Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-10-2017 Exécuté par Houssem (29-10-2017 17:46:05) Exécuté depuis D:\HOUSSEM\Documents\Logiciels\Nettoyage Windows 7 Home Premium Service Pack 1 (X64) (2012-02-24 21:16:45) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3916193192-1402101486-58665948-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-3916193192-1402101486-58665948-1002 - Limited - Enabled) Houssem (S-1-5-21-3916193192-1402101486-58665948-1000 - Administrator - Enabled) => C:\Users\Houssem Invité (S-1-5-21-3916193192-1402101486-58665948-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 17.012.20098 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.1530 - Adobe Systems Incorporated) Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.5 - Adobe Systems Incorporated) Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated) Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated) Antidote 8 (HKLM-x32\...\{09AAAB09-6DBA-4DD9-9865-54597D3FBCA8}) (Version: 8.02.67 - Druide informatique inc.) Apple Application Support (32 bits) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{E3C4B99B-BE71-4C27-8E3C-4FAE3C46E1D5}) (Version: 11.0.0.30 - Apple Inc.) Apple Software Update (HKLM-x32\...\{C1BBFD2A-BCDD-45B3-8C0B-66BD434970A8}) (Version: 2.4.8.1 - Apple Inc.) ATI Catalyst Install Manager (HKLM\...\{0FB2E75A-1024-331F-77EF-D45F71505D58}) (Version: 3.0.732.0 - ATI Technologies, Inc.) Audacity 2.0.3 (HKLM-x32\...\Audacity_is1) (Version: 2.0.3 - Audacity Team) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Cardpeek version 0.8.4 (HKLM-x32\...\{C65CF493-F496-46DA-923C-98A007914CD9}_is1) (Version: 0.8.4 - Alain Pannetrat ) ccc-core-static (HKLM-x32\...\{096D1CCF-0F1E-08FB-094F-C40A633D5AEB}) (Version: 2009.0729.2238.38827 - Nom de votre société) Hidden Cisco Packet Tracer 6.0.1 (HKLM-x32\...\Cisco Packet Tracer 6.0.1_is1) (Version: - Cisco Systems, Inc.) Conjugaison (HKLM-x32\...\{057AA4D8-559F-42B1-98A0-508303834B2E}) (Version: 2.0.0.0 - homework) Cooktop 2.5 (HKLM-x32\...\{AF971E35-DE5A-4213-948D-1BB326382A18}) (Version: 2.5.0.1192 - Victor Pavlov) Correctif pour Microsoft Visual C++ 2010 Express - Français (KB2635973) (HKLM-x32\...\{0F24FB28-F84E-395C-8BB1-95AE47994485}.KB2635973) (Version: 1 - Microsoft Corporation) Counter-Strike Xtreme V5 (HKLM-x32\...\Counter-Strike Xtreme V5) (Version: - ) Dropbox (HKU\S-1-5-21-3916193192-1402101486-58665948-1000\...\Dropbox) (Version: 37.4.29 - Dropbox, Inc.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Freemake Video Converter version 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation) iTunes (HKLM\...\{89B08926-B965-43B5-8C71-C10433760B14}) (Version: 12.7.0.166 - Apple Inc.) Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation) Java Learning Machine (HKU\S-1-5-21-3916193192-1402101486-58665948-1000\...\Java Learning Machine) (Version: - ESIAL / Nancy-Université) Java SE Development Kit 7 Update 7 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170070}) (Version: 1.7.0.70 - Oracle) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Malwarebytes version 3.2.2.2029 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.2.2.2029 - Malwarebytes) Manager (HKLM-x32\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.6.01055 - Microsoft Corporation) Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation) Microsoft Encarta 2009 - Collection (HKLM-x32\...\{09180081-2C94-4A67-8E55-8483C019C7D2}) (Version: 2009 - Microsoft Corporation) Microsoft Help Viewer 1.1 (HKLM\...\Microsoft Help Viewer 1.1) (Version: 1.1.40219 - Microsoft Corporation) Microsoft Help Viewer 1.1 Language Pack - FRA (HKLM\...\Microsoft Help Viewer 1.1 Language Pack - FRA) (Version: 1.1.40219 - Microsoft Corporation) Microsoft Office Professionnel Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Project Professionnel 2013 (HKLM-x32\...\Office15.PRJPRO) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.205.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 FRA (HKLM-x32\...\{AF6919D0-5691-4F35-9D65-54F981013514}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 FRA (HKLM\...\{2906A05E-2D38-4B47-85A2-D3485E372C8F}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visio Professionnel 2013 (HKLM-x32\...\Office15.VISPRO) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (HKLM\...\{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (HKLM-x32\...\{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 Express - Français (HKLM-x32\...\Microsoft Visual C++ 2010 Express - FRA) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2008 Remote Debugger Light (x64) - Français (HKLM\...\Microsoft Visual Studio 2008 Remote Debugger Light (x64) - FRA) (Version: - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - FRA (HKLM\...\{F48F43AA-721D-335F-9CA2-01D910104560}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual C++ 2008 Express - Français (HKLM-x32\...\Microsoft Visual C++ 2008 Express Edition - FRA) (Version: - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 Express Tools for .NET Framework (HKLM\...