Addition.txt

Document joint : LAxtWTFXAFH_Addition.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 22-01-2022
Exécuté par izand (23-01-2022 19:55:22)
Exécuté depuis C:\Users\izand\Desktop
Microsoft Windows 10 Famille Version 20H2 19042.1466 (X64) (2021-03-31 14:14:06)
Mode d'amorçage: Normal
==========================================================

==================== Comptes: =============================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-4241377573-4053179113-3050411711-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4241377573-4053179113-3050411711-503 - Limited - Disabled)
Invité (S-1-5-21-4241377573-4053179113-3050411711-501 - Limited - Disabled)
izand (S-1-5-21-4241377573-4053179113-3050411711-1001 - Administrator - Enabled) => C:\Users\izand
WDAGUtilityAccount (S-1-5-21-4241377573-4053179113-3050411711-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Disabled - Up to date) {9D4501E6-72F6-2877-C789-89AF6F535B2C}
FW: Pare-feu McAfee (Disabled) {A57E80C3-3899-292F-ECD6-209A91801C57}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform)
Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 13.250.137.0 - Microsoft Corporation)
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
Counter-strike 1.6 (HKLM-x32\...\Counter-strike 1.6) (Version: 1.6 - Valve (CSDOWNLOAD Original))
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.6.7428 - CyberLink Corp.)
Discord (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Discover HP Touchpoint Manager (HKLM-x32\...\{F2CCC061-8454-4F98-AABB-E067E1CCDEC0}) (Version: 1.0.20.1 - HP)
Dropbox (HKLM-x32\...\Dropbox) (Version: 140.4.1951 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.541.1 - Dropbox, Inc.) Hidden
Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.)
Fliqlo (HKLM-x32\...\Fliqlo_is1) (Version: - Yuji Adachi)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.99 - Google LLC)
Grammarly for Microsoft® Office Suite (HKLM\...\{DE46CC28-5477-4CFB-9AE2-8C7C111E3EE7}) (Version: 6.8.261 - Grammarly) Hidden
Grammarly for Microsoft® Office Suite (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\{ee962c45-b827-4262-a720-3a939910ce37}) (Version: 6.8.261 - Grammarly)
HP Audio Switch (HKLM-x32\...\{BC852AA8-58F6-4F07-ACB1-7377E52CA4F3}) (Version: 1.0.150.0 - HP Inc.)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP ePrint SW (HKLM-x32\...\{54da9769-2364-4bd3-8139-6400500778b3}) (Version: 5.3.22034 - HP Inc.)
HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.21 - HP Inc.)
HP JumpStart Bridge (HKLM-x32\...\{23D5C1E8-0442-4D70-9280-927EF36657CB}) (Version: 1.1.0.378 - HP Inc.)
HP JumpStart Launch (HKLM-x32\...\{81CA40FD-E11B-4DC1-AE33-A71EB044B8B7}) (Version: 1.1.275.0 - HP Inc.)
HP Support Assistant (HKLM-x32\...\{4780AF24-213D-4187-86F2-0014A6D6077B}) (Version: 8.3.50.9 - HP Inc.)
HP Support Solutions Framework (HKLM-x32\...\{B11FEAD6-F19E-473E-A8B1-AE58C058F575}) (Version: 12.5.32.203 - HP Inc.)
