Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 18-10-2017 01
Exécuté par MOUSSA (20-10-2017 16:46:33)
Exécuté depuis C:\Users\MOUSSA\Downloads
Windows 10 Pro Version 1703 15063.674 (X64) (2017-05-29 14:21:42)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-3942783346-1517980456-3287477408-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3942783346-1517980456-3287477408-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3942783346-1517980456-3287477408-1000 - Limited - Disabled) => C:\Users\defaultuser0
Invité (S-1-5-21-3942783346-1517980456-3287477408-501 - Limited - Disabled)
MOUSSA (S-1-5-21-3942783346-1517980456-3287477408-1001 - Administrator - Enabled) => C:\Users\MOUSSA
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Kaspersky Anti-Virus (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Anti-Virus (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
µTorrent (HKU\S-1-5-21-3942783346-1517980456-3287477408-1001\...\uTorrent) (Version: 3.5.0.44090 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{0EBC740B-4363-489B-8C27-98CE0740BA19}) (Version: 18.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.00 - Adobe Systems)
ANT Drivers Installer x64 (HKLM\...\{B9218A36-7AD3-4046-8D77-31F51DC0D795}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}) (Version: 9.0.0.26 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22256 - Microsoft Corporation)
Batigest Evolution (HKLM-x32\...\{A0DAEA07-FA2D-4919-AF96-936A6E8ACFF1}) (Version: 13.10.00 - Apibâtiment) Hidden
Batigest Evolution (HKLM-x32\...\{A8A4D9E0-47FE-4BA6-A158-931B542EE5A4}) (Version: 13.10.00 - Apibâtiment) Hidden
Batigest i7 Apibâtiment (HKLM-x32\...\{29EC099C-0E3A-4E3A-9A98-27EA1EA4D9E8}) (Version: 1.15 - Sage) Hidden
Batigest i7 Apibâtiment (HKLM-x32\...\{5B9E14CE-07DF-484A-9B8A-0CA0E85A41AE}) (Version: 1.40.0 - Sage) Hidden
Batigest i7 Apibâtiment (HKLM-x32\...\{C832FD00-4482-4940-ADB5-5B0F76960E07}) (Version: 1.15 - Sage) Hidden
Batigest i7 Apibâtiment (HKLM-x32\...\{D0B7A3E2-7D51-4316-88E9-B3355B06B73C}) (Version: 1.40.0 - Sage) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6623 - CDBurnerXP)
chartInstall (HKLM-x32\...\{2CF96265-0F15-4645-8440-625BDC5516A2}) (Version: 1.5.6 - MEMSOFT)
Clarisse 2.33.8004.0 (HKLM\...\{494A51C3-82F9-4C31-B841-52234467E926}_is1) (Version: 2.33.8004.0 - ACCECIA)
Comptes Bancaires 8.8 (HKLM-x32\...\Comptes Bancaires_is1) (Version: - Ymsoft)
Déclarations Sociales (Client) (HKLM-x32\...\{A72C6762-BDB8-4329-802B-720099772079}) (Version: 1.0.0.0 - Sage)
Dropbox (HKLM-x32\...\Dropbox) (Version: 37.4.29 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
