installer (HKLM-x32\...\{910B539D-F257-46C8-9CB8-6C95EFF9CF22}) (Version: 18.001.1 - Nero AG) Hidden
Streaming Audio Recorder V4.0.3 (HKLM-x32\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 4.0.3 - APOWERSOFT LIMITED)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
TeamViewer 5 (HKLM-x32\...\TeamViewer 5) (Version: 5.0.7687 - TeamViewer GmbH)
TSR Watermark Image software version 3.4.2.3 (HKLM-x32\...\TSR Watermark Image_is1) (Version: 3.4.2.3 - TSR Software)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{9C4F3AF4-21D8-43BD-A69C-517BB96012CF}) (Version: 2.12.0.0 - Microsoft Corporation)
VEGAS Pro 15.0 (HKLM\...\{994103F0-A214-11E7-AC33-AE6259437B87}) (Version: 15.0.216 - VEGAS)
VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.43 - VIA Technologies, Inc.)
VirtualDJ 8 (HKLM-x32\...\{5A89A21C-6391-4AFC-8502-66F6F7250125}) (Version: - )
VirtualDJ 8 (HKLM-x32\...\{661A505F-01EA-479D-A753-20EB80887843}) (Version: 8.2.3624.0 - Atomix Productions)
Visuel intégré (HKLM-x32\...\{D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}) (Version: 1.0.0006 - Druide informatique inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Wampserver64 3.0.6 (HKLM\...\{wampserver64}_is1) (Version: 3.0.6 - Dominique Ottello aka Otomatic)
Windows 10 Update and Privacy Settings (HKLM\...\{4DFCD818-036A-4229-A67D-CF17DC461D92}) (Version: 1.0.14.0 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-A60F94A42F24}\InprocServer32 -> %%systemroot%%\system32\shell32.dll => No File
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{144DF3B2-2402-47AE-9583-5A045929A8D4}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.33.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\MoteurIntegration.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\MoteurIntegration.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{91A41FCC-BC02-42D8-A36E-0D27FF9BFFC8}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\AgentAntidote.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\Antidote.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\Antidote.exe (Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-2507382405-551696494-1844724230-500_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Administrator\AppData\Local\Google\Update\1.3.33.7\psuser_64.dll (Google Inc.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-06-18] ()
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software)
ContextMenuHandlers1: [Balabolka] -> {6CB83A5A-AA68-4895-9F54-175E789AE149} => C:\Program Files (x86)\Balabolka\BFileExt.dll [2013-02-28] (Ilya Morozov)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-01-29] (Google)
ContextMenuHandlers1: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2017-03-31] (CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2017-03-31] (CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-01-29] (Google)
ContextMenuHandlers4: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\ProgramData\MEGAsync\ShellExtX64.dll [2017-10-18] ()
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2017-03-31] (CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2015-11-04] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> No File
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => -> No File
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-01-04] ()
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-16] (Adobe Systems Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-12-21] (AVAST Software)
