Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
Exécuté par ritter (22-11-2016 09:15:38)
Exécuté depuis C:\Users\ritter\Desktop
Windows 7 Professional Service Pack 1 (X64) (2016-06-28 04:16:39)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3421957732-2022287142-4054442351-500 - Administrator - Disabled)
Didier Ritter (S-1-5-21-3421957732-2022287142-4054442351-1002 - Administrator - Enabled) => C:\Users\Didier Ritter
Invité (S-1-5-21-3421957732-2022287142-4054442351-501 - Limited - Disabled)
SophosSAUFE-0412-aaa (S-1-5-21-3421957732-2022287142-4054442351-1004 - Limited - Enabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Sophos Anti-Virus (Enabled - Up to date) {6BABF8F7-3EB6-BD1D-9167-8C5ECA060A29}
AS: Sophos Anti-Virus (Enabled - Up to date) {D0CA1913-188C-B293-ABD7-B72CB1814094}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

ActiveCheck component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
Adobe Flash Player 23 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
APLI-DECADRY Soft SE (HKLM-x32\...\APLI-DECADRY Soft SE) (Version: 2.0 - APLI PAPER S.A. )
Apple Application Support (32 bits) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Application de bureau Autodesk (HKLM-x32\...\Autodesk Desktop App) (Version: 6.1.0.272 - Autodesk)
ArcSoft TotalMedia (HKLM-x32\...\ArcSoft TotalMedia) (Version: 2.0.39.12 - ArcSoft)
ArcSoft TotalMedia (x32 Version: 1.0.48.25 - ArcSoft) Hidden
Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 9.2 - Atheros)
ATI Catalyst Install Manager (HKLM\...\{63E42DE7-C468-31B0-E373-173C67C87B88}) (Version: 3.0.820.0 - ATI Technologies, Inc.)
AutoCAD LT 2017 - Français (French) (Version: 21.0.52.0 - Autodesk) Hidden
AutoCAD LT 2017 - Français (French) (Version: 21.0.52.7 - Autodesk) Hidden
AutoCAD LT 2017 Language Pack - Français (French) (Version: 21.0.52.0 - Autodesk) Hidden
Autodesk Advanced Material Library Image Library 2017 (HKLM-x32\...\{8ED2ED41-4455-449D-993C-751C039089B9}) (Version: 15.11.3.0 - Autodesk)
Autodesk AutoCAD LT 2017 - Français (French) (HKLM\...\AutoCAD LT 2017 - Français (French)) (Version: 21.0.52.0 - Autodesk)
Autodesk AutoCAD LT 2017 - Français (French) Hotfix 2 (HKLM\...\AutoCAD LT 2017 - English Hotfix 2) (Version: 21.0.52.7 - Autodesk)
Autodesk AutoCAD LT 2017 - Français (French) Hotfix 3 (HKLM\...\AutoCAD LT 2017 - English Hotfix 3) (Version: 21.0.52.9 - Autodesk)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk Material Library 2017 (HKLM-x32\...\{8FB9F735-D64C-4991-8D91-4CDDAB1ABDEE}) (Version: 15.11.3.0 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2017 (HKLM-x32\...\{3FBFBC43-9882-43FA-B979-2D53896747B3}) (Version: 15.11.3.0 - Autodesk)
BlueStacks App Player (HKLM-x32\...\BlueStacks) (Version: 2.3.35.6237 - BlueStack Systems, Inc.)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.02.000.55 - Atheros Communications)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother Software Suite (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
chartInstall (HKLM-x32\...\{2CF96265-0F15-4645-8440-625BDC5516A2}) (Version: 1.5.6 - MEMSOFT)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\CopyTrans Suite) (Version: 4.013 - WindSolutions)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dashlane (HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\Dashlane) (Version: 4.6.3.20593 - Dashlane, Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.3.6.321 - Foxit Software Inc.)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Drive (HKLM-x32\...\{3D7AB4D4-2E45-4986-BAC5-5B3CEED21FAA}) (Version: 1.32.3592.6117 - Google, Inc.)
Google Photos Backup (HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\Google Photos Backup) (Version: 1.1.2.13 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
HP ESU for Microsoft Windows 7 (HKLM-x32\...\{CFC1988A-F492-4BC5-B6F7-683A95718AE9}) (Version: 1.1.11.1 - Hewlett-Packard Company)
HP LaserJet Professional M1130-M1210 MFP Series (HKLM\...\HP LaserJet Professional M1130-M1210 MFP Series) (Version:  - )
HP LaserJet Professional M1210 MFP Series Fax Installer (HKLM\...\{E94AE378-725A-41FF-BA24-397469D27FC8}) (Version: 1.3.0 - HP)
HP LaserJet Professional M1210 MFP Series Toolbox (HKLM\...\{F958F851-8DBE-420C-9D37-5ECBB6C61148}) (Version: 1.0.17 - Hewlett-Packard)
HP LaserJet Toolbox (HKLM\...\{2E8A793D-E275-46A2-BAB3-35FB95ACED57}) (Version: 3.0.0 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{EB72DB50-C935-4C26-8349-69828F198902}) (Version: 12.5.32.37 - HP)
HP System Default Settings (HKLM-x32\...\{54C65FE7-83BD-4A5B-A9B4-41F793C5F241}) (Version: 2.1.2 - Hewlett-Packard Company)
HP Wallpaper (HKLM-x32\...\{11C9A461-DD9D-4C71-85A4-6DCE7F99CC44}) (Version: 2.00 - Hewlett-Packard Company)
HP Webcam Driver (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50058.0 - Sonix)
HPAsset component for HP Active Support Library (x32 Version: 3.0.0.3 - Hewlett-Packard) Hidden