HP Sure Connect (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 1.0.0.29 - HP Inc.)
HP System Event Utility (HKLM-x32\...\{29E20347-C62F-4657-938E-876A182B67F1}) (Version: 1.4.14 - HP Inc.)
HP Wireless Button Driver (HKLM-x32\...\{099DAD2B-56C5-4919-9F82-418C2A018CAE}) (Version: 1.1.18.1 - HP)
IBM SPSS Statistics (HKLM\...\{DC8AD675-36E2-44AD-8FB9-FA069BEAC142}) (Version: 28.0.1.0 - IBM Corp)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.11003.3588 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1004 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4627 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.12.1048 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{E838A403-EEF2-45F8-8B82-0771685F0167}) (Version: 19.60.0 - Intel Corporation)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{05f918ac-9392-4f5d-8399-68c4c70550b0}) (Version: 19.60.1 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{314d4c01-f54b-4125-a71f-1e2722c29050}) (Version: 10.1.1.40 - Intel(R) Corporation) Hidden
Loom 0.112.2 (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\3643b966-bc28-5bc8-95ff-3d47d66438db) (Version: 0.112.2 - Loom, Inc.)
McAfee LiveSafe (HKLM-x32\...\MSC) (Version: 16.0 R26 - McAfee, LLC)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.14729.20260 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.69 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 97.0.1072.69 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\OneDriveSetup.exe) (Version: 21.245.1128.0002 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\Teams) (Version: 1.4.00.4167 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation)
Notion 2.0.9 (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\{fcdf0d7f-424b-5f10-a1c7-a8f643f21adf}) (Version: 2.0.9 - Notion Labs, Incorporated)
OEM Application Profile (HKLM-x32\...\{B4B7FD8F-06FC-E277-4F29-8F75F8281D8F}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.14729.20260 - Microsoft Corporation) Hidden
ProjectLibre (HKLM\...\{com.projectlibre1.main}}_is1) (Version: 1.9.3 - ProjectLibre)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.31235 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8940.1 - Realtek Semiconductor Corp.)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.19572 - Microsoft Corporation)
Todoist 0.3.0 (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\046cc9a8-e645-5367-8486-409093e0b69a) (Version: 0.3.0 - Doist)
Twitch (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.)
WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
Wondershare Dr.Fone (Version 10.8.2) (HKLM-x32\...\{E8F86DA8-B8E4-42C7-AFD4-EBB692AC43FD}_is1) (Version: 10.8.2.326 - Wondershare Technology Co.,Ltd.)
Zoom (HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\ZoomUMX) (Version: 5.8.1 (1435) - Zoom Video Communications, Inc.)

Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-07-28] (Canon Inc.)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-25] (Microsoft Corporation)
Discover HP Touchpoint Manager -> C:\Program Files\WindowsApps\ad2f1837.discoverhptouchpointmanager_1.0.15.1_x86__v10z8vjag6ke6 [2020-08-21] (HP Inc.)
Dynamics AX 2012 Expenses -> C:\Program Files\WindowsApps\Microsoft.DynamicsAX2012Expenses_2.19.0.13_x64__8wekyb3d8bbwe [2020-08-21] (Microsoft Corporation)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.29.7.0_x86__q4d96b2w5wcc2 [2022-01-21] (Evernote)
Flipboard -> C:\Program Files\WindowsApps\Flipboard.Flipboard_2.1.3.0_neutral__3f5azkryzdbc4 [2020-08-21] (Flipboard)
HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.2.378.0_x64__v10z8vjag6ke6 [2020-08-21] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2021-11-03] (Instagram)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1320.12.119.0_x64__8xx8rvfyw5nnt [2021-12-03] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-31] (Microsoft Corporation) [MS Ad]
Microsoft Dynamics 365 -> C:\Program Files\WindowsApps\Microsoft.MicrosoftDynamicsCRMforWindows10_3.20112.0.0_x64__8wekyb3d8bbwe [2020-11-04] (Microsoft)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.1050.0_x64__8wekyb3d8bbwe [2022-01-11] (Microsoft Studios) [MS Ad]
Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.62.5211.0_x64__8wekyb3d8bbwe [2022-01-21] (Microsoft Corporation) [Startup Task]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_51.10913.5796.0_x64__8wekyb3d8bbwe [2021-12-01] (Microsoft Corporation)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-21] (Netflix, Inc.)
Office Lens -> C:\Program Files\WindowsApps\Microsoft.OfficeLens_16.0.32001.0_x86__8wekyb3d8bbwe [2020-10-01] (Microsoft Corporation)
One Messenger -> C:\Program Files\WindowsApps\5913DefineStudio.MessengerPro_6.9.0.0_x64__jj4r3mnwe2ey2 [2021-07-22] (Define Studio) [MS Ad]
OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.19.0_x64__8wekyb3d8bbwe [2022-01-16] (Microsoft Corporation)
Power Apps -> C:\Program Files\WindowsApps\Microsoft.MSApps_3.18054.42.0_neutral__8wekyb3d8bbwe [2021-02-10] (Microsoft Corporation)
Power BI -> C:\Program Files\WindowsApps\Microsoft.MicrosoftPowerBIForWindows_3222.30109.52124.0_x64__8wekyb3d8bbwe [2022-01-16] (Microsoft Corporation)
Power BI Desktop -> C:\Program Files\WindowsApps\Microsoft.MicrosoftPowerBIDesktop_2.100.1401.0_x64__8wekyb3d8bbwe [2022-01-21] (Microsoft Corporation)
Slack -> C:\Program Files\WindowsApps\91750D7E.Slack_4.23.0.0_x64__8she8kybcnzg4 [2021-12-16] (Slack Technologies Inc.) [Startup Task]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0 [2022-01-21] (Spotify AB) [Startup Task]
Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_3.4.8.0_x64__t4vj0pshhgkwm [2022-01-21] (Telegram Messenger LLP) [Startup Task]
Todoist: To-Do List and Task Manager -> C:\Program Files\WindowsApps\88449BC3.TodoistTo-DoListTaskManager_2.3.5622.0_x86__71ef4824z52ta [2021-07-08] (Doist Inc.) [Startup Task]
Trello -> C:\Program Files\WindowsApps\45273LiamForsyth.PawsforTrello_2.12.5.0_x64__7pb5ddty8z1pa [2021-12-10] (Trello, Inc.)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-12] (Twitter Inc.)
WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2149.4.0_x64__cv1g1gvanyjgm [2022-01-22] (WhatsApp Inc.)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\izand\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20289.5\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001_Classes\CLSID\{2AD206F1-152C-4F9D-A24E-6F93FE7A4AFC}\InprocServer32 -> C:\Users\izand\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\B7D1E83D8E\GrammarlyShim64.dll (Grammarly, Inc. -> CompanyName)
CustomCLSID: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001_Classes\CLSID\{4BE56754-B616-4998-B825-D16983AEE1B2}\InprocServer32 -> C:\Users\izand\AppData\Local\Grammarly\Grammarly for Microsoft Office Suite\6.8.261\B7D1E83D8E\Grammarly.AddIn.Connect.ActiveX.dll (Grammarly, Inc. -> Grammarly)
CustomCLSID: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\izand\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\izand\Dropbox [2020-08-27 10:44]
CustomCLSID: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001_Classes\CLSID\{FFAD7F83-FB93-40EE-BE5E-A121E1D7FCD2}\localserver32 -> C:\Users\izand\AppData\Local\Programs\todoist\Todoist.exe (Doist) [Fichier non signé]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.52.0.dll [2022-01-19] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers6: [McCtxMenuFrmWrk] -> {CCA9EFD3-29ED-430A-BA6D-E6BBFF0A60C2} => C:\Program Files\McAfee\MSC\McCtxMenuFrmWrk.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-08-26] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\izand\Desktop\Counter-strike 1.6 Original.lnk -> C:\Games\Counter-strike 1.6 Original\Counter-Strike.bat ()
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\HP\Shared\WizLink.exe () -> hxxp://secure.rezserver.com/sdk/v1/LinkFwd?refid=7684&destination=booking&refclickid=square