ContextMenuHandlers6: [IObitUnstaler] -> {B19ED566-D419-470b-B111-3C89040BC027} => C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMenuRight.dll [2017-05-22] (IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2016-05-25] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-15] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02475B4F-0109-40EC-AE36-8187E172F034} - \WPD\SqmUpload_S-1-5-21-2507382405-551696494-1844724230-1006 -> No File <==== ATTENTION
Task: {25C4E9F1-FFEE-46B9-8C21-E73EC1329C17} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-06] (Microsoft Corporation)
Task: {2F03A600-405B-4165-9D2F-1F7D5EED8CA5} - \WPD\SqmUpload_S-1-5-21-2507382405-551696494-1844724230-1005 -> No File <==== ATTENTION
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe
Task: {365842B2-C3F4-44B9-93C7-4BA5B59767D9} - System32\Tasks\Synchronisation 'Session Richard' avec le Serveur => C:\Program Files\FreeFileSync\FreeFileSync.exe [2017-07-03] (www.FreeFileSync.org)
Task: {3868180F-CD59-4446-A521-EF8615C0261C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-01-09] (AVAST Software)
Task: {3B119825-6466-4739-82AE-58EBBD2AEC2E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {3B3B17D4-E40F-4E1C-B1AB-53953295C4A6} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-30] (Microsoft Corporation)
Task: {3BFA0040-CE3D-45CB-B7F7-2DF11747DB10} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3F75A95E-6BCC-4037-B359-AE56C3EC8BA3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-15] (Google Inc.)
Task: {41477EB4-6EAB-45E8-9E19-664ACE639ED3} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {43B1DD7F-26D6-41B9-8B32-E6E64DCEAE6B} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-02-06] (Microsoft Corporation)
Task: {48166DAF-00AB-44B0-9E61-698FA121F232} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {49A95D38-0B23-45D9-88C3-08038D74384B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2018-01-11] (Microsoft Corporation)
Task: {4B4E2551-96C1-4DF6-98B9-349FFFFDB6DD} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe
Task: {52E1B107-4311-43D9-BAC9-0EA0E9182BA0} - System32\Tasks\SafeZone scheduled Autoupdate 1464215436 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-08-04] (Avast Software)
Task: {572858C6-1C42-462D-95AC-4423C2A8BE8E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-02-06] (Microsoft Corporation)
Task: {57D0F4D6-0507-43E4-A4CE-F40B19FC022E} - System32\Tasks\Uninstaller_SkipUac_Richard => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2017-12-12] (IObit)
Task: {59F58387-DFF2-4E8A-A7D4-547AFF2FB7D5} - System32\Tasks\{047F5AB3-F2EE-47A8-BB28-3E042B0811FC} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe -c /M{457D7505-D665-4F95-91C3-ECB8C56E9ACA}
Task: {5A3F3F4D-8934-47D7-BD32-66DE92FD0AD4} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2017-12-12] (IObit)
Task: {5E84D04F-D231-47A5-853D-CABCA9F48A03} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-02-06] (Microsoft Corporation)
Task: {61717C18-0231-42D8-B5A0-3C0A0435E573} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {668CE3B9-413A-4527-9253-E886977241D5} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {68B217AD-F236-4244-8C58-81594F0F9DCF} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-01-30] (Microsoft Corporation)
Task: {6F2EFF9C-D7D7-4808-870B-4BAB89D66E05} - System32\Tasks\Synchronisation 'Session Admin' avec le Serveur => C:\Program Files\FreeFileSync\FreeFileSync.exe [2017-07-03] (www.FreeFileSync.org)
