Addition.txt

Document joint : GKAvYe7miQX_Addition.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-11-2017
Ran by Ihab (26-11-2017 21:46:08)
Running from C:\Users\Omnia\Desktop
Windows 10 Pro N Version 1703 15063.726 (X64) (2017-04-15 15:03:40)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-316627027-3033381719-1982330960-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-316627027-3033381719-1982330960-503 - Limited - Disabled)
Guest (S-1-5-21-316627027-3033381719-1982330960-501 - Limited - Disabled)
Ihab (S-1-5-21-316627027-3033381719-1982330960-1000 - Administrator - Enabled) => C:\Users\Omnia

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Disabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Kaspersky Internet Security (Disabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.187 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.9.199 - Adobe Systems, Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation)
ATI Catalyst Install Manager (HKLM\...\{5854205C-309C-DB40-ED50-C05675BDA8A3}) (Version: 3.0.825.0 - ATI Technologies, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.32 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Euro Truck Simulator 2 - Vive la France ! version 1.0 (HKLM-x32\...\Euro Truck Simulator 2 - Vive la France !_is1) (Version: 1.0 - SCS Software)
Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.0.1.1 - Genesys Logic)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 62.0.3202.94 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2993 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
Internet Explorer (HKLM-x32\...\{4E414048-A9DD-4F60-AA1D-018E716C88C9}) (Version: 8 - Microsoft Corporation) Hidden
Internet Mobile (HKLM-x32\...\Internet Mobile) (Version: 21.005.15.05.162 - Huawei Technologies Co.,Ltd)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Kaspersky Anti-Virus (HKLM-x32\...\{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.8625.2127 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-316627027-3033381719-1982330960-1000\...\OneDriveSetup.exe) (Version: 17.3.7076.1026 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{CC1DB186-550F-3CFE-A2A9-EBA5E5A34BC1}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package (HKLM-x32\...\Microsoft Visual J# 2.0 Redistributable Package) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MTP Porting Kit (HKLM-x32\...\{353B1E6D-7073-4450-8C80-699BD8FCFB49}) (Version: 12.0.0 - Microsoft Corp)
Odoo 9.0 (HKLM-x32\...\Odoo 9.0) (Version: 9.0 - Odoo S.A.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.8625.2127 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.8326.2107 - Microsoft Corporation) Hidden
PostgreSQL 9.3 (x86) (HKLM-x32\...\PostgreSQL 9.3) (Version: 9.3 - PostgreSQL Global Development Group)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.5 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)
RealDownloader (HKLM-x32\...\{2275115D-1431-4A62-A98F-2F0393815327}) (Version: 18.1.9.106 - RealNetworks, Inc.) Hidden
RealDownloader (HKLM-x32\...\{45bcec97-14a2-4e10-a129-58d2d0b34398}) (Version: 18.1.9.106 - RealNetworks) Hidden
RealDownloader (HKLM-x32\...\{85584A8B-8989-42AA-81A0-80ABF61EFAF1}) (Version: 18.1.9.106 - RealNetworks) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM-x32\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM-x32\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (RealTimes) (HKLM-x32\...\RealPlayer 18.1) (Version: 18.1.9 - RealNetworks)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.162 - Realtek Semiconduct Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.23.1003.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM-x32\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
SAGEM F@st 800-840 (HKLM-x32\...\{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}) (Version: 4.06.000 - SAGEM)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
Sony Ericsson Device Data (HKLM-x32\...\{C92E7DF1-624A-4D95-A4C4-18CB491B44A4}) (Version: 1.0.32 - Sony Ericsson) Hidden
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Sybase PowerAMC 15.1 (HKLM-x32\...\{48B0BE4A-EDC9-44C4-A3DB-67D62D75961F}) (Version: 15.1.2850 - Sybase Inc.)
Synaptics TouchPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.98 - Synaptics Incorporated)
UpdateService (HKLM-x32\...\{E3AE96D6-E196-45B4-AF62-2B41998B9E37}) (Version: 1.0.0 - RealNetworks, Inc.) Hidden
