Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 15-07-2019 01
Exécuté par oscarnovembre (23-07-2019 16:01:59)
Exécuté depuis C:\Users\oscarnovembre\Desktop
Windows 10 Home Version 1803 17134.885 (X64) (2018-05-29 08:02:23)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2080755913-1658865366-2569381271-500 - Administrator - Enabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-2080755913-1658865366-2569381271-503 - Limited - Disabled)
Invité (S-1-5-21-2080755913-1658865366-2569381271-501 - Limited - Disabled)
oscarnovembre (S-1-5-21-2080755913-1658865366-2569381271-1001 - Administrator - Enabled) => C:\Users\oscarnovembre
WDAGUtilityAccount (S-1-5-21-2080755913-1658865366-2569381271-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
AirDroid 3.6.1.0 (HKLM-x32\...\AirDroid) (Version: 3.6.1.0 - Sand Studio)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\{815AC3A5-2335-4745-845D-7C9EC82C6E84}) (Version: 20.11.301.4403 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{815AC3A5-2335-4745-845D-7C9EC82C6E84}) (Version: 20.11.301.4403 - Alcor Micro Corp.)
Apple Application Support (32 bits) (HKLM-x32\...\{D811A40A-9791-497C-B9DC-2D89C8E95EA1}) (Version: 6.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{8B47B514-F5D2-4E0D-B951-6E250618A7CD}) (Version: 6.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{31A0B634-BCF4-4D3F-8336-87FEACFEE142}) (Version: 11.0.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.)
ASUS App Box (HKLM-x32\...\{F0CE6060-50B1-401E-8357-B6E24DB98D21}) (Version: 1.01.06 - ASUSTeK Computer Inc.)
ASUS Manager - Ai Booting (HKLM-x32\...\{2DCE446C-D090-4458-8782-8F16DF94351E}) (Version: 2.01.15 - ASUSTeK Computer Inc.)
ASUS Manager - Backup & Recovery (HKLM-x32\...\{34D67DE5-2ECF-4E6B-A243-2C16E2792787}) (Version: 2.01.15 - ASUSTeK Computer Inc.)
ASUS Manager - PC Cleanup (HKLM-x32\...\{E22A19AE-7DDB-4959-B1DB-A0996294352A}) (Version: 2.01.14 - ASUSTeK Computer Inc.)
ASUS Manager - Power Manager (HKLM-x32\...\{DD248BEE-E925-4720-A775-9A42276BB6EA}) (Version: 2.02.06 - ASUSTeK Computer Inc.)
ASUS Manager - SyncUp (HKLM-x32\...\{C2294792-457D-4DF7-9486-B630754C73D0}) (Version: 2.00.10 - ASUSTeK Computer Inc.)
ASUS Manager - Update (HKLM-x32\...\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}) (Version: 2.05.05 - ASUSTeK Computer Inc.)
ASUS Manager (HKLM-x32\...\{F5E5AD85-4A90-4604-A887-464D3818D8FD}) (Version: 2.10.01 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM\...\{5FDB730E-6091-4125-AA5D-1143A091E32B}) (Version: 21.0.3.44 - MAGIX Software GmbH) Hidden
ASUS Music Maker (HKLM-x32\...\MX.{5FDB730E-6091-4125-AA5D-1143A091E32B}) (Version: 21.0.3.44 - MAGIX Software GmbH)
ASUS Music Maker Soundpools (HKLM\...\{15634847-BDA3-4A0D-84C7-C5175E49C745}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
Audacity 2.3.2 (HKLM-x32\...\Audacity_is1) (Version: 2.3.2 - Audacity Team)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.32.57.2556 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-490CW (HKLM-x32\...\{48D082B9-18F6-4426-AFAC-8B6A3E7021B1}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CodirLog Client (HKLM\...\{F4148725-F304-4CE8-A004-ED9C9DE10B99}) (Version: 4.0.0 - SOFTGDL)
CrystalDiskInfo 7.5.2 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 7.5.2 - Crystal Dew World)
CyberGhost 7 (HKLM\...\CyberGhost 7) (Version: 7.2.2.4294 - CyberGhost S.A.)
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.1.5524 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM\...\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4307 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.4307 - CyberLink Corp.)
Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.22 - ASUSTek Computer Inc.)
