Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 01-12-2021 Exécuté par cauli (03-12-2021 17:02:37) Exécuté depuis C:\Users\cauli\Desktop Microsoft Windows 10 Professionnel Version 21H1 19043.1348 (X64) (2020-10-09 17:02:31) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1005590070-1944480240-3661502221-500 - Administrator - Disabled) cauli (S-1-5-21-1005590070-1944480240-3661502221-1001 - Administrator - Enabled) => C:\Users\cauli DefaultAccount (S-1-5-21-1005590070-1944480240-3661502221-503 - Limited - Disabled) Invité (S-1-5-21-1005590070-1944480240-3661502221-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1005590070-1944480240-3661502221-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKLM-x32\...\uTorrent) (Version: 1.8.5 - ) 1Password (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\1Password) (Version: 7.3.684 - AgileBits Inc.) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated) Adobe Shockwave Player 12.2 (HKLM-x32\...\{52B66F1A-E977-41EE-8359-3C4040BE72F5}) (Version: 12.2.8.198 - Adobe Systems, Inc) Advanced Office Password Recovery (remove only) (HKLM-x32\...\Advanced Office Password Recovery) (Version: 3.14 - Elcomsoft Co.Ltd.) Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation) Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 21.9.2494 - Avast Software) AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 21.3.3149.3804 - AVG) BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.205.0.1006 - BlueStack Systems, Inc.) Boris FX Continuum Plug-ins 11 for Cyberlink (HKLM\...\{7E607B62-1788-40CB-BADB-DC1511627F6C}_is1) (Version: - Boris FX, Inc.) CBR to PDF Converter version 8.11 (HKLM-x32\...\{E1F60356-CC3C-4DCF-B57D-027C0A5AEF53}_is1) (Version: 8.11 - cbr2pdf) CCleaner (HKLM\...\CCleaner) (Version: 5.85 - Piriform) Conexant Polaris Unused CIR Function (HKLM\...\Uninstaller5e690e75328) (Version: 1.0.0.0 - Conexant Systems) Conexant Polaris Unused CIR Function (HKLM\...\VID_1D19&PID_6109&MI_00) (Version: 1.0.0.0 - Conexant Systems) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) CyberLink PowerDirector (HKLM\...\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 9.0.0.3815b - CyberLink Corp.) Hidden CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 9.0.0.3815b - CyberLink Corp.) CyberLink PowerDirector 16 (HKLM-x32\...\{EE9EC028-49D2-4349-B0A3-9B2E752A4958}) (Version: 16.0.2816.0 - CyberLink Corp.) CyberLink WaveEditor 2 (HKLM-x32\...\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}) (Version: 5620 - CyberLink Corp.) DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation) Easy GIF Animator 7.3 (HKLM-x32\...\Easy GIF Animator_is1) (Version: 7.0 - Karlis Blumentals) EGR-ShellExtension (HKLM-x32\...\EGR-ShellExtension) (Version: 1.2.1.100 - EasternGraphics) Epubor Ultimate (HKLM-x32\...\Epubor Ultimate) (Version: 3.0.9.605 - Epubor Inc.) Everything 1.2.1.371 (HKLM-x32\...\Everything) (Version: - ) f.lux (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Flux) (Version: - f.lux Software LLC) Facebook Video Downloader 3 (HKLM-x32\...\Facebook Video Downloader_is1) (Version: - Social Media Apps) FastStone Image Viewer 6.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.5 - FastStone Soft) Free Video Flip and Rotate (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 1.1.35.831 - Digital Wave Ltd) Freemake Video Converter version 4.1.10.0 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.10.0 - Ellora Assets Corporation) Glary Utilities 5.164 (HKLM-x32\...\Glary Utilities 5) (Version: 5.164.0.190 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC) inPixio Photo Clip 8 (HKLM-x32\...\{65634D2B-B6D1-4B35-B4C9-F3999B8D008B}) (Version: 8.6.0 - InPixio) InPixio Photo Focus (HKLM-x32\...\{D7DF4A1C-F5CD-49F6-927E-12E6A8EF4174}) (Version: 3.7 - InPixio) InPixio Photo Maximizer Pro (HKLM-x32\...\{33DB8C17-40C9-4629-B6D4-05A4C7E8AA86}) (Version: 1.00.24758 - Avanquest Software) IObit Driver Booster 7.0.2.436 (HKLM-x32\...\IObit Driver Booster_is1) (Version: 7.0.2.436 - lrepacks.ru) Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) KMSpico v9.2.3 (HKLM\...\KMSpico_is1) (Version: 9.2.3 - ) LibreOffice 5.0.3.2 (HKLM-x32\...\{D61E7AA0-0380-49B9-8DDD-7685E2306176}) (Version: 5.0.3.2 - The Document Foundation) Magic Photo Recovery 3.1 (HKLM-x32\...\Magic Photo Recovery) (Version: - ) Malwarebytes version 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.41 - Microsoft Corporation) Microsoft Excel 2010 (HKLM-x32\...\Office14.EXCEL) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Office Language Pack 2010 - French/Français (HKLM-x32\...\Office14.OMUI.fr-fr) (Version: 14.0.4734.