hppLaserJetService (x32 Version: 001.003.000145 - Hewlett-Packard) Hidden
hppM1130M1210SeriesLaserJetService (x32 Version: 001.003.00073 - Hewlett-Packard) Hidden
hppusgM1130M1210Series (x32 Version: 1.0.0.2 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{7902E313-FF0F-4493-ACB1-A8147B78DCD0}) (Version: 2.1.1.0000 - Hewlett Packard Development Company L.P.)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6325.0 - IDT)
Intel(R) Display Audio Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 6.14.00.3074 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.2.1004 - Intel Corporation)
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 101 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180101F0}) (Version: 8.0.1010.13 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.57.2 - JMicron Technology Corp.)
LINE (HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\LINE) (Version: 4.10.2.1257 - LINE Corporation)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MarketResearch (x32 Version: 130.0.374.000 - Hewlett-Packard) Hidden
Microsoft .NET Framework 4.6.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft_VC90_CRT_x86 (HKLM-x32\...\{DF2035BE-5820-4965-BD97-7FAF8D4A7879}) (Version: 1.0.0 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 50.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 50.0 (x86 fr)) (Version: 50.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.0.6152 - Mozilla)
Mozilla Thunderbird 45.4.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 45.4.0 (x86 fr)) (Version: 45.4.0 - Mozilla)
Nvu 1.0 (HKLM-x32\...\Nvu_is1) (Version: 1.0 - Linspire Inc.)
OpenVPN 2.3.11-I001  (HKLM\...\OpenVPN) (Version: 2.3.11-I001 - )
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.4.0 - pdfforge GmbH)
PhoneClean (HKLM-x32\...\PhoneClean) (Version: 4.0.6.0 - iMobie Inc.)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 1.12.0016 - Realtek)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.32.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.32.0 - Renesas Electronics Corporation) Hidden
Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP)
SDK (x32 Version: 2.24.025 - Portrait Displays, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Skype™ 7.26 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.26.101 - Skype Technologies S.A.)
SolidWorks eDrawings 2011 SP0 (HKLM-x32\...\{52A73A2E-2478-45E5-A390-8C0A6F525678}) (Version: 11.0.720 - Dassault Systèmes SolidWorks Corp.)
Sophos Anti-Virus (HKLM-x32\...\{09863DA9-7A9B-4430-9561-E04D178D7017}) (Version: 10.6.3.537 - Sophos Limited)
Sophos AutoUpdate (HKLM-x32\...\{BCF53039-A7FC-4C79-A3E3-437AE28FD918}) (Version: 5.2.0.276 - Sophos Limited)
Sophos Network Threat Protection (HKLM\...\{66967E5F-43E8-4402-87A4-04685EE5C2CB}) (Version: 1.2.2.50 - Sophos Limited)
Sophos Remote Management System (HKLM-x32\...\{FED1005D-CBC8-45D5-A288-FFC7BB304121}) (Version: 4.0.6 - Sophos Limited)
Sophos System Protection (HKLM-x32\...\{1093B57D-A613-47F3-90CF-0FD5C5DCFFE6}) (Version: 1.3.0 - Sophos Limited)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.13.0 - Synaptics Incorporated)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.44109 - TeamViewer)
Telegram Desktop version 0.10.19 (HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 0.10.19 - Telegram Messenger LLP)
TomTom HOME (HKLM-x32\...\{B581E191-A2C1-4CE3-907E-9FE3C728750C}) (Version: 2.9.91 - Nom de votre société)
Validity Fingerprint Sensor Driver (HKLM\...\{FFC3E41D-2C2B-45B7-9AD9-5EA19572DD26}) (Version: 4.3.117.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
WinZip 14.5 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}) (Version: 14.5.9095 - WinZip Computing, S.L. )
WMV9/VC-1 Video Playback (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Xobni (HKLM-x32\...\XobniMain) (Version: 1.9.5.13282 - Xobni Corp.)
Xobni Core (x32 Version: 1.0.0 - Xobni, Inc.) Hidden
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-4068479684-1111740649-3668020536-2092_Classes\CLSID\{590C4387-5EBD-4D46-8A84-CD0BA2EF2856}\InprocServer32 -> C:\Users\ritter\AppData\Local\Google\Update\1.3.30.3\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-4068479684-1111740649-3668020536-2092_Classes\CLSID\{59B55F04-DE14-4BB8-92FF-C4A22EF2E5F4}\InprocServer32 -> C:\Users\ritter\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4068479684-1111740649-3668020536-2092_Classes\CLSID\{720DB9AF-D62C-4ED0-A377-429C22312852}\localserver32 -> C:\Program Files\Autodesk\AutoCAD LT 2017\acadlt.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-4068479684-1111740649-3668020536-2092_Classes\CLSID\{74F5CC00-49A9-11CF-A2F9-444553540000}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD LT 2017\fr-FR\acadltficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-4068479684-1111740649-3668020536-2092_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\ritter\AppData\Local\Google\Update\1.3.31.5\psuser_64.dll (Google Inc.)

