Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 28-08-2023
Exécuté par yanni (28-08-2023 18:08:06)
Exécuté depuis C:\Users\yanni\Desktop
Microsoft Windows 10 Famille Version 22H2 19045.3324 (X64) (2023-03-28 17:59:17)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-391627760-3568676956-2494176701-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-391627760-3568676956-2494176701-503 - Limited - Disabled)
Invité (S-1-5-21-391627760-3568676956-2494176701-501 - Limited - Disabled)
isabe (S-1-5-21-391627760-3568676956-2494176701-1002 - Limited - Enabled) => C:\Users\isabe
WDAGUtilityAccount (S-1-5-21-391627760-3568676956-2494176701-504 - Limited - Disabled)
yanni (S-1-5-21-391627760-3568676956-2494176701-1001 - Administrator - Enabled) => C:\Users\yanni
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 23.003.20284 - Adobe)
Adobe AIR (HKLM-x32\...\{FE62111B-13F6-41AC-AA94-5B2CD581AFBF}) (Version: 50.2.1.1 - HARMAN International) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 50.2.1.1 - HARMAN International)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.14 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 7.2.0 - AOMEI International Network Limited.)
AppLogLibSetup (HKLM-x32\...\{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 - Brother Industries Ltd.) Hidden
Asian Language And Spelling Dictionaries Support For Adobe Acrobat Reader (HKLM\...\{AC76BA86-7AD7-0000-0000-BC16014E7500}) (Version: 22.001.20085 - Adobe Systems Incorporated)
Audacity 3.2.5 (HKLM\...\Audacity_is1) (Version: 3.2.5 - Audacity Team)
Beyond Compare 4.4.6 (HKLM\...\BeyondCompare4_is1) (Version: 4.4.6.27483 - Scooter Software)
BrLauncher (HKLM-x32\...\{88FCD471-DBBF-4A75-8066-ACACE05DE3CF}) (Version: 2.0.14.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother IPPoverUSB Driver (HKLM-x32\...\{DCE0E183-DDDB-4790-BF84-7CF00FF489CB}) (Version: 1.1.0.0 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{3DEA56AB-0899-41DF-8C4F-0A608FD36904}) (Version: 10.5.0.74 - Brother Industries, Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{d0c84829-3b3f-46d1-b292-e3fb77d972c2}) (Version: 10.5.0.74 - Brother Industries, Ltd.)
Brother Printer Driver (HKLM-x32\...\{FEC6938E-E593-47AD-9C34-561D0B04A1D8}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{D0F69DE9-EE0B-4A7A-8248-6D5EC97D171C}) (Version: 1.0.23.0 - Brother Industries Ltd.) Hidden
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Epson Event Manager (HKLM-x32\...\{DBC38C08-9FB5-43A5-B6BA-EB10AC7DA570}) (Version: 3.11.0053 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
FileZilla 3.63.2.1 (HKLM-x32\...\FileZilla Client) (Version: 3.63.2.1 - Tim Kosse)
GIMP 2.10.34 (HKLM\...\GIMP-2_is1) (Version: 2.10.34 - The GIMP Team)
Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google)
GPS TrackMaker (HKLM-x32\...\{FF13DD0C-954B-4C33-9D48-F354052C6B1C}) (Version: 13.9.0000 - Geo Studio Technology Ltd)
HttpToUsbBridge (HKLM-x32\...\{E2D35939-25BF-4EC8-BF6D-F9C0AF8ECC11}) (Version: 2.0.30.1 - Brother Industries Ltd.)
Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
Inkscape (HKLM\...\{B57F4693-8866-4053-B706-901E03F3301B}) (Version: 1.2.2 - Inkscape)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{9ECA1744-4800-4AE2-AC52-9109E24854AA}) (Version: 11.0.6.1194 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{335F9123-9306-4DB0-AF07-9C636317EE9D}) (Version: 1.0.1.0 - Intel Corporation) Hidden
LibreOffice 7.5 Help Pack (French) (HKLM\...\{09B76EA6-EF97-467C-AE39-1CA4AE54AF84}) (Version: 7.5.2.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 116.0.1938.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.203 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.16626.20170 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.158.0730.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-391627760-3568676956-2494176701-1001\...\Teams) (Version: 1.6.00.6754 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-391627760-3568676956-2494176701-1002\...\Teams) (Version: 1.6.00.11166 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23026 (HKLM-x32\...\{BE960C1C-7BAD-3DE6-8B1A-2616FE532845}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23026 (HKLM-x32\...\{A2563E55-3BEC-3828-8D67-E5E8B9E8B675}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.11.25325 (HKLM\...\{B13B3E11-1555-353F-A63A-8933EE104FBD}) (Version: 14.11.25325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.11.25325 (HKLM\...\{B0037450-526D-3448-A370-CACBD87769A0}) (Version: 14.11.25325 - Microsoft Corporation) Hidden
NetworkRepairTool (HKLM-x32\...\{96CEE8C3-B934-48A4-ADA6-91B7CE8A5002}) (Version: 1.2.17.0 - Brother Industries, Ltd.) Hidden
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.4.9 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16626.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16626.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16626.20170 - Microsoft Corporation) Hidden
OpenOffice 4.1.14 (HKLM-x32\...\{18661EC5-2942-4C88-BCC1-A8A0DE135DA8}) (Version: 4.114.9811 - Apache Software Foundation)
paint.net (HKLM\...\{A24AEF8A-D35C-4A4D-89F7-22D8CD18FB69}) (Version: 5.0.9 - dotPDN LLC)
PC HelpSoft Driver Updater v6.4.960 (HKLM-x32\...\PC HelpSoft Driver Updater_is1) (Version: 6.4.960 - PC HelpSoft)
Photocopier 3.02 (HKLM-x32\...\Photocopier_is1) (Version: 3.02 - )
RAPID Mode (HKLM\...\{643FC1E0-77D7-42FB-B1C6-E63838244C50}) (Version: 1.0.2.0 - Samsung Electronics Co.,Ltd.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 4.0.0.19 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.3.0.1100 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.59.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.3.22112.1 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.3.22112.1 - Samsung Electronics Co., Ltd.)
SoftwareUpdateNotification (HKLM-x32\...\{34F12379-C924-41E6-921D-51C71217F58C}) (Version: 1.0.9.0 - Brother Industries, Ltd.) Hidden
StatusMonitor (HKLM-x32\...\{D42470A0-E4C3-41C9-9A92-B1B23FD13F8C}) (Version: 1.21.6.0 - Brother Insutries Ltd.) Hidden
Sweet Home 3D version 7.1 (HKLM\...\Sweet Home 3D_is1) (Version: 7.1 - eTeks)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.8070 - Microsoft Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.40.8 - TeamViewer)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-391627760-3568676956-2494176701-1001\...\Wondershare NativePush_is1) (Version: - )
Wondershare Recoverit(Build 12.0.12.7) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 12.0.12.7 - Wondershare Software Co.,Ltd.)
