Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-08-2017
Exécuté par Ali (28-08-2017 10:32:39)
Exécuté depuis C:\Users\Ali\Desktop
Windows 7 Professional Service Pack 1 (X64) (2014-04-10 19:09:49)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2441045439-4074401634-3998409375-500 - Administrator - Disabled)
Ali (S-1-5-21-2441045439-4074401634-3998409375-1000 - Administrator - Enabled) => C:\Users\Ali
HomeGroupUser$ (S-1-5-21-2441045439-4074401634-3998409375-1002 - Limited - Enabled)
Invité (S-1-5-21-2441045439-4074401634-3998409375-501 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-2441045439-4074401634-3998409375-1000\...\uTorrent) (Version: 3.4.2.36802 - BitTorrent Inc.)
Arduino (HKLM-x32\...\Arduino) (Version: 1.0.6 - Arduino LLC)
Atheros Bluetooth Filter Driver Package (HKLM\...\{65486209-5C54-439C-8383-8AC9BBE25932}) (Version: 2.0.0.9 - Qualcomm Atheros)
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Atheros)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v9.10.11(T) - TOSHIBA CORPORATION)
Correctif pour Microsoft Visual C# 2010 Express - Français (KB2635973) (HKLM-x32\...\{EA8C8305-BC9A-3DAE-B6FC-6072B87EF620}.KB2635973) (Version: 1 - Microsoft Corporation)
Désinstaller l'imprimante EPSON SX218 Series (HKLM\...\EPSON SX218 Series) (Version:  - SEIKO EPSON Corporation)
Dropbox (HKU\S-1-5-21-2441045439-4074401634-3998409375-1000\...\Dropbox) (Version: 33.4.23 - Dropbox, Inc.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
GDR 5520 pour SQL Server 2008 (KB2977321) (64-bit) (HKLM\...\KB2977321) (Version: 10.3.5520.0 - Microsoft Corporation)
GDR 5538 pour SQL Server 2008 (KB3045305) (64-bit) (HKLM\...\KB3045305) (Version: 10.3.5538.0 - Microsoft Corporation)
GIMP 2.8.20 (HKLM\...\GIMP-2_is1) (Version: 2.8.20 - The GIMP Team)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4061 - Intel Corporation)
Kaspersky Internet Security (HKLM-x32\...\{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
LTspice XVII (HKLM\...\LTspice XVII) (Version:  - Linear Technology Corporation)
Ma-Config.com (64 bits) (HKLM\...\{19D411B5-350C-4DEA-BCA3-9E7B632A642D}) (Version: 7.1.3.1 - Cybelsoft)
Malwarebytes version 3.2.2.2018 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2018 - Malwarebytes)
MATLAB R2014a (HKLM\...\Matlab R2014a) (Version: 8.3 - The MathWorks, Inc.)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-1000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2441045439-4074401634-3998409375-1000\...\OneDriveSetup.exe) (Version: 17.3.6943.0625 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Project Professionnel 2013 (HKLM\...\Office15.PRJPROR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SOAP Toolkit 3.0 (HKLM-x32\...\{BCB4C18A-ACA6-4383-8688-E19933A705DD}) (Version: 3.0.1325.4 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{4401409D-25F1-4E85-8A3C-6BA6FFCFBFED}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Native Client (HKLM\...\{C53DEA03-3F2F-4CB7-895D-C4EE96571EA9}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{F43ADE73-2880-4A95-B995-4FE386ECF667}) (Version: 10.3.5538.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 FRA (HKLM-x32\...\{AF6919D0-5691-4F35-9D65-54F981013514}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 FRA (HKLM\...\{2906A05E-2D38-4B47-85A2-D3485E372C8F}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{0266CCBE-BBD8-416C-A48F-7FC47C6DB566}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{4E99A992-BF07-48AE-B0C6-5500F54EA3DA}) (Version: 10.3.5500.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{4549ceb8-695a-42eb-a183-4820d542a15f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - FRA (HKLM\...\{F48F43AA-721D-335F-9CA2-01D910104560}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - Français (HKLM-x32\...\Microsoft Visual C# 2010 Express - FRA) (Version: 10.0.40219 - Microsoft Corporation)
mikroC PRO for PIC (remove only) (HKLM-x32\...\mikroC PRO for PIC) (Version:  - mikroElektronika)
