Addition.txt

Document joint : IJAvnDCgKvh_Addition.txt

Cliquez pour partager vos propres fichiers

Commentaire : voici le deuxième rapport

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 26-10-2019
Exécuté par jack (26-10-2019 23:07:26)
Exécuté depuis C:\Users\jack\Desktop
Windows 10 Home Version 1903 18362.418 (X64) (2019-10-23 17:27:37)
Mode d'amorçage: Normal
==========================================================

==================== Comptes: =============================

Administrateur (S-1-5-21-3700930299-2485990676-1707668909-500 - Administrator - Enabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-3700930299-2485990676-1707668909-503 - Limited - Disabled)
ETB User (S-1-5-21-3700930299-2485990676-1707668909-1002 - Administrator - Enabled) => C:\Users\ETB User
Invité (S-1-5-21-3700930299-2485990676-1707668909-501 - Limited - Disabled)
jack (S-1-5-21-3700930299-2485990676-1707668909-1000 - Administrator - Enabled) => C:\Users\jack
papounet71 (S-1-5-21-3700930299-2485990676-1707668909-1003 - Administrator - Enabled) => C:\Users\papounet71
WDAGUtilityAccount (S-1-5-21-3700930299-2485990676-1707668909-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
FW: Bitdefender Pare-feu (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.021.20049 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.0.0.354 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.114 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 24.0.1.143 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 24.0.9.47 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 24.0.9.52 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 24.0.2.693 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.50 - Piriform)
Désinstallation de l'imprimante EPSON XP-520 Series (HKLM\...\EPSON XP-520 Series) (Version: - SEIKO EPSON Corporation)
DeviceManage (HKLM-x32\...\DeviceManage) (Version: - )
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.00.000 - Nuance Communications Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 78.0.3904.70 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.301 - Google LLC) Hidden
Heredis 2019 (HKLM\...\Heredis 2019_is1) (Version: 19 - BSD Concept)
Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
IObit Uninstaller (HKLM-x32\...\{4A445EEF-A20B-4A98-B30A-1DD94DEE8718}) (Version: 9.0.2.40 - IObit)
Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3700930299-2485990676-1707668909-1000\...\OneDriveSetup.exe) (Version: 19.174.0902.0013 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4048 (HKLM\...\{91415F19-4C22-3609-A105-92ED3522D83C}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM-x32\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mozilla Firefox 70.0 (x64 fr) (HKLM\...\Mozilla Firefox 70.0 (x64 fr)) (Version: 70.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0 - Mozilla)
NetSurveillance (HKLM-x32\...\NetSurveillance) (Version: - )
Nuance PaperPort 14 (HKLM-x32\...\{14CB3B82-FBDC-4462-919E-86147983F09B}) (Version: 14.5.0000 - Nuance Communications, Inc.)
Nuance PDF Create 7 (HKLM\...\{AAA715B7-02F9-4F2D-92C9-80EC63835AA1}) (Version: 7.10.6408 - Nuance Communications, Inc.)
Nuance PDF Create 7 (HKLM-x32\...\{AAA715B7-02F9-4F2D-92C9-80EC63835AA1}) (Version: 7.10.6408 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{FC984E39-43D0-4AB2-ACC7-A7B87977B009}) (Version: 7.20.3274 - Nuance Communications, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 388.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.46 - NVIDIA Corporation) Hidden
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0001 - Nuance Communications, Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8198 - Realtek Semiconductor Corp.)
Scansoft PDF Create (HKLM-x32\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version: - ) Hidden
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
Update for Skype for Business 2016 (KB4484102) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{BE84972D-5F00-49E3-8F22-316ACAB0E6FF}) (Version: - Microsoft)
VMS (HKLM-x32\...\VMS) (Version: - )
Weather Display 10.37S Build 102 (HKLM-x32\...\Weather Display_is1) (Version: - )
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-10-25] (Adobe Systems Incorporated)
Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12026.20218.0_x64__8wekyb3d8bbwe [2019-10-23] (Microsoft Corporation) [MS Ad]
EdgeDevtoolsPlugin -> C:\Windows\SystemApps\Microsoft.EdgeDevtoolsPlugin_cw5n1h2txyewy [2019-10-23] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-10-23] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-10-23] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.10022.0_x64__8wekyb3d8bbwe [2019-10-23] (Microsoft Studios) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.32.12463.0_x64__8wekyb3d8bbwe [2019-10-23] (Microsoft Corporation) [MS Ad]