Driver Booster 5 (HKLM-x32\...\Driver Booster_is1) (Version: 5.4.0 - IObit)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
GALSS v3.32 (HKLM-x32\...\{99BCDCE1-BC37-4862-874A-FA6EDE28D724}) (Version: 3.32.02 - GIE SESAM-Vitale)
GIMP 2.10.2 (HKLM\...\GIMP-2_is1) (Version: 2.10.2 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.142 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.0.3.300 - Huawei Technologies Co.,Ltd)
HoyaiLink (HKLM-x32\...\HoyaiLink) (Version: - )
Intel(R) Chipset Device Software (HKLM-x32\...\{c6cff78a-cccb-49d5-be68-ae0ec5f0d48a}) (Version: 10.1.1.8 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1156 - Intel Corporation)
Intel(R) Network Connections 20.1.2019.0 (HKLM\...\PROSetDX) (Version: 20.1.2019.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
LensTracerPlus 3.0 (HKLM-x32\...\LensTracerPlus) (Version: 3.0 - LensWare International GmbH)
MAGIX Content and Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
Malwarebytes version 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Manager (HKLM-x32\...\{218A9668-3355-48AA-BFE5-6957CA4A5A4C}) (Version: 5.0.22.32425 - 2017 pdfforge GmbH. All rights reserved) Hidden
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 1.6.5230.111 - Waves Audio Ltd.) Hidden
Microsoft Office Famille et Étudiant 2016 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 16.0.11727.20244 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.11.25325 (HKLM-x32\...\{404c9c27-8377-4fd1-b607-7ca635db4e49}) (Version: 14.11.25325.0 - Microsoft Corporation)
Mozilla Firefox 68.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 68.0.1 (x64 fr)) (Version: 68.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.2 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nero 11 InfoTool (HKLM-x32\...\{64BEF779-5053-48AF-A3D8-B70EBC1C70E7}) (Version: 11.0.00500 - Nero AG)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.3 - pdfforge GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
ReclaiMe File Recovery (HKLM\...\{D4F0B500-A8F8-4D00-BC68-7B03D2C0E019}_is1) (Version: - www.reclaime.com)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renee File Protector (HKLM-x32\...\{30AB2FCD-FBF2-4bed-AC6A-13E6A1468621}_is1) (Version: 2.6 - Rene.E Laboratory)
Riftcat 2 (HKLM-x32\...\{e09280fa-4176-4170-8c77-f600baec4e38}) (Version: 2.0.3 - Riftcat)
Riftcat 2.0 Client (HKLM-x32\...\{79E6C20C-D6F7-4F9E-997E-A62398ED4591}) (Version: 2.0.0.0 - Riftcat) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SecurityKISS Tunnel v0.3.2 (HKLM\...\SecurityKISS Tunnel_is1) (Version: - )
Skype version 8.49 (HKLM-x32\...\Skype_is1) (Version: 8.49 - Skype Technologies S.A.)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
Temp File Cleaner (HKLM\...\Temp File Cleaner) (Version: 4.5.0.74(master)(8d92a0e96285c09fa03691e2b7618aee84c6c2b6) - Addpcs, LLC)
UltraSearch V2.1.2 (HKLM-x32\...\UltraSearch_is1) (Version: 2.1.2 - JAM Software)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F14FB68A-9188-4036-AD0D-D054BC9C9291}) (Version: 2.59.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.5 - VideoLAN)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation)
WhatsApp (HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\WhatsApp) (Version: 0.3.3793 - WhatsApp)
WhatsApp (HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\WhatsApp) (Version: 0.3.3793 - WhatsApp)
Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited)
WinOptics (HKLM-x32\...\WinOptics) (Version: 6.9.049 - WinOptics sarl)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Yawcam 0.6.0 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version: 0.6.0 - Yawcam)