MiKTeX 2.9 (HKLM\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - FRA) (Version: 1.0.30319 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 55.0.3 (x86 fr) (HKLM-x32\...\Mozilla Firefox 55.0.3 (x86 fr)) (Version: 55.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 55.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NCM GPRS 64 (HKLM\...\{482926C0-5D27-4031-BF06-B33D9C091CB0}) (Version: 01.01.0000 - Siemens AG) Hidden
Nitro Pro 8 (HKLM\...\{1973CAF4-F718-4615-9FBE-B40C8260E835}) (Version: 8.5.0.26 - Nitro)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.7.4 - Notepad++ Team)
Objets de gestion Microsoft SQL Server 2008 R2 (HKLM-x32\...\{B01A7AFC-0356-43AF-A333-C65912AEA8DC}) (Version: 10.50.1447.4 - Microsoft Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Outils Microsoft Visual Studio 2010 ADO.NET Entity Framework (HKLM-x32\...\{3BA7E387-9401-3371-9464-5E224D243FC5}) (Version: 10.0.40219 - Microsoft Corporation)
PICkit 2 v2.61 (HKLM-x32\...\{2818ADC7-C1FB-40A8-BE6B-36B62682E9E8}) (Version: 2.61.00 - Microchip)
PlcSimPlus64 (HKLM\...\{CCC63ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 01.00.0000 - Siemens AG) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.2 - Power Software Ltd)
Proteus 7 Professional (HKLM-x32\...\{13C4E8F0-B747-4C7C-9090-884832F9F90A}) (Version: 7.10.0005 - Labcenter Electronics)
PSIM 9.0.3 (HKLM-x32\...\{98D13EC5-0C60-48eb-A7FA-1B0008EC4C2D}) (Version: 9.0.3 - Powersim)
Python 2.7.9 (HKLM-x32\...\{79F081BF-7454-43DB-BD8F-9EE596813232}) (Version: 2.7.9150 - Python Software Foundation)
QElectroTech (remove only) (HKLM-x32\...\QElectroTech) (Version:  - )
Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
SeCon (HKLM-x32\...\{CCC70FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 02.00.0001 - Siemens AG) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-003B-0000-1000-0000000FF1CE}_Office15.PRJPROR_{6E5C415F-1388-4BA6-B926-C19318BE6075}) (Version:  - Microsoft)
Service Pack 3 pour SQL Server 2008 (KB2546951) (64-bit) (HKLM\...\KB2546951) (Version: 10.3.5500.0 - Microsoft Corporation)
Siemens Automation License Manager (HKLM\...\{615F1B7D-EA2D-4242-84A0-71C2C7CE214B}) (Version: 05.02.0100 - Siemens AG) Hidden
Siemens Automation License Manager V5.2 + SP1   (HKLM\...\{615F1B7D-EA2D-4242-84A0-71C2C7CE214B}LicenseManager) (Version: 05.02.0100 - Siemens AG)
Siemens Totally Integrated Automation Portal V12 (HKLM-x32\...\Siemens Installer Assistant - TIAP12) (Version: V12 - Siemens AG)
SIMATIC Device Drivers (HKLM\...\{CCC01ADD-3A54-15D6-92A8-00A0245B3AC6}) (Version: 01.02.0000 - Siemens AG) Hidden
SIMATIC Device Drivers WoW (HKLM-x32\...\{CCC01ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 20.02.0000 - Siemens AG) Hidden
SIMATIC Event Database (HKLM-x32\...\{CCC12ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 05.05.0300 - Siemens AG) Hidden
SIMATIC HMI License Manager Panel Plugin (x64) (HKLM\...\{CCC230DD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 11.00.0200 - Siemens AG) Hidden
SIMATIC HMI Symbol Library (HKLM-x32\...\{CCC02FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 12.00.0100 - Siemens AG) Hidden
SIMATIC NCM FWL 64 (HKLM\...\{CCC31FDD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 05.05.0400 - Siemens AG) Hidden
SIMATIC PLCSIM 64 (HKLM\...\{CCC57ADD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 01.00.0001 - Siemens AG) Hidden
SIMATIC Prosave (HKLM-x32\...\{1A797C0B-EF7B-4687-BE26-A453BD4D41BC}) (Version: 10.00.0100 - Siemens AG) Hidden
SIMATIC Prosave V10.0 incl. SP1   (HKLM-x32\...\{1A797C0B-EF7B-4687-BE26-A453BD4D41BC}Prosave) (Version: 10.00.0100 - Siemens AG)
SIMATIC S7-PLCSIM (HKLM-x32\...\{1CBF27F6-24A4-488D-940A-678F1C691C49}) (Version: 5.4.0502 - Siemens AG) Hidden
SIMATIC S7-PLCSIM (HKLM-x32\...\{D72AEEE2-C84A-45EC-8EFE-B1476A28FFB0}) (Version: 12.00.0100 - Siemens AG) Hidden
SIMATIC S7-PLCSIM Single SetupPackage - SIMATIC S7-PLCSIM  V12.0 + SP1 (HKLM-x32\...\{BBF51F1B-40AD-4A4A-9E62-35D81D688075}) (Version: 12.00.0100 - Siemens AG) Hidden
SIMATIC S7-PLCSIM V12 SP1 (HKLM-x32\...\Siemens Installer Assistant - S7_PLCSIM_V12) (Version: V12 SP1 - Siemens AG)
SIMATIC S7-PLCSIM V5.4 + SP5 + Upd2   (HKLM-x32\...\{1CBF27F6-24A4-488D-940A-678F1C691C49}PLCSim) (Version: 5.4.0502 - Siemens AG)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Sql Server Customer Experience Improvement Program (HKLM\...\{2F14965D-567B-4E59-ADEB-0A2CC1E3ADDF}) (Version: 10.3.5500.0 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.10.51 - Synaptics Incorporated)