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\OneDriveSetup.exe) (Version: 21.083.0425.0003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{82f2609e-68ba-408d-963f-530ad8809435}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{577ff5ba-39aa-4d8c-a3a9-f95012763438}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.21.27702 (HKLM-x32\...\{49697869-be8e-427d-81a0-c334d1d14950}) (Version: 14.21.27702.2 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Word 2010 (HKLM-x32\...\Office14.WORD) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Molotov (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\molotov) (Version: 4.4.2 - Molotov) Mozilla Firefox 68.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 68.0.1 (x64 fr)) (Version: 68.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.1 - Mozilla) MP3 Cut 5.0.0 (HKLM-x32\...\1A455290-CCE1-400A-B40C-BA562A3804F5_is1) (Version: - Accmeware Corporation) Nero 7 Premium (HKLM-x32\...\{CF097717-F174-4144-954A-FBC4BF301036}) (Version: 7.02.9753 - Nero AG) NewBlue Titler Pro for Windows (HKLM-x32\...\NewBlue Titler Pro for Windows) (Version: 1.5 - NewBlue) NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenVPN 2.5.1-I601 amd64 (HKLM\...\{E5931AF4-2A8F-48A5-AFC8-CE9B79C4B19D}) (Version: 2.5.020 - OpenVPN, Inc.) Opera Stable 68.0.3618.104 (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Opera 68.0.3618.104) (Version: 68.0.3618.104 - Opera Software) Opera Stable 81.0.4196.60 (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\Opera 81.0.4196.60) (Version: 81.0.4196.60 - Opera Software) pCon.planner STD 8.4 Update 2 (HKLM\...\{947841B9-A81C-4157-AC68-E82147530229}) (Version: 8.4.0.102 - EasternGraphics) Picture Collage Maker Pro 4.0.5 (HKLM-x32\...\{6D308A90-6C14-4A02-9B04-CB0EF17894A9}_is1) (Version: 4.0.5 - PearlMountain Technology Co., Ltd) Pinball FX2 Bethesda Pinball (HKLM\...\cGluYmFsbGZ4Mg_is1) (Version: 1 - ) proDAD Adorage 3.0 (64bit) (HKLM\...\proDAD-Adorage-3.0) (Version: 3.0.115.3 - proDAD GmbH) Rainbow Folders (HKLM-x32\...\{2AEA17BA-FAB3-49D2-BB85-0669D14DC9BC}_is1) (Version: 2.05 - Piotr Chodzinski) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0000-0000-0000000FF1CE}_Office14.EXCEL_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0000-0000-0000000FF1CE}_Office14.WORD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SharewareOnSale Notifier (HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\SharewareOnSale Notifier) (Version: 20 - SharewareOnSale) Smart Defrag 6 (HKLM-x32\...\Smart Defrag_is1) (Version: 6.3 - IObit) SSDFresh 2022 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 11 - Abelssoft) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Video Grabber (HKLM\...\Uninstaller5e690e7721) (Version: 1.0.0.0 - Conexant Systems) Video Grabber (HKLM\...\VID_1D19&PID_6109&MI_01) (Version: 1.0.0.0 - Conexant Systems) Video Rotator V4.4 (HKLM-x32\...\Video Rotator_is1) (Version: - VideoRotator.com) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN) VueScan x64 (HKLM\...\VueScan x64) (Version: - Hamrick Software) WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Wise Folder Hider (HKLM-x32\...\Wise Folder Hider_is1) (Version: 4.2.6 - WiseCleaner.com, Inc.) Wise Registry Cleaner 10.2.3 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 10.2.3 - WiseCleaner.com, Inc.) Wondershare Data Recovery(Build 6.6.0.21) (HKLM-x32\...\{FEA3976F-D621-45F3-AFBD-E812A1F2F00D}_is1) (Version: 6.6.0.21 - Wondershare Software Co.,Ltd.) Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare) Your Uninstaller! 7 (HKLM-x32\...\YU2010_is1) (Version: 7.5.2014.3 - URSoft, Inc.) Packages: ========= Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.70.2.0_x86__kgqvnymyfvs32 [2021-11-30] (king.com) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2150.1.0_x86__kgqvnymyfvs32 [2021-11-12] (king.com) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-28] (Microsoft Corporation) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation) Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-18] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_132.4.265.0_x64__v10z8vjag6ke6 [2021-11-30] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-28] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-28] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-30] (Microsoft Studios) [MS Ad] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0 [2021-11-27] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1005590070-1944480240-3661502221-1001_Classes\CLSID\{DEDBE4C9-9E87-40C5-B437-9AAB7EB9C667}\InprocServer32 -> C:\Program Files (x86)\EasternGraphics\EGR-ShellExtension\Win64\egr_se.dll (EasternGraphics GmbH -> EasternGraphics) SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll (Microsoft Windows -> Microsoft