Elevated Installer (HKLM-x32\...\{B85F70BE-A5A3-48A2-A790-AF6001F026E0}) (Version: 5.7.1.0 - Garmin Ltd or its subsidiaries) Hidden
Enpass 5.6.0 (HKLM-x32\...\Enpass) (Version: 5.6.0 - Sinew Software Systems)
Extension d'application Sage Apibâtiment (HKLM-x32\...\{08549BFD-D589-4024-A803-1D8C8DB7743E}) (Version: 2.0.01 - Sage Apibâtiment)
Fichiers de support d'installation de Microsoft SQL Server 2008 (HKLM\...\{308350C4-5DA5-4035-A69B-12600021C9FA}) (Version: 10.1.2731.0 - Microsoft Corporation)
Firebird 2.5.2.26540 (x64) (HKLM\...\FBDBServer_2_5_x64_is1) (Version: 2.5.2.26540 - Firebird Project)
Garmin Express (HKLM-x32\...\{5b328687-2baf-4fb6-b6c7-c49fb4840cba}) (Version: 5.7.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{5F4164CE-621E-4AFD-BBFE-1BBE2299710E}) (Version: 5.7.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{4E9533AB-7743-4B73-A5D2-42207E159E11}) (Version: 5.7.1.0 - Garmin Ltd or its subsidiaries) Hidden
Gestion Commerciale i7 (HKLM-x32\...\{26FAF88D-B390-4EC3-9A03-7A32F14ED3B6}) (Version: 1.15.00 - Sage) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HP Color LaserJet Pro MFP M277 (HKLM-x32\...\{7ac49734-541c-48e7-99be-02f41e43e79d}) (Version: 14.0.15343.533 - Hewlett-Packard)
HPCLJProM277 (HKLM-x32\...\{9A337B35-06E3-4F9D-9B39-5AC9C2E7F82B}) (Version: 1.00.0000 - Hewlett-Packard) Hidden
HPDXP (HKLM-x32\...\{D904ECC8-FBED-4618-8B6A-95F3F9352136}) (Version: 3.0.26.32 - HP) Hidden
hppLaserJetService (HKLM-x32\...\{0C4C3664-157A-4D69-B474-31EBF2EE1AE3}) (Version: 009.033.00926 - Hewlett-Packard) Hidden
hppM277LaserJetService (HKLM-x32\...\{3F43C468-BC22-4F88-8382-FF349E724317}) (Version: 001.034.00686 - Hewlett-Packard) Hidden
hpStatusAlerts (HKLM-x32\...\{EACC40D7-58F4-4A7A-9786-953DC9A1850B}) (Version: 170.040.00259 - HP Development Company, L.P.) Hidden
hpStatusAlertsM277 (HKLM-x32\...\{651F24A4-7240-4598-BDA3-3F6F86005670}) (Version: 140.046.00129 - Hewlett-Packard) Hidden
I.R.I.S. OCR (HKLM-x32\...\{CF10F6BC-C710-4F6F-B7E1-4057699A59AA}) (Version: 12.3.6.10 - HP)
Installation de Microsoft SQL Server 2008 R2 (Français) (HKLM\...\{B85D2665-A04F-4D0C-8DA8-891595FD44EF}) (Version: 10.52.4000.0 - Microsoft Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4550 - Intel Corporation)
iTunes (HKLM\...\{CEC7613B-E286-4A31-BEE3-3F7798488D9F}) (Version: 12.1.3.6 - Apple Inc.)
Kaspersky Anti-Virus (HKLM-x32\...\{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Anti-Virus (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
LJDXPHelperUI (HKLM-x32\...\{DEB23FB1-04FF-44AC-98B5-EEB243D65A28}) (Version: 140.069.007 - HP) Hidden
Logiciel de base du périphérique HP DeskJet 2130 series (HKLM\...\{B1C451AE-F01D-48E0-B026-6747B4800415}) (Version: 35.0.61.54677 - Hewlett-Packard Co.)
