Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x86) Version:05-03-2016 01 Exécuté par Poste1 (2016-03-21 19:55:11) Exécuté depuis D:\Mes documents\Downloads\Programs Microsoft Windows 7 Édition Intégrale Service Pack 1 (X86) (2011-03-25 18:42:05) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1655880554-1590236670-1070646973-500 - Administrator - Disabled) HelpAssistant (S-1-5-21-1655880554-1590236670-1070646973-1004 - Limited - Enabled) HomeGroupUser$ (S-1-5-21-1655880554-1590236670-1070646973-1002 - Limited - Enabled) Invité (S-1-5-21-1655880554-1590236670-1070646973-501 - Limited - Disabled) Poste1 (S-1-5-21-1655880554-1590236670-1070646973-1000 - Administrator - Enabled) => C:\Users\Poste1 ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Bitdefender Antivirus (Disabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Antispyware (Disabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Bitdefender Firewall (Disabled) {A23392FD-84B9-F933-2C71-81E751F6EF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 32 Bit HP CIO Components Installer (Version: 6.1.1 - Hewlett-Packard) Hidden Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated) Adobe Flash Player 21 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 21.0.0.182 - Adobe Systems Incorporated) Adobe Flash Player 21 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 21.0.0.182 - Adobe Systems Incorporated) Adobe Reader XI (11.0.13) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.13 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.) ALShow (HKLM\...\ALShow_is1) (Version: v1.91 - ESTsoft Corp.) ALTools Update (HKLM\...\ALUpdate_is1) (Version: - ESTsoft Corp.) Any DVD Converter Professional 4.0.7 (HKLM\...\Any DVD Converter Professional_is1) (Version: - Any-DVD-Converter.com) AoA Audio Extractor 1.0 (HKLM\...\AoA Audio Extractor_is1) (Version: - AoAMedia.Com) Ashampoo Burning Studio 2012 v.10.0.15 (HKLM\...\Ashampoo Burning Studio 2012_is1) (Version: 10.0.15 - Ashampoo GmbH & Co. KG) Ashampoo US Toolbar (HKU\S-1-5-21-1655880554-1590236670-1070646973-1000\...\CT2481032) (Version: 10.14.0.91 - Ashampoo US) <==== ATTENTION Assistant de connexion Windows Live (HKLM\...\{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}) (Version: 5.000.818.5 - Microsoft Corporation) AVG PC TuneUp 2015 (en-US) (Version: 15.0.1001.638 - AVG Technologies) Hidden AVG PC TuneUp 2015 (Version: 15.0.1001.638 - AVG Technologies) Hidden Ayat (Version: 1.0.8 - UNKNOWN) Hidden Bing Bar (HKLM\...\{D6C3C9E7-D334-4918-BD57-5B1EF14C207D}) (Version: 7.1.361.0 - Microsoft Corporation) Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.26.0.1106 - Bitdefender) BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) ClipGrab 3.5.4 (HKLM\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - Philipp Schmieder Medien) Copy (Version: 130.0.366.000 - Hewlett-Packard) Hidden COWON Media Center - jetAudio Basic VX (HKLM\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.0.14 - COWON) CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.1811.7429 - CyberLink Corp.) Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden DeviceDiscovery (Version: 130.0.372.000 - Hewlett-Packard) Hidden DJ_AIO_06_F2400_SW_Min (Version: 130.0.373.000 - Hewlett-Packard) Hidden ExtremeCopy (HKLM\...\{DFCE9296-5A54-468F-A0A9-98B978DFCD26}) (Version: 2.1.0000 - Easersoft) F2400 (Version: 130.0.373.000 - Hewlett-Packard) Hidden Facebook Messenger 2.1.4814.0 (HKLM\...\{7204BDEE-1A48-4D95-A964-44A9250B439E}) (Version: 2.1.4814.0 - Facebook) Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) FARO LS 1.1.501.0 (HKLM\...\{8F196892-666A-4A40-8587-6AE38F78A5C2}) (Version: 5.1.0.30630 - FARO Scanner Production) FIXIO PC Cleaner (HKLM\...\{CA57AF13-452F-4DBD-B5AB-35B09B600D08}) (Version: 1.1.49 - LULU Software) FormatFactory 2.70 (HKLM\...\FormatFactory) (Version: 2.70 - Free Time) Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.) Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden Google Update Helper (Version: 1.3.29.5 - Google Inc.) Hidden GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden Greener Web (HKLM\...\Greener Web) (Version: 2014.06.23.061123 - Greener Web) <==== ATTENTION HP Customer Participation Program 13.0 (HKLM\...\HPExtendedCapabilities) (Version: 13.0 - HP) HP Deskjet 3050A J611 series Basic Device Software (HKLM\...\{AE47EB5B-1789-4480-AD6D-7753473E9DDE}) (Version: 25.0.571.0 - Hewlett-Packard Co.) HP Deskjet 3050A J611 series Help (HKLM\...\{97DDCAB8-B770-4089-A10F-67568069D78A}) (Version: 140.0.2.2 - Hewlett Packard) HP Deskjet 3050A J611 series Product Improvement Study (HKLM\...\{E9652A2B-6547-4CA7-A06B-1365FE264B7D}) (Version: 25.0.571.0 - Hewlett-Packard Co.) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations) HP Print Projects 1.0 (HKLM\...\HP Print Projects) (Version: 1.0 - HP) HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.4.2 - Hewlett-Packard) HP Smart Web Printing 4.5 (HKLM\...\HP Smart Web Printing) (Version: 4.5 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard) HPPhotoGadget (Version: 130.0.282.000 - Hewlett-Packard) Hidden hpPrintProjects (Version: 130.0.303.000 - Hewlett-Packard) Hidden HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden hpWLPGInstaller (Version: 130.0.303.000 - Hewlett-Packard) Hidden Installation Windows Live (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation) Installation Windows Live (Version: 14.0.8117.416 - Microsoft Corporation) Hidden Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation) Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation) Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - Tonec Inc.) Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.510 - Oracle) Java(TM) 6 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle) JetClean (HKLM\...\BlueSprig_JetClean_is1) (Version: 1.4.0 - BlueSprig) JMicron JMB38X Flash Media Controller (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.00.17.07 - JMicron Technology Corp.) Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden K-Lite Mega Codec Pack 6.5.0 (HKLM\...\KLiteCodecPack_is1) (Version: 6.5.0 - ) Laptop Integrated Webcam Driver (1.04.01.1011) (HKLM\...\Creative OEM002) (Version: - ) MarketResearch (Version: 130.0.374.000 - Hewlett-Packard) Hidden Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Primary Interoperability Assemblies 2005 (HKLM\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Report Viewer Redistributable 2005 (HKLM\...\Microsoft Report Viewer Redistributable 2005) (Version: - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41105.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mobile Broadband HL Service (HKLM\...\Mobile Broadband HL Service) (Version: 22.001.20.00.03 - Huawei Technologies Co.,Ltd) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nikon File Uploader 2 (HKLM\...\{D1E7142C-6BC3-49EB-A71A-E5D7ADAC7599}) (Version: 2.00.0001 - Nikon) Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.0.1 - Nikon) Nitro PDF Professional (HKLM\...\{A75D63B4-CC9A-4832-B791-01A2F2C93856}) (Version: 6.0.2.6 - Nitro PDF Software) Nitro Pro 10 (HKLM\...\{D4A84A4D-BA2E-4D8C-B41F-A9BEF94EDB2D}) (Version: 10.5.1.17 - Nitro) Outil de téléchargement Windows Live (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Picture Control Utility (HKLM\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.2.0 - Nikon) QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) SmartWebPrinting (Version: 130.0.373.000 - Hewlett-Packard) Hidden SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden Status (Version: 130.0.373.000 - Hewlett-Packard) Hidden swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden SysTools PDF Unlocker - v3.1 (HKLM\...\{FBD68E88-2999-43B7-B249-E1B08FA2B065}_is1) (Version: - SysTools Software) Toolbox (Version: 130.0.648.000 - Hewlett-Packard) Hidden TrayApp (Version: 130.0.376.000 - Hewlett-Packard) Hidden Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) ViewNX 2 (HKLM\...