TIA Portal Single SetupPackage - Hardware Support Base Package 0  V12.0 (HKLM-x32\...\{E5CDF8DF-C70D-4501-8DCF-3E66DC3201EE}) (Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 02  V12.0 (HKLM-x32\...\{7305C35B-8F16-47D2-B093-9CB32319EDB5}) (Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package 03  V12.0 (HKLM-x32\...\{E5FC6AEF-7220-4A8C-9DB3-DB08601DC79B}) (Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Hardware Support Base Package WCF-01  V12.0 (HKLM-x32\...\{BF691F64-273F-4A52-94FE-C13EF1090A4A}) (Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - HM All Editions Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{41DA9BC5-2F13-4151-95AE-49BE7FD11A65}) (Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - HM NoBasic Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{F3E2CEED-A008-4C2B-A899-F462E1CD388C}) (Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Simatic Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{9CB5DEBB-C69B-4BA6-82C0-6ECDBD8B6F30}) (Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - STEP 7 Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{FD3D7CCB-A435-4801-BD6D-5FD17579974C}) (Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Support Base Package TO-01  V12.0 (HKLM-x32\...\{1F761C21-80A2-4243-A7AE-BC0372C7B286}) (Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - Support Base Package TO-02  V12.0 (HKLM-x32\...\{D5CD8966-381C-4C3E-9943-5D6692644DBD}) (Version: 12.00.0000 - Siemens AG) Hidden
TIA Portal Single SetupPackage - TIA Tour Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{2F122466-8700-4456-8F04-2546846250DA}) (Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - TIACOMPCHECK Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{1DB4FB2B-DF9D-4417-A855-DAA0B1132247}) (Version: 12.00.0100 - Siemens AG) Hidden
TIA Portal Single SetupPackage - WinCC Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{0DE48DC7-C8E4-405C-AE3A-BFAB94FB71C3}) (Version: 12.00.0100 - Siemens AG) Hidden
Totally Integrated Automation Portal V12 -  TIA Portal Single SetupPackage  V12.0 + SP1 (HKLM-x32\...\{AF8572C9-6E5A-47AC-83EE-1C93138FC408}) (Version: 12.00.0100 - Siemens AG) Hidden
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PRJPROR_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{90150000-012B-040C-1000-0000000FF1CE}_Office15.PROPLUSR_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version:  - Microsoft)
Update for Skype for Business 2015 (KB4011046) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{DED3C7C7-564E-4FF5-9A2F-53CB356ECD74}) (Version:  - Microsoft)
VBA (3821b) (HKLM-x32\...\{BD8A0C60-1AEB-11D6-B8E1-00025521AE60}) (Version: 6.01.00.1234 - Microsoft Corporation) Hidden
VC User 71 RTL X86 --- (HKLM-x32\...\{A4A4567C-5C29-4756-992D-F84D8250C435}) (Version: 1.0 - redistributed from Microsoft Corporation merge modules) Hidden
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 FRA (HKLM-x32\...\{D60023FA-3DF1-4537-93DD-13024CC4E366}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
Wampserver64 3.0.4 (HKLM\...\{wampserver64}_is1) (Version: 3.0.4 - Dominique Ottello aka Otomatic)
WinCC Runtime Advanced Simulator (HKLM-x32\...\{CCC710DD-3A54-11D6-92A8-00A0245B3AC6}) (Version: 12.00.0000 - Siemens AG) Hidden
WinEdt (HKLM-x32\...\WinEdt_is1) (Version:  - WinEdt Team)
WinRAR 5.10 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH)
ZenMate (HKU\S-1-5-21-2441045439-4074401634-3998409375-1000\...\ZenMate) (Version: 3.0.0.14 - ZenGuard GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{0B628DE4-07AD-4284-81CA-5B439F67C5E6}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe /Automation => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Ali\AppData\Local\Microsoft\OneDrive\17.3.6943.0625\amd64\FileCoAuthLib64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{5370C727-1451-4700-A960-77630950AF6D}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2016\acad.exe /Automation => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2016\en-US\acadficn.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2441045439-4074401634-3998409375-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => E:\Notepad++\NppShell_06.dll [2014-05-12] ()