Manuels électroniques (HKLM-x32\...\{C9B7E017-57F7-4161-89E9-3CCFD2DFA726}) (Version: 4.16 - Sage)
MatchWare MindView 6.0 (HKLM-x32\...\{BD3B24E2-B5BF-4D31-AE97-3AABDA0EF877}) (Version: 6.0.7996.0 - MatchWare A/S)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Access database engine 2010 (French) (HKLM-x32\...\{90140000-00D1-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Filter Pack 2.0 (HKLM\...\{95140000-2000-0409-1000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM-x32\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Project Professionnel 2016 (HKLM\...\Office16.PRJPRO) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft SOAP Toolkit 3.0 (HKLM-x32\...\{BCB4C18A-ACA6-4383-8688-E19933A705DD}) (Version: 3.0.1325.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{8B62417B-606D-4C21-85D1-01D8E1047257}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{1141FF5B-5750-4583-AB0A-F893B1D90364}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{74AF6D20-B0B5-4DA0-9857-57CA74261170}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (64 bits) (HKLM\...\Microsoft SQL Server 2008 R2) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31119 - Microsoft Corporation)
Mises à jour NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Motoculture (HKLM-x32\...\{34F5FC4A-4ECE-4A12-889D-F06CDF808969}) (Version: 12.00.02 - Apimécanique) Hidden
Motoculture (HKLM-x32\...\{4DF33E7F-A72B-4A32-A7E8-D26B58E1D2EE}) (Version: 12.00.02 - Apimécanique) Hidden
Mozilla Firefox 47.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 47.0.2 (x64 fr)) (Version: 47.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.2.6148 - Mozilla)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{EBFC96E5-4409-426E-88B7-650ADB342E78}) (Version: 8.0.50727.42 - The Firebird Project)
NVIDIA Pilote graphique 369.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 369.72 - NVIDIA Corporation)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Package de pilotes Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Package de pilotes Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Panneau de configuration NVIDIA 369.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 369.72 - NVIDIA Corporation) Hidden
PDF24 Creator 8.1.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.321.0 - Tracker Software Products Ltd)
PeaZip 5.6.1 (HKLM-x32\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: - Giorgio Tani)
PhotoPad Éditeur d’images (HKLM-x32\...\PhotoPad) (Version: 3.02 - NCH Software)
Pixillion - Convertisseur d'images (HKLM-x32\...\Pixillion) (Version: 4.03 - NCH Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7989 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
Sage 100 Comptabilité Edition Pilotée pour SQL Server (HKLM-x32\...\{DC3483D1-D77B-4095-BBAF-78CA734CE68A}) (Version: - Sage)
Sage 100 Gestion commerciale i7 (HKLM-x32\...\{56BBD163-8339-45B0-B0C4-719BB307964D}) (Version: 8.50 - Sage)
Sage Apimécanique - Motoculture (HKLM-x32\...\{19A54014-4D87-471A-9C37-BBB6AC4AE634}) (Version: 12.00.02 - Sage)
Sage Batigest i7 Apibâtiment (HKLM-x32\...\{B54F5D82-46D2-44FB-96A5-4BBB33A58970}) (Version: 1.40.0 - Sage)
Service Pack 2 pour SQL Server 2008 R2 (KB2630458) (64-bit) (HKLM\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Skype Web Plugin (HKLM-x32\...\{EB96DF8B-65A7-4E72-BFB1-38DB36870D16}) (Version: 7.32.6.278 - Skype Technologies S.A.)
Spigao Client 2.0 (HKLM-x32\...\{9E05BC9B-A255-4231-B9D5-17810D1CFCC2}_is1) (Version: 2.0 - Edisys)
Spigao Connect 3.4.9.0 (HKLM-x32\...\{C7FC4F1D-1713-40A1-A633-104DA9978B58}_is1) (Version: 3.4.9.0 - Edisys)
Spigao Excel Connector Version 1.4.0 (HKLM-x32\...\Spigao Excel Connector_is1) (Version: 1.4.0 - S.A.S EDISYS)
Spigao Scribe version 2.5.4 (HKLM-x32\...\Spigao Scribe_is1) (Version: 2.5.4 - Edisys)
SQL Server 2008 R2 SP2 Common Files (HKLM\...\{36F70DEE-1EBF-4707-AFA2-E035EEAEBAA1}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Common Files (HKLM\...\{C066EDB1-1056-40D5-A893-E808DFAC367D}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM\...\{A05A03B9-CCDC-4F13-B819-2C9B16A527D0}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM\...\{FBD367D1-642F-47CF-B79B-9BE48FB34007}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM\...\{15330009-F590-4069-A5A6-B11145E6B7CB}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM\...\{A2122A9C-A699-4365-ADF8-68FEAC125D61}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM\...\{F31183CF-E10F-4DE1-BB59-6C0FF38E481E}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
WhatsApp (HKU\S-1-5-21-3942783346-1517980456-3287477408-1001\...\WhatsApp) (Version: 0.2.5863 - WhatsApp)
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
==================== Personnalisé CLSID (Avec liste blanche): ==========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3942783346-1517980456-3287477408-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\MOUSSA\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileSyncShell64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3942783346-1517980456-3287477408-1001_Classes\CLSID\{41052F6E-3662-4584-BCD3-77BCCAAE8470}\InprocServer32 -> C:\Users\MOUSSA\AppData\Local\SkypePlugin\7.32.6.278\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-3942783346-1517980456-3287477408-1001_Classes\CLSID\{60813F68-E9F7-4B3C-80B4-A76A66211660}\localserver32 -> C:\Users\MOUSSA\AppData\Local\SkypePlugin\7.32.6.278\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-3942783346-1517980456-3287477408-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\MOUSSA\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileSyncShell64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3942783346-1517980456-3287477408-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\MOUSSA\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileSyncShell64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-3942783346-1517980456-3287477408-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\MOUSSA\AppData\Local\SkypePlugin\7.32.6.278\EdgeCalling.exe (Skype Technologies S.A.)