vc2012_redist (HKLM-x32\...\{9402AEF2-5981-4097-8BE2-6501DAC4DBFD}) (Version: 1.0.0.0 - Realnetworks) Hidden
Video Downloader (HKLM-x32\...\{4C68AE5C-915A-492A-AFCD-B630ECB9522D}) (Version: 18.1.9 - RealNetworks) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN)
vs2015_redist x64 (HKLM\...\{EAED8692-5B63-4665-B857-D626633691DA}) (Version: 1.0.0.0 - Realnetworks) Hidden
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\notepad\Notepad++\NppShell_05.dll -> No File
ContextMenuHandlers1: [Kaspersky Anti-Virus 16.0.0] -> {C845F70F-050A-4052-81DE-587D90C20FE8} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll [2016-08-24] (Kaspersky Lab ZAO)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-24] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-24] (Alexander Roshal)
ContextMenuHandlers2: [Kaspersky Anti-Virus 16.0.0] -> {C845F70F-050A-4052-81DE-587D90C20FE8} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll [2016-08-24] (Kaspersky Lab ZAO)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => c:\program files (x86)\real\realplayer\RPDS\Bin64\rpcontextmenu.dll [2017-09-16] (RealNetworks, Inc.)
ContextMenuHandlers4: [Kaspersky Anti-Virus 16.0.0] -> {C845F70F-050A-4052-81DE-587D90C20FE8} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll [2016-08-24] (Kaspersky Lab ZAO)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Omnia\AppData\Local\MEGAsync\ShellExtX64.dll -> No File
ContextMenuHandlers4: [MSSE] -> {0365FE2C-F183-4091-AC82-BFC39FB75C49} => -> No File
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> No File
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2012-11-26] (Intel Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 16.0.0] -> {C845F70F-050A-4052-81DE-587D90C20FE8} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\shellex.dll [2016-08-24] (Kaspersky Lab ZAO)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => -> No File
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-24] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-02-24] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01A1D0E2-49C4-4CDB-B21E-471D79A39379} - System32\Tasks\{9D9AD9B9-4C4D-4DCE-AA28-361757016199} => C:\Windows\system32\pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe -c /M{B36C9A28-B91C-47AD-9FE3-1078C8A22605} /l1036
Task: {03B319F4-0332-4699-932F-E20CC56F5D20} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000 => C:\program files (x86)\real\RealDownloader\RealUpgrade.exe [2017-08-17] (RealNetworks, Inc.)
Task: {0525CA3E-384D-4673-A981-7C4793D9423D} - System32\Tasks\{2FDC939A-D502-4C84-A853-BECE2FCDE2BA} => C:\Windows\system32\pcalua.exe -a "C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NSUSX5S3\wmp11-windowsxp-x86-FR-FR.exe" -d C:\Users\Omnia\Desktop
Task: {05C5CB51-F8C1-4573-A143-7B1DCFFF5EEB} - System32\Tasks\RealDownloader Update Check => C:\program files (x86)\real\RealDownloader\downloader2.exe [2017-08-17] ()
Task: {06E5E6E1-C0A1-44FD-B014-AEC829F2971F} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {128D6914-EBE2-47A5-B12C-993575368F1A} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {17754A70-24E8-4AEC-AC94-6DBDA58278B4} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {18014FF8-21C1-485A-907F-B3BA5CA126D7} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000 => C:\program files (x86)\real\RealDownloader\RealUpgrade.exe [2017-08-17] (RealNetworks, Inc.)
Task: {1D7707AD-21A2-433A-B82E-36C0F7F64ADE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-11-17] (Microsoft Corporation)
Task: {1DFEA949-0C64-40D3-BF10-7EDF096EE946} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {1E004637-1994-4794-B008-18203250EA47} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {23A8F6A9-4214-41AD-AF77-FCAFEF5CCFFA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {23BB6FD5-FE19-440A-BA82-1FDAB50902A5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-26] ()
Task: {24E3EE0B-C029-4640-BBA9-8EA1703F9BBC} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {28CB53EF-E0DC-4DC1-BB30-C083BA854EFD} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {3707B2B0-3908-4A15-8428-A899E3A0B132} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {398D605B-6743-478C-A5AD-528048341FE8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-03] (Google Inc.)
Task: {3D32339E-B54F-4762-8AC4-CC189BE6FB22} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3F9C4EE0-9882-430D-8246-E214C1EA697F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-02] (Microsoft Corporation)