Packages:
=========
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-04-24] (Microsoft Corporation)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-13] (Microsoft Corporation)
Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-17] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-04-02] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.816.0_x64__8wekyb3d8bbwe [2023-08-23] (Microsoft Corporation)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2333.8.0_x64__cv1g1gvanyjgm [2023-08-27] (WhatsApp Inc.) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-391627760-3568676956-2494176701-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\yanni\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-391627760-3568676956-2494176701-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\yanni\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23061.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-391627760-3568676956-2494176701-1001_Classes\CLSID\{1AC77AE9-9EC6-405A-9F9B-C06AB3C10B71}\InprocServer32 -> K:\PHOTOGRAPHIE-DESSIN\ice\ShellExtension.dll (Microsoft Corporation) [Fichier non signé]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => K:\APPLICATION\bureautique\Notepad++\NppShell_06.dll [2023-01-27] (Notepad++ -> )
ContextMenuHandlers1: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => K:\systeme\Beyond Compare 4\BCShellEx64.dll [2023-02-24] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => K:\systeme\Beyond Compare 4\BCShellEx64.dll [2023-02-24] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Pas de fichier
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\nvshext.dll [2020-12-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => K:\systeme\Beyond Compare 4\BCShellEx64.dll [2023-02-24] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
==================== Modules chargés (Avec liste blanche) =============
2016-11-25 10:18 - 2016-11-25 10:18 - 000139264 _____ () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-08-04 10:55 - 2017-08-04 10:55 - 000122880 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\brlmw03a.dll
2017-12-05 19:25 - 2017-12-05 19:25 - 000491008 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\BrMonitor.dll
2017-12-05 19:25 - 2017-12-05 19:25 - 001715712 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2023-04-01 14:16 - 2023-03-10 16:18 - 002521600 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\ffmpeg.dll
2023-04-01 14:16 - 2023-03-10 16:18 - 000375808 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\libegl.dll
2023-04-01 14:16 - 2023-03-10 16:18 - 006533120 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\libglesv2.dll
2023-04-01 14:16 - 2023-03-10 16:17 - 000097280 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magutils-napi.node
2023-04-01 14:16 - 2023-03-10 16:17 - 000087040 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magvibrancy-napi.node
2023-04-01 14:16 - 2023-03-10 16:17 - 000589824 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\uimpewrapper-napi.node
2023-04-01 14:16 - 2023-03-10 16:18 - 004426752 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\vk_swiftshader.dll
2023-04-02 12:34 - 2015-05-21 14:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\vcomp.dll
2023-03-29 18:23 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2015-02-24 14:49 - 2015-02-24 14:49 - 000236544 _____ (Microsoft Corporation) [Fichier non signé] K:\PHOTOGRAPHIE-DESSIN\ice\ShellExtension.dll
2023-04-23 15:33 - 2023-04-23 15:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2023-04-23 15:33 - 2023-04-23 15:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2020-02-07 17:20 - 2020-02-07 17:20 - 000132096 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-12-07 11:14 - 2023-03-29 17:57 - 000001033 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-391627760-3568676956-2494176701-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-391627760-3568676956-2494176701-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{F214FE5F-C673-4F45-AF1F-8DE3B2B28500}] => (Block) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{23B16B9B-4F50-49D0-A37A-ADE694E57C47}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7DC0CA4B-28AE-48D8-8EA6-32F709B03C77}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D6B39633-867B-4FA2-BF08-B6180DD37FA8}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{98859A18-3178-4490-A793-5FB24466168A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D685FBCF-EFC2-4BCC-93C2-79F9B4C5A816}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{4EB32049-503A-440E-A844-A422D1C2CC29}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{77A41283-C6C7-4CB7-86DA-DF579C1466B3}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{A340FA2B-AF4B-4B34-AA91-E1AB867DB6CC}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{0BDB9168-0046-469D-BB5B-08ADD4B70790}] => (Block) %ProgramFiles%\Microsoft Office\Office16\ACCICONS.EXE => Pas de fichier
FirewallRules: [{3BD76B06-0A6C-4A1A-8558-DF26026B73FD}] => (Block) %ProgramFiles%\Microsoft Office\Office16\EXCEL.EXE => Pas de fichier
FirewallRules: [{CA07FFF5-F298-481F-8F80-E68350A9D6DA}] => (Block) %ProgramFiles%\Microsoft Office\Office16\POWERPNT.EXE => Pas de fichier
FirewallRules: [{6E867025-C617-46BA-BB75-B4DDADC1465E}] => (Block) %ProgramFiles%\Microsoft Office\Office16\WINWORD.EXE => Pas de fichier
FirewallRules: [{74A3E601-25C4-4958-9DF1-2EBD958F4D8A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{814CBA63-FEB2-47B9-89C3-C08E5AF3CC48}] => (Allow) LPort=54950
FirewallRules: [{14D6264B-7C9E-44B0-9910-F7BE615BA593}] => (Allow) LPort=54955
FirewallRules: [{2256F721-7FD1-4A34-A721-B74700D20117}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Seiko Epson Corporation) [Fichier non signé]
FirewallRules: [{D2B39520-E900-461B-A31D-91E65E08215D}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Seiko Epson Corporation) [Fichier non signé]
