Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04.03.2018
Exécuté par Administrateur (07-03-2018 08:36:50)
Exécuté depuis C:\Users\Administrateur\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-03 21:09:13)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-4158940424-1538533425-2611268743-500 - Administrator - Enabled) => C:\Users\Administrateur
HomeGroupUser$ (S-1-5-21-4158940424-1538533425-2611268743-1002 - Limited - Enabled)
Invité (S-1-5-21-4158940424-1538533425-2611268743-501 - Limited - Disabled)
nicolas (S-1-5-21-4158940424-1538533425-2611268743-1000 - Limited - Enabled) => C:\Users\nicolas

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat 6.0.1 Professional (HKLM-x32\...\{AC76BA86-1033-0000-7760-000000000001}) (Version: 006.000.001 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 28.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 28 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.161 - Adobe Systems Incorporated)
Adobe Reader X (10.1.16) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AA1000000001}) (Version: 10.1.16 - Adobe Systems Incorporated)
AnyRail5 (HKLM-x32\...\{50B21AC2-093F-4BB7-8981-75FA813D8115}) (Version: 5.23.2 - DRail Modelspoor Software) Hidden
AnyRail5 (HKLM-x32\...\AnyRail5 5.23.2) (Version: 5.23.2 - DRail Modelspoor Software)
Autodesk DWG TrueView 2018 - Français (French) (HKLM\...\DWG TrueView 2018 - Français (French)) (Version: 22.0.50.0 - Autodesk)
Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 18.2.2328 - AVAST Software)
Avast Cleanup Premium (HKLM-x32\...\{075CC190-59EE-499F-828B-0B5C098C8C15}_is1) (Version: 17.3.4040 - AVAST Software)
Backup and Sync from Google (HKLM-x32\...\{AC62F3F2-61A2-4357-93EC-C308E3FEDF4E}) (Version: 3.39.8370.7843 - Google, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.40 - Piriform)
Chromium (HKU\S-1-5-21-4158940424-1538533425-2611268743-500\...\Chromium) (Version: 46.0.2480.0 - Chromium)
Composants Cryptographiques CPS v5.0.34 (x64) (HKLM\...\{657E024F-D943-4DCB-8F7F-E4A2DBF9801A}) (Version: 5.0.34 - ASIP Santé)
DWG TrueView 2018 - Français (French) (HKLM\...\{28B89EEF-1028-040C-0100-CF3F3A09B77D}) (Version: 22.0.50.0 - Autodesk) Hidden
FMS (HKLM-x32\...\FMS) (Version:  - )
Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 64.0.3282.186 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{57BB4801-61C8-4E74-9672-2160728A461E}) (Version: 7.1.5.1557 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
Jedicut 2.3.4.1 (HKLM-x32\...\{682F1116-2B94-47F8-B85A-149997A4E8F5}_is1) (Version:  - Jerome)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft .NET Framework 4.7 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{9011040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Starter 2010 - Français (HKLM-x32\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Picture It! Photo 7.0 (HKLM-x32\...\{369B36BE-3D64-4641-9AEA-808D436FE132}) (Version: 7.0.0.0000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{9B3F0A88-790D-3AD9-9F96-B19CF2746452}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Works 7.0 (HKLM-x32\...\{64D114CE-4234-45C2-B60A-2B07D5A48F72}) (Version: 07.02.0000 - Microsoft Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Mozilla Firefox 58.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 58.0.2 (x64 fr)) (Version: 58.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla)
Mozilla Thunderbird 52.6.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.6.0 (x86 fr)) (Version: 52.6.0 - Mozilla)
Oscillo v.3.6 (HKLM-x32\...\Oscillo_is1) (Version:  - © Serge LAGIER)
PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.2.26 - PDF Complete, Inc)
PhotoFiltre 7 (HKU\S-1-5-21-4158940424-1538533425-2611268743-500\...\PhotoFiltre 7) (Version:  - )
Profils (remove only) (HKLM-x32\...\Profils) (Version:  - )
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM-x32\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM-x32\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden
Sélecteur d'installation de Microsoft Works Suite 2003 (HKLM-x32\...\Works2003Setup) (Version:  - )
Skype version 8.16 (HKLM-x32\...\Skype_is1) (Version: 8.16 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.31 - Piriform)
Traffic Screensaver V4.9F (HKLM-x32\...\TrafficScreensaver_is1) (Version: 4.9F - TrafficSoft BT.)
VirtualGeo³ pour le Géoportail (HKLM-x32\...\VGeo3 GP) (Version: 3.1.0.2040 - Diginext)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3502.0922 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinOscillo 0.85 (HKLM-x32\...\WinOscillo) (Version:  - Jean-Noël Haas)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-01-29] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-03-05] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-03-05] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2017-02-15] (Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2017-02-15] (Autodesk)
ContextMenuHandlers1-x32: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 6.0\Acrobat Elements\ContextMenu.dll [2003-11-04] (Adobe Systems Inc.)
ContextMenuHandlers1-x32: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers1-x32-x32: [EPPShellEx] -> {509FE1AF-ADD5-49EC-BC55-7CF81FD16E78} => C:\Program Files (x86)\EPSON\Creativity Suite\Easy Photo Print\EPPShell.dll [2007-03-05] (SEIKO EPSON CORPORATION)
ContextMenuHandlers1-x32-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-01-29] (Google)
ContextMenuHandlers1-x32-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-01-29] (Google)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers4-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-09-08] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2018-03-05] (AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-4158940424-1538533425-2611268743-500: [SysMenuExt] -> {020B1D4B-5738-4C77-9E19-4F173DD9B486} =>  -> Pas de fichier