Packages:
=========
Assistant Mobile Microsoft -> C:\Program Files\WindowsApps\Microsoft.WindowsPhone_10.1802.311.0_x64__8wekyb3d8bbwe [2018-02-18] (Microsoft Corporation)
ASUS Welcome -> C:\Program Files\WindowsApps\B9ECED6F.ASUSWelcome_1.0.1.0_x64__qmba6cd70vzyy [2016-05-27] (ASUSTeK COMPUTER INC.)
Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20316.0_x64__8wekyb3d8bbwe [2019-07-10] (Microsoft Corporation) [MS Ad]
Fresh Paint -> C:\Program Files\WindowsApps\Microsoft.FreshPaint_3.1.10383.1000_x86__8wekyb3d8bbwe [2019-06-11] (Microsoft Corporation)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2018-07-26] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-17] (Microsoft Studios) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-22] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-19] (Microsoft Corporation) [MS Ad]
Téléphone Microsoft -> C:\Program Files\WindowsApps\Microsoft.CommsPhone_3.43.20002.1000_x64__8wekyb3d8bbwe [2018-10-04] (Microsoft Corporation)
Traducteur -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.5.14.0_x64__8wekyb3d8bbwe [2019-07-03] (Microsoft Corporation)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-10-10] (Twitter Inc.)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [Fichier non signé]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [Fichier non signé]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSShellExt64.dll [2013-06-26] (ASUS Cloud Corporation.) [Fichier non signé]
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1-x32: [Gili FileLock Pro] -> {58264032-9730-4ab3-BEA2-A6CE3EEF6080} => C:\Program Files (x86)\Rene.E Laboratory\File Protector\GiliFileShell.dll [2018-07-09] () [Fichier non signé]
ContextMenuHandlers1: [Gili soft64] -> {70DB8E3E-05F6-404D-856B-A47C556A53CE} => C:\Program Files (x86)\Rene.E Laboratory\File Protector\GiliFileShell64.dll [2018-07-09] () [Fichier non signé]
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-01-31] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.1.11.399\ASUSWSContextMenu.dll [2014-08-20] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2019-06-26] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6-x32: [Gili FileLock Pro] -> {58264032-9730-4ab3-BEA2-A6CE3EEF6080} => C:\Program Files (x86)\Rene.E Laboratory\File Protector\GiliFileShell.dll [2018-07-09] () [Fichier non signé]
ContextMenuHandlers6: [Gili soft64] -> {70DB8E3E-05F6-404D-856B-A47C556A53CE} => C:\Program Files (x86)\Rene.E Laboratory\File Protector\GiliFileShell64.dll [2018-07-09] () [Fichier non signé]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2015-12-16 16:43 - 2014-01-22 20:35 - 000684032 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\PhoneCtrlAPI.dll
2015-12-16 16:43 - 2014-01-22 20:36 - 000753664 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\WiMoveHelp.dll
2015-12-16 16:42 - 2010-06-29 04:58 - 000104448 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2018-10-31 14:43 - 2009-02-27 17:38 - 000139264 ____R () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2018-07-12 19:07 - 2014-01-07 16:19 - 000110592 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\FLService.exe
2018-07-12 19:07 - 2015-08-05 17:16 - 000355328 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\FolderLockPlugin64.dll
2018-07-12 19:07 - 2018-07-09 11:29 - 000316928 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\GiliFileShell64.dll
2018-07-12 19:07 - 2016-12-03 17:01 - 001183232 _____ () [Fichier non signé] C:\Program Files (x86)\Rene.E Laboratory\File Protector\KernalUI64.dll
2012-06-12 15:04 - 2012-06-12 15:04 - 000043008 _____ () [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\libgcc_s_dw2-1.dll