FirewallRules: [{569BDA0C-8355-448C-988F-58F4F39EA430}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E0E7151E-67C1-4270-AEA3-50F9494592DD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A6936489-A841-4AE9-AE70-D5E4012D1447}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F425DA22-C059-4FEF-AE44-E34C133EF1FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E20B5A3D-82FB-4BFB-9BCD-CEAC8D0C9C2B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{50DE6276-352D-49C2-906B-C6033F748BDB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{48C73679-B81F-4ADB-95AE-67E996D72271}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D0B39B83-770C-4DBB-8826-481FCF7433DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E5AD8024-0997-4356-83E3-AEB060BABF26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5B288B7B-449A-4E4F-A108-A9DB7EAEC1C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6B65DA7-D7C8-4514-9CBD-0EBC3954FD45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{75A34082-6574-437E-9251-FD71C5A08417}] => (Allow) LPort=57209
FirewallRules: [{94063465-258E-4B1B-A24C-8B5462BE3D54}] => (Allow) LPort=57210
FirewallRules: [{D4A552F4-B1D8-4AF4-B41C-60D133AC2D4F}] => (Allow) LPort=57211
FirewallRules: [{7A145305-0BE7-4872-9A7A-C9709160D2CC}] => (Allow) LPort=57212
FirewallRules: [TCP Query User{A0E60228-031E-4002-A6F8-6CDE4B6987F5}C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{A3E055B4-6A94-447D-A673-EFE470713D34}C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [{9A6FFB68-F5E4-483C-8E09-25E0A3DBCA67}] => (Allow) LPort=57213
FirewallRules: [{7C719039-2F6D-4A16-A358-27F57BFBBE94}] => (Allow) LPort=57214
FirewallRules: [{ADAB61DA-892E-4BC3-B203-3FACCDB631DE}] => (Allow) LPort=57215
FirewallRules: [{5E0A32BC-A540-4B4C-8FFC-FE501AC86174}] => (Allow) LPort=57216
FirewallRules: [{08A7F92F-0793-405A-8AB1-CB3BA30B3DAF}] => (Allow) LPort=57217
FirewallRules: [{53F153EC-D809-4F48-8947-7DCDE2225E1C}] => (Allow) LPort=57218
FirewallRules: [{9B694E87-D719-4B2F-853A-DA27CC2DCA96}] => (Allow) LPort=57209
FirewallRules: [{5FCC8608-7633-42A3-A4C0-43C6EBD0E28F}] => (Allow) LPort=57210
FirewallRules: [{BDE5B059-6493-4B9B-A15D-A7BF133B9771}] => (Allow) LPort=57211
FirewallRules: [{207199A3-2556-4AB3-B43C-5567EAE38F29}] => (Allow) LPort=57212
FirewallRules: [{8929B5A5-A14F-4262-8EED-F4A6D5258930}] => (Allow) LPort=57213
FirewallRules: [{C33F443F-4072-45BB-B642-3E9C84E729B6}] => (Allow) LPort=57214
FirewallRules: [{BB155602-A167-47D0-8C25-4EA7DCB39C4A}] => (Allow) LPort=57215
FirewallRules: [{1C1B7863-7588-4B91-B38B-3F0FAE6BADAA}] => (Allow) LPort=57216
FirewallRules: [{07D5FDCF-29A7-493A-86E3-A57BB3D8F082}] => (Allow) LPort=57217
FirewallRules: [{A85EB625-820B-41F7-952F-7A1B337B98E0}] => (Allow) LPort=57218
FirewallRules: [{D851D7DF-E266-43AA-8AA4-B4F820FF4E24}] => (Allow) LPort=23007
FirewallRules: [{EC5D34FA-545F-41F1-98C7-56ED824E2C59}] => (Allow) LPort=23008
FirewallRules: [{0AC29E4C-D222-43FE-8261-9094419A15BB}] => (Allow) LPort=33009
FirewallRules: [{1198CE65-3D32-47B9-99D5-ED6F561CBBD4}] => (Allow) LPort=33010
FirewallRules: [{E768D13B-F1E6-4C6A-B49F-17B15B0BB468}] => (Allow) LPort=33011
FirewallRules: [{6C47B27E-3FD6-4EBA-8D0C-F0AF4F637710}] => (Allow) LPort=43012
FirewallRules: [{8F9947D3-DADB-4B8F-8561-F54AB3370687}] => (Allow) LPort=43013
FirewallRules: [{895DFC99-9282-4659-AD4D-44388DDFC25B}] => (Allow) LPort=53014
FirewallRules: [{FC1F4B09-E90E-46EF-A1DD-210A3EDC50BF}] => (Allow) LPort=53015
FirewallRules: [{BD28C50B-AA89-472D-9F9D-750E6E4B4784}] => (Allow) LPort=53016
FirewallRules: [{F4E50C3C-F907-47F4-9ED9-C4545EF59845}] => (Allow) LPort=23007
FirewallRules: [{17283A2D-85FD-4EBC-B94C-12E258DD5E44}] => (Allow) LPort=23008
FirewallRules: [{BDC6B66B-72A6-4C71-A2BC-C88F202C7D23}] => (Allow) LPort=33009
FirewallRules: [{4117C61B-1D1B-4ADE-A8E4-4FD5F15D4CD2}] => (Allow) LPort=33010
FirewallRules: [{EDC448E0-4384-476B-93AC-978525602631}] => (Allow) LPort=33011
FirewallRules: [{98AA0179-3B09-4362-8D76-5CF2D55BEAB4}] => (Allow) LPort=43012
FirewallRules: [{3F69ECA4-657B-4DA9-AE5C-99BE4796B791}] => (Allow) LPort=43013
FirewallRules: [{3245CCC4-03B5-4DC9-B629-A10AE72810B7}] => (Allow) LPort=53014
FirewallRules: [{C98FC0BA-1E47-470B-8008-CCC5236DC99E}] => (Allow) LPort=53015
FirewallRules: [{0F1E4DA0-9601-4E28-B038-253F7CAC705E}] => (Allow) LPort=53016
FirewallRules: [{A9C3EA86-F8C2-4426-BFC5-034C29FF994D}] => (Allow) LPort=50053
FirewallRules: [{3506CDB3-4077-49CD-A0DA-757E1441CAED}] => (Allow) LPort=50053
FirewallRules: [{29FE61DF-E448-4F77-95F9-561CB1DE5637}] => (Allow) C:\Users\isabe\Downloads\4ddig-for-windows-bing (1).exe (Tenorshare Co., Ltd. -> Tenorshare Co., Ltd.)
FirewallRules: [{688A6D7D-4B6D-4268-8737-FE51983734E5}] => (Allow) C:\Users\isabe\Downloads\4ddig-for-windows-bing (1).exe (Tenorshare Co., Ltd. -> Tenorshare Co., Ltd.)
FirewallRules: [{E1C5EC97-BBB8-4A02-A76F-B041C9F97202}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Tenorshare 4DDiG.exe => Pas de fichier
FirewallRules: [{A8864C5F-2167-4A0B-ACFF-8924D4E183E2}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Tenorshare 4DDiG.exe => Pas de fichier
FirewallRules: [{B13D12B0-573D-4D4C-8786-6A3A3D4925D5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NetFrameCheck.exe => Pas de fichier
FirewallRules: [{924E4DB2-7853-4AC0-9D5A-48D8D5858FCB}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NetFrameCheck.exe => Pas de fichier
FirewallRules: [{AE012D14-E077-442D-872E-821E6B3041B5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Monitor\Monitor.exe => Pas de fichier
FirewallRules: [{FCBEB9F2-ACDA-4D24-9A82-3F3C98B9FFE8}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Monitor\Monitor.exe => Pas de fichier
FirewallRules: [{1B002126-9EEC-4CF6-9EE6-721948339F46}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\ParseRecord.exe => Pas de fichier
FirewallRules: [{05F4841C-04CA-47D0-AAFF-80C68E649112}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\ParseRecord.exe => Pas de fichier
FirewallRules: [{67B1130E-92BD-4E4B-BA04-336AAD425D9B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\UpdateService.exe => Pas de fichier
FirewallRules: [{C9166901-98B0-4A80-B9B0-FC5F60938D14}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\UpdateService.exe => Pas de fichier
FirewallRules: [{7B3D3779-E928-4765-B8F2-7117304CD907}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\preuninstall.exe => Pas de fichier
FirewallRules: [{187507F0-908F-474E-9F5F-5ED4DCFD6F3B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\preuninstall.exe => Pas de fichier
FirewallRules: [{984543B0-77FB-40C9-B5CD-A9FAE6EF3EE4}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DeviceViewerService.exe => Pas de fichier
FirewallRules: [{6B120191-9F26-4416-8464-9D7F0C463069}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DeviceViewerService.exe => Pas de fichier