Task: {7BB204C2-BA32-40A0-A57C-F835ED8574E1} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {7D6CD883-B591-45E3-A6B5-ECF0D6F7A5B4} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2017-02-22] (Samsung Electronics Co. Ltd.)
Task: {8D9C5864-5A73-46CE-94CF-871B53FBB691} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {92CA13DC-E1BF-4AA0-AD78-0712BE2512C8} - \WPD\SqmUpload_S-1-5-21-2507382405-551696494-1844724230-1001 -> No File <==== ATTENTION
Task: {92CA275F-352B-456C-8130-A0480CE691E7} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)
Task: {99DD9CB8-84CA-41FA-AACC-1A76295D6000} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {AD0827F6-1428-480C-8736-D52B546F8DBC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B1AD1E19-C359-46BA-BF8F-0640DD21A225} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {B22DB173-1623-4348-941F-207AFAE22E1D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-03-03] (Piriform Ltd)
Task: {D0ADDDBE-7E07-499F-9E25-F2DEF03DC922} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DF0CEEB8-FBD6-4255-B842-95754FAE1CD9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-12-21] (AVAST Software)
Task: {DF4FDE8E-D9F2-4FF8-B55A-CCD927089C7E} - System32\Tasks\{D7F5D1A4-255B-4ABB-A057-1FA6E2691C4D} => C:\Windows\system32\pcalua.exe -a D:\run.exe -d D:\
Task: {E1572061-0804-41D7-BFC6-9984DBC6E208} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500UA => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-15] (Google Inc.)
Task: {E1CE496F-5752-4E03-B3B6-60BF14110F0C} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E399F701-6728-4BC9-8FE5-8200AA831070} - System32\Tasks\Driver Booster SkipUAC (Administrator) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {E7A46AB4-31A6-4AEA-AB16-4B70F17AC6D9} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe
Task: {EAE1D5D0-44D1-46A4-8431-E7EE24C44F6C} - \WPD\SqmUpload_S-1-5-21-2507382405-551696494-1844724230-1007 -> No File <==== ATTENTION
Task: {EC4D26DB-4819-49B4-A785-F0E8B6168728} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {F1056D65-2FD0-4E5A-8267-C785F425E11E} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-03] (Google Inc.)
Task: {F904906D-109D-4BB3-A5C7-429E7E4CD077} - System32\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c => C:\Program Files (x86)\Innovative Solutions\DriverMax\innostp.exe
Task: {FE6AEA49-2E0C-46F1-B7B0-8E2416868AEA} - System32\Tasks\Synchronisation 'Session Carole' avec le Serveur => C:\Program Files\FreeFileSync\FreeFileSync.exe [2017-07-03] (www.FreeFileSync.org)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core1d0ef915b9e053.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core1d131e591193dc3.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core1d172466ac3665d.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core1d1b4df1b64f9b7.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500Core1d1fe50c7c2c717.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2507382405-551696494-1844724230-500UA.job => C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Обновление Браузера Яндекс .job => C:\Users\Administrator\AppData\Local\Yandex\YandexBrowser\Application\browser.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\Application Shortcuts\Chrome\Яндекс.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== Cyrillic
Shortcut: C:\Users\Administrator\AppData\Local\Microsoft\Windows\Application Shortcuts\Chrome\Яндекс.Почта.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== Cyrillic
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