2012-06-12 15:04 - 2012-06-12 15:04 - 000011362 _____ () [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\mingwm10.dll
2013-11-25 10:43 - 2016-07-01 11:31 - 000847360 _____ () [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\optiplus_server.exe
2015-12-16 16:43 - 2014-03-13 00:51 - 000907776 _____ () [Fichier non signé] C:\Windows\PCCleanupContextMenu\x64\ContextMenuHandler.dll
2016-05-30 11:01 - 2005-04-22 14:36 - 000143360 _____ () [Fichier non signé] C:\WINDOWS\system32\BrSNMP64.dll
2014-08-20 07:14 - 2014-08-20 07:14 - 000071168 _____ (ASUS Cloud Corporation) [Fichier non signé] C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
2015-12-16 16:43 - 2014-06-04 00:59 - 000930448 _____ (ASUSTeK Computer Inc. -> ) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Manager\PC Cleanup\SecureDeleteBackground.exe
2015-12-16 16:42 - 2019-07-19 10:50 - 000033936 _____ (ASUSTeK Computer Inc. -> ) [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2015-12-16 16:43 - 2012-10-09 07:42 - 000211456 _____ (ASUSTek Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\ACPIWMI.dll
2018-10-31 14:43 - 2010-03-10 19:16 - 000770048 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\brccDCtl.dll
2018-10-31 14:43 - 2012-10-09 16:30 - 000372736 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\brccFCtl.dll
2018-10-31 14:43 - 2010-03-29 02:06 - 000159744 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\brccfre.dll
2018-10-31 14:43 - 2009-09-28 14:38 - 005390336 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\brccimg.dll
2018-10-31 14:43 - 2012-10-09 16:40 - 000872448 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe
2016-05-30 11:01 - 2012-07-05 21:32 - 000084480 _____ (Brother Industries, Ltd.) [Fichier non signé] C:\WINDOWS\system32\BrNetSti.dll
2018-12-12 12:32 - 2018-12-12 12:32 - 000190784 _____ (Huawei Technologies Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2015-05-19 19:11 - 2015-05-19 19:11 - 000335872 _____ (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
2018-10-31 14:43 - 2003-06-30 01:00 - 000030720 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LFBMP12N.DLL
2018-10-31 14:43 - 2005-07-05 01:00 - 000360448 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LFCMP12N.DLL
2018-10-31 14:43 - 2003-06-30 01:00 - 000073728 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LFFAX12N.DLL
2018-10-31 14:43 - 2003-06-30 01:00 - 000031744 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LFLMB12N.DLL
2018-10-31 14:43 - 2003-06-30 01:00 - 000026112 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LFPCX12N.DLL
2018-10-31 14:43 - 2003-06-30 01:00 - 000141312 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LFTIF12N.DLL
2018-10-31 14:43 - 2003-06-30 01:00 - 000259584 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LTDIS12n.dll
2018-10-31 14:43 - 2005-07-05 01:00 - 000131584 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LTFIL12n.DLL
2018-10-31 14:43 - 2003-06-30 01:00 - 000406016 ____N (LEAD Technologies, Inc.) [Fichier non signé] C:\Program Files (x86)\Brother\ControlCenter3\LTKRN12n.dll
2012-01-24 04:19 - 2012-01-24 04:19 - 001858048 _____ (MAGIX AG) [Fichier non signé] C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
2017-11-28 17:19 - 2016-09-27 17:29 - 000489984 _____ (Newtonsoft) [Fichier non signé] C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\Newtonsoft.Json.dll
2012-06-12 15:04 - 2012-06-12 15:04 - 002847232 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\QtCore4.dll
2012-06-11 14:09 - 2012-06-11 14:09 - 010137600 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\QtGui4.dll
2012-06-12 15:05 - 2012-06-12 15:05 - 001290752 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\QtNetwork4.dll