Task: {40178447-AB56-492A-BE34-CCDBEAF08801} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2017-08-17] (RealNetworks, Inc.)
Task: {40FC1D0D-9ABC-4E20-8A25-7A09203D69B2} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {44E0F61A-CFA2-4A5C-964A-ED21C0C26A34} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {570C1312-6519-46B5-A969-552A932711F4} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5782008E-31FC-4F07-A51D-2E46B4C52243} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-11-16] (Microsoft Corporation)
Task: {5CC32BFA-5F4A-43BD-B014-148EBCFC64CB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-11-17] (Microsoft Corporation)
Task: {60A4F3BE-BB33-4CD6-9E2E-F9921831EC0D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {630688FE-8CCC-4BF2-8DD0-E517C5EAF86A} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_187_pepper.exe [2017-11-15] (Adobe Systems Incorporated)
Task: {650ABE68-ADE6-4DB9-84CB-221DC5410C15} - System32\Tasks\{67724B1C-0C6A-4692-805C-845BE583F863} => "c:\windows\system32\launchwinapp.exe" hxxp://ui.skype.com/ui/0/7.14.0.105/fr/abandoninstall?source=lightinstaller&page=tsPlugin
Task: {6E80FBD2-EC2C-4828-8FED-160BFE10C92D} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {7B4B02D9-AE21-4E95-BCC3-58A709BA9FE9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-30] (Piriform Ltd)
Task: {8335AC77-AC90-44C9-88EE-4BA45688225A} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8A9C8E7C-3CD9-4EE8-B29B-C356A326C9F7} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2017-08-17] (RealNetworks, Inc.)
Task: {8DAB871E-CC2C-4BC6-A9F0-417CEACBD0A2} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A4C14184-B72E-4ECE-8A62-2DDB66087552} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-316627027-3033381719-1982330960-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2017-08-17] (RealNetworks, Inc.)
Task: {A712C228-E724-48D8-8DA5-0939C17AC7B9} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AE8A4330-A541-43EF-B31C-352A641B1BDF} - System32\Tasks\{953455B0-0EF1-48D9-AFB1-A6BE6C305A23} => C:\Windows\system32\pcalua.exe -a "C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ES6CXBOC\windows-media-player-11_windows_media_player_11.0_francais_20085[1].exe" -d C:\Users\Omnia\Desktop
Task: {B2AA3DC5-3CFC-4DEA-A481-2CFA48C87739} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C4486774-0CCE-4E61-A05F-A504113E5907} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C8404A8B-F677-42FF-9A29-B19C9551D34A} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {C8908A7C-1508-4119-A0BC-5320B8D5124B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C8BEE0EF-5E93-41F0-AEE3-292B4C4F065E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CB3E5BBD-7DE0-4874-921F-333E224C9284} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D2A4E9DD-F62B-45D1-9483-01B375F50706} - System32\Tasks\Microsoft\Internet Explorer\Supprimer les versions précédentes d’Internet Explorer => C:\Windows\SYSTEM32\ie4uinit.EXE [2017-11-02] (Microsoft Corporation)
Task: {DB224CAB-74BF-48D3-B058-6D0E9C686635} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {DBB53BF0-E98E-4296-9B62-B548940FCC25} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-11-15] (Adobe Systems Incorporated)
Task: {DEABEF92-70EE-4E53-832A-6D676F4A2D13} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-09-26] ()
Task: {E37AF09F-6BCD-416F-844E-759DDF91348F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-11-02] (Microsoft Corporation)
Task: {E7C80751-802F-4B14-83A6-72FC8E523CFA} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {EEEA8ECF-FC57-4A3B-8AD2-5AE8A84B9B04} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-09-03] (Google Inc.)
Task: {F574365F-BBE4-4CA7-80B0-21D56EF5E426} - System32\Tasks\{522F0E3E-0865-42C3-BD84-1DA8F410D046} => C:\Windows\system32\pcalua.exe -a "C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R4YHGUF4\sp55086[1].exe" -d C:\Users\Omnia\Desktop
Task: {F5EBE4C2-AF8E-4182-90AA-EE14AA5D486B} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-316627027-3033381719-1982330960-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2017-08-17] (RealNetworks, Inc.)
Task: {F979DC26-C89B-4F41-89CF-163892C6006E} - System32\Tasks\{BAB20F9F-4EBF-4650-A537-169FE858C154} => C:\Windows\system32\pcalua.exe -a "C:\Users\Omnia\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KBE5X2V9\Win7Vista_64_152254.exe" -d C:\Users\Omnia\Desktop