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ContextMenuHandlers1: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\shellex.dll [2017-05-12] (AO Kaspersky Lab)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ContextMenuHandlers2: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\shellex.dll [2017-05-12] (AO Kaspersky Lab)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ContextMenuHandlers4: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\shellex.dll [2017-05-12] (AO Kaspersky Lab)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll [2017-06-23] ()
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-10-17] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_463164d40c3d26ce\igfxDTCM.dll [2016-11-30] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-10] (NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems Inc.)
ContextMenuHandlers6: [Kaspersky Anti-Virus 17.0.0] -> {39C9FA89-7012-4573-A92D-BFD1F8CA542D} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\x64\shellex.dll [2017-05-12] (AO Kaspersky Lab)
==================== Tâches planifiées (Avec liste blanche) =============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
Task: {2C3595A5-53E0-46A5-AECA-2F1C157B9826} - System32\Tasks\TrackerAutoUpdate => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe [2017-03-06] (Tracker Software Products (Canada) Ltd.)
Task: {2E5B39BF-8308-4B29-9E64-90C70A5E60D2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {35EB1939-E70C-4335-A6BA-4A5AE6427519} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2017-10-09] ()
Task: {517E0D93-786D-4773-A7F5-1246311B169C} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-11-17] (Realtek Semiconductor)
Task: {5BE4BAEF-D5E4-4DCE-946E-207D4028D181} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-16] (Google Inc.)
Task: {724B9CAF-0969-47C7-8768-418B65831299} - System32\Tasks\{E482DA7B-3A9B-4242-B0E3-CEAC6F8927C0} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxps://ui.skype.com/ui/0/7.36.0.101/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {94CD73C0-22A6-490B-BDC4-5F262840BECE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-05-10] (Dropbox, Inc.)
Task: {AC231320-AF1D-4DDE-999E-63CB995E730A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-16] (Google Inc.)
Task: {ACD4C910-E4AE-41E3-B36F-454B86F1F617} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2017-05-10] (Dropbox, Inc.)
Task: {B38F3A55-A8D7-4438-B803-E3204BE77049} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2016-11-17] (Realtek Semiconductor)
Task: {B59BD8B9-7C1F-47E9-BDAC-18AE32C5DD66} - System32\Tasks\NCH Software\InventoriaSchedBackup => C:\Program Files (x86)\NCH Software\Inventoria\Inventoria.exe
Task: {D62328B3-0A30-48B5-8B52-1A8C530D657D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [2015-07-31] (Microsoft Corporation)
Task: {F4344549-104F-40AE-BF2E-5D1FF52E0214} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => C:\Program Files\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\MOUSSA\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mail.Ru.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> url,FileProtocolHandler "hxxp://www.mail.ru/cnt/20775012?gp=811144"
==================== Modules chargés (Avec liste blanche) ==============
2017-05-29 13:33 - 2016-11-10 13:25 - 000133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 000085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 18:12 - 2015-03-20 18:12 - 001346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-03-18 21:58 - 2017-03-18 21:58 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-04-26 17:32 - 2017-06-23 07:21 - 000598528 _____ () C:\Users\MOUSSA\AppData\Local\MEGAsync\ShellExtX64.dll
2017-03-18 21:59 - 2017-03-20 06:12 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-10-03 06:43 - 2017-10-03 06:48 - 000087552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.4.711.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-10-03 06:43 - 2017-10-03 06:48 - 000206336 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.4.711.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-10-03 06:43 - 2017-10-03 06:49 - 028777472 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.4.711.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-10-03 06:43 - 2017-10-03 06:48 - 002515968 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.4.711.0_x64__kzf8qxf38zg5c\skypert.dll