2012-06-11 14:09 - 2012-06-11 14:09 - 000399872 _____ (Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\QtXml4.dll
2012-05-10 21:10 - 2012-05-10 21:10 - 001178112 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\LIBEAY32.dll
2012-05-10 21:10 - 2012-05-10 21:10 - 000265216 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\WinOptics\optiplus\ssleay32.dll
2017-11-28 17:19 - 2016-10-10 10:50 - 000072704 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppCollect.dll
2017-11-28 17:19 - 2016-10-10 10:50 - 000331776 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Wondershare\WAF\2.3.1.1\WsAppCommon.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NWMedia => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nwwfp => ""="Driver"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-07-10 13:04 - 2019-01-02 21:37 - 000000025 _____ C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054157\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054333\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\asus.jpg
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\asus.jpg
HKU\S-1-5-21-2080755913-1658865366-2569381271-500-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101055281\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKLM\...\StartupApproved\StartupFolder: => "CodirLog Client.lnk"
HKLM\...\StartupApproved\Run32: => "WebStorage"
HKLM\...\StartupApproved\Run32: => "BrMfcWnd"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "Windscribe"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "ilogupdate"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "hoyabus2wacon"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "Windscribe"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "CyberGhost"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "ilogupdate"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "hoyabus2wacon"
HKU\S-1-5-21-2080755913-1658865366-2569381271-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-07222019101054477\...\StartupApproved\Run: => "Skype for Desktop"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{B766B0B7-D879-40B5-86FF-C63C1F4CA11C}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe (Brother Industries Ltd.) [Fichier non signé]
FirewallRules: [{2F6E9389-5DA1-4DCB-9082-30D375D92D72}] => (Allow) C:\Program Files (x86)\Brother\Brmfl08x\FAXRX.exe (Brother Industries Ltd.) [Fichier non signé]
FirewallRules: [{B34FF180-DEDC-4F55-B57B-574A9263D19E}] => (Allow) LPort=54925
FirewallRules: [TCP Query User{5EA4407C-9A65-464F-B054-41660E9FB252}C:\program files (x86)\winoptics\optiplus\optiplus_server.exe] => (Allow) C:\program files (x86)\winoptics\optiplus\optiplus_server.exe () [Fichier non signé]
FirewallRules: [UDP Query User{3A9C7B15-FF1A-400E-A1E9-53102B9BC1D6}C:\program files (x86)\winoptics\optiplus\optiplus_server.exe] => (Allow) C:\program files (x86)\winoptics\optiplus\optiplus_server.exe () [Fichier non signé]
FirewallRules: [TCP Query User{470410BC-453B-43FE-9F5B-97B9CD5C08C7}C:\program files (x86)\winoptics\wo.exe] => (Allow) C:\program files (x86)\winoptics\wo.exe (WinOptics SARL) [Fichier non signé]
FirewallRules: [UDP Query User{F7C15C43-55C4-444B-A35C-A164C037CF30}C:\program files (x86)\winoptics\wo.exe] => (Allow) C:\program files (x86)\winoptics\wo.exe (WinOptics SARL) [Fichier non signé]