Corporation) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-11-16] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-11-16] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-11-16] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-06-28] (Nero AG -> Nero AG) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2021-04-09] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers1: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit Information Technology -> IObit) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2021-04-09] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers2-x32: [MagicPhotoRecovery] -> {A1F666FE-3758-4172-9163-6A0DEE39A2AD} => C:\Program Files (x86)\East Imperial Soft\Magic Photo Recovery 3.1\Resources\DiskMenu.dll [2012-03-24] () [Fichier non signé] ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-11-16] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-09-14] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2021-11-16] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2021-04-09] (Glarysoft LTD -> Glarysoft Ltd) ContextMenuHandlers6: [SmartDefragExtension] -> {189F1E63-33A7-404B-B2F6-8C76A452CC54} => C:\WINDOWS\System32\IObitSmartDefragExtension.dll [2016-03-25] (IObit Information Technology -> IObit) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.pDAD] => C:\WINDOWS\system32\prodad-codec.dll [607256 2017-09-06] (proDAD GmbH -> proDAD GmbH) HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\pdvcodec.dll [265797 2010-03-12] (Matsushita Electric Industrial Co., Ltd.) [Fichier non signé] HKLM\...\Drivers32: [vidc.tscc] => C:\Windows\SysWOW64\tsccvid.dll [411480 2010-03-04] (TechSmith Corporation -> TechSmith Corporation) ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2015-03-17 00:34 - 2015-03-17 00:34 - 000010240 _____ () [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\AcroTray.fra 2015-03-17 00:34 - 2015-03-17 00:34 - 000013824 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra 2019-06-24 19:01 - 2018-05-03 08:34 - 001677824 _____ (Igor Pavlov) [Fichier non signé] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\7z.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000030208 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\iconengines\qsvgicon.dll 2019-06-24 19:01 - 2018-01-18 15:15 - 000024576 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qgif.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000031232 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qicns.dll 2019-06-24 19:01 - 2018-01-18 15:15 - 000025088 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll 2019-06-24 19:01 - 2018-01-18 15:15 - 000242688 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qjpeg.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000019968 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000018944 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qtga.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000318976 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qtiff.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000017920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qwbmp.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000328704 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qwebp.dll 2019-06-24 19:01 - 2018-01-18 15:15 - 000993792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll 2019-06-24 19:01 - 2018-05-03 08:04 - 004809728 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll 2019-06-24 19:01 - 2018-01-18 15:12 - 005100032 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll 2019-06-24 19:01 - 2018-01-18 15:10 - 002012672 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll 2019-06-24 19:01 - 2018-01-18 15:18 - 002522112 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll 2019-06-24 19:01 - 2018-01-18 15:20 - 002570752 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll 2019-06-24 19:01 - 2018-01-18 15:16 - 000247808 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll 2019-06-24 19:01 - 2018-01-18 15:14 - 004482048 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll 2019-06-24 19:01 - 2018-01-18 15:24 - 000206336 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll 2019-06-24 19:01 - 2018-01-18 15:22 - 000013312 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll 2019-06-24 19:01 - 2018-01-18 15:22 - 000013824 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll 2019-06-24 19:01 - 2018-01-18 15:27 - 000698368 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll 2019-06-24 19:01 - 2018-01-18 15:27 - 000173056 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll 2019-06-24 19:01 - 2018-01-18 15:26 - 000069632 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll 2019-06-24 19:01 - 2018-01-18 15:27 - 000097280 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll 2019-06-24 19:01 - 2018-01-18 15:22 - 000013312 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll 2019-06-24 19:01 - 2018-01-18 15:29 - 000102400 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Malwarebytes\Anti-Malware\scenegraph\softwarecontext.