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-3700930299-2485990676-1707668909-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-74406EA27C56} -> [Creative Cloud Files] => C:\Users\jack\Creative Cloud Files [2019-10-25 15:14]
CustomCLSID: HKU\S-1-5-21-3700930299-2485990676-1707668909-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [Zeon.MFCDirectShellExt] -> {353C642C-F13D-4699-9FF2-EFAF490B6C69} => C:\Program Files (x86)\Nuance\PDFCreate\bin\DirectShellExt.dll [2010-07-16] (Zeon Corporation -> Zeon International Investment Corp. )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-11-29] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VMS\clean.lnk -> C:\Program Files (x86)\VMS\clean.bat ()
Shortcut: C:\Users\jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Zeppelin NT V1.0 pour FSX SP1 + SP2\www.flightport.de.lnk -> hxxp://www.flightport.de
Shortcut: C:\Users\jack\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Rikoooo Add-ons\Zeppelin NT V1.0 pour FSX SP1 + SP2\www.rikoooo.com.lnk -> hxxp://www.rikoooo.com

==================== Modules chargés (Avec liste blanche) ==============

2019-08-14 22:48 - 2010-11-30 21:51 - 000970752 _____ () [Fichier non signé] C:\graphweather\GWCore.dll
2019-08-14 22:48 - 2010-11-30 17:39 - 000323584 _____ () [Fichier non signé] C:\graphweather\LanguageFr.dll
2019-08-14 22:48 - 2010-11-30 17:47 - 000421888 _____ () [Fichier non signé] C:\graphweather\Plugins\CSV.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\AcroTray.fra
2019-10-16 22:27 - 2019-10-16 22:27 - 001193472 _____ () [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\adistres.FRA
2015-09-21 09:19 - 2001-06-02 14:00 - 000207360 _____ () [Fichier non signé] C:\wdisplay\LAME_ENC.DLL
2015-09-21 09:19 - 2004-10-28 15:02 - 000073728 _____ () [Fichier non signé] C:\wdisplay\ljackuw.dll
2015-09-21 09:19 - 2003-08-07 10:31 - 000114688 _____ () [Fichier non signé] C:\wdisplay\PAKBUSDLL.DLL
2015-09-21 09:19 - 2008-02-29 00:38 - 000045056 _____ () [Fichier non signé] C:\wdisplay\usb.dll
2015-09-21 09:19 - 2007-12-29 16:10 - 000204872 _____ () [Fichier non signé] C:\wdisplay\ws1080.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000013824 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2012-12-05 12:29 - 2012-12-05 12:29 - 004883456 _____ (BCGSoft Ltd) [Fichier non signé] C:\Program Files (x86)\Nuance\PaperPort\BCGCBPRO1100u100.dll
2019-08-14 22:48 - 2008-07-27 17:41 - 002084864 _____ (FreeImage) [Fichier non signé] C:\graphweather\FreeImage.dll
2015-09-21 09:19 - 2005-12-02 10:39 - 000081920 _____ (FTDI Ltd) [Fichier non signé] C:\wdisplay\FTD2XX.DLL
2019-09-10 10:17 - 2019-09-10 10:17 - 000442128 _____ (IObit Information Technology -> ) [Fichier non signé] C:\Program Files (x86)\IObit\IObit Uninstaller\madExcept_.bpl
2015-09-21 09:19 - 2011-01-13 13:13 - 000348160 _____ (LabJack) [Fichier non signé] C:\wdisplay\labjackud.dll
2019-10-23 23:15 - 2010-01-20 13:07 - 000049152 _____ (LabJack) [Fichier non signé] C:\wdisplay\LabJackWUSB.dll
2015-09-21 09:19 - 2003-03-19 18:20 - 001060864 _____ (Microsoft Corporation) [Fichier non signé] C:\wdisplay\MFC71.DLL