FirewallRules: [{5E48AD5B-A998-46FD-A58C-065BB3F864E9}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NASConnecter.exe => Pas de fichier
FirewallRules: [{3D5BC7AA-6555-4CF6-8606-8CB4DC19529B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NASConnecter.exe => Pas de fichier
FirewallRules: [{858C3E66-84BF-4AEE-966C-202BC9B01F98}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataScanService.exe => Pas de fichier
FirewallRules: [{88592788-48D0-4D2D-ACBC-1B506722017B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataScanService.exe => Pas de fichier
FirewallRules: [{03DC5EC4-770D-4FCB-941F-23FDCCEB34C3}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataRecoveryService.exe => Pas de fichier
FirewallRules: [{A19C3806-B730-4632-AA13-AF237D917BC5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataRecoveryService.exe => Pas de fichier
FirewallRules: [{93D8CFCA-3605-4715-BF99-9BD8C6269478}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\MsgSupport\MsgSupportService.exe => Pas de fichier
FirewallRules: [{127918ED-9DAF-4E02-89DD-3C822DCF7922}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\MsgSupport\MsgSupportService.exe => Pas de fichier
FirewallRules: [{FCB62BD3-E072-44A9-87CE-6A6A12E85E69}] => (Allow) LPort=57209
FirewallRules: [{C54CCBF1-8954-4C0D-8F0F-C51C6FFD965E}] => (Allow) LPort=57210
FirewallRules: [{244C160D-5BF2-4AEC-82D2-9EB37D893D21}] => (Allow) LPort=57211
FirewallRules: [{82A4125E-79CC-443C-80AB-FDB0614F5D6D}] => (Allow) LPort=57212
FirewallRules: [{4949A838-5780-4970-BF5A-050F41C4A86C}] => (Allow) LPort=57213
FirewallRules: [{0145A8F5-26F9-4A99-A01F-995882D964E5}] => (Allow) LPort=57214
FirewallRules: [{AF1F9DE5-13E7-40C7-867B-DB1CD55CA44D}] => (Allow) LPort=57215
FirewallRules: [{8AAB512F-0EE8-4378-8236-03A4693EFEAE}] => (Allow) LPort=57216
FirewallRules: [{06B28EB0-74D3-45B3-A9B3-A12ED58C7AEF}] => (Allow) LPort=57217
FirewallRules: [{B2310899-7EC9-4438-B549-111E17DE7F0B}] => (Allow) LPort=57218
FirewallRules: [{39A003E6-B994-491C-8566-599D0DFE0F05}] => (Allow) LPort=57209
FirewallRules: [{98711AA0-CC30-443A-8857-1F20AF8EFAF3}] => (Allow) LPort=57210
FirewallRules: [{6B13FAA6-1E40-4D90-B8A7-B5FC1DF60183}] => (Allow) LPort=57211
FirewallRules: [{E8C25160-316C-40EE-84E2-BB87650C7586}] => (Allow) LPort=57212
FirewallRules: [{571463C4-30D0-493C-A316-C002C67925CA}] => (Allow) LPort=57213
FirewallRules: [{9B7B3985-0C76-4B92-B33C-FFF2F28C809D}] => (Allow) LPort=57214
FirewallRules: [{A3E490CC-2756-426D-8B91-A0FF9B3D3CE5}] => (Allow) LPort=57215
FirewallRules: [{F80711E4-73D7-4CE0-9D4A-8362DB13DD35}] => (Allow) LPort=57216
FirewallRules: [{6EC95D16-FD2F-44C3-8DCE-7F5AC48C1C14}] => (Allow) LPort=57217
FirewallRules: [{C4CF4F21-8317-4454-B94E-F8E66A22346F}] => (Allow) LPort=57218
FirewallRules: [{FB1E5E8D-3704-46A6-9D23-5ED05A952AA7}] => (Allow) LPort=23007
FirewallRules: [{23CDB8E0-E555-427F-89AF-56B40CAC873F}] => (Allow) LPort=23008
FirewallRules: [{2EECC17F-9941-49AF-901E-74424ADAB721}] => (Allow) LPort=33009
FirewallRules: [{7C4EE6EC-4C65-478A-A5E3-8F60E139E60F}] => (Allow) LPort=33010
FirewallRules: [{2C3C462C-5463-4A07-A1BF-1C9104E4A782}] => (Allow) LPort=33011
FirewallRules: [{7C741901-4A57-44FD-BFCC-0313979C2D42}] => (Allow) LPort=43012
FirewallRules: [{40CF3B2C-E7D6-4D2C-B9C1-4453E6B54021}] => (Allow) LPort=43013
FirewallRules: [{2302E00D-8013-41AB-A1D7-092B379B0F7C}] => (Allow) LPort=53014
FirewallRules: [{4010367E-8DE0-4497-9A83-D622324A044F}] => (Allow) LPort=53015
FirewallRules: [{F656B89B-4529-4721-8FB5-9B16772BD956}] => (Allow) LPort=53016
FirewallRules: [{6B2D0D6F-994F-463C-90B4-E8BB2A7ED763}] => (Allow) LPort=23007
FirewallRules: [{3C0E9303-DC77-4973-8965-955C4276D3DE}] => (Allow) LPort=23008
FirewallRules: [{C579149A-F0F1-462B-A24C-C0757163D4B1}] => (Allow) LPort=33009
FirewallRules: [{2DC4B8DB-F9D2-4982-8904-82150526D2BC}] => (Allow) LPort=33010
FirewallRules: [{280512BB-AEE8-4E6D-B8AB-B8447674EBA9}] => (Allow) LPort=33011
FirewallRules: [{B6804C03-ECA4-40A2-89AA-7F16A601A602}] => (Allow) LPort=43012
FirewallRules: [{39D7C53B-9CBF-4857-94D2-4A5D9C7B6E5F}] => (Allow) LPort=43013
FirewallRules: [{53FA068D-C4D8-4C0D-A559-CE5B7BCA245E}] => (Allow) LPort=53014
FirewallRules: [{6D43ED6A-C007-46A1-9B0A-160F3FA7A797}] => (Allow) LPort=53015
FirewallRules: [{F853E741-7F7D-42A5-A05D-199E6080545F}] => (Allow) LPort=53016
FirewallRules: [{AF8A550F-42BA-4A4E-B44B-F105F250747C}] => (Allow) LPort=50053
FirewallRules: [{C4C63B93-7B8A-44EA-BF94-A08BEC114AE1}] => (Allow) LPort=50053
FirewallRules: [{FC93E252-A9D9-4A1E-B179-B61C941CAF16}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5CB150A4-017E-4EE0-8E8C-01D5682B25C1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{288B13E6-E406-4099-B0F3-3F419BA60D66}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1387CD4-0F34-470A-BA0D-4483FB34BC39}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Points de restauration =========================
12-08-2023 19:27:00 paint.net v5.0.9
22-08-2023 12:22:53 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Broadcast Receiver Server...
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Wait Workflow Commands request from device.
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[3]: 192.168.1.17
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[2]: 2a01:cb19:81ca:ad00:257a:b81:9a5b:212d
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[1]: 2a01:cb19:81ca:ad00:8431:1d9c:2c10:8a8c
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[0]: fe80::c997:4022:ac48:fe0c%8
Erreurs système:
=============
Error: (08/28/2023 01:05:49 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:33:44 le 28/08/2023 n’était pas prévu.
Error: (08/28/2023 12:47:14 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wlidsvc s’est arrêté avec l’erreur :
Mémoire insuffisante
Error: (08/26/2023 01:55:30 PM) (Source: DCOM) (EventID: 10010) (User: ORDIPHOTOS)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (08/26/2023 01:55:30 PM) (Source: DCOM) (EventID: 10010) (User: ORDIPHOTOS)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (08/26/2023 08:53:02 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 19:51:21 le 25/08/2023 n’était pas prévu.
Error: (08/21/2023 06:30:17 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: )
Description: Vérification du volume chiffré : impossible de lire les informations de volume sur H:.