2017-09-15 09:00 - 2017-09-15 09:04 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.30.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2017-10-05 06:52 - 2017-10-05 07:01 - 010634752 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.30.0_x64__8wekyb3d8bbwe\WinStore.Entertainment.Mobile.dll
2017-10-05 06:52 - 2017-10-05 06:55 - 002640896 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11708.1001.30.0_x64__8wekyb3d8bbwe\MS.Entertainment.Common.Mobile.dll
2017-10-16 18:20 - 2017-09-21 08:29 - 004022616 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libglesv2.dll
2017-10-16 18:20 - 2017-09-21 08:29 - 000100184 _____ () C:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\libegl.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 000865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 17.0.0\kpcengine.2.3.dll
2016-04-13 09:38 - 2016-04-13 09:38 - 000482304 _____ () C:\Users\MOUSSA\AppData\Local\MEGAsync\libsodium.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 000010240 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\fr_fr\acrotray.fra
==================== Alternate Data Streams (Avec liste blanche) =========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\MOUSSA\Desktop\MARCHE SIGNE.pdf:com.dropbox.attributes [168]
==================== Mode sans échec (Avec liste blanche) ===================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
==================== Association (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)
==================== Internet Explorer sites de confiance/sensibles ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
==================== Hosts contenu: ===============================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2016-07-16 12:47 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Autres zones ============================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-3942783346-1517980456-3287477408-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
DNS Servers: 41.205.5.113 - 41.205.5.117
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
HKU\S-1-5-21-3942783346-1517980456-3287477408-1001\...\StartupApproved\StartupFolder: => "µTorrent.lnk"
==================== RèglesPare-feu (Avec liste blanche) ===============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{32F22B04-CF42-45C9-A976-0D7AB6E5FB64}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{79274C91-2B1C-44DB-98C2-E5F2F662DD12}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{B65A4FF1-79EB-4AA5-BEDA-2A239F26870A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{DC5A87DC-4905-471F-994E-3B82A5577FA8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A2EEA83C-7496-4770-8912-D3ED537C5969}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [UDP Query User{B3A1C630-E448-47FB-9B94-C51DDF2AEE9C}C:\program files (x86)\clementine\clementine.exe] => (Allow) C:\program files (x86)\clementine\clementine.exe
FirewallRules: [TCP Query User{5979D7C5-CF11-48AB-AB40-CFB733F1D0B4}C:\program files (x86)\clementine\clementine.exe] => (Allow) C:\program files (x86)\clementine\clementine.exe
FirewallRules: [{FFC68CDF-B451-4BD7-9BEB-EC1CF442C2AD}] => (Allow) C:\Users\MOUSSA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{31BC574E-9C6B-4D8F-B721-E61C95D7ED45}] => (Allow) C:\Users\MOUSSA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4A366B17-1236-4D03-B3F3-EB172CD9939D}] => (Allow) C:\Users\MOUSSA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{7916FB1F-1F68-4BD8-A467-85327F0A3F3A}] => (Allow) C:\Users\MOUSSA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{9E7379D3-B337-4BFA-8A87-88892AF76B3A}] => (Allow) C:\Users\MOUSSA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{00F49EDD-DFC2-4C64-B6C8-4CC745981777}] => (Allow) C:\Users\MOUSSA\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{45702925-0D46-4752-9DD5-A2563F4D542D}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M277\bin\EWSProxy.exe
FirewallRules: [{F35B6393-BCE5-4FAD-8D00-D646A7530537}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M277\bin\FaxApplications.exe