==================== Modules chargés (Avec liste blanche) =============

2021-06-10 16:25 - 2021-05-27 16:13 - 003889664 _____ () [Fichier non signé] C:\Program Files (x86)\Wondershare\drfone\WsidClient.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000011776 _____ () [Fichier non signé] c:\Program Files\AMD\CNext\CNext\libEGL.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 002013696 _____ () [Fichier non signé] c:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000014336 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2016-09-14 03:29 - 2016-09-14 03:29 - 000739840 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2016-09-14 03:29 - 2016-09-14 03:29 - 000191488 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2016-09-14 03:29 - 2016-09-14 03:29 - 000071168 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2016-09-14 03:29 - 2016-09-14 03:29 - 000014336 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2022-01-13 15:27 - 2022-01-13 15:27 - 000157696 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\c7667ce2a5110354b5c924d67ddf8c44\BRIDGECommon.ni.dll
2022-01-13 15:28 - 2022-01-13 15:28 - 000120832 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\1b92a80d3b2dc0210b94c77ad570ab3b\BridgeExtension.ni.dll
2022-01-13 15:28 - 2022-01-13 15:28 - 000343552 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\822ca85a3cd3550a552c707e947af15e\CleanStartController.ni.dll
2021-10-16 09:41 - 2021-10-16 09:41 - 000138240 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\7c6cb2f28873358e87b2a36d331fe377\Interop.IWshRuntimeLibrary.ni.dll
2022-01-13 15:28 - 2022-01-13 15:28 - 000134656 _____ (hardcodet.net) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\c23aeef5ccc45d7873026aa7fbcf7eab\Hardcodet.Wpf.TaskbarNotification.ni.dll
2022-01-13 15:28 - 2022-01-13 15:28 - 000134656 _____ (HP Inc.) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\6ef21eed6ace2a7fb06206f2d5026b99\CommonPortable.ni.dll
2022-01-13 15:28 - 2022-01-13 15:28 - 001585664 _____ (Mark Heath) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\4d9eb8377af15309b5448e281b66563c\NAudio.ni.dll
2017-05-19 03:37 - 2017-05-19 03:37 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll
2017-05-19 03:37 - 2017-05-19 03:37 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll
2022-01-13 15:27 - 2022-01-13 15:27 - 002306560 _____ (Newtonsoft) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\f48eac25dd78ea6b522fcef9a3ae8bd1\Newtonsoft.Json.ni.dll
2022-01-13 15:28 - 2022-01-13 15:28 - 000792064 _____ (The Apache Software Foundation) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\69493a9fb324d63190da31a473cdc8ef\log4net.ni.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000049664 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qdds.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000029696 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000037376 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000030208 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000459776 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qjp2.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000236544 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000275456 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qmng.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000023552 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000022528 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000351744 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qtiff.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000021504 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000374784 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 001212416 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 000912384 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 005496320 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 005804544 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 001061376 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 003187712 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 002924544 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2016-09-14 03:27 - 2016-09-14 03:27 - 000310784 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 005444608 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000277504 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2016-09-14 03:28 - 2016-09-14 03:28 - 000193024 _____ (The Qt Company Ltd) [Fichier non signé] c:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\izand\Documents\Image.png:3or4kl4x13tuuug3Byamue2s4b [79]
AlternateDataStreams: C:\Users\izand\Documents\Image.png:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\izand\Documents\Image1.png:3or4kl4x13tuuug3Byamue2s4b [79]
AlternateDataStreams: C:\Users\izand\Documents\Image1.png:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeplk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

SearchScopes: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2016-12-06] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-11-02] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2016-12-06] (HP Inc. -> HP Inc.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2022-01-16] (Microsoft Corporation -> Microsoft Corporation)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl64.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\MSC\McSnIePl.dll [2020-06-08] (McAfee, LLC -> McAfee, LLC)

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\sharepoint.com -> hxxps://egcvendeeduc-files.sharepoint.com