Error: (08/19/2023 09:11:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (08/19/2023 09:11:52 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Windows Defender:
================
Date: 2023-08-28 18:08:04
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/OfferCore&threatid=311999&enterprise=0
Nom : PUADlManager:Win32/OfferCore
ID : 311999
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\yanni\Downloads\microsoft-image-composite-editor-2.0.3-installer_WB9-do1.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Users\yanni\Desktop\FRST64.exe
Version de la veille de sécurité : AV: 1.395.1497.0, AS: 1.395.1497.0, NIS: 1.395.1497.0
Version du moteur : AM: 1.1.23070.1005, NIS: 1.1.23070.1005
Date: 2023-08-27 15:58:42
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {796FBF75-7962-4FA0-8C22-C3DE38087530}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-26 19:08:32
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {47259BE4-3750-4BA5-BB42-38DB24D6B612}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-25 14:43:15
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C98CA523-4AF2-4D5F-9A2A-786EB74415C5}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-24 15:09:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {FA720CB9-CED6-4BFC-8D2C-380A6040DFE8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]:
Date: 2023-03-29 17:28:54
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.385.1443.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.20100.6
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
CodeIntegrity:
===============
Date: 2023-08-28 16:02:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-07-17 09:06:43
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. F22 11/14/2013
Carte mère: Gigabyte Technology Co., Ltd. Z77-D3H
Processeur: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Pourcentage de mémoire utilisée: 47%
Mémoire physique - RAM - totale: 12246.32 MB
Mémoire physique - RAM - disponible: 6430.96 MB
Mémoire virtuelle totale: 13465.25 MB
Mémoire virtuelle disponible: 5150.68 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:230.02 GB) (Free:134.78 GB) (Model: Samsung SSD 840 PRO Series ATA Device) NTFS
Drive d: (Films-Photos) (Fixed) (Total:596.17 GB) (Free:309.88 GB) (Model: WDC WD6401AALS-00L3B2 ATA Device) NTFS
Drive e: (PHOTOS-MUSIQUES) (Fixed) (Total:1863 GB) (Free:1182.63 GB) (Model: WDC WD20EZBX-00AYRA0 ATA Device) NTFS
Drive g: (jeux-back up) (Fixed) (Total:292.97 GB) (Free:235.66 GB) (Model: WDC WD6401AALS-00L3B2 ATA Device) NTFS
Drive k: (LOGICIELS) (Fixed) (Total:303.19 GB) (Free:236.91 GB) (Model: WDC WD6401AALS-00L3B2 ATA Device) NTFS
\\?\Volume{1ed80d71-6142-4209-9c41-25ca928a61f9}\ (Récupération) (Fixed) (Total:0.52 GB) (Free:0.5 GB) NTFS
\\?\Volume{597d37f3-11c3-4ac0-9796-bd22e0a83a52}\ () (Fixed) (Total:0.57 GB) (Free:0.08 GB) NTFS
\\?\Volume{372b2a72-2d12-498f-95ab-31c31e7a60bb}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 863FF8C0)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: CC61CC61)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (Size: 596.2 GB) (Disk ID: C7C4C7C5)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=0F Extended)
==================== Fin de Addition.txt =======================
Exécuté par yanni (28-08-2023 18:08:06)
Exécuté depuis C:\Users\yanni\Desktop
Microsoft Windows 10 Famille Version 22H2 19045.3324 (X64) (2023-03-28 17:59:17)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-391627760-3568676956-2494176701-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-391627760-3568676956-2494176701-503 - Limited - Disabled)
Invité (S-1-5-21-391627760-3568676956-2494176701-501 - Limited - Disabled)
isabe (S-1-5-21-391627760-3568676956-2494176701-1002 - Limited - Enabled) => C:\Users\isabe
WDAGUtilityAccount (S-1-5-21-391627760-3568676956-2494176701-504 - Limited - Disabled)
yanni (S-1-5-21-391627760-3568676956-2494176701-1001 - Administrator - Enabled) => C:\Users\yanni
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 23.003.20284 - Adobe)
Adobe AIR (HKLM-x32\...\{FE62111B-13F6-41AC-AA94-5B2CD581AFBF}) (Version: 50.2.1.1 - HARMAN International) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 50.2.1.1 - HARMAN International)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.14 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601047}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 7.2.0 - AOMEI International Network Limited.)
AppLogLibSetup (HKLM-x32\...\{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 - Brother Industries Ltd.) Hidden
Asian Language And Spelling Dictionaries Support For Adobe Acrobat Reader (HKLM\...\{AC76BA86-7AD7-0000-0000-BC16014E7500}) (Version: 22.001.20085 - Adobe Systems Incorporated)
Audacity 3.2.5 (HKLM\...\Audacity_is1) (Version: 3.2.5 - Audacity Team)
Beyond Compare 4.4.6 (HKLM\...\BeyondCompare4_is1) (Version: 4.4.6.27483 - Scooter Software)
BrLauncher (HKLM-x32\...\{88FCD471-DBBF-4A75-8066-ACACE05DE3CF}) (Version: 2.0.14.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother IPPoverUSB Driver (HKLM-x32\...\{DCE0E183-DDDB-4790-BF84-7CF00FF489CB}) (Version: 1.1.0.0 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{3DEA56AB-0899-41DF-8C4F-0A608FD36904}) (Version: 10.5.0.74 - Brother Industries, Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{d0c84829-3b3f-46d1-b292-e3fb77d972c2}) (Version: 10.5.0.74 - Brother Industries, Ltd.)
Brother Printer Driver (HKLM-x32\...\{FEC6938E-E593-47AD-9C34-561D0B04A1D8}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{D0F69DE9-EE0B-4A7A-8248-6D5EC97D171C}) (Version: 1.0.23.0 - Brother Industries Ltd.) Hidden
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Epson Event Manager (HKLM-x32\...\{DBC38C08-9FB5-43A5-B6BA-EB10AC7DA570}) (Version: 3.11.0053 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.)
FileZilla 3.63.2.1 (HKLM-x32\...\FileZilla Client) (Version: 3.63.2.1 - Tim Kosse)
GIMP 2.10.34 (HKLM\...\GIMP-2_is1) (Version: 2.10.34 - The GIMP Team)
Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google)
GPS TrackMaker (HKLM-x32\...\{FF13DD0C-954B-4C33-9D48-F354052C6B1C}) (Version: 13.9.0000 - Geo Studio Technology Ltd)
HttpToUsbBridge (HKLM-x32\...\{E2D35939-25BF-4EC8-BF6D-F9C0AF8ECC11}) (Version: 2.0.30.1 - Brother Industries Ltd.)
Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation)
Inkscape (HKLM\...\{B57F4693-8866-4053-B706-901E03F3301B}) (Version: 1.2.2 - Inkscape)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{9ECA1744-4800-4AE2-AC52-9109E24854AA}) (Version: 11.0.6.1194 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{335F9123-9306-4DB0-AF07-9C636317EE9D}) (Version: 1.0.1.0 - Intel Corporation) Hidden
LibreOffice 7.5 Help Pack (French) (HKLM\...\{09B76EA6-EF97-467C-AE39-1CA4AE54AF84}) (Version: 7.5.2.2 - The Document Foundation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 116.0.1938.62 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 115.0.1901.203 - Microsoft Corporation)
Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.16626.20170 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.158.0730.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-391627760-3568676956-2494176701-1001\...\Teams) (Version: 1.6.00.6754 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-391627760-3568676956-2494176701-1002\...\Teams) (Version: 1.6.00.11166 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.23026 (HKLM-x32\...\{BE960C1C-7BAD-3DE6-8B1A-2616FE532845}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.23026 (HKLM-x32\...\{A2563E55-3BEC-3828-8D67-E5E8B9E8B675}) (Version: 14.0.23026 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 Redistributable (x64) - 14.11.25325 (HKLM-x32\...\{6c6356fe-cbfa-4944-9bed-a9e99f45cb7a}) (Version: 14.11.25325.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 x64 Additional Runtime - 14.11.25325 (HKLM\...\{B13B3E11-1555-353F-A63A-8933EE104FBD}) (Version: 14.11.25325 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2017 x64 Minimum Runtime - 14.11.25325 (HKLM\...\{B0037450-526D-3448-A370-CACBD87769A0}) (Version: 14.11.25325 - Microsoft Corporation) Hidden
NetworkRepairTool (HKLM-x32\...\{96CEE8C3-B934-48A4-ADA6-91B7CE8A5002}) (Version: 1.2.17.0 - Brother Industries, Ltd.) Hidden
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.4.9 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16626.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16626.20170 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16626.20170 - Microsoft Corporation) Hidden
OpenOffice 4.1.14 (HKLM-x32\...\{18661EC5-2942-4C88-BCC1-A8A0DE135DA8}) (Version: 4.114.9811 - Apache Software Foundation)
paint.net (HKLM\...\{A24AEF8A-D35C-4A4D-89F7-22D8CD18FB69}) (Version: 5.0.9 - dotPDN LLC)
PC HelpSoft Driver Updater v6.4.960 (HKLM-x32\...\PC HelpSoft Driver Updater_is1) (Version: 6.4.960 - PC HelpSoft)
Photocopier 3.02 (HKLM-x32\...\Photocopier_is1) (Version: 3.02 - )
RAPID Mode (HKLM\...\{643FC1E0-77D7-42FB-B1C6-E63838244C50}) (Version: 1.0.2.0 - Samsung Electronics Co.,Ltd.) Hidden
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Samsung Data Migration (HKLM-x32\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 4.0.0.19 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 7.3.0.1100 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.59.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.3.22112.1 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.3.22112.1 - Samsung Electronics Co., Ltd.)