==================== Tâches planifiées (Avec liste blanche) =============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

Task: {00A8B493-C21C-4A53-8AC8-87024F4474D3} - System32\Tasks\HPCeeScheduleForNICOLAS-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard)
Task: {05E36F1C-01A6-47FA-9552-2BC008324BE4} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4158940424-1538533425-2611268743-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {06BF33B7-F944-450C-AE00-C16FDF602EB0} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-02-07] (Piriform Ltd)
Task: {0ACDC682-9496-47A3-827F-E065C91459AB} - System32\Tasks\{4780C84F-2D3B-4D69-8821-985899C69D10} => E:\Installation.EXE
Task: {101D1AEB-11DC-496C-A8B2-58CEEE23E098} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4158940424-1538533425-2611268743-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {140486FD-A47A-48D7-A6E0-5AE32F6EE484} - System32\Tasks\{82D9E2FF-AAD3-4846-85F4-5AE85D3F8C6E} => E:\autorun.exe
Task: {16A379F2-C38E-4F82-986D-F2E41BF0F891} - System32\Tasks\{ED0FD557-B939-4FCF-B510-C9DF291DFBBD} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {16E152FA-82A2-49CA-AC7A-DB0C79389CF4} - System32\Tasks\{71F7E460-9E46-484F-B6F3-13A5926AA949} => C:\Windows\system32\pcalua.exe -a "K:\A SAUVEGARDER\EXTRACTEURS ET UTILITAIRES\CDRWIN WinISO ACE RAR Zip\WinZip v8.1.Cracké Fr.exe" -d "K:\A SAUVEGARDER\EXTRACTEURS ET UTILITAIRES\CDRWIN WinISO ACE RAR Zip"
Task: {18651D6D-7293-4854-A347-3E6BF950BA7B} - System32\Tasks\{A1BF6E63-B85F-4B28-A452-2F89011E8A81} => E:\autorun.exe
Task: {1CDD73AD-33A2-4349-9179-3E69CB9ACD6A} - System32\Tasks\{00D633DF-75FC-4B9A-B97D-FF279DFB99E1} => C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe
Task: {20B2A352-13F0-4324-AF84-AB464FC60A4E} - System32\Tasks\{FBFA299F-4901-41B8-BAA0-1EE813ED91B9} => E:\autorun.exe
Task: {28B5AB54-BBD1-4796-8E96-BA7F39B1AF5D} - System32\Tasks\{CE640567-6BF3-4447-8AC8-F51DB8386190} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {29AF8411-68B2-4E4E-8AFE-D0E9698A910C} - System32\Tasks\{12722D66-8DB4-426A-B5B2-06CA5385E9B9} => C:\Program Files\WinZip 8.1 Fr\WINZIP32.EXE [2002-03-29] (WinZip Computing, Inc.)
Task: {2B28B680-1D92-4F9D-A5C8-92ACA0FF8391} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-4158940424-1538533425-2611268743-500 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {2B7819CD-F2AA-4044-A646-CFD50E43AF67} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {2DA01766-3098-4835-B3B0-7F79EACC0E8D} - System32\Tasks\{F706919D-9DF3-4C23-B9C6-3CBE0AFE09C5} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {3271DBFB-B815-4910-8936-C7C6B372C6D5} - System32\Tasks\{9CCE5DC3-1335-4056-8A1E-B54C95114FC0} => E:\autorun.exe
Task: {33112B46-AE87-46EF-AA7F-DA1AD62A7121} - System32\Tasks\{54D7AC87-A632-49D2-BA7C-D1036C2EB02A} => C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe
Task: {359CCB70-AA1C-4611-93FC-ED9D3C5EFDA8} - System32\Tasks\defenderVega5 => C:\vega5\Outils\WindowsDefender.bat [2017-09-05] () <==== ATTENTION