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2011-03-14 15:27 - 2011-03-14 15:27 - 000346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2016-03-20 01:35 - 2016-03-20 01:35 - 000023552 _____ () D:\odoo\Odoo 9.0-20160320\service\win32_service.exe
2012-01-04 20:32 - 2012-01-04 20:31 - 000246112 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\ouc.exe
2016-03-20 01:39 - 2016-03-20 01:39 - 000020992 _____ () D:\odoo\Odoo 9.0-20160320\server\openerp-server.exe
2017-03-18 20:56 - 2017-03-18 20:56 - 000138000 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-03-18 20:58 - 2017-03-19 02:27 - 001731072 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2012-11-26 22:54 - 2012-11-26 22:54 - 000094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-02-08 00:32 - 2010-12-01 14:48 - 000028672 _____ () C:\Windows\SysWOW64\UMonit.exe
2017-08-17 14:21 - 2017-08-17 14:21 - 001259704 _____ () C:\Program Files (x86)\Real\RealDownloader\downloader2.exe
2017-04-07 07:41 - 2017-04-07 07:41 - 000054488 _____ () C:\Program Files\CCleaner\branding.dll
2017-06-30 11:22 - 2017-06-30 11:22 - 000077824 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2015-07-08 22:18 - 2015-07-08 22:18 - 000794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\kpcengine.2.3.dll
2014-02-15 22:23 - 2014-02-15 22:23 - 000027648 _____ () D:\odoo\Odoo 9.0-20160320\service\servicemanager.pyd
2014-02-15 22:23 - 2014-02-15 22:23 - 000110592 _____ () D:\odoo\Odoo 9.0-20160320\service\pywintypes27.dll
2014-02-15 22:23 - 2014-02-15 22:23 - 000042496 _____ () D:\odoo\Odoo 9.0-20160320\service\win32service.pyd
2014-02-15 22:23 - 2014-02-15 22:23 - 000100352 _____ () D:\odoo\Odoo 9.0-20160320\service\win32api.pyd
2014-02-15 22:23 - 2014-02-15 22:23 - 000036864 _____ () D:\odoo\Odoo 9.0-20160320\service\win32process.pyd
2012-01-04 20:32 - 2012-01-04 20:31 - 000011362 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\mingwm10.dll
2012-01-04 20:32 - 2012-01-04 20:31 - 000043008 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\libgcc_s_dw2-1.dll
2012-01-04 20:32 - 2012-01-04 20:31 - 002415104 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtCore4.dll