SoftwareUpdateNotification (HKLM-x32\...\{34F12379-C924-41E6-921D-51C71217F58C}) (Version: 1.0.9.0 - Brother Industries, Ltd.) Hidden
StatusMonitor (HKLM-x32\...\{D42470A0-E4C3-41C9-9A92-B1B23FD13F8C}) (Version: 1.21.6.0 - Brother Insutries Ltd.) Hidden
Sweet Home 3D version 7.1 (HKLM\...\Sweet Home 3D_is1) (Version: 7.1 - eTeks)
Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.5.0.8070 - Microsoft Corporation)
TeamViewer (HKLM\...\TeamViewer) (Version: 15.40.8 - TeamViewer)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-391627760-3568676956-2494176701-1001\...\Wondershare NativePush_is1) (Version: - )
Wondershare Recoverit(Build 12.0.12.7) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 12.0.12.7 - Wondershare Software Co.,Ltd.)
Packages:
=========
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-04-24] (Microsoft Corporation)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-13] (Microsoft Corporation)
Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-17] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-04-02] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.816.0_x64__8wekyb3d8bbwe [2023-08-23] (Microsoft Corporation)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2333.8.0_x64__cv1g1gvanyjgm [2023-08-27] (WhatsApp Inc.) [Startup Task]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-391627760-3568676956-2494176701-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\yanni\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
CustomCLSID: HKU\S-1-5-21-391627760-3568676956-2494176701-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\yanni\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23061.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-391627760-3568676956-2494176701-1001_Classes\CLSID\{1AC77AE9-9EC6-405A-9F9B-C06AB3C10B71}\InprocServer32 -> K:\PHOTOGRAPHIE-DESSIN\ice\ShellExtension.dll (Microsoft Corporation) [Fichier non signé]
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => K:\APPLICATION\bureautique\Notepad++\NppShell_06.dll [2023-01-27] (Notepad++ -> )
ContextMenuHandlers1: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => K:\systeme\Beyond Compare 4\BCShellEx64.dll [2023-02-24] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => K:\systeme\Beyond Compare 4\BCShellEx64.dll [2023-02-24] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.158.0730.0001\FileSyncShell64.dll [2023-08-24] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Pas de fichier
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmd.inf_amd64_1408eaf9a25ed64f\nvshext.dll [2020-12-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [CirrusShellEx] -> {57FA2D12-D22D-490A-805A-5CB48E84F12A} => K:\systeme\Beyond Compare 4\BCShellEx64.dll [2023-02-24] (Scooter Software Inc -> Scooter Software)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2023-06-02] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
==================== Modules chargés (Avec liste blanche) =============
2016-11-25 10:18 - 2016-11-25 10:18 - 000139264 _____ () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-08-04 10:55 - 2017-08-04 10:55 - 000122880 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\brlmw03a.dll
2017-12-05 19:25 - 2017-12-05 19:25 - 000491008 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\BrMonitor.dll
2017-12-05 19:25 - 2017-12-05 19:25 - 001715712 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll
2023-04-01 14:16 - 2023-03-10 16:18 - 002521600 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\ffmpeg.dll
2023-04-01 14:16 - 2023-03-10 16:18 - 000375808 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\libegl.dll
2023-04-01 14:16 - 2023-03-10 16:18 - 006533120 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\libglesv2.dll
2023-04-01 14:16 - 2023-03-10 16:17 - 000097280 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magutils-napi.node
2023-04-01 14:16 - 2023-03-10 16:17 - 000087040 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\magvibrancy-napi.node
2023-04-01 14:16 - 2023-03-10 16:17 - 000589824 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\resources\app\dist\uimpewrapper-napi.node
2023-04-01 14:16 - 2023-03-10 16:18 - 004426752 _____ () [Fichier non signé] C:\Program Files (x86)\Samsung\Samsung Magician\vk_swiftshader.dll
2023-04-02 12:34 - 2015-05-21 14:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\vcomp.dll
2023-03-29 18:23 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2015-02-24 14:49 - 2015-02-24 14:49 - 000236544 _____ (Microsoft Corporation) [Fichier non signé] K:\PHOTOGRAPHIE-DESSIN\ice\ShellExtension.dll
2023-04-23 15:33 - 2023-04-23 15:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\Root\Office16\AppVIsvSubsystems64.dll
2023-04-23 15:33 - 2023-04-23 15:33 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\Root\Office16\c2r64.dll
2020-02-07 17:20 - 2020-02-07 17:20 - 000132096 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll
2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-08-11] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-12-07 11:14 - 2023-03-29 17:57 - 000001033 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 activate.adobe.com
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-391627760-3568676956-2494176701-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-391627760-3568676956-2494176701-1002\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{F214FE5F-C673-4F45-AF1F-8DE3B2B28500}] => (Block) C:\Program Files\Adobe\Adobe Lightroom\lightroom.exe (Adobe Systems Incorporated -> Adobe Systems)
FirewallRules: [{23B16B9B-4F50-49D0-A37A-ADE694E57C47}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{7DC0CA4B-28AE-48D8-8EA6-32F709B03C77}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D6B39633-867B-4FA2-BF08-B6180DD37FA8}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{98859A18-3178-4490-A793-5FB24466168A}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D685FBCF-EFC2-4BCC-93C2-79F9B4C5A816}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{4EB32049-503A-440E-A844-A422D1C2CC29}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{77A41283-C6C7-4CB7-86DA-DF579C1466B3}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{A340FA2B-AF4B-4B34-AA91-E1AB867DB6CC}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\7.2.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{0BDB9168-0046-469D-BB5B-08ADD4B70790}] => (Block) %ProgramFiles%\Microsoft Office\Office16\ACCICONS.EXE => Pas de fichier