Task: {4812132A-34E0-4F02-8361-385E01C8CF73} - System32\Tasks\{3D06B2DD-7FB3-4988-A85F-C78AED92B61E} => C:\Users\nicolas\Downloads\Il2_Sturmovik_DownloadManager_fr.exe [2011-10-07] (Digital River, Inc.)
Task: {4DB215A8-9F53-4466-9569-F3569799FD82} - System32\Tasks\RealCreateProcessScheduledTask24040534S-1-5-21-4158940424-1538533425-2611268743-500 => c:\program files (x86)\real\realplayer\update\realsched.exe [2013-02-14] (RealNetworks, Inc.)
Task: {51E2D4FE-14A4-42D2-B16D-8774325C9B1A} - System32\Tasks\{EB334C34-FCF3-4034-80AF-EE9B80C7DF5C} => C:\Windows\system32\pcalua.exe -a K:\pf_v402.exe -d K:\
Task: {52846B93-554B-4339-9EA6-AC6B437E6516} - System32\Tasks\{6AF396E9-72E5-4911-B335-445F860861DE} => E:\autorun.exe
Task: {683F59C8-FC6E-4900-A79F-845ECCF1B8B4} - System32\Tasks\{57D5E4F3-38A3-46F0-A912-23B089785CD0} => C:\Windows\system32\pcalua.exe -a E:\Installation.EXE -d E:\
Task: {69E945A9-2C9E-40BC-8676-6C21727C0F7B} - System32\Tasks\{6E286114-18C1-4053-840A-60D60F9E76FD} => C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe
Task: {6BD0290B-7194-48C4-8214-33BB450565A5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {6CDD1FF5-66D1-4C1B-B435-12F141BA5A61} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-4158940424-1538533425-2611268743-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {71064391-A8BB-4EA2-BD04-6B6ABFEC5845} - System32\Tasks\{F9A20A05-9A24-40D8-A0B1-E3D0DE7C14B9} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Ubi Soft\IL-2 Sturmovik Forgotten Battles\il2setup.exe"
Task: {83365113-77C5-4053-A74C-8EA664D13DF0} - System32\Tasks\{BFCAB4E2-1D03-4669-8E2E-5C5518EBB3A8} => E:\Fichiers Bliss\Bliss 2.EXE
Task: {8491CAB5-F1FD-4CC5-AE44-9CD1084EF2C9} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2018-03-05] (AVAST Software)
Task: {8C5FA03F-EFE4-4240-AF89-00C713A9B142} - System32\Tasks\{70EA3796-5E1C-492C-856D-421DA13DCABC} => E:\Fichiers Bliss\Bliss 2.EXE
Task: {8CDCC84E-BE21-484C-8F87-7BD6A3814A98} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-02-07] (Piriform Ltd)
Task: {9114F9A2-6E5E-4A48-BF0F-CD5B3D1C4856} - System32\Tasks\{693CCD41-9275-4F8B-A4D6-CEF8C67C44E1} => E:\autorun.exe
Task: {9130DB03-CE67-43AA-B273-BC4DA7B58FCF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {91B9D664-68AD-479F-9A15-493F91F7F797} - System32\Tasks\{FA10E245-C683-4E37-BB58-12436A73815E} => C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe
Task: {935DCFEC-56E8-423E-9FF8-7C1E41555921} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {93BD1814-4951-4638-8522-12B6A41D33EF} - System32\Tasks\{CF1F0AAD-0EA9-45A9-8538-60867841DBCD} => C:\Program Files (x86)\Ubi Soft\IL-2 Sturmovik Forgotten Battles\il2fb.exe
Task: {951B055D-AE7F-4F41-B2D7-B2A1EEF937B5} - System32\Tasks\{EEC4EAFC-77C0-4856-86B3-42E84637473C} => E:\Installation.EXE
Task: {9795729E-DA1D-4151-B63F-5C70DDCCC289} - System32\Tasks\avastBCLRestartS-1-5-21-4158940424-1538533425-2611268743-1000 => C:\Program Files (x86)\Mozilla Firefox\firefox.exe 