\{704C16B7-13DD-3656-96A0-4E456CCF75E6}) (Version: 3.5.21022 - Microsoft) Microsoft Windows SDK for Visual Studio 2008 Express Tools for Win32 (HKLM\...\{11EB1163-5761-4BC6-8F48-98DCF6A46BBF}) (Version: 6.1.5288.17011 - Microsoft Corporation) Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{5DE154DF-A55E-4FA5-BE59-32E78FCACF3E}) (Version: 6.1.5288.17011 - Microsoft Corporation) Microsoft Works (HKLM-x32\...\{3B160861-7250-451E-B5EE-8B92BF30A710}) (Version: 9.7.0621 - Microsoft Corporation) Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Module linguistique de la visionneuse d'aide Microsoft 1.0 - FRA (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - FRA) (Version: 1.0.30319 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 56.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 56.0.2 (x64 fr)) (Version: 56.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.2.6506 - Mozilla) Mozilla Thunderbird 52.4.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.4.0 (x86 fr)) (Version: 52.4.0 - Mozilla) MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH) PDF Architect 5 Create Module (HKLM\...\{0E25DE98-E56E-4259-B554-F1360BB2DC22}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden PDF Architect 5 Edit Module (HKLM\...\{EE01D8D7-2DD0-4C43-BF42-D9C8FC8DAE99}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden PDF Architect 5 View Module (HKLM\...\{4DC94B75-B036-474D-8AC8-E2D055C95FBD}) (Version: 5.0.28.34044 - pdfforge GmbH) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.5.3 - pdfforge GmbH) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) Realtek 8136 8168 8169 Ethernet Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0005 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5904 - Realtek Semiconductor Corp.) Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.) Realtek WLAN Driver (HKLM-x32\...\{0FB630AB-7BD8-40AE-B223-60397D57C3C9}) (Version: 2.00.0006 - Realtek) RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden RogueKiller version 12.11.21.0 (HKLM\...\8B3D7924-ED89-486B-8322-E8594065D5CB_is1) (Version: 12.11.21.0 - Adlice Software) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-003B-0000-0000-0000000FF1CE}_Office15.PRJPRO_{115B7592-B71D-4C27-AB34-34268FB199CA}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0051-0000-0000-0000000FF1CE}_Office15.VISPRO_{8D2E04ED-3350-4ECE-9D6E-3BC9A9A93A47}) (Version: - Microsoft) SketchUp 2015 (HKLM\...\{37B47810-E821-4B53-B3D2-3DB1F2084B7E}) (Version: 15.3.331 - Trimble Navigation Limited) Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-3916193192-1402101486-58665948-1000\...\Spotify) (Version: 1.0.60.492.gbb40dab8 - Spotify AB) Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - ) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.1 - Synaptics Incorporated) TagScanner 6.0.10 (HKLM-x32\...\TagScanner_is1) (Version: - Sergey Serkov) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.81460 - TeamViewer) TELL ME MORE (HKLM-x32\...\TMM70) (Version: - ) Toshiba Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.09 - TOSHIBA) TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{1E9E8BA6-FD0B-465D-AFA2-ECE10BF095F9}) (Version: 1.0.04.64 - TOSHIBA Corporation) TOSHIBA ConfigFree (HKLM-x32\...\{F3529665-D75E-4D6D-98F0-745C78C68E9B}) (Version: 8.0.21 - TOSHIBA Corporation) TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.1 for x64 - TOSHIBA Corporation) TOSHIBA DVD PLAYER (HKLM-x32\...\{6C5F3BDC-0A1B-4436-A696-5939629D5C31}) (Version: 3.01.0.07-A - TOSHIBA Corporation) TOSHIBA eco Utility (HKLM-x32\...\InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.1.10.64 - TOSHIBA Corporation) TOSHIBA Extended Tiles for Windows Mobility Center (HKLM-x32\...\InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}) (Version: - ) TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.1.64 - TOSHIBA Corporation) TOSHIBA Flash Cards Support Utility (HKLM-x32\...\InstallShield_{620BBA5E-F848-4D56-8BDA-584E44584C5E}) (Version: 1.63.0.4C - TOSHIBA CORPORATION) TOSHIBA Hardware Setup (HKLM-x32\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.63.0.11C - TOSHIBA CORPORATION) TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.0 - TOSHIBA Corporation) Toshiba Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.00 - TOSHIBA) TOSHIBA Mot de passe responsable (HKLM-x32\...\InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) (Version: 1.63.0.7C - TOSHIBA CORPORATION) Toshiba Online Product Information (HKLM-x32\...\{2290A680-4083-410A-ADCC-7092C67FC052}) (Version: 2.08.0001 - TOSHIBA) TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.4.1.64 - TOSHIBA Corporation) Toshiba Photo Service - powered by myphotobook (HKLM-x32\...\eu.myphotobook.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1) (Version: 1.0.0-663 - myphotobook GmbH) TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.2 for x64 - TOSHIBA Corporation) TOSHIBA Recovery Media Creator Reminder (HKLM-x32\...\InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}) (Version: 1.00.0019 - TOSHIBA) TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{C2DDF845-7107-40E8-8D2A-8719F1799570}) (Version: 1.0.04.64 - TOSHIBA Corporation) TOSHIBA SD Memory Utilities (HKLM\...\{EBFF48F5-3CFA-436F-8FD5-94FB01D3A0A7}) (Version: 1.9.1.12 - TOSHIBA) TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.2.9 - TOSHIBA) Toshiba TEMPRO (HKLM-x32\...\{9E4FF410-471F-49E3-9358-74FF0D5E9901}) (Version: 3.05 - Toshiba Europe GmbH) TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.2.25.64 - TOSHIBA Corporation) TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.4 - TOSHIBA Corporation) TRORMCLauncher (HKLM\...\{E65C7D8E-186D-484B-BEA8-DEF0331CE600}) (Version: 1.0.0.7 - TOSHIBA) Hidden TRORMCLauncher (HKLM-x32\...\InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}) (Version: - ) Update for Skype for Business 2015 (KB2889853) 32-Bit Edition (HKLM-x32\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{AE1BB975-11D1-49A0-82E8-1D26DD62AFE7}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PRJPRO_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.VISPRO_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft) Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM-x32\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUS_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft) Utility Common Driver (HKLM-x32\...\{12688FD7-CB92-4A5B-BEE4-5C8E0574434F}) (Version: 1.0.50.27C - TOSHIBA) Hidden VBA (3821b) (HKLM-x32\...\{BD8A0C60-1AEB-11D6-B8E1-00025521AE60}) (Version: 6.01.00.1234 - Microsoft Corporation) Hidden VC Runtimes MSI (HKLM-x32\...\{FF29527A-44CD-3422-945E-981A13584000}) (Version: 9.0.21022 - Microsoft) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) WampServer 2.2 (HKLM-x32\...\WampServer 2_is1) (Version: - Hervé Leclerc (HeL)) Windows Driver Package - Texas Instruments Inc. (SilvrLnk) USB (06/11/2009 1.0.0.0) (HKLM\...\EC3E466026556D3EB760B01C4772277614354E11) (Version: 06/11/2009 1.0.0.0 - Texas Instruments Inc.) Windows Driver Package - Texas Instruments Inc. (TIEHDUSB) USB (09/02/2009 1.0.0.1) (HKLM\...\7511B29C86C398B4D11A0B0E4176CAD68D1B7057) (Version: 09/02/2009 1.0.0.1 - Texas Instruments Inc.) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) Wireshark 1.12.3 (64-bit) (HKLM-x32\...\Wireshark) (Version: 1.12.3 - The Wireshark developer community, hxxp://www.wireshark.org) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.28.1\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.28.13\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{793EE463-1304-471C-ADF1-68C2FFB01247}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.29.5\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{8C46158B-D978-483C-A312-16EE5013BE04}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.33.3\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe (Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{CB492AF1-2CEF-4E58-BE47-471C77D0C8BA}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.32.7\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Houssem\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-3916193192-1402101486-58665948-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll -> Pas de fichier ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2014-05-12] () ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-08-30] (Microsoft Corporation) ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-07-05] (pdfforge GmbH) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\system32\mscoree.dll [2010-11-05] (Microsoft Corporation) ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => C:\PROGRA~2\TOTALV~1\TVCShellExtx64.dll -> Pas de fichier ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-08-30] (Microsoft Corporation) ContextMenuHandlers2: [SD Format] -> {932CFB31-6AC9-4FE2-BEAC-A27FAF631D48} => C:\Program Files\TOSHIBA\TOSHIBA SD Memory Utilities\\SDFMTEXT.dll [2009-03-20] (TOSHIBA Corporation) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-08-30] (Microsoft Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2009-07-29] (Advanced Micro Devices, Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-08-30] (Malwarebytes) ContextMenuHandlers1_S-1-5-21-3916193192-1402101486-58665948-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers4_S-1-5-21-3916193192-1402101486-58665948-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ContextMenuHandlers5_S-1-5-21-3916193192-1402101486-58665948-1000: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Users\Houssem\AppData\Roaming\Dropbox\bin\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {01E83F0A-F764-46BC-BAF6-0CF606252B89} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {0B641F7B-2C23-4B57-B5BA-F731AF587245} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated) Task: {14C3A242-C7DF-4215-B32F-868574AD913A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {1BDEBC22-760C-4A8B-B64A-2C0B1ECF5710} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000UA => C:\Users\Houssem\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.) Task: {1C7C0D73-B133-43D5-AA95-81FFF30AFEE5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2017-07-24] (Apple