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {06237A40-37F6-440E-BE67-8F8C983D0101} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-29] (Google Inc.)
Task: {292F6026-E7CB-4B7E-AF14-D14322ECD6BF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard)
Task: {2F57269B-1E09-4E2D-AB1E-B0FDAC7D279C} - \Microsoft\Windows\WindowsBackup\ConfigNotification -> Pas de fichier <==== ATTENTION
Task: {5296A764-6B33-48E2-9BB2-5DC04D19F268} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-08] (Adobe Systems Incorporated)
Task: {54E1CE51-B5A2-4B2A-830D-704FD0D0C8FD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {58C3CDB1-0868-4A43-9F46-26C2B0D08D4B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4068479684-1111740649-3668020536-2092Core => C:\Users\ritter\AppData\Local\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {5F0A6366-16E6-4190-8DDD-2BB5C7FC646A} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4068479684-1111740649-3668020536-2092UA => C:\Users\ritter\AppData\Local\Google\Update\GoogleUpdate.exe [2016-07-24] (Google Inc.)
Task: {6D85AAEF-B866-4300-9A9C-8BFFECEC5AB2} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-06-29] (Google Inc.)
Task: {9062AD56-4EB8-4C6B-887B-E5E04C724E6D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-08-03] (HP Inc.)
Task: {A32BFF66-88C1-45B8-96DC-E93FB5384511} - System32\Tasks\HPCeeScheduleForFE-0412-DRI$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard)
Task: {AC4E5ACF-89F7-4220-BA21-81EE183975E2} - \Microsoft\Windows\Application Experience\AitAgent -> Pas de fichier <==== ATTENTION
Task: {CEE64558-E1A7-4D9D-80A7-2001912BE5B5} - \Microsoft\Windows\MemoryDiagnostic\CorruptionDetector -> Pas de fichier <==== ATTENTION
Task: {D637B334-78DD-478C-B3CF-D3D97E4F0EAD} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
Task: {FA2BC0A6-8D4B-458A-85C8-2B8C72487513} - \Microsoft\Windows\MemoryDiagnostic\DecompressionFailureDetector -> Pas de fichier <==== ATTENTION