2012-01-04 20:32 - 2012-01-04 20:31 - 001148416 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtNetwork4.dll
2012-01-04 20:32 - 2012-01-04 20:31 - 000384512 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QueryStrategy.dll
2012-01-04 20:32 - 2012-01-04 20:31 - 000398336 _____ () C:\ProgramData\Internet Mobile\OnlineUpdate\QtXml4.dll
2014-03-06 13:44 - 2014-03-06 13:44 - 002935296 _____ () D:\odoo\Odoo 9.0-20160320\server\lxml.etree.pyd
2014-02-15 22:23 - 2014-02-15 22:23 - 000100352 _____ () D:\odoo\Odoo 9.0-20160320\server\win32api.pyd
2014-02-15 22:23 - 2014-02-15 22:23 - 000110592 _____ () D:\odoo\Odoo 9.0-20160320\server\pywintypes27.dll
2014-02-15 22:24 - 2014-02-15 22:24 - 000397312 _____ () D:\odoo\Odoo 9.0-20160320\server\pythoncom27.dll
2013-11-10 13:54 - 2013-11-10 13:54 - 000087552 _____ () D:\odoo\Odoo 9.0-20160320\server\_ctypes.pyd
2013-11-10 13:54 - 2013-11-10 13:54 - 000358400 _____ () D:\odoo\Odoo 9.0-20160320\server\_hashlib.pyd
2013-11-10 13:54 - 2013-11-10 13:54 - 000686080 _____ () D:\odoo\Odoo 9.0-20160320\server\unicodedata.pyd
2013-11-10 13:54 - 2013-11-10 13:54 - 000044544 _____ () D:\odoo\Odoo 9.0-20160320\server\_socket.pyd
2013-11-10 13:54 - 2013-11-10 13:54 - 000899584 _____ () D:\odoo\Odoo 9.0-20160320\server\_ssl.pyd
2014-01-08 12:53 - 2014-01-08 12:53 - 001262592 _____ () D:\odoo\Odoo 9.0-20160320\server\psycopg2._psycopg.pyd
2014-02-15 22:23 - 2014-02-15 22:23 - 000042496 _____ () D:\odoo\Odoo 9.0-20160320\server\win32service.pyd
2014-03-04 17:52 - 2014-03-04 17:52 - 000178176 _____ () D:\odoo\Odoo 9.0-20160320\server\_yaml.pyd
2014-03-07 04:00 - 2014-03-07 04:00 - 000798720 _____ () D:\odoo\Odoo 9.0-20160320\server\PIL._imaging.pyd
2013-11-10 13:54 - 2013-11-10 13:54 - 000127488 _____ () D:\odoo\Odoo 9.0-20160320\server\pyexpat.pyd
2014-03-06 13:56 - 2014-03-06 13:56 - 000026112 _____ () D:\odoo\Odoo 9.0-20160320\server\reportlab.lib._rl_accel.pyd
2013-05-21 20:28 - 2013-05-21 20:28 - 000008192 _____ () D:\odoo\Odoo 9.0-20160320\server\markupsafe._speedups.pyd
2013-11-10 13:54 - 2013-11-10 13:54 - 000010240 _____ () D:\odoo\Odoo 9.0-20160320\server\select.pyd
2013-11-25 13:27 - 2013-11-25 13:27 - 000036352 _____ () D:\odoo\Odoo 9.0-20160320\server\_psutil_mswindows.pyd