Inc.) Task: {25FBA822-5961-46D9-B296-F5472702FCF6} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {28E4A57D-D3D7-4C97-BFBC-6197AF6198A4} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe Task: {2BD6C2DC-7F19-4C07-A814-52E6B0F433ED} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000Core => C:\Users\Houssem\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-15] (Facebook Inc.) Task: {335C8F01-B011-4C96-8E61-4DB2FDACDC7F} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {379A3D78-4A33-47D6-829C-5770B2161D2A} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {39E8D90A-39EC-414A-9FB5-FFD9A3AED981} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-08-30] (Microsoft Corporation) Task: {3BFB4D89-0EA5-4052-BFC8-6B08D26EDCC2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000Core => C:\Users\Houssem\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-04] (Dropbox, Inc.) Task: {6688122E-55C2-48E5-AB81-C8E6D9BC9E50} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {735C671A-EE13-4E20-A066-EC8785262891} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-08-30] (Microsoft Corporation) Task: {A4F8E426-B386-4A4C-9E8E-6FD0358FD8F6} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {AB26FCF5-4C30-4973-8C8B-0500923593EB} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2009-07-13] (TOSHIBA CORPORATION) Task: {ACFA6B35-6A0A-47FA-A4FA-BD4489E7631E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.) Task: {B5CA8BC7-BAEA-447B-86DE-5797FEF631CE} - System32\Tasks\{14B883F2-F015-481B-B01C-DFDFC2AD6EC3} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\TIEDUC~1\DRIVER~1\InstDrvr.exe -d C:\Windows\SysWOW64 -c /I "C:\Program Files (x86)\TI Education\Driver Files\tiehdusb.inf" /D "C:\Program Files (x86)\TI Education\Driver Files" Task: {C0C068A1-3207-476E-80F6-FB4FBB85590F} - System32\Tasks\{71F5540F-AD03-4D7D-956F-0F8214A09920} => C:\Windows\system32\pcalua.exe -a "C:\Program Files\Need for Speed Carbon\setup.exe" -d "C:\Program Files\Need for Speed Carbon" Task: {CB88CD8A-ED8C-4055-A000-A99FD68E5C29} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {CDD08B3D-E5CB-4B0D-81E8-DDD7C120D62D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000UA => C:\Users\Houssem\AppData\Local\Facebook\Update\FacebookUpdate.exe [2014-01-15] (Facebook Inc.) Task: {E51379D5-12F1-4331-9192-66165FDD1F2A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation) Task: {F98EF0FA-9BDC-42C0-870A-34685297F89E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-25] (Adobe Systems Incorporated) Task: {FED7E479-C814-4F64-B87C-73C1BDA8BAB0} - System32\Tasks\RealCreateProcessScheduledTask721582S-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\Real\RealPlayer\realplay.exe Task: {FFCDF618-5AB0-43D5-B78E-72707F32769B} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3916193192-1402101486-58665948-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000Core.job => C:\Users\Houssem\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000UA.job => C:\Users\Houssem\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000Core.job => C:\Users\Houssem\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3916193192-1402101486-58665948-1000UA.job => C:\Users\Houssem\AppData\Local\Facebook\Update\FacebookUpdate.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Houssem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 2" ShortcutWithArgument: C:\Users\Houssem\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory="Profile 1" ==================== Modules chargés (Avec liste blanche) ============== 2017-09-01 01:49 - 2017-09-01 01:49 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2016-09-01 17:12 - 2016-09-01 17:12 - 000092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-05-12 10:49 - 2014-05-12 10:49 - 000222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2009-08-06 13:14 - 2009-08-06 13:14 - 003002728 _____ () C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll 2009-07-16 15:27 - 2009-07-16 15:27 - 007244600 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll 2009-07-16 15:27 - 2009-07-16 15:27 - 000051512 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll 2009-03-12 19:08 - 2009-03-12 19:08 - 000048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll 2009-09-04 14:30 - 2009-06-22 14:40 - 000022328 _____ () C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll 2009-07-25 16:38 - 2009-07-25 16:38 - 000017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll 2017-09-11 13:45 - 2017-09-11 13:45 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll 2017-09-11 13:45 - 2017-09-11 13:45 - 000092472 _____ () C:\Program Files\iTunes\zlib1.dll 2009-05-04 10:45 - 2009-05-04 10:45 - 000016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll 2012-02-24 20:48 - 2012-02-24 20:48 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll 2009-08-03 17:18 - 2009-08-03 17:18 - 000081752 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll 2017-10-29 12:58 - 2017-10-04 13:15 - 002289096 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll 2017-08-24 13:10 - 2017-08-24 13:10 - 023854576 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll 2016-12-23 19:10 - 2016-12-23 19:10 - 000323152 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll 2017-07-31 23:31 - 2017-07-31 23:31 - 072940016 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm [0] AlternateDataStreams: C:\Users\Houssem\Desktop\CROUS_loyer.xlsx:com.dropbox.attributes [168] AlternateDataStreams: C:\Users\Houssem\Desktop\Factures Nancy.xlsx:com.dropbox.attributes [168] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2014-12-16 16:48 - 000001280 _____ C:\Windows\system32\Drivers\etc\hosts 127.0.0.1tonec.com 127.0.0.1 http://www.tonec.com/ 127.0.0.1 registeridm.com 127.0.0.1 http://www.registeridm.com/ 127.0.0.1 secure.registeridm.com 127.0.0.1 internetdownloadmanager.com 127.0.0.1 http://www.internetdownloadmanager.com/ 127.0.0.1 secure.internetdownloadmanager.com 127.0.0.1 mirror.internetdownloadmanager.com 127.0.0.1 mirror2.internetdownloadmanager.com 127.0.0.1 mirror3.internetdownloadmanager.com 127.0.0.1 localhost ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3916193192-1402101486-58665948-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Houssem\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 212.27.40.241 - 212.27.40.240 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: Dropbox Update => "C:\Users\Houssem\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c MSCONFIG\startupreg: Facebook Update => "C:\Users\Houssem\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: Google Update => "C:\Users\Houssem\AppData\Local\Google\Update\GoogleUpdate.exe" /c MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: NokiaMServer => C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup MSCONFIG\startupreg: NokiaMusic FastStart => "C:\Program Files (x86)\Nokia\Nokia Music\NokiaMusic.exe" /command:faststart MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\Houssem\AppData\Roaming\Spotify\SpotifyWebHelper.exe" MSCONFIG\startupreg: swg => "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" MSCONFIG\startupreg: Teco => "%ProgramFiles%\TOSHIBA\TECO\Teco.exe" /r MSCONFIG\startupreg: Toshiba Registration => C:\Program Files\Toshiba\Registration\ToshibaReminder.exe MSCONFIG\startupreg: Toshiba TEMPRO => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{6C589960-315E-43DC-BC5F-A3363FCED734}] => (Allow) svchost.exe FirewallRules: [{3BB71647-4AA6-491C-AA48-F3454657397D}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{AA0287A1-867B-4B58-AB5D-FA49B0DEC5CF}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{2C71C5EB-EEB6-455C-934A-91634B3F97C3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{E5471A2F-199E-4C83-AC56-2AAB5FDAE6FF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{F55CBE9E-E734-433D-8F9F-56C432C8BDB7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{F3F1D751-19C2-4C3C-9B60-CF33D31C17D6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{1C5956ED-3B1F-4A82-B4BF-BA26378FB8BF}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{42743919-4085-468D-865C-CAA33E6CD1FF}] => (Allow) C:\Program Files (x86)\Opera\opera.exe FirewallRules: [{1D02C92A-21B6-4921-ADBB-180C202257BE}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [{9622E214-1F7C-4ED9-B318-998225C300FE}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [TCP Query User{F589C23A-30C6-4B68-A478-1091819B149C}C:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe] => (Allow) C:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe FirewallRules: [UDP Query User{5315277C-87DC-4471-97CB-A249D8D8A5BF}C:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe] => (Allow) C:\program files (x86)\common files\nokia\service layer\a\nsl_host_process.exe FirewallRules: [TCP Query User{6C5717EF-3922-48D4-B94D-ABD73D95EE90}C:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe] => (Allow) C:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe FirewallRules: [UDP Query User{94E3D3A4-ECFD-40D4-AA94-B66EFFDE4A63}C:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe] => (Allow) C:\program files (x86)\nokia\nokia software updater\nsu_ui_client.exe FirewallRules: [TCP Query User{B9797088-71DA-445E-AA39-AFD02F7B0DF7}C:\users\houssem\appdata\roaming\quyg\myitg.exe] => (Block) C:\users\houssem\appdata\roaming\quyg\myitg.exe FirewallRules: [UDP Query User{E9AEBEC7-5031-445D-88AE-E9BF801E427F}C:\users\houssem\appdata\roaming\quyg\myitg.exe] => (Block) C:\users\houssem\appdata\roaming\quyg\myitg.exe FirewallRules: [TCP Query User{6C473C6B-3116-470E-9A3B-5FEFD4316FFB}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe FirewallRules: [UDP Query User{A1583736-53EC-4F0F-A40D-E06C2C90F9D5}C:\windows\explorer.exe] => (Allow) C:\windows\explorer.exe FirewallRules: [{A1801EF0-A3B5-494C-BC26-2763FC25FD7E}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [{EEF9D261-3BF8-4A3F-A01F-C4E9F356AA15}] => (Allow) C:\Program Files (x86)\Opera\pluginwrapper\opera_plugin_wrapper.exe FirewallRules: [TCP Query