FirewallRules: [{8FED6531-153E-4D19-B090-7670C669FA31}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M277\bin\DigitalWizards.exe
FirewallRules: [{8349758C-B01E-45E3-8E0A-8E047C1EC2DC}] => (Allow) C:\Program Files (x86)\HP\HP Color LaserJet Pro MFP M277\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{566FB268-B89D-4862-B4E7-1CAAEFDF87EE}] => (Allow) C:\Program Files\HP\HP Color LaserJet Pro MFP M277\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{BAA15D10-94A2-4392-806C-DFF095DA2C92}] => (Allow) C:\Program Files\HP\HP Color LaserJet Pro MFP M277\bin\FaxPrinterUtility.exe
FirewallRules: [{C06FE9BF-228F-4930-B2B8-1226E878BD14}] => (Allow) C:\Program Files\HP\HP Color LaserJet Pro MFP M277\bin\SendAFax.exe
FirewallRules: [{B9355DB6-10DC-40F1-A197-75FCE907B2C4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D26913C8-AE8E-43CC-ACAD-7D3C68E5720E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{09D21D0E-6D21-4124-B94D-429E6AC954D9}D:\driver pack16\sdi_update\sdi_x64_r438.exe] => (Allow) D:\driver pack16\sdi_update\sdi_x64_r438.exe
FirewallRules: [TCP Query User{83CA0C7A-B881-4D75-BBAF-B6837A7DF956}D:\driver pack16\sdi_update\sdi_x64_r438.exe] => (Allow) D:\driver pack16\sdi_update\sdi_x64_r438.exe
FirewallRules: [{2E737E2D-2788-4AA5-9B40-BAEB53E0AE2C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{B057E98C-D6AC-49EF-B492-1D0B8E4F3B1C}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{4C692EC2-B761-4E1E-8014-9C1FB1331641}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe
FirewallRules: [{5E6B1C47-7117-4254-B222-5F76B11582F9}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [TCP Query User{80DA9793-E577-4B5D-B550-E7460B285601}C:\users\moussa\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\moussa\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [UDP Query User{BB061123-734A-4375-A383-45F46A379915}C:\users\moussa\appdata\local\skypeplugin\pluginhost.exe] => (Allow) C:\users\moussa\appdata\local\skypeplugin\pluginhost.exe
FirewallRules: [{F254DA73-A05B-48A9-9692-94ECC0B898E6}] => (Allow) C:\Program Files\Microsoft SQL Server\MSSQL10_50.EBP\MSSQL\Binn\sqlservr.exe
FirewallRules: [{7A3EAC66-F10E-4757-9C13-9AB00948DDBD}] => (Allow) C:\ProgramData\Sage\FMS\Crun\Crun.exe
FirewallRules: [{64DEFC0D-69F4-4F54-AB19-2DBB0918AEEA}] => (Allow) C:\ProgramData\Sage\FMS\Crun\Crun.exe
FirewallRules: [{8BB3995B-31F4-4A89-8474-BF78C392102E}] => (Allow) C:\ProgramData\Sage\GAE\Crun\Crun.exe
FirewallRules: [{AFDC7DD2-58E6-43A0-BC15-44EB6B87592A}] => (Allow) C:\ProgramData\Sage\GAE\Crun\Crun.exe
FirewallRules: [{59642F61-8401-471C-ACA0-E5C27A06874E}] => (Allow) C:\APIMECA\GestAgt\GestAgt.exe
FirewallRules: [{EBCC4687-3649-4B29-BAF7-48D709E72D19}] => (Allow) C:\APIMECA\GestAgt\GestAgt.exe
FirewallRules: [{77461D4F-9899-40C6-AD36-4DFBB9CB912F}] => (Allow) C:\APIMECA\GestAgt\GestAgtVoVn.exe
FirewallRules: [{CC915232-4191-487F-848C-2E661FFD7C9A}] => (Allow) C:\APIMECA\GestAgt\GestAgtVoVn.exe
FirewallRules: [{1C900F94-C17E-4789-9913-049751C3BA96}] => (Allow) C:\APIMECA\GestAgt\XMeca.exe
FirewallRules: [{4B659124-1ED8-4BB8-8DC7-F374F72AA50A}] => (Allow) C:\APIMECA\GestAgt\XMeca.exe
FirewallRules: [{0821256A-72A3-4F32-A70E-667A489EA13C}] => (Allow) C:\ProgramData\Sage\GMA\Crun\Crun.exe
FirewallRules: [{905CD9B4-82FF-407A-A459-4CA18B2CD23D}] => (Allow) C:\ProgramData\Sage\GMA\Crun\Crun.exe
FirewallRules: [{D109EF34-D432-4F46-99E4-C38C4C8DB51E}] => (Allow) C:\APIMECA\GestMa\GestMa.exe
FirewallRules: [{45AED856-5844-46C8-A74A-A0415AB35B32}] => (Allow) C:\APIMECA\GestMa\GestMa.exe
FirewallRules: [{74485D55-8670-4183-B6E1-4E7B5C381A1D}] => (Allow) C:\APIMECA\GestMa\GestMaVoVn.exe
FirewallRules: [{7B56A910-AED8-4A3C-A2D0-F2F25496EAB4}] => (Allow) C:\APIMECA\GestMa\GestMaVoVn.exe
FirewallRules: [{C64F0767-F502-4168-8161-A08EC4039338}] => (Allow) C:\APIMECA\GestMa\XMeca.exe
FirewallRules: [{DFD7BD27-B58C-4BDA-8FB8-914644C50E25}] => (Allow) C:\APIMECA\GestMa\XMeca.exe
FirewallRules: [{5F6708E6-2F73-4DB5-8390-DF71A518CECE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A84EED40-0173-4475-88E1-DEDB8ACD2B40}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Points de restauration =========================