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [256]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-316627027-3033381719-1982330960-1000\...\amazon.com -> hxxps://amazon.com
IE trusted site: HKU\S-1-5-21-316627027-3033381719-1982330960-1000\...\amazon.fr -> hxxps://amazon.fr
IE trusted site: HKU\S-1-5-21-316627027-3033381719-1982330960-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-316627027-3033381719-1982330960-1000\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2014-07-09 14:15 - 2016-05-31 13:55 - 000000027 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-316627027-3033381719-1982330960-1000\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\windows\img0.jpg
HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [UDP Query User{9ABCF0FB-05FC-4A73-A039-AA45CC3A4966}C:\program files (x86)\city car driving\bin\win32\starter.exe] => (Block) C:\program files (x86)\city car driving\bin\win32\starter.exe
FirewallRules: [TCP Query User{3F5AC79C-5F13-4B9A-9765-192BA505545A}C:\program files (x86)\city car driving\bin\win32\starter.exe] => (Block) C:\program files (x86)\city car driving\bin\win32\starter.exe
FirewallRules: [{99A7BA4B-61EB-47B5-BF3B-A7D38AED94B8}] => (Allow) LPort=48113
FirewallRules: [{2A19B614-1FE0-4A04-9022-2D3EC0239623}] => (Allow) LPort=48113
FirewallRules: [{5CD0AEF2-F09D-46B5-B860-A38E4BC20B69}] => (Allow) svchost.exe
FirewallRules: [TCP Query User{167B252D-7F8B-45A3-A79A-1F897B042071}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{43DC926F-EC16-4D81-88D3-25886ABB652E}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{64C5BEEA-46B5-4875-8171-A92AA420AC22}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{15E06ECB-21A6-4728-A4F8-509D95038D06}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{3B9C8C76-0EF0-428D-8225-D67BB36A8718}] => (Allow) LPort=48114
FirewallRules: [{E1F26475-7F75-406D-B9D8-401932791FDC}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{D0733789-5F23-4042-A2FD-758D563AB7AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EE9EA82B-F2FA-43E2-A981-5EB3E3F7A5D3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{71A6A65D-A991-43EB-9143-BD4230B8A8E5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{F6A4CE51-3670-4C9E-8917-8BB731E51F67}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{E1F8344E-A281-4373-806A-090B8E602585}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{95180E49-5026-4857-843C-3D4A3B85575A}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{1221A5D6-C85C-4678-9205-5015247445EC}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{7C9C4B4F-B052-4983-8200-42787BCE58EC}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe
FirewallRules: [{CCD835C6-354C-42D8-966B-4BE59A916931}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe
FirewallRules: [{EF2A4791-B5BD-4C86-903E-2DBB59434611}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{710790EE-9FD0-4C21-96EB-E0CB27F45F74}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{57A41B0B-203C-4A32-942E-15F53D211DEE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{899D95AE-3CF7-4C1E-BD40-DD21571B8F37}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{35A620F6-371E-4711-A10B-EEB70D8800B2}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{DCF62660-4FE1-44AF-8881-33BE7E8AB900}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{C5B3BC0E-53B0-4962-B726-75A56E925D47}] => (Allow) D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe
FirewallRules: [{18E06DDA-E545-455E-BB94-46EBED35C05F}] => (Allow) D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x86\eurotrucks2.exe
FirewallRules: [{34809F1E-6F24-47E8-8C27-6526E2F92431}] => (Allow) D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe
FirewallRules: [{1B4CB7AC-5F39-4879-9D23-A116F7923B48}] => (Allow) D:\Nouveau dossier\steamapps\common\Euro Truck Simulator 2 Demo\bin\win_x64\eurotrucks2.exe
FirewallRules: [{167FA318-5478-4F87-A650-CE329D6DAE4D}] => (Allow) C:\Users\Omnia\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{7F35F2C3-4A38-4CAD-8EBD-FCEAE8A6672F}] => (Allow) C:\Users\Omnia\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{E134DFB5-4CD1-4BD3-A0EC-EB57B9FC39FD}] => (Allow) C:\Users\Omnia\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{62636A51-1B3E-4EE3-A915-45F1C7A939C6}] => (Allow) C:\Users\Omnia\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{6A27F0CF-B088-4651-82BB-EC3387E68463}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{57C15F41-3D7C-4D3D-B9BD-AAD76BCB74A8}] => (Allow) c:\program files (x86)\real\realplayer\RPDS\Bin\rpdsvc.exe
FirewallRules: [{BBA1F9F2-1EF5-44CA-88B7-F8B16D1839A0}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/26/2017 09:26:52 PM) (Source: odoo-server-9.0) (EventID: 3) (User: )
Description: The instance's SvcRun() method failed