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 22:03 - 2017-03-18 22:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\izand\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\f1-hamilton-ecart-ferrrari-2019.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "HPRadioMgr"
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_021113793A9519AEE8F7C03E2AE664E9"
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-4241377573-4053179113-3050411711-1001\...\StartupApproved\Run: => "Steam"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{89953267-8C75-4202-91A2-88E3A7F2F596}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{3415551E-FF92-4F18-9F2D-D816134CBA1A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [UDP Query User{627F01D0-C1B4-4FE9-BA67-F1558BC311BB}C:\users\izand\appdata\local\temp\rar$exa30828.11093\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa30828.11093\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{2599D1EE-3783-4AFB-AEC5-079AC8131B87}C:\users\izand\appdata\local\temp\rar$exa30828.11093\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa30828.11093\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [{B5665C77-BAF8-4212-9480-F3CF143FA67C}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier
FirewallRules: [{ED68D0B7-CD17-4404-873E-FD232B329A87}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe => Pas de fichier
FirewallRules: [UDP Query User{930BA5B7-AF0D-41EF-902F-13176791F448}C:\users\izand\appdata\local\temp\rar$exa30904.46490\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa30904.46490\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{2D3B4D88-3B3B-484E-B3AC-B31F081DD0A4}C:\users\izand\appdata\local\temp\rar$exa30904.46490\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa30904.46490\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{A4E8329B-4A9B-4EEA-9153-44EC8F5BB8CA}C:\users\izand\appdata\local\temp\rar$exa6596.27529\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa6596.27529\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{4E7B4403-4AA8-4A4A-A69A-453F11756B02}C:\users\izand\appdata\local\temp\rar$exa6596.27529\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa6596.27529\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{C3831472-87BF-429B-8EE4-AE57C5BE14A7}C:\users\izand\appdata\local\temp\rar$exa17712.8721\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa17712.8721\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{76880134-CE3A-472E-A781-A5A6D96D37D1}C:\users\izand\appdata\local\temp\rar$exa17712.8721\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa17712.8721\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{ACD69864-CF73-44CE-B639-82CA71B0C567}C:\users\izand\appdata\local\temp\rar$exa14856.43563\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa14856.43563\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{C46CE11B-2403-4631-941D-A1432C3DFBDD}C:\users\izand\appdata\local\temp\rar$exa14856.43563\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa14856.43563\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{85F27B2F-DAB7-453B-8F8B-55EDB1CDED1C}C:\users\izand\appdata\local\temp\rar$exa15268.22129\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa15268.22129\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{16475F5C-7CFF-42C2-B832-42986E4F6DD3}C:\users\izand\appdata\local\temp\rar$exa15268.22129\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa15268.22129\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{77FB5E52-BEC4-4361-AE8C-D8799863CB1B}C:\users\izand\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\izand\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{7E970469-C961-4721-82A7-D90F96744872}C:\users\izand\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\izand\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{EEE5C5D3-9D45-4D4A-A83C-2C48394109C9}C:\users\izand\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\izand\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{B51238A0-E1D1-4938-A884-78257A5F9705}C:\users\izand\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\izand\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{73B83BE1-A628-47BE-A729-4C8FC9EEC053}C:\users\izand\appdata\local\temp\rar$exa21144.10466\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa21144.10466\