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4068479684-1111740649-3668020536-2092Core.job => C:\Users\ritter\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4068479684-1111740649-3668020536-2092UA.job => C:\Users\ritter\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForFE-0412-DRI$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Raccourcis =============================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

==================== Modules chargés (Avec liste blanche) ==============

2016-06-29 21:30 - 2012-09-29 13:25 - 00409088 _____ () C:\windows\System32\HPM1210LM.DLL
2016-06-29 21:30 - 2012-09-29 13:25 - 00074240 _____ () C:\windows\system32\spool\PRTPROCS\x64\HPM1210PP.DLL
2016-11-21 16:26 - 2016-11-10 14:59 - 00536960 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\DashlanePlugin.exe
2016-06-30 11:16 - 2016-06-30 11:16 - 00233608 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\http.plg
2016-06-30 11:16 - 2016-06-30 11:16 - 00140696 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\ip.plg
2016-06-30 11:16 - 2016-06-30 11:16 - 00119344 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\ipv6.plg
2016-06-30 11:15 - 2016-06-30 11:15 - 00076704 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\portmap.plg
2016-06-30 11:15 - 2016-06-30 11:15 - 00165000 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\tcp.plg
2016-06-30 11:16 - 2016-06-30 11:16 - 00148440 _____ () C:\Program Files\Sophos\Sophos Network Threat Protection\bin\plugins\udp.plg
2016-11-11 19:24 - 2016-09-26 10:02 - 00068016 _____ () C:\Program Files (x86)\iMobie\PhoneClean\iTunesMobileDevice.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-09-01 17:12 - 2016-09-01 17:12 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-06-29 21:00 - 2005-04-22 05:36 - 00143360 _____ () C:\windows\system32\BrSNMP64.dll
2016-05-10 08:41 - 2016-05-10 08:41 - 00446304 _____ () C:\Program Files\OpenVPN\bin\openvpn-gui.exe
2016-05-10 08:41 - 2016-05-10 08:41 - 00226432 _____ () C:\Program Files\OpenVPN\bin\liblzo2-2.dll
2016-05-10 08:41 - 2016-05-10 08:41 - 00123000 _____ () C:\Program Files\OpenVPN\bin\libpkcs11-helper-1.dll
2016-06-29 21:30 - 2012-09-29 13:26 - 03120128 _____ () C:\windows\system32\spool\DRIVERS\x64\3\hpm1210su.dll
2016-06-29 21:30 - 2012-09-29 13:53 - 01038336 _____ () C:\windows\system32\spool\DRIVERS\x64\3\HPM1210GC.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 00346496 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebugDll_win32.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 00441216 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWDebug.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 00471424 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWUtils.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 63181696 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWExternLib.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 00292736 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib_win.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 06322048 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWData.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 07602560 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWApplication.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 13827456 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLib.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 02285440 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\KWMainLibData.4.6.3.20593.dll
2016-11-21 16:25 - 2016-11-10 14:52 - 00334208 _____ () C:\Users\ritter\AppData\Roaming\Dashlane\4.6.3.20593\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}\components\Kwift_DP.4.6.3.20593.dll
2016-11-22 07:32 - 2016-11-22 07:32 - 00098816 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32api.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00110080 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\pywintypes27.dll
2016-11-22 07:32 - 2016-11-22 07:32 - 00364544 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\pythoncom27.dll
2016-11-22 07:32 - 2016-11-22 07:32 - 00320512 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32com.shell.shell.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00914432 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_hashlib.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 01176576 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._core_.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00806400 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._gdi_.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00816128 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._windows_.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 01067008 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._controls_.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00733184 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._misc_.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00682496 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\pysqlite2._sqlite.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00088064 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_ctypes.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00686080 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\unicodedata.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00119808 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32file.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00108544 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32security.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00007168 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\hashobjs_ext.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00017920 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\thumbnails_ext.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00088064 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\usb_ext.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00012800 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\common.time34.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00018432 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32event.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00167936 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32gui.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00046080 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_socket.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 01303552 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_ssl.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00128512 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_elementtree.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00127488 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\pyexpat.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00038912 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32inet.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00036864 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_psutil_windows.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00524248 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\windows._lib_cacheinvalidation.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00011264 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32crypt.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00123392 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._wizard.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00077312 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._html2.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00027648 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_multiprocessing.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00020480 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\_yappi.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00035840 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32process.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00078848 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\wx._animate.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00024064 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32pipe.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00010240 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\select.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00025600 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32pdh.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00017408 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32profile.pyd
2016-11-22 07:32 - 2016-11-22 07:32 - 00022528 ____R () C:\Users\ritter\AppData\Local\Temp\_MEI30002\win32ts.pyd
2016-11-09 12:35 - 2016-11-09 12:35 - 04041680 _____ () C:\Users\ritter\AppData\Local\LINE\bin\4.10.2.1257\ampkit_windows.dll
2016-11-09 12:36 - 2016-11-09 12:36 - 00123344 _____ () C:\Users\ritter\AppData\Local\LINE\bin\4.10.2.1257\PlayerHelper.dll
2016-06-30 10:34 - 2016-06-30 10:34 - 01276680 _____ () C:\Program Files (x86)\Sophos\Remote Management System\ACE.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00075016 _____ () C:\Program Files (x86)\Sophos\Remote Management System\ACE_SSL.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 01094408 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00254216 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_SSLIOP.dll
2016-06-30 10:34 - 2016-06-30 10:34 - 00465160 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_AnyTypeCode.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00511752 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_PortableServer.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00087816 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_Valuetype.dll
2016-06-30 10:34 - 2016-06-30 10:34 - 00059144 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_CodecFactory.dll
2016-06-30 10:34 - 2016-06-30 10:34 - 00149768 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_PI.dll
2016-06-30 10:33 - 2016-06-30 10:33 - 00832264 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_Security.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00044808 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_Svc_Utils.dll
2016-06-30 10:34 - 2016-06-30 10:34 - 00069384 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_PI_Server.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00347400 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_DynamicAny.dll
2016-06-30 10:35 - 2016-06-30 10:35 - 00052488 _____ () C:\Program Files (x86)\Sophos\Remote Management System\TAO_Codeset.dll
2016-11-09 12:35 - 2016-11-09 12:35 - 00875000 _____ () C:\Users\ritter\AppData\Local\LINE\bin\4.10.2.1257\LinePlayer\LPEngine.dll
2016-07-02 20:17 - 2016-07-02 20:17 - 00169472 _____ () C:\windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\61a733954a0da9a5988d596c76b2b891\IsdiInterop.ni.dll
2016-06-28 05:24 - 2011-01-13 02:56 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SAVService => ""="service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SntpService => ""="service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)

HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\Software\Classes\.scr: AutoCADLTScriptFile => C:\windows\system32\notepad.exe "%1"

==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)


==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 03:34 - 2016-07-05 07:40 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-4068479684-1111740649-3668020536-2092\Control Panel\Desktop\\Wallpaper -> C:\Users\ritter\AppData\Roaming\Mozilla\Firefox\Fond d’écran.bmp
DNS Servers: 192.168.0.39 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

MSCONFIG\startupreg: ADSKAppManager => "C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe" -tray
MSCONFIG\startupreg: AthBtTray => "C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
MSCONFIG\startupreg: AtherosBtStack => "C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\Bluestacks\HD-Agent.exe
MSCONFIG\startupreg: ControlCenter4 => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
MSCONFIG\startupreg: DTRun => c:\Program Files (x86)\ArcSoft\TotalMedia Suite\TotalMedia Theatre 3\uDTRun.exe
MSCONFIG\startupreg: File Sanitizer => C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe
MSCONFIG\startupreg: Google Photos Backup => "C:\Users\ritter\AppData\Local\Programs\Google\Google Photos Backup\Google Photos Backup.exe" /autostart
MSCONFIG\startupreg: Google Update => "C:\Users\ritter\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: HotKeysCmds => C:\windows\system32\hkcmd.exe
MSCONFIG\startupreg: HPUsageTrackingLEDM => "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: IgfxTray => C:\windows\system32\igfxtray.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LINE => "C:\Users\ritter\AppData\Local\LINE\bin\LineLauncher.exe" --booting
MSCONFIG\startupreg: NUSB3MON => "c:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: Persistence => C:\windows\system32\igfxpers.exe
MSCONFIG\startupreg: Sophos AutoUpdate Monitor => C:\Program Files (x86)\Sophos\AutoUpdate\almon.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" -s