User{3D1872F8-BDCE-4565-A461-44BBAD5F475F}C:\users\houssem\downloads\microtorrent_torrent_3.2.1_build_28086_francais_18245.exe] => (Allow) C:\users\houssem\downloads\microtorrent_torrent_3.2.1_build_28086_francais_18245.exe FirewallRules: [UDP Query User{2351E548-4FEB-4602-9EF9-78143B3DB66E}C:\users\houssem\downloads\microtorrent_torrent_3.2.1_build_28086_francais_18245.exe] => (Allow) C:\users\houssem\downloads\microtorrent_torrent_3.2.1_build_28086_francais_18245.exe FirewallRules: [TCP Query User{5A32D65F-D85A-4A11-84B0-F1784E57A2B3}C:\users\houssem\downloads\utorrent.exe] => (Allow) C:\users\houssem\downloads\utorrent.exe FirewallRules: [UDP Query User{56A02185-C99D-4195-A2A5-4703E5039248}C:\users\houssem\downloads\utorrent.exe] => (Allow) C:\users\houssem\downloads\utorrent.exe FirewallRules: [TCP Query User{5295461D-12CB-409F-930A-F68B5C734041}C:\users\houssem\desktop\utorrent.exe] => (Allow) C:\users\houssem\desktop\utorrent.exe FirewallRules: [UDP Query User{3EE9FE41-2E17-4AB8-9DB5-30ABDAFBC6A0}C:\users\houssem\desktop\utorrent.exe] => (Allow) C:\users\houssem\desktop\utorrent.exe FirewallRules: [TCP Query User{AD5BF5D1-C817-4058-BADD-EA0AC8DC4120}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre6\bin\javaw.exe FirewallRules: [UDP Query User{A3735ED4-2988-484E-9199-DB5B22773097}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre6\bin\javaw.exe FirewallRules: [TCP Query User{5AAB4A21-5132-4F96-AA0D-31508B4163B5}C:\program files (x86)\cooktop 2.5\xcooktop.exe] => (Block) C:\program files (x86)\cooktop 2.5\xcooktop.exe FirewallRules: [UDP Query User{5DD2BC1B-210C-4C8D-8C94-22C84847B6C9}C:\program files (x86)\cooktop 2.5\xcooktop.exe] => (Block) C:\program files (x86)\cooktop 2.5\xcooktop.exe FirewallRules: [{894364E6-B8A8-42FC-99BE-588E6B531BEC}] => (Block) C:\Program Files (x86)\Deskshare\IP Camera Viewer 1.0\IP Camera Viewer.exe FirewallRules: [{7FE180E3-ADF9-4937-9B87-C146B25E2F6D}] => (Block) C:\Program Files (x86)\Deskshare\IP Camera Viewer 1.0\IP Camera Viewer.exe FirewallRules: [TCP Query User{C5224E5F-56CE-4FE8-BC00-94C630C14916}C:\windows\system32\javaw.exe] => (Block) C:\windows\system32\javaw.exe FirewallRules: [UDP Query User{91B52068-4B25-40F0-BE92-517F35F54BBE}C:\windows\system32\javaw.exe] => (Block) C:\windows\system32\javaw.exe FirewallRules: [TCP Query User{A078D5F1-36F0-4B99-A117-AB46C3EDB400}C:\program files (x86)\java\jre6\bin\java.exe] => (Allow) C:\program files (x86)\java\jre6\bin\java.exe FirewallRules: [UDP Query User{10D05E6B-41C7-4CCA-995D-874924B3A333}C:\program files (x86)\java\jre6\bin\java.exe] => (Allow) C:\program files (x86)\java\jre6\bin\java.exe FirewallRules: [TCP Query User{5DF2879C-EB78-4475-AB2D-D914FA94E882}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe FirewallRules: [UDP Query User{2CA726DB-E19E-41BC-929B-0A9DF21EA335}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe] => (Allow) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\orbixd.exe FirewallRules: [TCP Query User{186602A4-53D5-45FC-9E03-78498306A6CF}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe] => (Block) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe FirewallRules: [UDP Query User{FECBE1FF-32A0-4576-B32D-732F616B7475}C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe] => (Block) C:\program files (x86)\dassault systemes\b20\intel_a\code\bin\cnext.exe FirewallRules: [TCP Query User{55512410-B867-41AB-BD42-CE558C5CD1A9}C:\program files (x86)\ea games\need for speed most wanted\nfs13.exe] => (Allow) C:\program files (x86)\ea games\need for speed most wanted\nfs13.exe FirewallRules: [UDP Query User{C55E3993-463E-457B-B5FF-69678A07AFCA}C:\program files (x86)\ea games\need for speed most wanted\nfs13.exe] => (Allow) C:\program files (x86)\ea games\need for speed most wanted\nfs13.exe FirewallRules: [TCP Query User{D7A42170-9E0A-4E1B-9E7C-BEB870864E42}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe FirewallRules: [UDP Query User{177EFE00-D727-4942-9072-F23A585BC65D}C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe] => (Allow) C:\wamp\bin\apache\apache2.2.22\bin\httpd.exe FirewallRules: [TCP Query User{2AE6DC44-F1AE-4AE3-A8B2-7AC789616324}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe FirewallRules: [UDP Query User{5134C12B-593E-4396-8340-6678041774B0}C:\windows\system32\java.exe] => (Allow) C:\windows\system32\java.exe FirewallRules: [{77497D9A-5427-476C-A244-7445A7461B76}] => (Block) C:\Users\Houssem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{996A8471-D5C8-4837-BAEE-0AC2C84A24E7}] => (Block) C:\Users\Houssem\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{5A9C8A9E-8EB2-4255-846C-2D064230B123}] => (Allow) C:\Users\Houssem\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{FE1D6B54-3CDB-47D6-9A1B-141FCD64D695}] => (Allow) C:\Users\Houssem\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{B15F5236-8E37-430D-8426-8E6A618924F8}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{0F5CA12A-B1C4-4AD3-A405-643DB1D98D7E}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe FirewallRules: [{423A871F-C26C-48B7-9CEE-0CDDD933E656}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{32F48DA7-D50E-4B8C-AD1F-131E4A0825A4}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{3255D7CD-886E-4431-857B-7231CDABB4F2}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [UDP Query User{0B7B5E45-EFE1-4424-8D93-5F6617A1AA07}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe FirewallRules: [{25157C6C-FF02-4D93-8561-43CEE766B725}] => (Allow) C:\Users\Houssem\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [TCP Query User{2C44D633-7239-46DA-936B-292A7F025F6D}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [UDP Query User{B90646E4-E17A-41BC-B0AE-94F2FB5476C9}C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe] => (Allow) C:\program files (x86)\cisco packet tracer 6.0.1\bin\packettracer6.exe FirewallRules: [TCP Query User{4D5521CB-39C2-4640-9475-D24F276EFECE}C:\zos110\hercules.exe] => (Allow) C:\zos110\hercules.exe FirewallRules: [UDP Query User{60B28FED-E565-45DC-89DA-AA3DD3EA9E86}C:\zos110\hercules.exe] => (Allow) C:\zos110\hercules.exe FirewallRules: [{BE85FAA2-DD5B-4B32-9E89-36B111FD3D8C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{9BE3AFA3-00C1-4121-A3DD-A6BC2D4FA4D9}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{04DD0F55-B7A7-4E47-80AF-5A673BDF1A6B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{BBAED003-27D3-4787-A77C-89F41EC70081}C:\program files\java\jdk1.7.0_07\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_07\bin\java.exe FirewallRules: [UDP Query User{C9266314-BF8F-4A41-B0A0-975C4DEE7648}C:\program files\java\jdk1.7.0_07\bin\java.exe] => (Allow) C:\program files\java\jdk1.7.0_07\bin\java.exe FirewallRules: [TCP Query User{C06B0351-E013-4CD6-8F7D-6F83DD88DC81}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe FirewallRules: [UDP Query User{D0ED86D2-357F-4D45-B313-350F48D8E3FE}C:\program files\android\android studio\bin\studio64.exe] => (Allow) C:\program files\android\android studio\bin\studio64.exe FirewallRules: [TCP Query User{9F817FCC-7FEF-41D4-A5BA-466E4DA98FB0}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{8098BC79-A6FA-4738-BCA2-57B815B3E07B}C:\program files\java\jre1.8.0_31\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [TCP Query User{81ACD1D4-68A6-4191-AD69-6B260B2356E2}D:\programms\counter-strike\hl.exe] => (Block) D:\programms\counter-strike\hl.exe FirewallRules: [UDP Query User{144EB581-36D3-4641-B37D-CDFDE5336C09}D:\programms\counter-strike\hl.exe] => (Block) D:\programms\counter-strike\hl.exe FirewallRules: [TCP Query User{EEA1F470-A8FF-426B-96FA-3186D31D9DF7}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [UDP Query User{BFCB57E5-A214-4242-937B-FEA78CD0176F}C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_31\bin\javaw.exe FirewallRules: [TCP Query User{79222011-F360-456C-866E-D54BECB53684}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Block) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe FirewallRules: [UDP Query User{34047449-2AEA-4896-970F-715279E9739D}C:\program files (x86)\java\jre1.8.0_31\bin\java.exe] => (Block) C:\program files (x86)\java\jre1.8.0_31\bin\java.exe FirewallRules: [TCP Query User{F1EA6D90-1FB5-4827-AF32-7EE415FEEFFD}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{AAAB6F43-CC0E-4A60-A337-F20E1D2F458A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [TCP Query User{7EADA87F-5E6C-490D-B9DF-A6BA1E3ED985}C:\users\houssem\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\houssem\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{7B0C3AF8-D7CF-46BE-97C2-45188DF425AA}C:\users\houssem\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\houssem\appdata\roaming\spotify\spotify.exe FirewallRules: [{E7AFBF28-023D-44FD-8779-8237919E743B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{B09189D2-F461-41C5-8936-305840469E55}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{B18FEFFB-45B1-4A91-A569-6AD93BF81E13}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{06D9C0E6-3728-4066-B0F2-FF674B159AF9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{47903C36-6598-48AD-BC80-D56BD6B303FB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{7653AA98-51A7-4622-8E26-C60F6AD7E8B0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{AB825103-7342-4514-96FC-386BC650CF6A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{2CE36832-00AE-4A4B-9B36-1A5AF54965F1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{9FA60CC7-DE18-4D16-872D-F7D48C1336A5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{C2F664E4-C3CA-493B-AE3B-50E6765A394E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{5D2A6926-84D0-40A0-A212-BA1568AEBCDE}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{B1AB76D7-7B96-450D-BA47-C5130A2D755E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============= Name: MpKslaec52d4f Description: MpKslaec52d4f Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: MpKslaec52d4f Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Shrew Soft Lightweight Filter Description: Shrew Soft Lightweight Filter Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: vflt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Carte de miniport Microsoft