\{DDD62492-32A7-412B-8AF1-2CF032AD42E3}) (Version: 2.0.1 - Nikon) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - ) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{04FE3112-DB93-424D-B958-5E709395693F}\InprocServer32 -> C:\Users\Poste1\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.) CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F}\localserver32 -> C:\Users\Poste1\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> pas de chemin du fichier CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6}\InprocServer32 -> C:\Users\Poste1\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll (Facebook Inc.) CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{8B9F5BF4-0407-4BB2-9FED-4C0372DABD00}\localserver32 -> C:\Users\Poste1\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe (Skype Limited) CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{CBE9C57E-FFA9-4123-8354-AD360D6DD3CC}\InprocServer32 -> C:\Users\Poste1\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited) CustomCLSID: HKU\S-1-5-21-1655880554-1590236670-1070646973-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> pas de chemin du fichier ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {0C6123D4-4E62-4073-A6F1-FCBF26B55085} - System32\Tasks\{8946DC27-D398-44B5-B942-DBC739366030} => Firefox.exe hxxp://ui.skype.com/ui/0/5.3.0.120/en/abandoninstall?page=tsMain&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;alreadyoffered Task: {0CCF619B-F758-4316-9EA0-3DCB35836EEE} - System32\Tasks\GoogleUpdateTaskMachineUA1cf49de1a15fc3c => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-28] (Google Inc.) Task: {0CE180BA-365C-4AED-B746-7F2AFD53D99F} - System32\Tasks\RNUpgradeHelperLogonPrompt_Poste1 => C:\Users\Poste1\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.02\agent\rnupgagent.exe [2016-02-24] (RealNetworks, Inc.) Task: {0D3963E7-264A-4AC1-8B5B-4630150B0BDA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-13] (Adobe Systems Incorporated) Task: {14E77ED7-D981-4F8F-B942-8B675CA66C22} - System32\Tasks\{A311DC6E-CA4E-4B0C-AC8B-2EA42DBFF9A2} => pcalua.exe -a "D:\Mes documents\Downloads\Play.exe" -d "D:\Mes documents\Downloads" Task: {17D4B564-48DE-4E75-B132-0EF8B72ACA24} - System32\Tasks\ESTsoft RunAsStdUser 1549074Task => C:\Program Files\ESTsoft\ALShow\ALShow.exe [2010-04-02] (ESTsoft corp.) Task: {265B78D0-8425-4381-8466-114146793ED6} - System32\Tasks\{3D1331BD-36A4-4892-998A-43F0E1F8029C} => C:\Program Files\PlatinumHideIP\Cracked-casper03\PlatinumHideIP.exe Task: {2E3F8CF8-6FB9-4D85-843D-48B8C9C18CC1} - System32\Tasks\RealCreateProcessScheduledTask19757745S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {38EFC626-FECB-4499-AEA8-1909131B61BD} - System32\Tasks\{FF741A34-044E-4C6E-8ECD-C339AF8A52EB} => pcalua.exe -a "D:\Mes documents\Downloads\Programs\CT3080215_ChatVibes.exe" -d "D:\Mes documents\Downloads\Programs" Task: {3C229170-46BE-4FCF-A934-B40FB7A5FDE1} - System32\Tasks\HP Photo Creations Messager => C:\ProgramData\HP Photo Creations\MessageCheck.exe [2011-02-15] () Task: {41E406F9-2E12-4B7A-9FC1-92A1E4F454D2} - System32\Tasks\{50298A5E-5B57-43C1-AAB4-05566818E221} => C:\Program Files\PlatinumHideIP\Cracked-casper03\PlatinumHideIP.exe Task: {464245A7-5B6A-40EB-ADD2-160A6E5805A0} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2011-08-11] (RealNetworks, Inc.) Task: {4DFF11F6-CF54-48F4-A1DF-74FCDE936C91} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1655880554-1590236670-1070646973-1000UA => C:\Users\Poste1\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-09-03] (Facebook Inc.) Task: {533D3889-0AD8-4108-95BE-21D387202DCD} - System32\Tasks\{61C30143-3E6D-4FEF-87D0-B39D32A02013} => pcalua.exe -a "G:\SOFTWARES\Babylon.v8.0.6.r5.Incl.Key\setup (2).exe" -d G:\SOFTWARES\Babylon.v8.0.6.r5.Incl.Key Task: {5372ED8C-01DC-4D2B-AEC3-8A077C7F6405} - System32\Tasks\{D5F91AAE-3BCF-4E4D-9BAF-359ECA90C216} => pcalua.exe -a "D:\Mes documents\Downloads\loader.installer.exe" -d "D:\Mes documents\Downloads" Task: {5536C696-B366-4006-A4A9-67783BE8E2AD} - System32\Tasks\RealCreateProcessScheduledTask14246198S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {5B0A6E73-091E-413B-BC15-195F147273CF} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2011-08-11] (RealNetworks, Inc.) Task: {5D2FC337-AC31-4A47-B824-BE86B39BD5D9} - System32\Tasks\{CDCBD229-28C4-49D6-BCF7-8B511D2DB44A} => C:\Program Files\Nero\Nero 10\Nero Burning ROM\nero.exe Task: {648838EB-A6AE-4AAF-83E7-3AE69CD9BB93} - System32\Tasks\ESTsoft RunAsStdUser 6766886Task => C:\Program Files\ESTsoft\ALShow\ALShow.exe [2010-04-02] (ESTsoft corp.) Task: {687E526C-E5AA-4620-AD77-B0D397E2D1B7} - System32\Tasks\{6C747883-DAAE-4068-B76A-CCC9FDF5A957} => pcalua.exe -a "G:\SOFTWARES\skype and bit defender\Tom-SkypeSetup-en.exe" -d "G:\SOFTWARES\skype and bit defender" Task: {68AC625C-4526-4A30-9399-7E98150D4D52} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1655880554-1590236670-1070646973-1000Core => C:\Users\Poste1\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-09-03] (Facebook Inc.) Task: {6E2F3D31-979C-4106-8A72-FC8665A0BC61} - System32\Tasks\{A6002E4B-DCE9-4DDA-81F6-5EF3499ABEAF} => C:\Program Files\Nero\Nero 10\Nero Burning ROM\nero.exe Task: {7705C63C-68D3-4A2A-A1DF-2540B3574534} - System32\Tasks\RealCreateProcessScheduledTask1470247S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {80B48DA0-6029-469D-B2DC-3C833A62BD9E} - System32\Tasks\{DBFF4F71-E0E9-4249-8405-A3A392C4BBC0} => C:\Program Files\Nero\Nero 10\Nero Burning ROM\nero.exe Task: {864B29F6-25A3-4247-A86D-7EE4339234DD} - System32\Tasks\{27A551A8-313E-475F-826C-6CE8CAEF0B8A} => C:\Program Files\Skype\\Phone\Skype.exe [2014-12-11] (Skype Technologies S.A.) Task: {86C8A7FD-EC06-440D-9FAF-308984583AF2} - System32\Tasks\RNUpgradeHelperResumePrompt_Poste1 => C:\Users\Poste1\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.02\agent\rnupgagent.exe [2016-02-24] (RealNetworks, Inc.) Task: {8778C956-0909-4277-8873-5E75C8F0A280} - System32\Tasks\{D0485415-1B82-4B83-A64B-A71ECA862C35} => C:\Program Files\Nero\Nero 10\Nero Burning ROM\nero.exe Task: {88A969F6-FE4F-451E-AA97-8BF96F45047E} - System32\Tasks\GoogleUpdateTaskMachineCore1cf49dee745e12 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-28] (Google Inc.) Task: {8B3A4B53-8EFB-419A-8E58-6FCCCF655156} - System32\Tasks\ReclaimerUpdateFiles_Poste1 => C:\Users\Poste1\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.02\agent\rnupgagent.exe [2016-02-24] (RealNetworks, Inc.) Task: {8DB13C26-FE48-4EBC-8FDC-531AA0CFA159} - System32\Tasks\JetCleanLoginCheckUpdate => C:\Program Files\BlueSprig\JetClean\AutoUpdate.exe [2012-10-25] (BlueSprig) Task: {8E958E5A-DF8A-4FB8-981A-33F561C89C52} - System32\Tasks\{6AA1BC9B-EB28-4823-9AA6-AA68EF82B919} => C:\Program Files\Nero\Nero 10\Nero Burning ROM\nero.exe Task: {8FFCA3C1-AF84-4854-AE36-2A53BF4736AA} - System32\Tasks\RealCreateProcessScheduledTask4265472S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {951F7DDA-8C2D-42E2-8DFD-A694B8DB34D0} - System32\Tasks\RealCreateProcessScheduledTask31763691S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {97759404-1CB6-4713-8C07-21F3083B11D9} - System32\Tasks\{9602CE9D-35EF-47FA-9168-331AC967D703} => pcalua.exe -a "G:\softwares 2011\Fixio PC Cleaner 2010 1.1.9 By MobiTel\FIXIO_PC_Cleaner_2010_Installer.exe" -d "G:\softwares 2011\Fixio PC Cleaner 2010 1.1.9 By MobiTel" Task: {9998CF47-9F4A-4C49-9433-627BFC283055} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-08-18] (Bitdefender) Task: {9D1BB7BF-9511-4995-BB0A-05414E673C61} - System32\Tasks\{0F392D9E-0077-492A-85AA-FB6DCE09ED4C} => pcalua.exe -a "C:\Program Files\Internet Download Manager\Uninstall.exe" -d "C:\Program Files\Internet Download Manager" Task: {A22E93CC-F247-443D-ABF6-9DA58E36E74F} - System32\Tasks\RealCreateProcessScheduledTask5497334S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {AED628E9-FBB0-425B-8317-0BB4ECD4E312} - System32\Tasks\ReclaimerUpdateXML_Poste1 => C:\Users\Poste1\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.02\agent\rnupgagent.exe [2016-02-24] (RealNetworks, Inc.) Task: {B5F58A73-7491-4229-974C-2EE74570ABC4} - System32\Tasks\ESTsoft RunAsStdUser 6330302Task => C:\Program Files\ESTsoft\ALShow\ALShow.exe [2010-04-02] (ESTsoft corp.) Task: {BCBBDBBB-B66C-4090-8AEA-AE3C9521F48A} - System32\Tasks\{132B2D53-6D19-4B0F-9C27-9758555D68F0} => C:\Program Files\Nero\Nero 10\Nero Burning ROM\nero.exe Task: {BDD64B84-85DF-437E-BDD1-9F425AF128CB} - System32\Tasks\HPCustParticipation HP Deskjet 3050A J611 series => C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08] (Hewlett-Packard Co.) Task: {BDEA12AD-3B3E-4D57-B0B0-F0360787187A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-03-12] (Adobe Systems Incorporated) Task: {C13B3082-D76F-4C19-9D28-201B067F3690} - System32\Tasks\{CF861985-3A7B-4705-B622-796D9EB30731} => pcalua.exe -a "G:\SOFTWARES\Fixio PC Cleaner 2010 1.1.9 By MobiTel\Fixio PC Cleaner 2010 1.1.9 By MobiTel\FIXIO_PC_Cleaner_2010_Installer.exe" -d "G:\SOFTWARES\Fixio PC Cleaner 2010 1.1.9 By MobiTel\Fixio PC Cleaner 2010 1.1.9 By MobiTel" Task: {C1986A6E-DE6A-482B-94AA-A0E2B6200A8B} - System32\Tasks\RealCreateProcessScheduledTask3056543S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {CCC851F3-34E2-490C-BA7B-A8D10E6FB8B2} - System32\Tasks\{7E1CD151-DA3B-40CC-9D21-FEBC8E08E10E} => pcalua.exe -a C:\Users\Poste1\AppData\Local\Babylon\Setup\Setup.exe -d C:\Users\Poste1\AppData\Local\Babylon\Setup\ -c "C:\Users\Poste1\AppData\Local\Temp\RarSFX0\Setup.exe" -rc Task: {CDC87957-96CF-40E7-B317-FB66B05D6FA8} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files\AVG\AVG PC TuneUp\OneClick.exe Task: {D43A8902-E1EF-4532-82D8-B7F5D3219E40} - System32\Tasks\GoogleUpdateTaskMachineUA1ce5f20a8550021 => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-28] (Google Inc.) Task: {D987CBC9-E621-410E-A3E8-1A8229AA6FD1} - System32\Tasks\RealCreateProcessScheduledTask191004145S-1-5-21-1655880554-1590236670-1070646973-1000 => C:\Program Files\Real\RealPlayer\update\realsched.exe [2011-12-18] (RealNetworks, Inc.) Task: {E820B71C-849B-441B-B2D2-68A68F297A95} - System32\Tasks\GoogleUpdateTaskMachineCore1ce5f20a758c21f => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-02-28] (Google Inc.) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1655880554-1590236670-1070646973-1000Core.job => C:\Users\Poste1\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1655880554-1590236670-1070646973-1000UA.job => C:\Users\Poste1\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1ce5f20a758c21f.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf49dee745e12.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1ce5f20a8550021.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA1cf49de1a15fc3c.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\HP Photo Creations Messager.job => C:\ProgramData\HP Photo Creations\MessageCheck.exe ==================== Raccourcis ============================= (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2014-03-21 00:29 - 2015-02-28 22:11 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll 2014-03-21 00:29 - 2014-08-14 22:05 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui 2014-03-21 00:29 - 2011-11-14 19:17 - 00132176 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll 2016-03-21 19:30 - 2016-03-21 19:30 - 00947640 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01643_017\ashttpbr.mdl 2016-03-21 19:30 - 2016-03-21 19:30 - 00678528 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01643_017\ashttpdsp.mdl 2016-03-21 19:30 - 2016-03-21 19:30 - 02492080 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01643_017\ashttpph.mdl 2016-03-21 19:30 - 2016-03-21 19:30 - 01388752 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01643_017\ashttprbl.mdl 2014-02-15 18:15 - 2013-01-28 03:49 - 00239184 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe 2015-05-06 04:22 - 2015-05-06 04:22 - 00400536 _____ () C:\Program Files\Nitro\Pro 