FirewallRules: [{26D1DFA9-5AD9-443E-BD70-C103FB92A25B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{AAF43F9D-5AA6-4B9D-89EB-502692C2FB75}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{1E343A95-3EA5-48BF-BE34-DF43BB7E0BC3}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{A6BED06A-7632-4928-9A78-73C996542E33}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{6A77791E-F883-4087-8A88-0D63055884BA}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{CABE7314-9E1A-4AF8-B354-9BC8466DB5C6}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{09DACE92-10D1-4D4F-95ED-CD23A55023FC}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DriverBooster.exe (IObit Information Technology -> IObit)
FirewallRules: [{EF875E75-7999-41E8-8341-973421CC4F04}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{2EF2A6F6-D525-4A30-B02B-4CFFB1C22076}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\DBDownloader.exe (IObit Information Technology -> IObit)
FirewallRules: [{16DBA12A-3C90-4F22-B52D-1EC261AF1AA9}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [{3A737D71-9EF5-40AB-9D22-9BC6F728EF24}] => (Allow) C:\Program Files (x86)\IObit\Driver Booster\5.4.0\AutoUpdate.exe (IObit Information Technology -> IObit)
FirewallRules: [{0DCB98EE-984F-4C22-8DD9-D5F6F6FAD664}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8C5F12EA-3CDE-4156-B8D6-7B9820BCFD19}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{1E9B5FA9-AEBC-41E9-8340-68053BA818EA}C:\program files (x86)\hoyailink\hoyabus2wacon.exe] => (Allow) C:\program files (x86)\hoyailink\hoyabus2wacon.exe (h.com networkers) [Fichier non signé]
FirewallRules: [UDP Query User{BCFB9577-9CB0-4860-AB28-8BCAF7B671E8}C:\program files (x86)\hoyailink\hoyabus2wacon.exe] => (Allow) C:\program files (x86)\hoyailink\hoyabus2wacon.exe (h.com networkers) [Fichier non signé]
FirewallRules: [TCP Query User{F6794FB3-26FF-4C82-B194-2B51150D1920}D:\wanscam\wanscam.exe] => (Allow) D:\wanscam\wanscam.exe (object) [Fichier non signé]
FirewallRules: [UDP Query User{28013AD1-24D6-4DDE-938A-008E53D44755}D:\wanscam\wanscam.exe] => (Allow) D:\wanscam\wanscam.exe (object) [Fichier non signé]
FirewallRules: [TCP Query User{E601C310-6AC8-43EC-B4B8-FE954BBAC583}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [UDP Query User{A375AA1B-32C5-4B37-8F50-59FE06E32092}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{B10535ED-FC8F-4D23-9231-A222FC6720C3}] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{A7D1AC38-9FEC-40B6-9199-EB7EA513DC9D}] => (Block) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited)
FirewallRules: [{9CCEFDAA-05A8-490B-BEF5-F7565F2991B5}] => (Allow) C:\Program Files (x86)\Riftcat 2\RiftCat.exe (Riftcat Sp. z o. o -> RiftCat sp. z o. o.)
FirewallRules: [{07D51468-A059-41B5-B2EA-616925C3C08B}] => (Allow) C:\Program Files (x86)\Riftcat 2\RiftCat.exe (Riftcat Sp. z o. o -> RiftCat sp. z o. o.)
FirewallRules: [{2406E6C0-1689-4DA0-A711-05F8798CD95A}] => (Allow) C:\Program Files (x86)\Riftcat 2\VRidge.exe (Riftcat Sp. z o. o -> RiftCat sp. z o. o.)
FirewallRules: [{6AFAAD18-96BB-4C65-80D6-F05C97CC1A95}] => (Allow) C:\Program Files (x86)\Riftcat 2\VRidge.exe (Riftcat Sp. z o. o -> RiftCat sp. z o. o.)
FirewallRules: [{96151A1E-D571-42E8-84EB-C485993D7C7F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{411FD145-AF7E-465C-BB24-23BC0E0F18CA}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7EAF0771-A8E8-48A8-A0D4-B77E5A5AED70}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{A1F0394A-A3AF-418B-B550-4B1D9812778E}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{C3C87CFB-130D-4D07-8A20-6AE11110DF88}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\Server\SyncUp Server.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{7642F2B8-C949-48D1-A974-FDE9BB154904}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe Pas de fichier
FirewallRules: [{F5730B88-38E2-4950-828D-05461A4DB7DD}] => (Allow) C:\Program Files (x86)\ASUS\ASUS Manager\SyncUp\ASUSDMS.exe Pas de fichier