ContextMenuHandlers1: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-12] (AO Kaspersky Lab)
ContextMenuHandlers1: [NP8ShellExtension] -> {9C4B85B8-956C-49BF-9BA5-101384E562B2} => C:\Program Files\Common Files\Nitro\Pro\8.0\NPShellExtension64.dll [2013-02-12] (Nitro PDF)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => E:\PowerISO\PWRISOSH.DLL [2012-05-31] (Power Software Ltd)
ContextMenuHandlers1: [tosBtShllExt] -> {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtShell.dll [2010-07-30] (TOSHIBA)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-06-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-06-11] (Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-12] (AO Kaspersky Lab)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers4: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-12] (AO Kaspersky Lab)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => E:\PowerISO\PWRISOSH.DLL [2012-05-31] (Power Software Ltd)
ContextMenuHandlers4: [tosBtShllExt] -> {6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1} => C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtShell.dll [2010-07-30] (TOSHIBA)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\system32\igfxDTCM.dll [2015-01-01] (Intel Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\shellex.dll [2017-03-12] (AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-21] (Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => E:\PowerISO\PWRISOSH.DLL [2012-05-31] (Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2014-06-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2014-06-11] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2441045439-4074401634-3998409375-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ContextMenuHandlers4_S-1-5-21-2441045439-4074401634-3998409375-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)
ContextMenuHandlers5_S-1-5-21-2441045439-4074401634-3998409375-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Ali\AppData\Roaming\Dropbox\bin\DropboxExt64.18.0.dll [2017-08-22] (Dropbox, Inc.)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {2C5266E1-34CA-414A-A401-DE8DE209EC54} - System32\Tasks\MATLAB R2014a Startup Accelerator => E:\Matlab R2014a\bin\win64\MATLABStartupAccelerator.exe [2014-01-29] ()
Task: {50B45859-6D67-4B1E-98FA-8FCCA8EC8F0E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2441045439-4074401634-3998409375-1000UA => C:\Users\Ali\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-21] (Dropbox, Inc.)
Task: {50B61145-D544-4E53-8993-ED67AD5BC743} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {6BBD161B-8935-4AAE-8517-5C457CD7BB38} - System32\Tasks\{BD3B301C-2286-44A1-ACD7-A190629C0111} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\As0.exe" -d "C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack" -c /MODE=0 /q
Task: {7F2E5C02-3B95-4D21-BCD6-079EF9925230} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {BA43203E-AF86-4156-83A4-2003464C9B74} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {CC7C1BFC-C8EA-4DCE-B4F6-AA9C3547A301} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2441045439-4074401634-3998409375-1000Core => C:\Users\Ali\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-21] (Dropbox, Inc.)
Task: {CE5F71FA-6DC1-4C5C-AD9B-7C54181BBB48} - System32\Tasks\{358160A1-E2EF-4CEE-81E9-FEC46F299F72} => C:\Windows\system32\pcalua.exe -a "C:\Users\Ali\Downloads\ENSAM S5 Files\Stage Fin d'études\PSSE 33\PAS\SENTEMUL2007.exe" -d "C:\Users\Ali\Downloads\ENSAM S5 Files\Stage Fin d'études\PSSE 33\PAS"
Task: {E23AA6EA-AE65-4716-A68E-50024CC8399A} - System32\Tasks\{9F175E0F-760E-4A8D-9846-522B765CB16C} => C:\Windows\system32\pcalua.exe -a C:\Users\Ali\AppData\Roaming\uTorrent\uTorrent.exe -c /UNINSTALL
Task: {E99F5A84-F438-4FE2-A9CD-2A2E3491FCA1} - System32\Tasks\{05413D62-8102-4189-B3E1-DB0A11E235EE} => C:\Windows\system32\pcalua.exe -a C:\Users\Ali\Downloads\Simatic_EKB_Install_2013_03_03\Simatic_EKB_Install_2013_03_03.exe -d C:\Users\Ali\Downloads\Simatic_EKB_Install_2013_03_03