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:11E694AB [137] AlternateDataStreams: C:\ProgramData\TEMP:18FE55C1 [121] AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [154] AlternateDataStreams: C:\ProgramData\TEMP:35E5C886 [127] AlternateDataStreams: C:\ProgramData\TEMP:3801A9B9 [140] AlternateDataStreams: C:\ProgramData\TEMP:693EF85C [139] AlternateDataStreams: C:\ProgramData\TEMP:85EA4795 [144] AlternateDataStreams: C:\ProgramData\TEMP:94C7D6CF [128] AlternateDataStreams: C:\ProgramData\TEMP:9768CF89 [143] AlternateDataStreams: C:\ProgramData\TEMP:CA4C6E96 [250] AlternateDataStreams: C:\ProgramData\TEMP:F074840B [141] AlternateDataStreams: C:\ProgramData\TEMP:F6BBDB42 [146] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-1005590070-1944480240-3661502221-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 SearchScopes: HKU\S-1-5-21-1005590070-1944480240-3661502221-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-20] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-20] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-1005590070-1944480240-3661502221-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-02-02] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-06-24 18:27 - 2021-08-01 09:17 - 000001164 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 keystone.mwbsys.com 127.0.0.1 tools.avanquest.com 127.0.0.1 api.avanquest.com 127.0.0.1 www.avanquest.com 127.0.0.1 aims.avanquest.com 127.0.0.1 reg.wisecleaner.com 127.0.0.1 license.piriform.com 127.0.0.1 http://www.piriform.com ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\Control Panel\Desktop\\Wallpaper -> c:\users\cauli\appdata\local\microsoft\windows\themes\roamedthemefiles\desktopbackground\img1.jpg DNS Servers: 192.168.1.1 - 188.121.254.253 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "TuneupUI.exe" HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Everything" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\StartupFolder: => "FreeWheel.lnk" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "OneDriveSetup" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "1Password" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "SharewareOnSale Notifier" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "GUDelayStartup" HKU\S-1-5-21-1005590070-1944480240-3661502221-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{2DADFD15-3C7A-4FB7-9745-0EF30413CD42}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.) FirewallRules: [{479BC0AF-C4A1-43D3-83C6-7787B4D76145}] => (Allow) C:\Program Files\CyberLink\PowerDirector\PDR9.EXE (CyberLink -> CyberLink Corp.) FirewallRules: [{8A87F793-39DE-492E-987B-1A23B0D18048}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{C6AAF895-ADDA-4A7F-B9E6-8190BA5AD908}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent, Inc.) FirewallRules: [{44D074E4-D599-4DE0-9D0F-FC9836197234}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{637AB2B8-A9D5-4B45-B0CF-AD2C1FCE7F09}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{6125719F-F530-4379-8408-3A8C0790B290}] => (Block) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) FirewallRules: [{333D6221-AE1E-46ED-9AC9-DE576FAAAB5A}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software) [Fichier non signé] FirewallRules: [{D7931DB0-0E12-4DD3-B966-E1F0D52039BB}] => (Allow) C:\Program Files\VueScan\vuescan.exe (Hamrick Software) [Fichier non signé] FirewallRules: [TCP Query User{19A51688-1455-4D0D-ADAD-AAB99C0E09AB}C:\program files (x86)\hp\diagnostics\telemetrywatch\psdrtelemetrywatch.exe] => (Allow) C:\program files (x86)\hp\diagnostics\telemetrywatch\psdrtelemetrywatch.exe (HP Inc. -> ) FirewallRules: [UDP Query User{D6E81BBE-7FEC-4E5F-A72C-A3B8B86D5D5D}C:\program files (x86)\hp\diagnostics\telemetrywatch\psdrtelemetrywatch.exe] => (Allow) C:\program files (x86)\hp\diagnostics\telemetrywatch\psdrtelemetrywatch.exe (HP Inc. -> ) FirewallRules: [TCP Query User{DDE3089D-AAC3-4D3E-B8E8-277E8F334C2A}C:\program files\avast software\avast\avastui.exe] => (Allow) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [UDP Query User{12722BD9-7B29-4504-AED2-6409E9C9ED95}C:\program files\avast software\avast\avastui.exe] => (Allow) C:\program files\avast software\avast\avastui.