10\Nitro_UpdateService.exe 2015-05-06 04:22 - 2015-05-06 04:22 - 01822360 _____ () C:\Program Files\Nitro\Pro 10\Nitro_KissMetrics.dll 2014-06-24 22:24 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\EnumDevLib.dll 2015-08-04 13:26 - 2015-08-04 13:26 - 00610008 ____N () C:\Program Files\AVG\AVG PC TuneUp\avgreplibx.dll 2014-03-21 00:29 - 2014-08-15 17:52 - 00095088 _____ () C:\Program Files\Bitdefender\Bitdefender\bdmetrics.dll 2010-09-22 17:25 - 2010-09-22 17:25 - 00072816 _____ () C:\Program Files\FIXIO PC Utilities\FIXIO PC Cleaner\FIXIO Alert.exe 2014-06-23 09:36 - 2009-11-26 17:02 - 00918816 _____ () C:\Program Files\Ralink\Common\RaWLAPI.dll 2016-03-19 12:30 - 2016-03-08 03:48 - 01676440 _____ () C:\Program Files\Google\Chrome\Application\49.0.2623.87\libglesv2.dll 2016-03-19 12:30 - 2016-03-08 03:48 - 00086168 _____ () C:\Program Files\Google\Chrome\Application\49.0.2623.87\libegl.dll 2016-03-12 20:26 - 2016-03-08 12:16 - 17541312 _____ () C:\Users\Poste1\AppData\Local\Google\Chrome\User Data\PepperFlash\21.0.0.182\pepflashplayer.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Windows:nlsPreferences [258] AlternateDataStreams: C:\Windows\system32\FlashPlayerInstaller.exe:BDU [0] AlternateDataStreams: C:\ProgramData\Temp:8CE646EE [112] AlternateDataStreams: C:\ProgramData\Temp:C565E44C [117] AlternateDataStreams: C:\ProgramData\Temp:FB1B13D8 [354] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: =============================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1655880554-1590236670-1070646973-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Poste1\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Le Pare-feu is disabled. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Actuellement, il n'y a pas de correction automatique pour cette section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk => C:\Windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^Poste1^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Facebook Messenger.lnk => C:\Windows\pss\Facebook Messenger.lnk.Startup MSCONFIG\startupfolder: C:^Users^Poste1^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^svchost.exe => C:\Windows\pss\svchost.exe.Startup MSCONFIG\startupreg: ACPW05EN => MSCONFIG\startupreg: Adobe Reader Speed Launcher => MSCONFIG\startupreg: APSDaemon => MSCONFIG\startupreg: Facebook Update => "C:\Users\Poste1\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: HP Software Update => MSCONFIG\startupreg: MSC => MSCONFIG\startupreg: msnmsgr => MSCONFIG\startupreg: mylbx => MSCONFIG\startupreg: NBAgent => MSCONFIG\startupreg: Nikon Message Center 2 => C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: swg => MSCONFIG\startupreg: TkBellExe => "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot MSCONFIG\startupreg: UCam_Menu => "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\3.0" MSCONFIG\startupreg: YouCam Mirror Tray icon => "C:\Program Files\CyberLink\YouCam\YouCamTray.exe" /s ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{B39B677A-708A-4E6D-A793-4839CB5FA864}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{47CEFCB4-2CA0-4877-BDAB-3E567DCB5674}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe FirewallRules: [{0E08E070-86E3-4391-8658-ED202DEEB88C}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe FirewallRules: [{4EFFE587-2B34-484E-8A62-029A94C578E3}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hposid01.exe FirewallRules: [{5072BF45-7E80-4788-8A05-83173628CB3D}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe FirewallRules: [{F14C4689-D2C6-40D1-83DC-6EDF900F5392}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqcopy2.exe FirewallRules: [{F0DC65A1-DF32-4C5E-BA0F-08C3DFA27A3E}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe FirewallRules: [{9394226C-40EC-4ADD-AFBB-512CCF6BE3D3}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe FirewallRules: [{59CA6867-5B5C-43BB-860C-AB5E132B256A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe FirewallRules: [{F506BE14-DBF7-4632-9884-BF785E57DD38}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe FirewallRules: [{8EEBE833-0E67-4B13-AEC9-E645DC6A0FCC}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe FirewallRules: [{E6D96C37-6EA6-4239-B8B4-85EE45BA77E0}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe FirewallRules: [{01F2BD2A-9180-4599-8BED-0B875DFA4F0A}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgm.exe FirewallRules: [{F50D13EB-50E3-43AD-BD8F-842159802458}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqusgh.exe FirewallRules: [{C6CFB87C-D60C-4981-B164-F160063906F6}] => (Allow) C:\Program Files\HP\digital imaging\smart web printing\smartwebprintexe.exe FirewallRules: [{0E759230-1855-4FEE-854B-486509A86904}] => (Allow) LPort=443 FirewallRules: [{5B24FA79-7743-4D22-B363-8F970411A53E}] => (Allow) LPort=443 FirewallRules: [{8C1EF57B-7485-4B7A-A03C-89F6E40F8CC8}] => (Allow) LPort=37674 FirewallRules: [{1865774B-7675-4A96-A045-143B4395EE5D}] => (Allow) LPort=37674 FirewallRules: [{B873AC0A-52FA-4503-9A1C-EA85D007BCC1}] => (Allow) LPort=37675 FirewallRules: [TCP Query User{4A4F9B26-8DE6-4C19-BB9B-41D06CA085DD}C:\program files\oovoo\oovoo.exe] => (Block) C:\program files\oovoo\oovoo.exe FirewallRules: [UDP Query User{1ACF2CDD-2653-454E-B23A-FE4D6483462F}C:\program files\oovoo\oovoo.exe] => (Block) C:\program files\oovoo\oovoo.exe FirewallRules: [TCP Query User{C13308C9-62E8-478F-B794-558B8FCE35F9}C:\program files\oovoo\oovoo.exe] => (Allow) C:\program files\oovoo\oovoo.exe FirewallRules: [UDP Query User{984D5E67-0A81-4DAF-9DF0-5DEB69A7B2B7}C:\program files\oovoo\oovoo.exe] => (Allow) C:\program files\oovoo\oovoo.exe FirewallRules: [TCP Query User{F4FA9856-5635-4329-AA13-828D985FD075}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe FirewallRules: [UDP Query User{16842B1D-18F6-4E95-8AD4-2571B37A2837}C:\windows\system32\wfs.exe] => (Allow) C:\windows\system32\wfs.exe FirewallRules: [{01D9D03A-BDE5-44C1-A5CC-81BC598B87A1}] => (Allow) LPort=443 FirewallRules: [{4C439970-E821-4504-BE11-ABBA78FF2C56}] => (Allow) LPort=443 FirewallRules: [{EA3C7B93-70C5-4360-AF69-5564F11F717E}] => (Allow) LPort=37674 FirewallRules: [{7B27250C-8CCD-4A25-8D97-828A7764FE2A}] => (Allow) LPort=37674 FirewallRules: [{D223BC52-2F18-4241-A21C-05E75FDA35F0}] => (Allow) LPort=37675 FirewallRules: [{F295E831-8D60-4AC4-8B2F-338C29D6B997}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{BADE3DC0-EA24-4531-8880-E435AA018501}] => (Allow) C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe FirewallRules: [{A9215BB7-2488-4F63-8F89-723E977FF991}] => (Allow) C:\Program Files\REALTEK\RTL8187 Wireless LAN Utility\RtWLan.exe FirewallRules: [{08082009-EF8C-4E2D-B1E7-CC9E351669F9}] => (Allow) LPort=1542 FirewallRules: [{C078379A-4097-428C-A59D-9319A54EFE70}] => (Allow) LPort=1542 FirewallRules: [{2E864105-2FF2-426B-AAFD-EDB2D40A267C}] => (Allow) LPort=53 FirewallRules: [{347554B4-A5F2-46E3-B908-0778E257D1F2}] => (Allow) C:\Users\Poste1\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{0A9566EB-A3F9-42EA-A294-91EE54386DE1}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe FirewallRules: [{4074EB56-B44E-49DE-B356-5DFDF7E018AB}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe FirewallRules: [{8AD18EA7-1247-4811-A01A-42668D15E48F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe StandardProfile\AuthorizedApplications: [C:\Users\Poste1\AppData\Roaming\Java\svhost.exe] => Enabled:Windows Messanger ==================== Points de restauration ========================= 21-03-2016 19:28:34 Sauvegarde Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: TuneUpUtilitiesDrv Description: TuneUpUtilitiesDrv Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: TuneUpUtilitiesDrv Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Bluetooth Peripheral Device Description: Bluetooth Peripheral Device Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (03/21/2016 07:48:08 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/21/2016 