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2441045439-4074401634-3998409375-1000Core.job => C:\Users\Ali\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2441045439-4074401634-3998409375-1000UA.job => C:\Users\Ali\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2014a Startup Accelerator.job => E:\Matlab R2014a\bin\win64\MATLABStartupAccelerator.exe

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2012-11-26 16:00 - 2012-11-26 16:00 - 000774144 _____ () C:\Program Files\Common Files\Siemens\SWS\PlugIns\SCP\Scpwin64.dll
2014-05-12 11:49 - 2014-05-12 11:49 - 000222720 _____ () E:\Notepad++\NppShell_06.dll
2015-06-05 09:38 - 2014-01-29 13:39 - 000042496 _____ () E:\Matlab R2014a\bin\win64\MATLABStartupAccelerator.exe
2013-07-04 21:27 - 2013-07-04 21:27 - 000848096 _____ () C:\Program Files\Common Files\Siemens\Automation\Simatic OAM\bin\sn_regbase.dll
2016-06-28 01:19 - 2016-06-28 01:19 - 000865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
2013-06-05 15:22 - 2013-06-05 15:22 - 000766176 _____ () C:\Windows\SysWOW64\sn_regbase.dll
2012-05-07 12:55 - 2012-05-07 12:55 - 000178104 _____ () C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosGatt.dll
2014-04-11 23:43 - 2014-04-11 23:43 - 001242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Windows:nlsPreferences [386]
AlternateDataStreams: C:\Users\Ali\Downloads\MaConfig_Win.exe:BDU [0]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)