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{BB19C4F4-4743-4001-859E-3999E8E01143}C:\users\izand\appdata\local\temp\rar$exa21144.10466\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa21144.10466\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{CA8BB105-A1D8-401E-80D1-CD805CFC0967}C:\users\izand\appdata\local\temp\rar$exa21144.21623\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa21144.21623\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{82D463CD-04D7-4940-A8C1-D0A612C8DBDA}C:\users\izand\appdata\local\temp\rar$exa21144.21623\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa21144.21623\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{4632A874-59D7-4C00-8DBA-5EAC05B5C097}C:\users\izand\appdata\local\temp\rar$exa12572.25628\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa12572.25628\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{128F35F0-52C8-4E10-A910-D17958B6D1D1}C:\users\izand\appdata\local\temp\rar$exa12572.25628\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa12572.25628\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{72491254-8D29-47AC-970B-2CCE065999FA}C:\users\izand\appdata\local\temp\rar$exa8640.44411\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa8640.44411\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{B358D566-2251-4E67-827C-250B2C5061C8}C:\users\izand\appdata\local\temp\rar$exa8640.44411\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa8640.44411\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{D146FAEB-ED5C-40F1-9ED9-38AE561051B4}C:\users\izand\appdata\local\temp\rar$exa14172.38961\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa14172.38961\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{9D17CC27-EB65-4250-8592-2A1DFB4E8923}C:\users\izand\appdata\local\temp\rar$exa14172.38961\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa14172.38961\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{4066AB92-7476-49F1-B072-E148E72A9037}C:\users\izand\appdata\local\temp\rar$exa21792.8723\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa21792.8723\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{B26B98C6-95C7-4423-8309-BB5F86714582}C:\users\izand\appdata\local\temp\rar$exa21792.8723\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa21792.8723\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{598AC5F5-5635-449D-9E46-97F9071DEB5E}C:\users\izand\appdata\local\temp\rar$exa8468.42106\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa8468.42106\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{85C09B53-E096-48F3-A196-314217A5D814}C:\users\izand\appdata\local\temp\rar$exa8468.42106\among us 9.9 by tinmar\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa8468.42106\among us 9.9 by tinmar\among us.exe => Pas de fichier
FirewallRules: [{BEDB9F34-4360-4BB3-9FB3-FA19E3F45851}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC)
FirewallRules: [{B5AB94F8-402E-4D8E-8827-5BFFD4000E97}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe (McAfee, LLC -> McAfee, LLC)
FirewallRules: [{D135D7A5-560A-4162-BFDC-A706F530E1E0}] => (Allow) C:\Users\izand\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{16BDA2AD-275E-4F7B-A3FF-2705C84F5A81}] => (Allow) C:\Users\izand\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8B9BD889-10E5-4EE0-AAEE-3FEA0A985F32}] => (Allow) C:\Users\izand\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D915B94B-D9F4-4AA0-B479-2BB9B11273F0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D9DAFE4B-DE36-4256-9BF6-AC4A40A314A1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{64135410-C104-4348-AA33-41F7BCAA9E15}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6749B1FE-3583-41A7-9622-004F5F8D4253}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{11EF2E1A-7CBC-4468-AE8C-1847E0BA0679}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{0E9930D1-0188-4B88-87FB-823388B42C6A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe => Pas de fichier
FirewallRules: [{850A883D-193C-4B50-94D1-2E1496ACF2C6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe => Pas de fichier
FirewallRules: [{FCAF4394-DF52-466B-B035-A909C9857095}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{87DBEA33-2502-426C-96EA-46CEF04882EE}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe (McAfee, LLC -> McAfee, LLC)