==================== Loaded Modules (Whitelisted) ==============

2018-02-11 16:12 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-02-11 16:12 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2013-12-01 11:46 - 2005-04-22 13:36 - 000143360 _____ () C:\Windows\system32\BrSNMP64.dll
2017-12-21 18:29 - 2017-12-21 18:29 - 000067984 _____ () C:\Program Files\AVAST Software\Avast\x64\dll_loader.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\Windows\SYSTEM32\inputhost.dll
2017-10-18 22:51 - 2017-10-18 22:51 - 000598528 _____ () C:\ProgramData\MEGAsync\ShellExtX64.dll
2018-01-04 09:04 - 2018-01-04 09:04 - 000649672 _____ () C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll
2017-06-18 22:44 - 2017-06-18 22:44 - 000230064 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll
2017-03-18 21:59 - 2017-03-20 04:43 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-02-07 01:01 - 2018-02-07 01:02 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-02-07 01:01 - 2018-02-07 01:02 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-02-07 01:01 - 2018-02-07 01:02 - 025135104 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-02-07 01:01 - 2018-02-07 01:02 - 002542592 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1803.279.0_x64__kzf8qxf38zg5c\skypert.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000087368 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libQtDispatchDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000106824 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libwebsocketsDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000467784 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_locale-vc120-mt-1_58-Druide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000088392 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libxdispatchDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000063816 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\libdispatchDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000025928 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_system-vc120-mt-1_58-Druide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000036168 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_chrono-vc120-mt-1_58-Druide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000108360 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\boost_thread-vc120-mt-1_58-Druide9.dll
2015-12-07 12:06 - 2015-12-07 12:06 - 000078664 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\LibrairiesQt\libEGL.dll
2015-12-07 12:06 - 2015-12-07 12:06 - 001793352 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\LibrairiesQt\libGLESv2.dll
2016-02-24 13:05 - 2016-02-24 13:05 - 000116688 _____ () C:\Program Files (x86)\Druide\Antidote 9\LingEN\Bin64\libYamChaDruide9.dll
2017-12-26 18:33 - 2017-09-13 13:07 - 000261264 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
2017-03-03 19:09 - 2017-03-03 19:09 - 000073728 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2013-12-01 11:46 - 2012-09-25 11:26 - 001163264 _____ () C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe
2017-12-26 18:33 - 2017-02-21 17:19 - 000083136 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000019648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2017-12-26 18:33 - 2016-10-31 14:03 - 001291264 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2017-12-26 18:33 - 2016-10-31 14:03 - 000055808 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000090816 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000024768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000189120 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2017-12-26 18:33 - 2017-03-30 09:02 - 000183488 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000164032 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt_RTTO.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000056000 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000018112 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2017-12-26 18:33 - 2017-03-29 03:09 - 000123584 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000021696 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\fsclog.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000085696 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000032960 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000070848 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000160448 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2017-12-26 18:33 - 2017-03-29 03:09 - 000296640 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000078528 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000305856 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSUtil.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000210624 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000026304 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CallbackOperator.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000074432 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000142016 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000040128 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2017-12-26 18:34 - 2016-10-31 16:06 - 000301760 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExchBackupSize.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000844992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2017-12-26 18:34 - 2016-11-10 14:33 - 000479424 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExchBackupSizeEx.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000195776 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000419520 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