HKU\S-1-5-21-2441045439-4074401634-3998409375-1000\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2441045439-4074401634-3998409375-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Ali\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

MSCONFIG\startupfolder: C:^Users^Ali^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Ali^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Envoyer à OneNote.lnk => C:\Windows\pss\Envoyer à OneNote.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Ali^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ZenMate.bat => C:\Windows\pss\ZenMate.bat.Startup
MSCONFIG\startupreg: Dropbox Update => "C:\Users\Ali\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: PWRISOVM.EXE => E:\PowerISO\PWRISOVM.EXE -startup
MSCONFIG\startupreg: SiemensAutomationFileStorage => "C:\Program Files (x86)\Siemens\Automation\Portal V12\Bin\Siemens.Automation.ObjectFrame.FileStorage.Server.exe" preload
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Ali\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: ZPNConnect => C:\Users\Ali\AppData\Local\ZPN Connect\ZpnCli.exe

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{DB720645-1F66-4CC8-903B-06FCD7B4B16A}] => (Allow) LPort=48113
FirewallRules: [{F7E17A2F-0F0D-42D3-9DF6-602A49EB914A}] => (Allow) LPort=48114
FirewallRules: [{8A5DEAC3-E99C-40C7-90FB-6341E712BEB1}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{FAF24032-01CA-410E-9ED5-8C0CB2EC1215}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{899CE26D-E813-4516-876A-0B43F45F30AD}] => (Allow) C:\Users\Ali\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{D38ADB96-B2D9-476E-B2FD-6255BF906F84}] => (Allow) C:\Users\Ali\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{978E6FC3-406F-42EE-9E48-D8DD85FC89CA}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{4CF2638D-29BD-422C-831C-2CC498CAC373}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{12A3B4D5-41A4-46C3-A784-458495195DC6}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{BE6AC480-96C4-4DF1-BD15-07EACB899118}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{17CBC95D-4634-4BFB-9C02-F842B9D16E49}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{826E4456-0F1E-40CF-8F68-7B218B0F2F95}C:\users\ali\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\ali\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{2230EDF3-FC8E-4E52-85B4-9E81DCDA60A9}C:\users\ali\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\ali\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{EC9E080F-9DF6-465D-9634-530CACB3B33F}E:\matlab\r2014a\bin\win64\matlab.exe] => (Allow) E:\matlab\r2014a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{4DB12AFE-8A3F-424F-9135-66415ED340ED}E:\matlab\r2014a\bin\win64\matlab.exe] => (Allow) E:\matlab\r2014a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{94712257-8D92-42AA-870A-C8B895DA0892}E:\matlab\r2014a\bin\win64\matlab.exe] => (Allow) E:\matlab\r2014a\bin\win64\matlab.exe
FirewallRules: [UDP Query User{867368F9-B221-46CE-9A0B-3B28960EB890}E:\matlab\r2014a\bin\win64\matlab.exe] => (Allow) E:\matlab\r2014a\bin\win64\matlab.exe
FirewallRules: [TCP Query User{0C3DC171-283F-4F81-A818-E9EBAC4609CE}E:\dassault systemes\win_b64\code\bin\orbixd.exe] => (Allow) E:\dassault systemes\win_b64\code\bin\orbixd.exe
FirewallRules: [UDP Query User{05E75FBF-A0F2-463F-882E-20C84F672191}E:\dassault systemes\win_b64\code\bin\orbixd.exe] => (Allow) E:\dassault systemes\win_b64\code\bin\orbixd.exe
FirewallRules: [TCP Query User{A7168256-1D52-448F-B61F-F10548B11E76}E:\dassault systemes\win_b64\code\bin\cnext.exe] => (Allow) E:\dassault systemes\win_b64\code\bin\cnext.exe
FirewallRules: [UDP Query User{7C17719C-FB4E-4368-8452-AF1C97A980CD}E:\dassault systemes\win_b64\code\bin\cnext.exe] => (Allow) E:\dassault systemes\win_b64\code\bin\cnext.exe
FirewallRules: [{BCBF4D3E-7D82-4EB2-8BEE-A4EDBB5945F6}] => (Allow) C:\Users\Ali\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{5474853D-5B85-4CCB-8146-B3DA8B1CA9A8}] => (Allow) C:\Program Files\Common Files\Siemens\sws\almsrv\almsrv64x.exe
FirewallRules: [{A7C34E6D-64FB-4E01-94C0-5A3F5A87F5FB}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{66923D69-2191-4466-802E-EFB3BEB54D22}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{BFDC9EE0-74D7-49A5-BAC1-9EE256936FE7}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{A8AE5FBE-155B-404A-B352-D89DF7E98F1C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{430F9D51-D5B7-406E-85E0-4D2C2F8577C2}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
FirewallRules: [{62C11F11-7B2B-4FE2-ACA4-B65D60316A76}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
FirewallRules: [{09A2500A-48CD-4A75-9541-54CF1A20D7A7}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
FirewallRules: [{33C5CA6E-FFD5-457F-BE8A-B3A2BBB2B579}] => (Allow) C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
FirewallRules: [{AC6C7429-EF1E-4847-B284-64CF85C424F5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2677D0F2-3D92-43CE-8819-3259DFA3BE3B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4445922C-3B27-474C-BD96-B8487ADDA8DF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{71F94B88-7871-4407-906E-D9BC32137E3A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B55A0BBE-392D-40EB-992C-C01624395583}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4B731077-E318-4F78-94B2-9244D725BFDA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3790D41B-4781-4E5A-96D9-EBDE18DCDEFD}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Points de restauration =========================