FirewallRules: [{3BD76B06-0A6C-4A1A-8558-DF26026B73FD}] => (Block) %ProgramFiles%\Microsoft Office\Office16\EXCEL.EXE => Pas de fichier
FirewallRules: [{CA07FFF5-F298-481F-8F80-E68350A9D6DA}] => (Block) %ProgramFiles%\Microsoft Office\Office16\POWERPNT.EXE => Pas de fichier
FirewallRules: [{6E867025-C617-46BA-BB75-B4DDADC1465E}] => (Block) %ProgramFiles%\Microsoft Office\Office16\WINWORD.EXE => Pas de fichier
FirewallRules: [{74A3E601-25C4-4958-9DF1-2EBD958F4D8A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{814CBA63-FEB2-47B9-89C3-C08E5AF3CC48}] => (Allow) LPort=54950
FirewallRules: [{14D6264B-7C9E-44B0-9910-F7BE615BA593}] => (Allow) LPort=54955
FirewallRules: [{2256F721-7FD1-4A34-A721-B74700D20117}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Seiko Epson Corporation) [Fichier non signé]
FirewallRules: [{D2B39520-E900-461B-A31D-91E65E08215D}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (Seiko Epson Corporation) [Fichier non signé]
FirewallRules: [{569BDA0C-8355-448C-988F-58F4F39EA430}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\115.0.1901.203\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E0E7151E-67C1-4270-AEA3-50F9494592DD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A6936489-A841-4AE9-AE70-D5E4012D1447}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F425DA22-C059-4FEF-AE44-E34C133EF1FC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E20B5A3D-82FB-4BFB-9BCD-CEAC8D0C9C2B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{50DE6276-352D-49C2-906B-C6033F748BDB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{48C73679-B81F-4ADB-95AE-67E996D72271}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{D0B39B83-770C-4DBB-8826-481FCF7433DC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E5AD8024-0997-4356-83E3-AEB060BABF26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5B288B7B-449A-4E4F-A108-A9DB7EAEC1C1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6B65DA7-D7C8-4514-9CBD-0EBC3954FD45}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.218.999.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{75A34082-6574-437E-9251-FD71C5A08417}] => (Allow) LPort=57209
FirewallRules: [{94063465-258E-4B1B-A24C-8B5462BE3D54}] => (Allow) LPort=57210
FirewallRules: [{D4A552F4-B1D8-4AF4-B41C-60D133AC2D4F}] => (Allow) LPort=57211
FirewallRules: [{7A145305-0BE7-4872-9A7A-C9709160D2CC}] => (Allow) LPort=57212
FirewallRules: [TCP Query User{A0E60228-031E-4002-A6F8-6CDE4B6987F5}C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [UDP Query User{A3E055B4-6A94-447D-A673-EFE470713D34}C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe] => (Block) C:\users\yanni\appdata\local\wondershare\wondershare nativepush\wstoastnotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare)
FirewallRules: [{9A6FFB68-F5E4-483C-8E09-25E0A3DBCA67}] => (Allow) LPort=57213
FirewallRules: [{7C719039-2F6D-4A16-A358-27F57BFBBE94}] => (Allow) LPort=57214
FirewallRules: [{ADAB61DA-892E-4BC3-B203-3FACCDB631DE}] => (Allow) LPort=57215
FirewallRules: [{5E0A32BC-A540-4B4C-8FFC-FE501AC86174}] => (Allow) LPort=57216
FirewallRules: [{08A7F92F-0793-405A-8AB1-CB3BA30B3DAF}] => (Allow) LPort=57217
FirewallRules: [{53F153EC-D809-4F48-8947-7DCDE2225E1C}] => (Allow) LPort=57218
FirewallRules: [{9B694E87-D719-4B2F-853A-DA27CC2DCA96}] => (Allow) LPort=57209
FirewallRules: [{5FCC8608-7633-42A3-A4C0-43C6EBD0E28F}] => (Allow) LPort=57210
FirewallRules: [{BDE5B059-6493-4B9B-A15D-A7BF133B9771}] => (Allow) LPort=57211
FirewallRules: [{207199A3-2556-4AB3-B43C-5567EAE38F29}] => (Allow) LPort=57212
FirewallRules: [{8929B5A5-A14F-4262-8EED-F4A6D5258930}] => (Allow) LPort=57213
FirewallRules: [{C33F443F-4072-45BB-B642-3E9C84E729B6}] => (Allow) LPort=57214
FirewallRules: [{BB155602-A167-47D0-8C25-4EA7DCB39C4A}] => (Allow) LPort=57215
FirewallRules: [{1C1B7863-7588-4B91-B38B-3F0FAE6BADAA}] => (Allow) LPort=57216
FirewallRules: [{07D5FDCF-29A7-493A-86E3-A57BB3D8F082}] => (Allow) LPort=57217
FirewallRules: [{A85EB625-820B-41F7-952F-7A1B337B98E0}] => (Allow) LPort=57218
FirewallRules: [{D851D7DF-E266-43AA-8AA4-B4F820FF4E24}] => (Allow) LPort=23007
FirewallRules: [{EC5D34FA-545F-41F1-98C7-56ED824E2C59}] => (Allow) LPort=23008
FirewallRules: [{0AC29E4C-D222-43FE-8261-9094419A15BB}] => (Allow) LPort=33009
FirewallRules: [{1198CE65-3D32-47B9-99D5-ED6F561CBBD4}] => (Allow) LPort=33010
FirewallRules: [{E768D13B-F1E6-4C6A-B49F-17B15B0BB468}] => (Allow) LPort=33011
FirewallRules: [{6C47B27E-3FD6-4EBA-8D0C-F0AF4F637710}] => (Allow) LPort=43012
FirewallRules: [{8F9947D3-DADB-4B8F-8561-F54AB3370687}] => (Allow) LPort=43013
FirewallRules: [{895DFC99-9282-4659-AD4D-44388DDFC25B}] => (Allow) LPort=53014
FirewallRules: [{FC1F4B09-E90E-46EF-A1DD-210A3EDC50BF}] => (Allow) LPort=53015
FirewallRules: [{BD28C50B-AA89-472D-9F9D-750E6E4B4784}] => (Allow) LPort=53016
FirewallRules: [{F4E50C3C-F907-47F4-9ED9-C4545EF59845}] => (Allow) LPort=23007
FirewallRules: [{17283A2D-85FD-4EBC-B94C-12E258DD5E44}] => (Allow) LPort=23008
FirewallRules: [{BDC6B66B-72A6-4C71-A2BC-C88F202C7D23}] => (Allow) LPort=33009
FirewallRules: [{4117C61B-1D1B-4ADE-A8E4-4FD5F15D4CD2}] => (Allow) LPort=33010
FirewallRules: [{EDC448E0-4384-476B-93AC-978525602631}] => (Allow) LPort=33011
FirewallRules: [{98AA0179-3B09-4362-8D76-5CF2D55BEAB4}] => (Allow) LPort=43012
FirewallRules: [{3F69ECA4-657B-4DA9-AE5C-99BE4796B791}] => (Allow) LPort=43013
FirewallRules: [{3245CCC4-03B5-4DC9-B629-A10AE72810B7}] => (Allow) LPort=53014
FirewallRules: [{C98FC0BA-1E47-470B-8008-CCC5236DC99E}] => (Allow) LPort=53015
FirewallRules: [{0F1E4DA0-9601-4E28-B038-253F7CAC705E}] => (Allow) LPort=53016
FirewallRules: [{A9C3EA86-F8C2-4426-BFC5-034C29FF994D}] => (Allow) LPort=50053
FirewallRules: [{3506CDB3-4077-49CD-A0DA-757E1441CAED}] => (Allow) LPort=50053
FirewallRules: [{29FE61DF-E448-4F77-95F9-561CB1DE5637}] => (Allow) C:\Users\isabe\Downloads\4ddig-for-windows-bing (1).exe (Tenorshare Co., Ltd. -> Tenorshare Co., Ltd.)