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\TEMP:FD9CE1F3 [136]
AlternateDataStreams: C:\Users\jack\Downloads:Shareaza.GUID [16]

==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

==================== Internet Explorer sites de confiance/sensibles ===============

==================== Hosts contenu: ===============================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2019-10-23 19:36 - 2019-10-26 23:04 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3700930299-2485990676-1707668909-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\jack\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "ISUSPM"
HKLM\...\StartupApproved\Run32: => "PPort14reminder"
HKLM\...\StartupApproved\Run32: => "DNS7reminder"
HKLM\...\StartupApproved\Run32: => "IndexSearch"
HKLM\...\StartupApproved\Run32: => "PaperPort PTD"
HKLM\...\StartupApproved\Run32: => "PDFCreHook"
HKLM\...\StartupApproved\Run32: => "PDFProHook"
HKLM\...\StartupApproved\Run32: => "PDF7 Registry Controller"
HKU\S-1-5-21-3700930299-2485990676-1707668909-1000\...\StartupApproved\Run: => "ISUSPM"
HKU\S-1-5-21-3700930299-2485990676-1707668909-1000\...\StartupApproved\Run: => "EPLTarget\P0000000000000000"
HKU\S-1-5-21-3700930299-2485990676-1707668909-1000\...\StartupApproved\Run: => "OneDrive"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [OpenSSH-Server-In-TCP] => (Allow) %SystemRoot%\system32\OpenSSH\sshd.exe Pas de fichier
FirewallRules: [TCP Query User{C30ED3A9-880E-4DBE-A821-F4BE4F34A55D}C:\graphweather\graphweather.exe] => (Allow) C:\graphweather\graphweather.exe () [Fichier non signé]
FirewallRules: [UDP Query User{0476D4C5-543D-4C1F-9F6E-1AE89C650A53}C:\graphweather\graphweather.exe] => (Allow) C:\graphweather\graphweather.exe () [Fichier non signé]
FirewallRules: [{5F7E89E0-60FA-47A5-ABD3-8C6CB9182069}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{393C5816-B4C9-4D43-AD31-AD9D6CC32C5A}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{46503496-3ED6-45FD-891A-77E49C551E1F}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3694BB31-EFBD-4D32-A6EF-ED28B7E7EDE4}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{86A55C15-48F7-43B5-8901-58167EB7D873}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{3DE17A15-491F-4999-97E4-CC9B93A3AD43}C:\program files (x86)\devicemanage\devicemanage.exe] => (Allow) C:\program files (x86)\devicemanage\devicemanage.exe () [Fichier non signé]
FirewallRules: [UDP Query User{E1CA514F-CD69-4732-8AEE-EF99DDFC137D}C:\program files (x86)\devicemanage\devicemanage.exe] => (Allow) C:\program files (x86)\devicemanage\devicemanage.exe () [Fichier non signé]
FirewallRules: [TCP Query User{505033FA-AF5F-4B80-A483-6D70659DCE79}C:\program files (x86)\vms\vms.exe] => (Allow) C:\program files (x86)\vms\vms.exe () [Fichier non signé]
FirewallRules: [UDP Query User{4442B90D-6708-4F1B-9127-9E8F767C2159}C:\program files (x86)\vms\vms.exe] => (Allow) C:\program files (x86)\vms\vms.exe () [Fichier non signé]
FirewallRules: [{79313928-C576-4C7E-9AE2-D50FD6A69B4C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4ADB0B1C-7711-4EB7-A990-5619F192C8CE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{C5775E8D-8372-40B8-8BA0-E177D946D6B2}F:\graphweather\graphweather.exe] => (Allow) F:\graphweather\graphweather.exe Pas de fichier
FirewallRules: [UDP Query User{2BEF86F8-38F3-4DD8-A732-424BE114F38E}F:\graphweather\graphweather.exe] => (Allow) F:\graphweather\graphweather.exe Pas de fichier
FirewallRules: [{4DD22330-A293-4A39-9821-C52A842466AA}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{D993D7BD-1F1B-4B9F-A2CF-8C8939C89BC7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{2FB5DCAD-096D-486A-B2C1-A0B6EB320D00}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{82EA357F-8353-487C-9B54-7DA9D7A549B1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{91119B38-0B92-49DD-B656-90F6AFDD27E4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1959D41D-C060-4218-80A6-32FE2305FC6D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)