Task: {981E4170-89EE-4F86-8595-1CEED8A535CE} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe [2018-02-02] (AVAST Software)
Task: {9CB8EFAE-A17D-4387-8F4E-F4764C2B3913} - System32\Tasks\TXOY => C:\Users\nicolas\AppData\Roaming\TXOY.exe <==== ATTENTION
Task: {A6026635-6325-42BA-9312-81715620A16A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-02-06] (Adobe Systems Incorporated)
Task: {A765D097-478D-483E-A064-70363C14EA2A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {AF04CFC8-9450-4968-BA1A-2C86B71754E9} - System32\Tasks\{9FCCBD84-77C5-4203-8307-24D2CC0A7655} => E:\Installation.EXE
Task: {B5C095BB-874E-4B42-A2A3-E9F2013576D9} - System32\Tasks\{9D993A3C-AE4E-4632-BAFF-7B3D02B73C3E} => C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe
Task: {B9368777-AED1-4CBE-A3FE-633B212667DA} - System32\Tasks\{47664557-FB5A-4CEE-B91E-E1F7E48DC3AC} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {BBB9D7E1-7551-46A7-B5B5-A13EA3AB486F} - System32\Tasks\{34185384-27F3-41A5-A817-70B3B58B7DFF} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {C94D5703-0399-470C-96C4-C1C9C8DC8057} - System32\Tasks\{7E0DE08B-A49E-48C2-9CF3-59F67BF035FA} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {C99B0E9C-CDEA-4E1D-A107-D6B7CF68E4D8} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-4158940424-1538533425-2611268743-500 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {CC6D8E96-69EC-4524-A376-9AAC892F9222} - System32\Tasks\{11759754-19CD-4C0B-8ABC-A6CCC0D9004F} => C:\Windows\system32\pcalua.exe -a E:\install.EXE -d E:\ -c /autorun
Task: {D806EDD0-619F-41FA-AD3D-E788ABDBDBE8} - System32\Tasks\{720D3920-B8B6-4EE9-B4F4-D39C15A99E43} => C:\Program Files (x86)\Ubisoft\IL-2 Sturmovik 1946\il2fb.exe [2011-10-07] ()
Task: {D81D701F-A001-4C14-B783-FFEA36C9836E} - System32\Tasks\{66A26E85-20E3-4DFE-B5B1-531615A4D3ED} => C:\Program Files (x86)\Microsoft Games\Flight Simulator 9\fs9.exe
Task: {DE40EDC4-5880-410C-BF3A-8FBA6B0A35AC} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-4158940424-1538533425-2611268743-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {DFC8AE0E-F084-40B9-AA70-D98EB87B30DA} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-4158940424-1538533425-2611268743-500 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {DFF74936-17F7-4A61-96FF-5E18EC503B9B} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-4158940424-1538533425-2611268743-500 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {E17D3EB0-FEE1-41DD-B96F-DF638992346A} - System32\Tasks\{9432BDCD-2D66-4C76-90F9-25991BB7EAFD} => E:\autorun.exe
Task: {E2D32B2B-8E7F-497F-B6AB-345D8CDA7E45} - System32\Tasks\{A12F6507-6250-402F-84CE-039820857D50} => C:\Users\nicolas\Downloads\Il2_Sturmovik_DownloadManager_fr.exe [2011-10-07] (Digital River, Inc.)
Task: {FCC8FEB0-B27F-439F-BD15-188B80CC8D62} - System32\Tasks\{FA1189C2-EEBB-4693-BAC8-F95A9944A28C} => C:\Users\nicolas\Downloads\Il2_Sturmovik_DownloadManager_fr.exe [2011-10-07] (Digital River, Inc.)

(Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.)

Task: C:\Windows\Tasks\defenderVega5.job => C:\vega5\Outils\WindowsDefender.bat <==== ATTENTION
Task: C:\Windows\Tasks\HPCeeScheduleForNICOLAS-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\TXOY.job => C:\Users\nicolas\AppData\Roaming\TXOY.exe <==== ATTENTION

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2012-11-29 20:31 - 2012-11-29 20:31 - 000038608 _____ () C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
2018-03-05 17:49 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-03-05 17:49 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2010-09-15 19:31 - 2010-09-15 19:31 - 000611896 _____ () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
2018-02-07 18:47 - 2018-02-07 18:47 - 000091520 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000287960 _____ () C:\Program Files\AVAST Software\Avast\streamback.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000280280 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
2018-03-06 17:53 - 2018-03-06 17:53 - 005826192 _____ () C:\Program Files\AVAST Software\Avast\defs\18030604\algo.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000756952 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000172760 _____ () C:\Program Files\AVAST Software\Avast\hns_tools.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000964824 _____ () C:\Program Files\AVAST Software\Avast\shepherdsync.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000475352 _____ () C:\Program Files\AVAST Software\Avast\gui_cache.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000339672 _____ () C:\Program Files\AVAST Software\Avast\streamback_avast.dll
2018-03-05 21:40 - 2016-09-12 14:53 - 048936448 _____ () C:\Program Files (x86)\AVAST Software\Avast Cleanup\libcef.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 067126928 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2018-03-05 21:26 - 2018-03-05 21:26 - 000275160 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\Administrateur\Application Data:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\Downloads:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Adobe:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\AdobeUM:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Apple Computer:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\ATI:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Autodesk:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Blitware:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\DassaultSystemes:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\EDrawings:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Hewlett-Packard:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\hpqLog:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Identities:Shareaza.GUID [34]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Leadertech:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Macromedia:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Media Center Programs:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Mozilla:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\NeroVision:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\PictureMover:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Real:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\RealNetworks:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Shareaza:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Skype:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\Thunderbird:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\TP:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\TrueCrypt:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\vlc:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\WinRAR:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\Administrateur\AppData\Roaming\XTrackCad:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\nicolas\Downloads:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\nicolas\Downloads\chrome:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\nicolas\Downloads\defaults:Shareaza.GUID [16]
AlternateDataStreams: C:\Users\nicolas\Downloads\OpenAttachmentByExtension-0.3.5.1:Shareaza.GUID [16]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-4158940424-1538533425-2611268743-500\...\atos.net -> hxxp://*.aw.atos.net
IE trusted site: HKU\S-1-5-21-4158940424-1538533425-2611268743-500\...\atosorigin.com -> hxxp://*.aw.atosorigin.com
IE trusted site: HKU\S-1-5-21-4158940424-1538533425-2611268743-500\...\geoportail.fr -> hxxp://geoportail.fr
IE trusted site: HKU\S-1-5-21-4158940424-1538533425-2611268743-500\...\gouv.fr -> hxxp://*.geoportail.gouv.fr

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-4158940424-1538533425-2611268743-500\Control Panel\Desktop\\Wallpaper -> C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 212.27.40.241 - 212.27.40.240
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acrobat Assistant.lnk => C:\Windows\pss\Acrobat Assistant.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Snapfish PictureMover.lnk => C:\Windows\pss\Snapfish PictureMover.lnk.CommonStartup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: HP Software Update => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: hpsysdrv => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: NeroCheck => C:\Windows\system32\NeroCheck.exe
MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: SSC Service Utility => C:\Program Files (x86)\SSC Service Utility\ssc_serv.exe /s
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: TkBellExe => "C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe"  -osboot