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{378F5AE0-29BE-4FB1-A025-622573ED7744}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{92D21149-C10A-48CF-A1AA-4271503E5AFB}] => (Allow) LPort=2869
FirewallRules: [{A4522E36-05CF-4099-B431-21A021329DDD}] => (Allow) LPort=1900
FirewallRules: [{C849FC84-D224-43A0-A666-7B4F15F8699C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A82C3F35-758F-4AD5-B666-209858B07C02}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{A6D66E1B-22B5-4E9F-927A-09CC25A50E4F}C:\users\didier ritter\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\didier ritter\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{16811320-D036-4667-BFF1-2E61ED1D02A0}C:\users\didier ritter\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\didier ritter\appdata\local\akamai\netsession_win.exe
FirewallRules: [{FAF46C7E-2DF7-46DD-A4FA-ECE71E6AC96B}] => (Allow) C:\Users\Didier Ritter\AppData\Local\Temp\7zS6420\ProductInst64.exe
FirewallRules: [{E22C3CA8-3F69-4B44-928E-9793181BA2E2}] => (Allow) C:\Users\Didier Ritter\AppData\Local\Temp\7zS6420\ProductInst64.exe
FirewallRules: [{415BFE6B-B13A-4B19-9F2D-B84ABBF74C8F}] => (Allow) LPort=9100
FirewallRules: [{F016B514-E4A9-439D-BE8B-8CD7350825D4}] => (Allow) LPort=427
FirewallRules: [{E5062962-3D97-4FE3-B90F-6C36B855B3A8}] => (Allow) LPort=161
FirewallRules: [{1AB3040D-D142-4BE2-BC10-58ECB80080B3}] => (Allow) LPort=427
FirewallRules: [TCP Query User{AF03201A-3AD3-4A0B-ACEA-00846B23E0E7}C:\users\didier ritter\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\didier ritter\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{618BDB77-CBA4-44C2-89F6-802B4AFB6E2E}C:\users\didier ritter\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\didier ritter\appdata\local\akamai\netsession_win.exe
FirewallRules: [{3B438FF6-4FCB-40DA-9350-56696C81375D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{7043133A-11B6-44D0-B9E2-B447920BFA0E}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{59EA7574-C3FC-4576-AFD6-4C2999183585}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{E2836CE0-BC87-4EB7-863A-3F0589879D62}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [TCP Query User{B06B2562-D77D-4A50-A079-3AB0FA3F34A8}C:\users\ritter\appdata\local\line\bin\4.7.1.1037\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.7.1.1037\line.exe
FirewallRules: [UDP Query User{98545A62-55BC-4DA0-B654-FA6DC8D1A42D}C:\users\ritter\appdata\local\line\bin\4.7.1.1037\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.7.1.1037\line.exe
FirewallRules: [{D68C8D56-9C6D-40E2-896E-096C243F0C9B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EC91E83E-3DDD-4874-AAC1-F141E59995F7}] => (Allow) LPort=1688
FirewallRules: [{58AC0EFC-F32F-4E54-834F-DCED9E981AFF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{78E2E0B7-B1FD-4F3D-B8EE-C9A5CA0ED855}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{B14BFEE3-AA25-421C-8817-3CD44524C6B6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{9099985F-3394-46BF-AD82-13494391899F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{3F14AB4F-38C0-4A1A-A3F7-4DB59C3E802E}C:\users\ritter\appdata\local\line\bin\4.8.1.1112\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.8.1.1112\line.exe
FirewallRules: [UDP Query User{B1F569A7-2788-40FD-8CA4-EE978B53E266}C:\users\ritter\appdata\local\line\bin\4.8.1.1112\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.8.1.1112\line.exe
FirewallRules: [TCP Query User{8F62A530-10C3-41A6-9C6D-6F1D7B3CC834}C:\users\ritter\appdata\local\line\bin\4.8.3.1130\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.8.3.1130\line.exe
FirewallRules: [UDP Query User{E6A67F83-6E95-45C4-8ADB-76BA86422A27}C:\users\ritter\appdata\local\line\bin\4.8.3.1130\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.8.3.1130\line.exe
FirewallRules: [TCP Query User{5B476EB8-9AE2-4E15-B5D5-592095583FC6}C:\users\ritter\appdata\local\line\bin\4.9.0.1147\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.9.0.1147\line.exe
FirewallRules: [UDP Query User{4E343096-7BA1-4050-A06B-C690D2B9AF50}C:\users\ritter\appdata\local\line\bin\4.9.0.1147\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.9.0.1147\line.exe
FirewallRules: [{FA0E84AE-D4FE-4232-966E-76A877DE4DB6}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{2673377B-3701-4413-A0AD-8E48DFC53D16}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{8A9D8263-B433-4CC9-BDF8-55575D60BF63}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{E22C78B0-565D-4E8D-81D5-0A11390335B1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{07C737EB-C7D0-4134-8BAE-4F0872135951}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{E6D42109-D1D5-4D99-A4DA-1E9161EE4604}C:\users\ritter\appdata\local\line\bin\4.10.0.1237\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.10.0.1237\line.exe
FirewallRules: [UDP Query User{75D14324-7674-4FFE-BC42-291967CD8BD2}C:\users\ritter\appdata\local\line\bin\4.10.0.1237\line.exe] => (Allow) C:\users\ritter\appdata\local\line\bin\4.10.0.1237\line.exe