==================== Points de restauration =========================

26-10-2019 19:15:18 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques =============

==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (10/26/2019 11:08:27 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (30484,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/26/2019 07:58:42 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (26088,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/26/2019 11:53:51 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15612,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/26/2019 10:34:55 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(jack-PC\032(2)._Heredis2._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (10/26/2019 10:32:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 21 jack-PC._Heredis2._tcp.local. SRV 0 0 51829 jack-PC.local.

Error: (10/26/2019 10:32:41 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.77:5353 21 jack-PC._Heredis2._tcp.local. SRV 0 0 44444 jack-PC.local.

Error: (10/26/2019 10:30:07 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(jack-PC\032(2)._Heredis2._tcp.local.) active for over two minutes. This places considerable burden on the network.

Error: (10/26/2019 10:30:07 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Client application bug: DNSServiceResolve(jack-PC\032(2)._Heredis2._tcp.local.) active for over two minutes. This places considerable burden on the network.

Erreurs système:
=============
Error: (10/26/2019 11:48:53 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NZKPSTSNW4P-Microsoft.XboxGamingOverlay.

Error: (10/26/2019 09:04:19 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration

Error: (10/25/2019 11:19:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Le service Dragon Service est marqué comme étant interactif. Cependant, le système est configuré pour ne pas autoriser les services interactifs. Ce service peut ne pas fonctionner correctement.

Error: (10/25/2019 08:04:40 AM) (Source: SNMP) (EventID: 1500) (User: )
Description: SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration

Error: (10/24/2019 11:08:53 PM) (Source: DCOM) (EventID: 10000) (User: JACK-PC)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (10/24/2019 09:59:03 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration

Error: (10/24/2019 09:36:37 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration

Error: (10/24/2019 09:35:54 PM) (Source: DCOM) (EventID: 10010) (User: JACK-PC)
Description: Le serveur {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

CodeIntegrity:
===================================

Date: 2019-10-26 23:04:14.364
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-10-26 23:04:14.359
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-10-26 23:04:05.433
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-10-26 23:04:05.276
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-10-26 23:03:55.333
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.

Date: 2019-10-26 23:03:55.331
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.

Date: 2019-10-26 23:02:28.486
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

Date: 2019-10-26 23:02:28.470
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

BIOS: ASUSTeK Computer Inc. 0413 10/18/2011
Carte mère: ASUSTeK Computer Inc. ET2410
Processeur: Intel(R) Pentium(R) CPU G620 @ 2.60GHz
Pourcentage de mémoire utilisée: 67%
Mémoire physique - RAM - totale: 8173.36 MB
Mémoire physique - RAM - disponible: 2686.34 MB
Mémoire virtuelle totale: 10093.36 MB
Mémoire virtuelle disponible: 2854.33 MB

==================== Lecteurs ================================

Drive b: () (Fixed) (Total:0.44 GB) (Free:0.18 GB) NTFS
Drive c: () (Fixed) (Total:464.77 GB) (Free:275.12 GB) NTFS
Drive e: () (Fixed) (Total:465.76 GB) (Free:213.38 GB) NTFS

\\?\Volume{6b741e2b-2256-11e5-8510-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.05 GB) NTFS
\\?\Volume{2480adfb-0000-0000-0000-c03774000000}\ () (Fixed) (Total:0.45 GB) (Free:0.07 GB) NTFS

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 2480ADFB)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=464.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=460 MB) - (Type=27)
Partition 4: (Not Active) - (Size=450 MB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 1FAA9E4E)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt ============================

Signaler le contenu de ce document