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{E2E2863F-712D-460B-8C59-5D7D02396B0A}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDirector\PDR8.EXE
FirewallRules: [{202E5098-F4E1-452D-A661-CF21517BA1F4}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
FirewallRules: [{5BA2A543-EEB1-45DC-900A-5FBEC4973674}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\Photo\HPMediaSmartPhoto.exe
FirewallRules: [{69C5E7DE-7E6D-441C-9694-CDE48933E51B}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\MediaSmart\Video\HPMediaSmartVideo.exe
FirewallRules: [{FE2E4651-C793-4569-8920-D672AE72610B}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\HPTouchSmartMusic.exe
FirewallRules: [{2FAD42AF-8E9C-48D0-8177-AD9817BEB019}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{0073EDA4-ECC1-4074-8F91-0A6EDD6128E2}] => (Allow) LPort=2869
FirewallRules: [{591CB5CA-23A7-4816-A82F-45E69B84C693}] => (Allow) LPort=1900
FirewallRules: [{0725BF9C-E254-434E-8F03-235E28544995}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{9531EE08-D46F-4AC4-B444-1CA6E47AE817}] => (Allow) LPort=48113
FirewallRules: [{41E14734-552D-4AE8-A4F2-37E1263E8A33}] => (Allow) LPort=48113
FirewallRules: [{904B6E00-9EDC-44EB-A147-35B2E50BDDDF}] => (Allow) C:\Program Files\ma-config.com\x64\maconfservice.exe
FirewallRules: [{92C07BEE-0821-46BE-9094-976472A754A4}] => (Allow) C:\Program Files\ma-config.com\x64\maconfservice.exe
FirewallRules: [TCP Query User{3CECDCA2-6D1D-45A5-8C29-528E65EB6836}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{4D641153-809C-4F84-9243-800A261BF833}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{833BAAC2-8874-4BD1-94F1-45BD7A591213}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{C786967B-4CE6-4AC9-8B8C-BCD4DBB70F08}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{FDE467D0-16A6-4EFB-BE3C-0DFF9D1AA81C}] => (Allow) C:\WarThunder\bpreport.exe
FirewallRules: [{F292FA7D-58D5-45C1-8098-905D1EFF5A28}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{876D2B3B-C34C-419B-BC83-BE4428929B01}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{C94DF54D-1062-436C-AE25-E6A2A86C5769}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D8A92E2C-80D7-4C62-95B5-5C29B68AD614}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{8C903280-DEA5-4171-A056-64FF60119734}] => (Allow) C:\Users\Administrateur\AppData\Local\Chromium\Application\chrome.exe
FirewallRules: [{969AB155-3D18-42D5-8A87-6B92F59F9A1A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{4669813E-5DAD-494E-8E0F-17A405B280DB}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{0AD95333-FBAA-4D1F-91E8-14EE3CBFC05C}] => (Allow) C:\Program Files (x86)\Logitech\Logitech Vid\Vid.exe
FirewallRules: [{F71EC78D-616F-41F1-B5D3-96685453B16A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{09CC8C47-DD42-4E6E-B725-0A2AC4A3AE13}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{A567E29F-D76B-4DDC-9C03-0D77C699356F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{0F2D9E8B-4274-4AD8-A646-BE9830F54150}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe

==================== Points de restauration =========================


==================== Éléments en erreur du Gestionnaire de périphériques =============

Name: Microsoft Teredo Tunneling Adapter
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (03/06/2018 05:40:26 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
Échec de l’inscription du package Office « Démarrer en un clic ».

Error: (03/06/2018 01:44:09 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
Échec de l’inscription du package Office « Démarrer en un clic ».

Error: (03/06/2018 01:44:09 PM) (Source: Application Virtualization Client) (EventID: 5009) (User: )
Description: {tid=1100}
Le client Application Virtualization n'a pas pu se connecter pour diffuser l'URL « http://c2r.microsoft.com/ConsumerC2R/fr-fr/14.0.4763.1000/ConsumerC2R.fr-fr_14.0.7194.5000.sft » (rc 2460420A-40002EFD, original rc 2460420A-40002EFD).