25-07-2017 13:00:12 Windows Update
29-07-2017 13:14:55 Windows Update
31-07-2017 10:03:13 Windows Update
07-08-2017 11:22:00 Windows Update
09-08-2017 00:11:44 Windows Update
23-08-2017 13:55:03 Windows Update
26-08-2017 21:56:27 Windows Update
27-08-2017 01:02:57 Windows Update
27-08-2017 02:04:54 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Kaspersky Security Data Escort Adapter
Description: Kaspersky Security Data Escort Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Kaspersky Security Data Escort Provider
Service: kltap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Sentinel64
Description: Sentinel64
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: Sentinel64
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (08/28/2017 10:21:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.

Error: (08/27/2017 11:05:28 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.

Error: (08/27/2017 10:44:23 PM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-08-28T11:16:23Z. Error Code: 0x80041321.

Error: (08/27/2017 04:37:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.

Error: (08/27/2017 03:54:56 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.

Error: (08/27/2017 12:58:27 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.

Error: (08/27/2017 02:04:37 AM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-08-28T11:16:37Z. Error Code: 0x80041321.

Error: (08/27/2017 01:46:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.

Error: (08/27/2017 01:12:04 AM) (Source: Office Software Protection Platform Service) (EventID: 16385) (User: )
Description: Failed to schedule Software Protection service for re-start at 2017-08-28T11:17:04Z. Error Code: 0x80041321.

Error: (08/27/2017 12:58:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Le filtre d’événement avec la requête « SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99 » n’a pas pu être réactivé dans l’espace de noms « //./root/CIMV2 » à cause de l’erreur 0x80041003. Les événements ne peuvent pas être délivrés à travers ce filtre tant que le problème ne sera pas corrigé.


Erreurs système:
=============
Error: (08/28/2017 10:20:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SQL Server (SQLEXPRESS) n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/28/2017 10:20:46 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service SQL Server (SQLEXPRESS).

Error: (08/28/2017 10:20:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Sentinel64 n’a pas pu démarrer en raison de l’erreur : 
Le périphérique spécifié est introuvable.

Error: (08/27/2017 11:05:04 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/27/2017 11:05:04 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Cache de police de Windows Presentation Foundation 3.0.0.0.

Error: (08/27/2017 11:03:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Sentinel64 n’a pas pu démarrer en raison de l’erreur : 
Le périphérique spécifié est introuvable.

Error: (08/27/2017 11:02:47 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (08/27/2017 04:35:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Sentinel64 n’a pas pu démarrer en raison de l’erreur : 
Le périphérique spécifié est introuvable.

Error: (08/27/2017 03:53:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Sentinel64 n’a pas pu démarrer en raison de l’erreur : 
Le périphérique spécifié est introuvable.

Error: (08/27/2017 03:52:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media n’a pas pu démarrer en raison de l’erreur : 
L’échec d’une ouverture de session a empêché le démarrage du service.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-4200M CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 53%
Mémoire physique - RAM - totale: 4008.05 MB
Mémoire physique - RAM - disponible: 1871.2 MB
Mémoire virtuelle totale: 8014.29 MB
Mémoire virtuelle disponible: 5451.46 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:242.21 GB) (Free:97.53 GB) NTFS
Drive e: (Local Desk) (Fixed) (Total:223.2 GB) (Free:161.73 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 570A4CB4)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=242.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================