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{FA74C0BB-16A3-48F1-9E77-A1CA4ABE52B5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{A8578389-BF41-4A71-8464-54CED3DA0BD5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{91DEE40C-B87F-41CA-ABB6-1AF42193DA89}] => (Allow) C:\Program Files\AVG\TuneUp\TuneupUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) FirewallRules: [{C0DD8838-4B37-491C-A14A-1863DD0D0595}] => (Allow) C:\Program Files\AVG\TuneUp\TuneupUI.exe (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) FirewallRules: [TCP Query User{1D0139CE-1850-4FA0-ABAE-63722B8DCEF9}C:\users\cauli\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\cauli\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{A9CEED24-9611-464E-A26B-BBB5241636BF}C:\users\cauli\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\cauli\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{A87A4AFB-3B14-4E15-848C-5D796EF07055}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{A251996A-8C90-4757-B483-9D812521DF8D}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [TCP Query User{7517DB3F-DBAC-49CD-9FF0-7031B16C612D}C:\users\cauli\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\cauli\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{51048C66-A215-4211-8F60-4F458DD196EF}C:\users\cauli\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\cauli\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{80DA3B9B-7884-42CD-96A9-A16DFD2B1657}] => (Allow) c:\users\cauli\appdata\local\programs\opera\81.0.4196.31\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{C61B2298-44EE-4ADA-BD32-9356D1702BD1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2F96AFC0-F1BA-4164-905B-14D84539D4C7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{409369F7-E117-46A3-B2DA-A8C6284FA2A7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F1D161DE-F7FE-4743-BF6B-A2C06FC430AC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{19C65A5B-D8E1-4A3C-A48D-54B80C0D6F41}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{F4FFC754-DA04-46DD-B694-846442E6AAE7}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{3C31ACDC-65FD-4CEC-BBB7-7E5D19E09E39}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{585EC165-632F-4025-81EF-C65DB2CCC4E7}] => (Allow) c:\users\cauli\appdata\local\programs\opera\81.0.4196.60\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{E086747D-0163-40C1-B691-437ECAA21402}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E529DF3D-3D1B-452D-9052-9233F9259E21}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A6F79EF6-7059-4B30-837C-0629FCD3122D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4DBB7111-0A90-40E1-A94E-0FA280F4E9C8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{884923D9-097B-4A65-999B-C88D23DE26EE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{37B9722B-FAB0-4523-B920-FF946A9868CA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{49272A2A-8B6F-4429-ADFB-99DAEE36A476}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7CC99D89-54CA-4F3C-9F5A-57354D193D06}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Social Media Apps\Facebook Video Downloader\FacebookVideoDownloader.exe] => Enabled:Facebook Video Downloader ==================== Points de restauration ========================= 20-11-2021 10:11:49 Piriform Driver Updater - Update 6.0.9126.1 29-11-2021 18:49:16 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (12/02/2021 09:23:15 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme StartMenuExperienceHost.exe version 0.0.0.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : bdfc Heure de début : 01d7e685a1b05fd6 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe ID de rapport : 73e85147-f3a0-4c68-b8f2-a81165fd000c Nom complet du package défectueux : Microsoft.Windows.StartMenuExperienceHost_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy ID de l'application relative à un package défectueux : App Type de blocage : Quiesce Error: (12/02/2021 09:13:00 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Disque local (G:) (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (11/28/2021 09:32:32 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur LOVEWE1000 (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (11/28/2021 09:27:13 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Disque local (G:) (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (11/28/2021 08:03:14 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante HD-Player.exe, version : 4.205.0.1006, horodatage : 0x5eb3fc9f Nom du module défaillant : HD-OpenGl-Native.dll, version : 4.205.0.1006, horodatage : 0x5eb3fbca Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000002f910 ID du processus défaillant : 0xc248 Heure de début de l’application défaillante : 0x01d7e488d1c9d67b Chemin d’accès de l’application défaillante : C:\Program Files\BlueStacks\HD-Player.exe Chemin d’accès du module défaillant: C:\Program Files\BlueStacks\HD-OpenGl-Native.dll ID de rapport : f169bc43-4887-45e0-a751-8958b6d57029 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/28/2021 08:03:05 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : HD-Player.