Error: (03/05/2018 10:23:18 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
Échec de l’inscription du package Office « Démarrer en un clic ».

Error: (03/05/2018 10:23:18 PM) (Source: Application Virtualization Client) (EventID: 5009) (User: )
Description: {tid=EF4}
Le client Application Virtualization n'a pas pu se connecter pour diffuser l'URL « http://c2r.microsoft.com/ConsumerC2R/fr-fr/14.0.4763.1000/ConsumerC2R.fr-fr_14.0.7194.5000.sft » (rc 2460420A-40002EFD, original rc 2460420A-40002EFD).

Error: (03/05/2018 10:03:34 PM) (Source: CVHSVC) (EventID: 100) (User: )
Description: Pour information uniquement.
Échec de l’inscription du package Office « Démarrer en un clic ».

Error: (03/05/2018 10:03:34 PM) (Source: Application Virtualization Client) (EventID: 5009) (User: )
Description: {tid=183C}
Le client Application Virtualization n'a pas pu se connecter pour diffuser l'URL « http://c2r.microsoft.com/ConsumerC2R/fr-fr/14.0.4763.1000/ConsumerC2R.fr-fr_14.0.7194.5000.sft » (rc 2460420A-40002EFD, original rc 2460420A-40002EFD).

Error: (03/05/2018 09:59:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante VEGA5.EXE, version : 5.3.0.65517, horodatage : 0x49a409f1
Nom du module défaillant : cps3_pkcs11_w32.dll, version : 1.23.0.0, horodatage : 0x58eb7aee
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0004cec5
ID du processus défaillant : 0x1850
Heure de début de l’application défaillante : 0x01d3b4c414bee7d0
Chemin d’accès de l’application défaillante : C:\Vega5\VEGA5.EXE
Chemin d’accès du module défaillant: C:\Windows\system32\cps3_pkcs11_w32.dll
ID de rapport : 0809b85a-20b8-11e8-84da-d48564a129aa


Erreurs système:
=============
Error: (03/06/2018 07:18:32 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Les clichés instantanés C: ont été annulés à cause d’une défaillance d’E/S sur le volume C:.

Error: (03/06/2018 06:59:31 PM) (Source: volsnap) (EventID: 14) (User: )
Description: Les clichés instantanés C: ont été annulés à cause d’une défaillance d’E/S sur le volume C:.

Error: (03/06/2018 06:53:10 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service aswbIDSAgent s’est arrêté avec l’erreur service particulière %%-536753635.

Error: (03/06/2018 05:51:33 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service aswbIDSAgent s’est arrêté avec l’erreur service particulière %%-536753635.

Error: (03/06/2018 05:49:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media n’a pas pu démarrer en raison de l’erreur : 
L’échec d’une ouverture de session a empêché le démarrage du service.

Error: (03/06/2018 05:49:07 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Le service WMPNetworkSvc n’a pas pu ouvrir de session en tant que NT AUTHORITY\NetworkService avec le mot de passe actuellement configuré en raison de l’erreur suivante : 
Cette demande n’est pas prise en charge.


Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

Error: (03/06/2018 05:48:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Application Virtualization Client s’est terminé de façon inattendue pour la 1ème fois.

Error: (03/06/2018 05:48:39 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT)
Description: L’alerte fatale suivante a été reçue : 70.


==================== Infos Mémoire =========================== 

Processeur: AMD Athlon(tm) II X4 640 Processor
Pourcentage de mémoire utilisée: 60%
Mémoire physique - RAM - totale: 4095.29 MB
Mémoire physique - RAM - disponible: 1636.38 MB
Mémoire virtuelle totale: 8188.75 MB
Mémoire virtuelle disponible: 5548.49 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:234.05 GB) (Free:110.55 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:13.77 GB) (Free:1.7 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive z: (Données) (Fixed) (Total:683.59 GB) (Free:645.24 GB) NTFS

\\?\Volume{49436580-7614-11e0-b260-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E79C582B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=234.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=683.6 GB) - (Type=0F Extended)
Partition 4: (Not Active) - (Size=13.8 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================