FirewallRules: [TCP Query User{E8190FD5-F9DC-4B1C-839E-76991E689FAE}C:\users\izand\appdata\local\temp\rar$exa22144.12905\among.us.v2021.3.5s\among.us.v2021.3.5s\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa22144.12905\among.us.v2021.3.5s\among.us.v2021.3.5s\among us.exe => Pas de fichier
FirewallRules: [UDP Query User{7C1450B1-41A9-432B-B5E1-9A70FF5F5F33}C:\users\izand\appdata\local\temp\rar$exa22144.12905\among.us.v2021.3.5s\among.us.v2021.3.5s\among us.exe] => (Allow) C:\users\izand\appdata\local\temp\rar$exa22144.12905\among.us.v2021.3.5s\among.us.v2021.3.5s\among us.exe => Pas de fichier
FirewallRules: [TCP Query User{70A9CC4F-CB3B-45F8-848D-DD981D069D61}C:\program files\windowsapps\facebook.317180b0bb486_950.7.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_950.7.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [UDP Query User{63AC367F-0E05-4616-A91F-13579CEAAFC1}C:\program files\windowsapps\facebook.317180b0bb486_950.7.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe] => (Allow) C:\program files\windowsapps\facebook.317180b0bb486_950.7.118.0_x64__8xx8rvfyw5nnt\app\messenger.exe => Pas de fichier
FirewallRules: [{6BCB4FB8-4C3E-4125-BDE8-829A03D5FB7A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{614B43E9-3179-4BEE-A2B1-49D7BC92D09D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{90121E9B-1B67-4EE3-B33C-450101A916E1}C:\program files\ibm\spss statistics\stats.exe] => (Allow) C:\program files\ibm\spss statistics\stats.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [UDP Query User{A533E47D-6FC7-4D20-BE14-20587C9746BC}C:\program files\ibm\spss statistics\stats.exe] => (Allow) C:\program files\ibm\spss statistics\stats.exe (International Business Machines Corporation -> IBM Corp.)
FirewallRules: [{F5A046CE-B986-4717-BFDF-38D8C2E49490}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B689C6C5-583A-4345-9D84-10B357C05053}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A1F0E4F-121B-4573-9BDF-3482834F83E2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0DE00A64-1B16-45C1-9B91-A161911904E1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.79.95.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{466E68D4-E8EA-4D74-84C5-2C54B73890A2}] => (Allow) C:\Program Files\WindowsApps\91750D7E.Slack_4.23.0.0_x64__8she8kybcnzg4\app\Slack.exe (Slack Technologies, Inc. -> Slack Technologies Inc.)
FirewallRules: [{948132E2-E64B-469B-9432-9D449311B956}] => (Allow) C:\Program Files\WindowsApps\91750D7E.Slack_4.23.0.0_x64__8she8kybcnzg4\app\Slack.exe (Slack Technologies, Inc. -> Slack Technologies Inc.)
FirewallRules: [TCP Query User{DEF68972-282B-4D47-9FCD-3D14C3F39438}C:\games\counter-strike 1.6 original\hl.exe] => (Allow) C:\games\counter-strike 1.6 original\hl.exe (Valve) [Fichier non signé]
FirewallRules: [UDP Query User{1D155292-162F-4D30-8F45-02FEC717BBAF}C:\games\counter-strike 1.6 original\hl.exe] => (Allow) C:\games\counter-strike 1.6 original\hl.exe (Valve) [Fichier non signé]
FirewallRules: [{4B785BFB-EEF8-46F9-A834-8B69D886B758}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{902D14C8-0ED7-42E0-B9EB-83C4BBF8DC43}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4A45B60D-A3E0-4F86-9759-6431D4FCC033}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D49EA23-CF36-4301-9F8E-8065F623DAC6}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{07294291-839D-4319-83D5-531537EAA8B7}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\97.0.1072.69\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{56966E22-0306-45C5-83D3-1FF6A579F960}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{64F53B9F-D513-40DB-A353-2BE28E77601A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E9E85D50-788C-46FA-AD77-DA856E7AE94A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F444A16B-3972-4246-81E1-DB3CC9AFFE15}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1B0EF18C-E66C-420B-883E-131F3DF1C88A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BA64DF7E-FDA3-43A6-9432-B4943EA5CE32}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8BBAF0EC-31C6-4F96-BDA4-8A150F807807}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F276B3C1-8EC2-44F8-9C2F-F878DE759C32}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.177.645.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8617836B-B448-45AC-B079-741939DA8D0E}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