2017-12-26 18:33 - 2017-03-29 03:09 - 000162496 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000029376 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceAdapter.dll
2017-12-26 18:33 - 2016-12-02 10:51 - 000114368 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileStorage.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000026816 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000022720 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2017-12-26 18:33 - 2017-03-29 03:09 - 000034496 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000054976 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000066240 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2017-12-26 18:33 - 2017-10-20 15:28 - 000026768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000072896 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000221376 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000079040 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2017-12-26 18:33 - 2016-10-31 16:05 - 000020672 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000138432 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000021696 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
2017-12-26 18:33 - 2017-03-29 03:10 - 000074944 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SqlExBrowser.dll
2017-12-26 18:33 - 2017-03-31 10:45 - 000585920 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SqlSMOCPlusPlus.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000045248 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2017-12-26 18:33 - 2017-03-29 03:09 - 000367808 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceManager.dll
2017-12-26 18:33 - 2017-03-29 03:09 - 000141504 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Device.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000149184 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Partition.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000052416 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSystemAnalyser.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000064192 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FATFileSystemAnalyser.dll
2017-12-26 18:33 - 2016-10-31 16:06 - 000091840 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Common.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000058560 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSFileSystemAnalyser.dll
2017-02-05 00:58 - 2017-05-22 11:16 - 000442144 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2017-02-05 00:58 - 2017-05-22 11:16 - 000210720 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madBasic_.bpl
2017-02-05 00:58 - 2017-05-22 11:16 - 000059680 _____ () C:\Program Files (x86)\IObit\IObit Uninstaller\madDisAsm_.bpl
2013-12-01 11:14 - 2013-09-16 12:19 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000076616 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\libQtDispatchDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000091976 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\libwebsocketsDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000373576 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\boost_locale-vc120-mt-1_58-Druide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000077128 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\libxdispatchDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000054600 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\libdispatchDruide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000022856 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\boost_system-vc120-mt-1_58-Druide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000033096 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\boost_chrono-vc120-mt-1_58-Druide9.dll
2015-10-21 18:49 - 2015-10-21 18:49 - 000089928 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\boost_thread-vc120-mt-1_58-Druide9.dll
2015-12-07 12:06 - 2015-12-07 12:06 - 000065352 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\LibrairiesQt\libEGL.dll
2015-12-07 12:06 - 2015-12-07 12:06 - 001463624 _____ () C:\Program Files (x86)\Druide\Antidote 9\Application\Bin32\LibrairiesQt\libGLESv2.dll
2017-12-26 18:33 - 2016-10-31 16:07 - 000211648 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll
2017-12-21 18:28 - 2017-12-21 18:28 - 000206152 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-12-21 18:28 - 2017-12-21 18:28 - 000058016 _____ () C:\Program Files\AVAST Software\Avast\module_lifetime.dll
2017-12-21 18:28 - 2017-12-21 18:28 - 000057504 _____ () C:\Program Files\AVAST Software\Avast\dll_loader.dll
2017-07-10 11:51 - 2017-07-10 11:51 - 067109376 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-12-21 18:29 - 2017-12-21 18:29 - 000289272 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2017-12-21 18:28 - 2017-12-21 18:28 - 000282560 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2013-12-01 11:46 - 2009-02-27 16:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:3F30E778 [144]
AlternateDataStreams: C:\ProgramData\TEMP:A9967A61 [139]
AlternateDataStreams: C:\ProgramData\TEMP:F4C624DE [123]
AlternateDataStreams: C:\Users\Carole\Documents\detailPaiementsecu8.jpeg:3or4kl4x13tuuug3Byamue2s4b [87]
AlternateDataStreams: C:\Users\Carole\Documents\detailPaiementsecu8.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-12-01 11:05 - 2018-02-11 14:24 - 000001589 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost
127.0.0.1 idb.iobit.com
127.0.0.1 asc55.iobit.com
127.0.0.1 is360.iobit.com
127.0.0.1 asc.iobit.com
127.0.0.1 pf.iobit.com
127.0.0.1 iunins.iobit.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 tsccloud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com