==================== Points de restauration =========================

19-11-2016 23:17:58 Installed calibre
20-11-2016 10:03:32 Removed calibre

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (11/22/2016 07:39:34 AM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/21/2016 10:35:46 PM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/21/2016 09:25:12 PM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/21/2016 09:21:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Photoshop.exe version 16.0.1.168 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 1140

Heure de début : 01d24433c3e6b5cc

Heure de fin : 17

Chemin d’accès de l’application : C:\PhotoshopPortable 16 0 1\PhotoshopPortable_16.0.1\PhotoshopPortable\App\Photoshop64\Photoshop.exe

ID de rapport :

Error: (11/21/2016 04:14:51 PM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/21/2016 08:28:09 AM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/20/2016 10:05:57 PM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/20/2016 08:42:56 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante firefox.exe, version : 50.0.0.6152, horodatage : 0x581d78ba
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x2ec1fa6c
ID du processus défaillant : 0xb70
Heure de début de l’application défaillante : 0x01d2435f05c6854e
Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Mozilla Firefox\firefox.exe
Chemin d’accès du module défaillant: unknown
ID de rapport : 8836dee3-af59-11e6-8ca3-d0df9a91a3eb

Error: (11/20/2016 07:56:23 PM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3

Error: (11/20/2016 05:46:53 PM) (Source: Sophos Message Router) (EventID: 8005) (User: AUTORITE NT)
Description: Échec de la consultation des tables DNS lors de la tentative de résolution des adresses suivantes : ANTIVIRUS-SRV,ANTIVIRUS-SRV.abeo-erp.local,fe80::84ca:c64a:1716:3a56.%%3


Erreurs système:
=============
Error: (11/22/2016 07:41:54 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Windows Update est en attente de démarrage.

Error: (11/22/2016 07:38:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service HP Support Solutions Framework Service n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/22/2016 07:38:21 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service HP Support Solutions Framework Service.

Error: (11/22/2016 07:37:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service HP Health Check Service n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (11/22/2016 07:33:30 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Sophos Agent n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/22/2016 07:33:30 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Sophos Agent.

Error: (11/22/2016 07:32:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service McAfee Endpoint Encryption Agent n’a pas pu démarrer en raison de l’erreur : 
Le fichier spécifié est introuvable.

Error: (11/22/2016 07:32:29 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service HP LaserJet Service n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/22/2016 07:32:29 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service HP LaserJet Service.

Error: (11/22/2016 07:31:55 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service BlueStacks Log Rotator Service n’a pas pu démarrer en raison de l’erreur : 
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.


==================== Infos Mémoire =========================== 

Processeur: Intel(R) Core(TM) i5-2430M CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 35%
Mémoire physique - RAM - totale: 8126.36 MB
Mémoire physique - RAM - disponible: 5266.12 MB
Mémoire virtuelle totale: 16250.89 MB
Mémoire virtuelle disponible: 13238.29 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:442.67 GB) (Free:201.18 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (HP_RECOVERY) (Fixed) (Total:17.8 GB) (Free:2.64 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive e: (HP_TOOLS) (Fixed) (Total:4.99 GB) (Free:4.98 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: F2D83907)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=442.7 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=17.8 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=5 GB) - (Type=0C)

==================== Fin de Addition.txt ============================