12-01-2022 18:40:35 Programme d’installation pour les modules Windows
23-01-2022 00:52:08 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques ============

==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (01/23/2022 12:45:05 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur RECOVERY (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)

Error: (01/23/2022 12:45:05 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Windows (C:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)

Error: (01/22/2022 10:41:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 33593

Error: (01/22/2022 10:41:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 33593

Error: (01/22/2022 10:41:16 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/22/2022 10:40:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 17015

Error: (01/22/2022 10:40:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 17015

Error: (01/22/2022 10:40:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Erreurs système:
=============
Error: (01/23/2022 06:44:01 PM) (Source: DCOM) (EventID: 10000) (User: DEUS)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (01/23/2022 12:23:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service XTU3SERVICE n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (01/23/2022 12:23:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service XTU3SERVICE.

Error: (01/23/2022 12:22:08 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 00:36:07 le ‎23/‎01/‎2022 n’était pas prévu.

Error: (01/22/2022 10:40:31 PM) (Source: DCOM) (EventID: 10010) (User: DEUS)
Description: Le serveur Microsoft.Windows.Search_1.14.2.19041_neutral_neutral_cw5n1h2txyewy!CortanaUI ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/22/2022 10:40:13 PM) (Source: DCOM) (EventID: 10010) (User: DEUS)
Description: Le serveur Microsoft.XboxGamingOverlay_5.721.12013.0_x64__8wekyb3d8bbwe!App.AppXrfdt3p0f38tc4nxz7ajrd5as6ctb0dck.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/22/2022 10:40:10 PM) (Source: DCOM) (EventID: 10010) (User: DEUS)
Description: Le serveur {3EB3C877-1F16-487C-9050-104DBCD66683} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/22/2022 10:40:08 PM) (Source: DCOM) (EventID: 10010) (User: DEUS)
Description: Le serveur {3EB3C877-1F16-487C-9050-104DBCD66683} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Windows Defender:
================
Date: 2022-01-23 00:06:57
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {85BE6C30-5F2B-45CF-835E-C7283F4EC56B}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2022-01-21 22:35:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {3F580536-2AD3-42E2-B623-881143452317}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2022-01-17 11:30:11
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {EEEDF862-7887-4468-AA72-EFABE719E8C3}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2022-01-12 21:57:53
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Choziosi.A&threatid=2147809954&enterprise=0
Nom : Trojan:Win32/Choziosi.A
ID : 2147809954
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\izand\AppData\Local\chrome\conf.js
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DEUS\izand
Nom du processus : C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
Version de la veille de sécurité : AV: 1.355.1806.0, AS: 1.355.1806.0, NIS: 1.355.1806.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4

Date: 2022-01-11 23:01:41
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/Presenoker&threatid=242420&enterprise=0
Nom : PUA:Win32/Presenoker
ID : 242420
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\izand\AppData\Local\Temp\DotSetupSDK\DotSetupSDK.dll
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Program Files\CCleaner\CCleaner64.exe
Version de la veille de sécurité : AV: 1.355.1736.0, AS: 1.355.1736.0, NIS: 1.355.1736.0
Version du moteur : AM: 1.1.18800.4, NIS: 1.1.18800.4
Event[0]:

Date: 2022-01-21 22:05:28
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.355.2047.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.18800.4
Code d’erreur : 0x80070102
Description de l’erreur : Dépassement du délai d’attente.

Date: 2022-01-16 20:17:29
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.355.1868.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.18800.4
Code d’erreur : 0x80070102
Description de l’erreur : Dépassement du délai d’attente.

Date: 2021-12-12 16:36:44
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.355.73.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.18800.4
Code d’erreur : 0x80070102
Description de l’erreur : Dépassement du délai d’attente.

Date: 2021-12-12 16:36:44
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.355.73.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.18800.4
Code d’erreur : 0x80070102
Description de l’erreur : Dépassement du délai d’attente.

Date: 2021-12-10 11:26:49
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.353.2273.0
Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\SERVICE RÉSEAU
Version actuelle du moteur :
Version précédente du moteur : 1.1.18700.4
Code d’erreur : 0x80070102
Description de l’erreur : Dépassement du délai d’attente.

CodeIntegrity:
===============
Date: 2022-01-23 12:45:43
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2111.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Microsoft signing level requirements.

Date: 2022-01-23 12:28:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\mcafee\MfeAV\AMSIExt.dll that did not meet the Windows signing level requirements.

Date: 2022-01-23 12:22:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Common Files\mcafee\modulecore\ProtectedModuleHost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\mcafee\platform\core\vtploader.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Infos Mémoire ===========================

BIOS: Insyde F.42 08/06/2018
Carte mère: HP 832B
Processeur: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 81%
Mémoire physique - RAM - totale: 8108.91 MB
Mémoire physique - RAM - disponible: 1538.5 MB
Mémoire virtuelle totale: 15276.91 MB
Mémoire virtuelle disponible: 5240.59 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:916.58 GB) (Free:745.68 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:13.7 GB) (Free:1.65 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]

\\?\Volume{b17d2a59-26a7-41d3-8783-ef00f377351c}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.38 GB) NTFS
\\?\Volume{1dde1582-d79e-41be-a11d-33228ba17493}\ () (Fixed) (Total:0.25 GB) (Free:0.16 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 3B4E92F5)

Partition: GPT.

==================== Fin de Addition.txt =======================

Signaler le contenu de ce document