127.0.0.1 www.techsmith.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 updater.techsmith.com
127.0.0.1 camtasiatudi.techsmith.com
127.0.0.1 tsccloud.cloudapp.net
127.0.0.1 assets.cloud.techsmith.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2507382405-551696494-1844724230-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.10.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupreg: Acrobat Assistant 8.0 => "c:\program files (x86)\adobe\acrobat dc\acrobat\acrotray.exe"
MSCONFIG\startupreg: AcronisTibMounterMonitor => c:\program files (x86)\common files\acronis\tibmounter\tibmountermonitor.exe
MSCONFIG\startupreg: Adobe Creative Cloud => "c:\program files (x86)\adobe\adobe creative cloud\acc\creative cloud.exe" --showwindow=false --onosstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "c:\program files (x86)\common files\adobe\oobe\pdapp\uwa\updaterstartuputility.exe"
MSCONFIG\startupreg: iTunesHelper => "c:\program files\itunes\ituneshelper.exe"
MSCONFIG\startupreg: TrueImageMonitor.exe => "c:\program files (x86)\acronis\trueimagehome\trueimagemonitor.exe"
HKLM\...\StartupApproved\StartupFolder: => "Lancement rapide de SolidWorks 2014.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Téléchargement en arrière-plan de SolidWorks.lnk"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "EaseUS Cleanup"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "EasyTuneVI"
HKU\S-1-5-21-2507382405-551696494-1844724230-500\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk"
HKU\S-1-5-21-2507382405-551696494-1844724230-500\...\StartupApproved\Run: => "PicBackMan"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{55E2CCE4-F2AF-4D81-B251-8E239A6A0641}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909\SZBrowser.exe
FirewallRules: [UDP Query User{D96CA320-0AAF-4CC5-B570-639CC852817E}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
FirewallRules: [TCP Query User{8429856C-4CD1-4886-A3F5-5233D37D8E69}C:\program files (x86)\utorrent\utorrent.exe] => (Allow) C:\program files (x86)\utorrent\utorrent.exe
FirewallRules: [{ADE392C8-49C9-45CA-80FF-3D480080EEC6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{79CF4E2A-0E7D-4B0F-AC49-AE707EE06F95}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{840864CB-F744-4E9B-A189-C20939EFF571}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{078C00BD-6D86-41A0-AEE2-435CED19EBEA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{77870398-D202-456C-BDD7-FA85E09C6B45}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{76FFF8A0-0896-4A0B-A08A-1E1992158113}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{B0ED1176-C034-49C2-BDF6-A73CBFB06DBE}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{D30D7BEA-DCC5-4471-A8C2-9EB22AD33CA9}C:\program files (x86)\adsltv\vlc\vlc.exe] => (Allow) C:\program files (x86)\adsltv\vlc\vlc.exe
FirewallRules: [UDP Query User{190EC122-4AFA-4271-870D-323A2A3BD00C}C:\program files (x86)\adsltv\vlc\vlc.exe] => (Allow) C:\program files (x86)\adsltv\vlc\vlc.exe
FirewallRules: [TCP Query User{1C4876AE-F773-466B-AF25-332BACF2667B}E:\wampserver-3.0.6\wamp64\bin\apache\apache2.4.23\bin\httpd.exe] => (Allow) E:\wampserver-3.0.6\wamp64\bin\apache\apache2.4.23\bin\httpd.exe
FirewallRules: [UDP Query User{E81A32A2-B517-4E1B-BCB3-2D9F3B9D1609}E:\wampserver-3.0.6\wamp64\bin\apache\apache2.4.23\bin\httpd.exe] => (Allow) E:\wampserver-3.0.6\wamp64\bin\apache\apache2.4.23\bin\httpd.exe
FirewallRules: [{068FEEFC-E190-4CC2-80B1-DAFA9400BE6E}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\4.58.2552.909_0\SZBrowser.exe
FirewallRules: [{A22B9095-B7DF-40C2-A912-032B498BAF13}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{BDDD99E7-4C71-4624-8EDF-F1F944FEE22F}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{45F8E1E7-2437-4362-A1B6-F26995EA4E78}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe
FirewallRules: [{EE3F8B01-48A0-4AE5-8B44-4F57C89C9F58}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe
FirewallRules: [{BA810D85-B4DE-48FA-A6D9-6C7BA44E8C68}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{C6243E50-F7AC-4FAB-819A-0E04494BB5CD}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{25EAC9E2-9A67-45C0-A3D4-92991EAF0E8D}] => (Block) %ProgramFiles% (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{BFA28852-EC60-4510-B0F7-9CCA4CEBAF14}] => (Block) %ProgramFiles% (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{8190374D-D17B-49A7-B0C9-F5CC5BEF9523}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{A50C2446-1CB7-4C9B-A74A-3DB00AA08F26}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{5C5FF946-CAC7-4B80-B8B2-0B6CA4533A44}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{EC128D1B-C3F5-4A21-AFAD-C0A3ED596A5A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{18D2DACE-B9D7-4B6D-8354-E8CA51B12B50}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe
FirewallRules: [UDP Query User{E27A5F66-AD33-49CF-846B-C61A781C3FDE}C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe] => (Allow) C:\program files\adobe\adobe dreamweaver cc 2018\node\node.exe
FirewallRules: [{56245DB4-D4F7-4935-9709-C2ADD42CB809}] => (Block) %ProgramFiles%\TechSmith\Camtasia 9\CamtasiaStudio.exe
FirewallRules: [{FA797B8E-DCE5-474F-A18D-0DD21BBF692C}] => (Block) %ProgramFiles%\TechSmith\Camtasia 9\CamtasiaStudio.exe
FirewallRules: [{E07E0D11-0619-469F-B6E2-6D7BBF144914}] => (Block) %ProgramFiles%\TechSmith\Camtasia 9\CamRecorder.exe
FirewallRules: [{77DBF230-97A2-47ED-8E52-9F37D4221285}] => (Block) %ProgramFiles%\TechSmith\Camtasia 9\CamRecorder.exe
FirewallRules: [{9BF3AAF5-A9C2-4A24-ACF6-149FE9301C99}] => (Allow) LPort=8318