==================== Points de restauration =========================

22-07-2019 10:39:07 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (07/23/2019 11:51:41 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5QEPH0D)
Description: httphttp-2147467263

Error: (07/23/2019 11:47:16 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5QEPH0D)
Description: httphttp-2147467263

Error: (07/22/2019 11:33:57 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5QEPH0D)
Description: httphttp-2147467263

Error: (07/22/2019 11:23:12 AM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: DESKTOP-5QEPH0D)
Description: httphttp-2147467263

Error: (07/19/2019 10:50:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.5.0.1081, horodatage : 0x556ecc3d
Nom du module défaillant : ntdll.dll, version : 10.0.17134.799, horodatage : 0x636bcb43
Code d’exception : 0xc0000374
Décalage d’erreur : 0x000d8519
ID du processus défaillant : 0x2680
Heure de début de l’application défaillante : 0x01d53e0ef6d0cb7d
Chemin d’accès de l’application défaillante : C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 035c3936-618d-4aa0-9803-de9dfb2cf14d
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (07/18/2019 06:17:26 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT)
Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=26, ID d’auteur=0, ID de fournisseur=0, Type de fournisseur=0

Error: (07/18/2019 06:17:26 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT)
Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=25, ID d’auteur=0, ID de fournisseur=0, Type de fournisseur=0

Error: (07/18/2019 06:17:26 PM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT)
Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=13, ID d’auteur=0, ID de fournisseur=0, Type de fournisseur=0


Erreurs système:
=============
Error: (07/23/2019 04:03:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 04:01:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 03:59:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {B52D54BB-4818-4EB9-AA80-F9EACD371DF8} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 03:57:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 03:55:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 03:53:18 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {E48EDA45-43C6-48E0-9323-A7B2067D9CD5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 03:51:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (07/23/2019 03:49:17 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-5QEPH0D)
Description: Le serveur {9E175B6D-F52A-11D8-B9A5-505054503030} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


Windows Defender:
===================================
Date: 2019-07-19 16:31:13.054
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {F1BEA575-07D7-47D5-900E-2D338EA9CBF2}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-07-19 16:02:17.006
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {3F79F1B7-BA7F-4159-A63A-768E6B45B126}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-07-19 15:16:08.153
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {F3E27552-1AAA-45D5-BBB7-ABFC172CA1E4}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-07-19 15:05:54.650
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {DE2276D8-98ED-46BB-AB32-0FD999664025}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-07-17 13:06:14.053
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {1D7437CF-EC4E-4465-9A93-18EEF50FADC1}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-07-14 12:11:08.267
Description:
Antivirus Windows Defender a rencontré une erreur lors d la mise à jour des signatures.
Nouvelle version de la signature :
Version précédente de la signature : 1.297.1046.0
Source de mise à jour : Serveur Microsoft Update
Type de signature : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.16100.4
Code d’erreur : 0x80240016
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.

CodeIntegrity:
===================================

Date: 2018-11-14 09:30:29.444
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-14 09:30:29.444
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-12 10:07:23.784
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-12 10:07:23.700
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-09 11:34:40.241
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-09 11:34:40.176
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-08 09:54:16.308
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-11-08 09:54:16.303
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. 0604 07/14/2015
Motherboard: ASUSTeK COMPUTER INC. M52AD_M12AD_A_F_K31AD
Processeur: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Pourcentage de mémoire utilisée: 43%
Mémoire physique - RAM - totale: 6017.15 MB
Mémoire physique - RAM - disponible: 3378.55 MB
Mémoire virtuelle totale: 14721.15 MB
Mémoire virtuelle disponible: 11563.03 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:149.65 GB) (Free:73.93 GB) NTFS
Drive d: (Data) (Fixed) (Total:780.91 GB) (Free:614.2 GB) NTFS
Drive f: (SSD) (Fixed) (Total:119.14 GB) (Free:47.67 GB) NTFS
Drive g: (perso) (Fixed) (Total:119.33 GB) (Free:10.51 GB) NTFS

\\?\Volume{7dcfd2df-c962-4c2b-a5e4-b7c721a04f55}\ () (Fixed) (Total:0.84 GB) (Free:0.44 GB) NTFS
\\?\Volume{fc00e774-f925-4753-830b-c94e18bfc64c}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E020CBB8)

Partition: GPT.

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 238.5 GB) (Disk ID: 1DE905DB)
Partition 1: (Not Active) - (Size=119.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=119.3 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================