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : code d'exception c0000005, adresse d'exception 00007FF8699AF910 Error: (11/27/2021 11:39:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Speccy64.exe, version : 1.27.0.703, horodatage : 0x5486acf0 Nom du module défaillant : Speccy64.exe, version : 1.27.0.703, horodatage : 0x5486acf0 Code d’exception : 0xc0000417 Décalage d’erreur : 0x00000000001dec90 ID du processus défaillant : 0x6efc Heure de début de l’application défaillante : 0x01d7e3dfa3d0d1d3 Chemin d’accès de l’application défaillante : D:\LOGICIELS DETENUS - NoVirus -\LOGICIELS TOUS GENRES - Logs MàJ 08 juin 2019\SYSTEME D'EXPLOITATION\Benchmark - Vérificateurs & Overclocking\Port - Speccy Technician 1.27.703\Speccy Technician 1.27.703 Port\App\Speccy\Speccy64.exe Chemin d’accès du module défaillant: D:\LOGICIELS DETENUS - NoVirus -\LOGICIELS TOUS GENRES - Logs MàJ 08 juin 2019\SYSTEME D'EXPLOITATION\Benchmark - Vérificateurs & Overclocking\Port - Speccy Technician 1.27.703\Speccy Technician 1.27.703 Port\App\Speccy\Speccy64.exe ID de rapport : 1b2f4263-bde8-41f2-b73b-f78ce71c4a22 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/27/2021 11:38:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Speccy64.exe, version : 1.27.0.703, horodatage : 0x5486acf0 Nom du module défaillant : Speccy64.exe, version : 1.27.0.703, horodatage : 0x5486acf0 Code d’exception : 0xc0000417 Décalage d’erreur : 0x00000000001dec90 ID du processus défaillant : 0x9200 Heure de début de l’application défaillante : 0x01d7e3df7b646608 Chemin d’accès de l’application défaillante : D:\LOGICIELS DETENUS - NoVirus -\LOGICIELS TOUS GENRES - Logs MàJ 08 juin 2019\SYSTEME D'EXPLOITATION\Benchmark - Vérificateurs & Overclocking\Port - Speccy Technician 1.27.703\Speccy Technician 1.27.703 Port\App\Speccy\Speccy64.exe Chemin d’accès du module défaillant: D:\LOGICIELS DETENUS - NoVirus -\LOGICIELS TOUS GENRES - Logs MàJ 08 juin 2019\SYSTEME D'EXPLOITATION\Benchmark - Vérificateurs & Overclocking\Port - Speccy Technician 1.27.703\Speccy Technician 1.27.703 Port\App\Speccy\Speccy64.exe ID de rapport : 67fb2655-48e5-4a4c-bd5d-44acc757da03 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (12/03/2021 12:37:49 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (12/02/2021 12:56:55 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: ) Description: 4 Error: (12/01/2021 08:31:44 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1053 » lors de la tentative de démarrage du service gupdate avec les arguments « /comsvc » pour exécuter le serveur : {4EB61BAC-A3B6-4760-9581-655041EF4D69} Error: (12/01/2021 08:31:44 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (12/01/2021 08:31:44 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate). Error: (12/01/2021 08:30:42 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HJ5G50R) Description: Le serveur Microsoft.WindowsFeedbackHub_1.2111.3171.0_x64__8wekyb3d8bbwe!App.AppX8a6w88secebzyje9nrqc47xt488tkbmc.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/01/2021 08:29:53 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service Dnscache. Error: (12/01/2021 08:29:23 AM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service CDPUserSvc_4c7d5. CodeIntegrity: =============== Date: 2021-12-03 15:37:21 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-12-03 07:18:25 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume2\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. V25.6 12/15/2014 Carte mère: MSI A88XM-E45 (MS-7721) Processeur: AMD A8-6600K APU with Radeon(tm) HD Graphics Pourcentage de mémoire utilisée: 82% Mémoire physique - RAM - totale: 8132 MB Mémoire physique - RAM - disponible: 1414.05 MB Mémoire virtuelle totale: 32708 MB Mémoire virtuelle disponible: 2548.1 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:110.79 GB) (Free:10.94 GB) NTFS Drive d: (Disque local (G:)) (Fixed) (Total:1863.01 GB) (Free:1171.64 GB) NTFS Drive f: (DD BUREAU) (CDROM) (Total:0.56 GB) (Free:0.38 GB) UDF \\?\Volume{90ade9cc-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.49 GB) (Free:0.44 GB) NTFS \\?\Volume{90ade9cc-0000-0000-0000-a0d11b000000}\ () (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 90ADE9CC) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=525 MB) - (Type=27) ========================================================== Disk: 1 (Size: 1863 GB) (Disk ID: A368FEA5) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================