Virtual WiFi Description: Carte de miniport Microsoft Virtual WiFi Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (10/22/2017 06:00:35 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: La sauvegarde a échoué en raison d’une erreur d’écriture dans l’emplacement de sauvegarde, G:\. Erreur : Emplacement de sauvegarde introuvable ou incorrect. Vérifiez vos paramètres de sauvegarde, ainsi que l’emplacement de sauvegarde. (0x81000006). Error: (10/16/2017 07:56:38 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: La sauvegarde a échoué en raison d’une erreur d’écriture dans l’emplacement de sauvegarde, G:\. Erreur : Emplacement de sauvegarde introuvable ou incorrect. Vérifiez vos paramètres de sauvegarde, ainsi que l’emplacement de sauvegarde. (0x81000006). Error: (10/14/2017 10:26:31 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme WINWORD.EXE version 15.0.4763.1000 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1794 Heure de début : 01d344cdefebdc74 Heure de fin : 16 Chemin d’accès de l’application : C:\Program Files (x86)\Microsoft Office\Office15\WINWORD.EXE ID de rapport : b1fe2f11-b0c1-11e7-af7e-1c75087629a0 Error: (10/09/2017 08:00:18 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 87924192 Error: (10/09/2017 08:00:18 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 87924192 Error: (10/09/2017 08:00:15 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (10/08/2017 06:00:24 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: La sauvegarde a échoué en raison d’une erreur d’écriture dans l’emplacement de sauvegarde, G:\. Erreur : Emplacement de sauvegarde introuvable ou incorrect. Vérifiez vos paramètres de sauvegarde, ainsi que l’emplacement de sauvegarde. (0x81000006). Error: (10/08/2017 11:48:55 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5429 Error: (10/08/2017 11:48:55 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 5429 Error: (10/07/2017 11:39:17 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Erreurs système: ============= Error: (10/29/2017 02:42:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 70. Error: (10/29/2017 02:42:25 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 70. Error: (10/29/2017 01:55:24 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (10/29/2017 11:46:05 AM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (10/28/2017 09:43:40 PM) (Source: ACPI) (EventID: 13) (User: ) Description:  : le contrôleur embarqué n’a pas répondu dans le délai imparti. Cette erreur peut indiquer que le matériel ou le microprogramme du contrôleur embarqué présente une erreur ou que le BIOS accède au contrôleur embarqué de manière incorrecte. Contactez le fabricant de votre ordinateur afin de savoir si un BIOS mis à niveau est disponible. Dans certains cas, cette erreur peut provoquer un fonctionnement incorrect de l’application. Error: (10/28/2017 09:21:57 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (10/26/2017 09:42:17 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (10/25/2017 07:46:14 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active Error: (10/23/2017 08:32:11 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger : vflt Error: (10/23/2017 08:31:22 PM) (Source: atikmdag) (EventID: 10261) (User: ) Description: Display is not active CodeIntegrity: =================================== Date: 2017-10-23 21:31:13.069 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-10-23 21:31:12.913 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-10-16 20:46:08.055 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-10-16 20:46:07.899 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-10-09 21:39:46.508 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-10-09 21:39:46.336 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-09-29 21:46:26.615 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-09-29 21:46:26.459 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-09-25 20:26:35.476 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2017-09-25 20:26:35.320 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Windows\System32\drivers\vfilter.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. ==================== Infos Mémoire =========================== Processeur: Intel(R) Core(TM)2 Duo CPU P7450 @ 2.13GHz Pourcentage de mémoire utilisée: 54% Mémoire physique - RAM - totale: 4060.88 MB Mémoire physique - RAM - disponible: 1839.62 MB Mémoire virtuelle totale: 8119.93 MB Mémoire virtuelle disponible: 6000.36 MB ==================== Lecteurs ================================ Drive c: (WINDOWS) (Fixed) (Total:168.56 GB) (Free:46.41 GB) NTFS Drive d: (Data) (Fixed) (Total:232.49 GB) (Free:50.48 GB) NTFS ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (Size: 465.8 GB) (Disk ID: F85547D3) Partition 1: (Active) - (Size=400 MB) - (Type=27) Partition 2: (Not Active) - (Size=168.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=232.5 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=64.3 GB) - (Type=05) ==================== Fin de Addition.txt ============================