07:18:24 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/20/2016 09:20:21 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/19/2016 11:15:05 PM) (Source: Google Update) (EventID: 20) (User: DELL) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http s Error: (03/19/2016 10:45:17 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/19/2016 10:16:08 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/19/2016 05:15:05 PM) (Source: Google Update) (EventID: 20) (User: DELL) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http s Error: (03/19/2016 04:12:41 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/19/2016 11:10:41 AM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (03/19/2016 08:15:05 AM) (Source: Google Update) (EventID: 20) (User: DELL) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http s Erreurs système: ============= Error: (03/21/2016 07:50:12 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Énumérateur de bus IP PnP-X service terminated with the following error: %%-2147023728 Error: (03/21/2016 07:48:29 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The TuneUpUtilitiesDrv service failed to start due to the following error: %%2 Error: (03/21/2016 07:48:08 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: eusk2par Error: (03/21/2016 07:46:28 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: The Bitdefender Virus Shield service hung on starting. Error: (03/21/2016 07:46:29 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: The previous system shutdown at 19:42:27 on ‎21/‎03/‎2016 was unexpected. Error: (03/21/2016 07:20:47 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Énumérateur de bus IP PnP-X service terminated with the following error: %%-2147023728 Error: (03/21/2016 07:19:26 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (03/21/2016 07:18:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: The TuneUpUtilitiesDrv service failed to start due to the following error: %%2 Error: (03/21/2016 07:18:46 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: The following boot-start or system-start driver(s) failed to load: eusk2par Error: (03/20/2016 09:22:44 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: The Énumérateur de bus IP PnP-X service terminated with the following error: %%-2147023728 CodeIntegrity: =================================== Date: 2015-11-12 17:51:24.343 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:24.323 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:21.302 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:21.280 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:21.270 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:21.250 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:16.983 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:16.973 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:16.467 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. Date: 2015-11-12 17:51:16.335 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\AVG\AVG PC TuneUp\avgdumpx.exe because the set of per-page image hashes could not be found on the system. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz Pourcentage de mémoire utilisée: 47% Mémoire physique - RAM - totale: 3062.04 MB Mémoire physique - RAM - disponible: 1609.41 MB Mémoire virtuelle totale: 6122.4 MB Mémoire virtuelle disponible: 4251.05 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:80 GB) (Free:10.52 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (Documents) (Fixed) (Total:142.78 GB) (Free:30.79 GB) NTFS Drive e: (RECOVERY) (Fixed) (Total:10 GB) (Free:4.64 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 035E2C41) Partition 1: (Not Active) - (Size=102 MB) - (Type=DE) Partition 2: (Not Active) - (Size=10 GB) - (Type=07 NTFS) Partition 3: (Active) - (Size=80 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=142.8 GB) - (Type=05) ==================== Fin de Addition.txt ============================