==================== Restore Points =========================

11-02-2018 18:32:23 End of disinfection

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (02/13/2018 09:02:07 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (02/11/2018 06:17:21 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (02/11/2018 02:54:01 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (02/11/2018 01:37:06 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (02/11/2018 01:24:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante FileIOSurrogate.exe, version : 15.0.0.216, horodatage : 0x59c9338c
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x24e0
Heure de début de l’application défaillante : 0x01d3a2cebf0ea0ae
Chemin d’accès de l’application défaillante : C:\Program Files\VEGAS\VEGAS Pro 15.0\x86\FileIOSurrogate.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : d7061fa9-b172-453f-a46a-76285ec03703
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (02/11/2018 01:24:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante FileIOSurrogate.exe, version : 15.0.0.216, horodatage : 0x59c9338c
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x24e0
Heure de début de l’application défaillante : 0x01d3a2cebf0ea0ae
Chemin d’accès de l’application défaillante : C:\Program Files\VEGAS\VEGAS Pro 15.0\x86\FileIOSurrogate.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 98e07831-90c4-47cf-afe5-23a4764f55b7
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (02/11/2018 12:32:37 AM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (02/10/2018 08:17:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante winamp.exe, version : 5.6.5.3438, horodatage : 0x51ef0a5f
Nom du module défaillant : ntdll.dll, version : 10.0.15063.608, horodatage : 0x802f667e
Code d’exception : 0xc000000d
Décalage d’erreur : 0x000f507c
ID du processus défaillant : 0x2640
Heure de début de l’application défaillante : 0x01d3a2a3d020bfd8
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Winamp\winamp.exe
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : 83026cbf-8315-4095-ba9b-c617ced45e94
Nom complet du package défaillant :
ID de l’application relative au package défaillant :


System errors:
=============
Error: (02/13/2018 09:31:14 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (02/13/2018 09:27:53 AM) (Source: DCOM) (EventID: 10010) (User: PC-B1-CAROLE)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (02/13/2018 08:45:06 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (02/13/2018 08:40:53 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.

Error: (02/13/2018 08:40:47 AM) (Source: volmgr) (EventID: 46) (User: )
Description: L'initialisation du fichier de vidage sur incident a échoué.

Error: (02/11/2018 07:41:33 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT)
Description: Le serveur {784E29F4-5EBE-4279-9948-1E8FE941646D} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (02/11/2018 07:38:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.

Error: (02/11/2018 07:38:11 PM) (Source: volmgr) (EventID: 46) (User: )
Description: L'initialisation du fichier de vidage sur incident a échoué.


CodeIntegrity:
===================================

Date: 2018-02-11 16:12:16.823
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU 760 @ 2.80GHz
Percentage of memory in use: 37%
Total physical RAM: 8158.05 MB
Available physical RAM: 5087.42 MB
Total Virtual: 8158.05 MB
Available Virtual: 5130.1 MB

==================== Drives ================================

Drive c: (PC-B1-CAROLE) (Fixed) (Total:465.27 GB) (Free:352.74 GB) NTFS
Drive d: (FICHIERS-B1) (Fixed) (Total:201.38 GB) (Free:132.49 GB) NTFS
Drive e: (VIRTUEL-B1) (Fixed) (Total:201.05 GB) (Free:131.08 GB) NTFS
Drive f: (BACKUP-B1) (Fixed) (Total:319.51 GB) (Free:318.89 GB) NTFS
Drive h: (LIBRE) (Fixed) (Total:209.58 GB) (Free:209.41 GB) NTFS

\\?\Volume{6eec3ecd-0000-0000-0000-100000000000}\ () (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6EEC3ECD)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.3 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 58963968)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=42)

==================== End of Addition.txt ============================