Traceback (most recent call last):
File "win32serviceutil.pyo", line 835, in SvcRun
File "win32_service.pyo", line 42, in SvcDoRun
SystemExit: 255

%2: %3

Error: (11/26/2017 09:26:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RealPlayerUpdateSvc.exe, version : 18.1.9.106, horodatage : 0x599621f2
Nom du module défaillant : ntdll.dll, version : 10.0.15063.608, horodatage : 0x802f667e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00091cc2
ID du processus défaillant : 0xe0c
Heure de début de l’application défaillante : 0x01d366f8facc043f
Chemin d’accès de l’application défaillante : C:\program files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : b260ac71-17bf-4b6c-bae0-4de1f8e8bf9e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (11/26/2017 09:25:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Windows\Installer\{2275115D-1431-4A62-A98F-2F0393815327}\recordingmanager.exe ».
Assembly dépendant rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (11/26/2017 09:25:37 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Windows\Installer\{2275115D-1431-4A62-A98F-2F0393815327}\recordingmanager.exe ».
Assembly dépendant rpshellextension.1.0,language="*",type="win32",version="1.0.0.0" introuvable.
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (11/26/2017 09:25:36 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: La création du contexte d’activation a échoué pour « C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest ». Erreur dans le fichier de manifeste ou de stratégie « C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL » à la ligne 1.
L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé.
La référence est UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
La définition est UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Utilisez sxstrace.exe pour un diagnostic détaillé.

Error: (11/26/2017 08:49:39 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (11/26/2017 08:49:39 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (11/26/2017 08:48:47 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (11/26/2017 08:48:47 PM) (Source: Microsoft Security Client) (EventID: 5000) (User: )
Description: Event-ID 5000

Error: (11/26/2017 06:11:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RealPlayerUpdateSvc.exe, version : 18.1.9.106, horodatage : 0x599621f2
Nom du module défaillant : ntdll.dll, version : 10.0.15063.608, horodatage : 0x802f667e
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00091cc2
ID du processus défaillant : 0xe0c
Heure de début de l’application défaillante : 0x01d366ddd4bcef68
Chemin d’accès de l’application défaillante : C:\program files (x86)\real\UpdateService\RealPlayerUpdateSvc.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SYSTEM32\ntdll.dll
ID de rapport : 07f26656-b927-435e-8798-ea9091c9c44a
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

System errors:
=============
Error: (11/26/2017 09:37:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealTimes Desktop Service s’est terminé de façon inattendue pour la 6ème fois.

Error: (11/26/2017 09:37:57 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealTimes Desktop Service s’est terminé de façon inattendue pour la 5ème fois.

Error: (11/26/2017 09:37:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealTimes Desktop Service s’est terminé de façon inattendue pour la 4ème fois.

Error: (11/26/2017 09:37:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealTimes Desktop Service s’est terminé de façon inattendue pour la 3ème fois.

Error: (11/26/2017 09:37:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealTimes Desktop Service s’est terminé de façon inattendue pour la 2ème fois.

Error: (11/26/2017 09:28:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealTimes Desktop Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/26/2017 09:28:11 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service RealPlayer Cloud Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (11/26/2017 09:27:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Internet Mobile. RunOuc n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (11/26/2017 09:27:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Internet Mobile. RunOuc.

Error: (11/26/2017 09:27:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service SecDrv n’a pas pu démarrer en raison de l’erreur :
Le chargement du pilote a été bloqué

CodeIntegrity:
===================================
Date: 2017-11-26 17:22:52.009
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-25 18:50:52.506
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-25 17:17:05.521
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-25 12:21:08.052
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-25 12:04:23.858
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-25 12:00:06.752
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-25 11:48:01.516
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-23 21:53:07.504
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-22 21:01:43.473
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

Date: 2017-11-22 19:05:29.867
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\remote_eka_prague_loader.dll that did not meet the Microsoft signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz
Percentage of memory in use: 49%
Total physical RAM: 3893.85 MB
Available physical RAM: 1965.61 MB
Total Virtual: 7861.85 MB
Available Virtual: 5856.51 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:96.81 GB) (Free:57.64 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:163.43 GB) (Free:157.22 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 73256BD4)
Partition 1: (Not Active) - (Size=10 GB) - (Type=12)
Partition 2: (Active) - (Size=96.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=868 MB) - (Type=27)
Partition 4: (Not Active) - (Size=163.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Signaler le contenu de ce document