20-10-2017 11:20:22 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques =============
==================== Erreurs du Journal des événements: =========================
Erreurs Application:
==================
Error: (10/20/2017 03:13:12 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (10/20/2017 03:03:26 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (10/20/2017 03:03:22 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (10/20/2017 11:36:00 AM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_OFF.
Error: (10/20/2017 11:32:55 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (10/20/2017 11:32:49 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (10/20/2017 11:32:25 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: DESKTOP-EBHD264)
Description: Le package 6Wunderkinder.Wunderlist_3.6.26.0_x64__b4cwydgxqx59r+App a été interrompu, car sa suspension a été trop longue.
Error: (10/20/2017 08:58:32 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (10/20/2017 08:58:23 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (10/20/2017 08:57:41 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (10/20/2017 04:29:54 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Spouleur d’impression s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.
Error: (10/20/2017 04:29:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Optimisation de livraison s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.
Error: (10/20/2017 11:34:55 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Optimisation de livraison est en attente de démarrage.
Error: (10/20/2017 11:30:45 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/20/2017 11:30:45 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
et l’APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
au SID AUTORITE NT\SERVICE LOCAL de l’utilisateur (S-1-5-19) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants.
Error: (10/20/2017 11:30:42 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Garmin Device Interaction Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (10/20/2017 11:30:42 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Garmin Device Interaction Service.
Error: (10/20/2017 11:30:06 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service CldFlt n’a pas pu démarrer en raison de l’erreur :
Cette demande n’est pas prise en charge.
Error: (10/20/2017 11:29:49 AM) (Source: TPM) (EventID: 15) (User: AUTORITE NT)
Description: Le pilote de périphérique du module de plateforme sécurisée (TPM) a rencontré une erreur irrécupérable dans le matériel TPM, susceptible d’empêcher l’utilisation des services TPM (comme le chiffrement de données). Pour obtenir de l’aide, contactez le fabricant de l’ordinateur.
Error: (10/20/2017 09:37:11 AM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
CodeIntegrity:
===================================
Date: 2017-10-18 07:44:30.080
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-18 07:44:30.078
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:22:10.709
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:22:10.707
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:08:34.650
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:08:34.649
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:08:34.613
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:08:34.611
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:02:13.117
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2017-10-16 17:02:13.112
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
Processeur: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Pourcentage de mémoire utilisée: 38%
Mémoire physique - RAM - totale: 8073.41 MB
Mémoire physique - RAM - disponible: 4972.13 MB
Mémoire virtuelle totale: 9353.41 MB
Mémoire virtuelle disponible: 6101.23 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:432.98 GB) (Free:327.1 GB) NTFS
Drive e: () (Fixed) (Total:498.04 GB) (Free:389.58 GB) NTFS
==================== MBR & Table des partitions ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: BA9C8FAE)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=433 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=498 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt ============================