FirewallRules: [{688A6D7D-4B6D-4268-8737-FE51983734E5}] => (Allow) C:\Users\isabe\Downloads\4ddig-for-windows-bing (1).exe (Tenorshare Co., Ltd. -> Tenorshare Co., Ltd.)
FirewallRules: [{E1C5EC97-BBB8-4A02-A76F-B041C9F97202}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Tenorshare 4DDiG.exe => Pas de fichier
FirewallRules: [{A8864C5F-2167-4A0B-ACFF-8924D4E183E2}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Tenorshare 4DDiG.exe => Pas de fichier
FirewallRules: [{B13D12B0-573D-4D4C-8786-6A3A3D4925D5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NetFrameCheck.exe => Pas de fichier
FirewallRules: [{924E4DB2-7853-4AC0-9D5A-48D8D5858FCB}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NetFrameCheck.exe => Pas de fichier
FirewallRules: [{AE012D14-E077-442D-872E-821E6B3041B5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Monitor\Monitor.exe => Pas de fichier
FirewallRules: [{FCBEB9F2-ACDA-4D24-9A82-3F3C98B9FFE8}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\Monitor\Monitor.exe => Pas de fichier
FirewallRules: [{1B002126-9EEC-4CF6-9EE6-721948339F46}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\ParseRecord.exe => Pas de fichier
FirewallRules: [{05F4841C-04CA-47D0-AAFF-80C68E649112}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\ParseRecord.exe => Pas de fichier
FirewallRules: [{67B1130E-92BD-4E4B-BA04-336AAD425D9B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\UpdateService.exe => Pas de fichier
FirewallRules: [{C9166901-98B0-4A80-B9B0-FC5F60938D14}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\UpdateService.exe => Pas de fichier
FirewallRules: [{7B3D3779-E928-4765-B8F2-7117304CD907}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\preuninstall.exe => Pas de fichier
FirewallRules: [{187507F0-908F-474E-9F5F-5ED4DCFD6F3B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\preuninstall.exe => Pas de fichier
FirewallRules: [{984543B0-77FB-40C9-B5CD-A9FAE6EF3EE4}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DeviceViewerService.exe => Pas de fichier
FirewallRules: [{6B120191-9F26-4416-8464-9D7F0C463069}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DeviceViewerService.exe => Pas de fichier
FirewallRules: [{5E48AD5B-A998-46FD-A58C-065BB3F864E9}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NASConnecter.exe => Pas de fichier
FirewallRules: [{3D5BC7AA-6555-4CF6-8606-8CB4DC19529B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\NASConnecter.exe => Pas de fichier
FirewallRules: [{858C3E66-84BF-4AEE-966C-202BC9B01F98}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataScanService.exe => Pas de fichier
FirewallRules: [{88592788-48D0-4D2D-ACBC-1B506722017B}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataScanService.exe => Pas de fichier
FirewallRules: [{03DC5EC4-770D-4FCB-941F-23FDCCEB34C3}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataRecoveryService.exe => Pas de fichier
FirewallRules: [{A19C3806-B730-4632-AA13-AF237D917BC5}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\DataRecoveryService.exe => Pas de fichier
FirewallRules: [{93D8CFCA-3605-4715-BF99-9BD8C6269478}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\MsgSupport\MsgSupportService.exe => Pas de fichier
FirewallRules: [{127918ED-9DAF-4E02-89DD-3C822DCF7922}] => (Allow) C:\Program Files (x86)\Tenorshare\Tenorshare 4DDiG\MsgSupport\MsgSupportService.exe => Pas de fichier
FirewallRules: [{FCB62BD3-E072-44A9-87CE-6A6A12E85E69}] => (Allow) LPort=57209
FirewallRules: [{C54CCBF1-8954-4C0D-8F0F-C51C6FFD965E}] => (Allow) LPort=57210
FirewallRules: [{244C160D-5BF2-4AEC-82D2-9EB37D893D21}] => (Allow) LPort=57211
FirewallRules: [{82A4125E-79CC-443C-80AB-FDB0614F5D6D}] => (Allow) LPort=57212
FirewallRules: [{4949A838-5780-4970-BF5A-050F41C4A86C}] => (Allow) LPort=57213
FirewallRules: [{0145A8F5-26F9-4A99-A01F-995882D964E5}] => (Allow) LPort=57214
FirewallRules: [{AF1F9DE5-13E7-40C7-867B-DB1CD55CA44D}] => (Allow) LPort=57215
FirewallRules: [{8AAB512F-0EE8-4378-8236-03A4693EFEAE}] => (Allow) LPort=57216
FirewallRules: [{06B28EB0-74D3-45B3-A9B3-A12ED58C7AEF}] => (Allow) LPort=57217
FirewallRules: [{B2310899-7EC9-4438-B549-111E17DE7F0B}] => (Allow) LPort=57218
FirewallRules: [{39A003E6-B994-491C-8566-599D0DFE0F05}] => (Allow) LPort=57209
FirewallRules: [{98711AA0-CC30-443A-8857-1F20AF8EFAF3}] => (Allow) LPort=57210
FirewallRules: [{6B13FAA6-1E40-4D90-B8A7-B5FC1DF60183}] => (Allow) LPort=57211
FirewallRules: [{E8C25160-316C-40EE-84E2-BB87650C7586}] => (Allow) LPort=57212
FirewallRules: [{571463C4-30D0-493C-A316-C002C67925CA}] => (Allow) LPort=57213
FirewallRules: [{9B7B3985-0C76-4B92-B33C-FFF2F28C809D}] => (Allow) LPort=57214
FirewallRules: [{A3E490CC-2756-426D-8B91-A0FF9B3D3CE5}] => (Allow) LPort=57215
FirewallRules: [{F80711E4-73D7-4CE0-9D4A-8362DB13DD35}] => (Allow) LPort=57216
FirewallRules: [{6EC95D16-FD2F-44C3-8DCE-7F5AC48C1C14}] => (Allow) LPort=57217
FirewallRules: [{C4CF4F21-8317-4454-B94E-F8E66A22346F}] => (Allow) LPort=57218
FirewallRules: [{FB1E5E8D-3704-46A6-9D23-5ED05A952AA7}] => (Allow) LPort=23007
FirewallRules: [{23CDB8E0-E555-427F-89AF-56B40CAC873F}] => (Allow) LPort=23008
FirewallRules: [{2EECC17F-9941-49AF-901E-74424ADAB721}] => (Allow) LPort=33009
FirewallRules: [{7C4EE6EC-4C65-478A-A5E3-8F60E139E60F}] => (Allow) LPort=33010
FirewallRules: [{2C3C462C-5463-4A07-A1BF-1C9104E4A782}] => (Allow) LPort=33011
FirewallRules: [{7C741901-4A57-44FD-BFCC-0313979C2D42}] => (Allow) LPort=43012
FirewallRules: [{40CF3B2C-E7D6-4D2C-B9C1-4453E6B54021}] => (Allow) LPort=43013
FirewallRules: [{2302E00D-8013-41AB-A1D7-092B379B0F7C}] => (Allow) LPort=53014
FirewallRules: [{4010367E-8DE0-4497-9A83-D622324A044F}] => (Allow) LPort=53015
FirewallRules: [{F656B89B-4529-4721-8FB5-9B16772BD956}] => (Allow) LPort=53016
FirewallRules: [{6B2D0D6F-994F-463C-90B4-E8BB2A7ED763}] => (Allow) LPort=23007
FirewallRules: [{3C0E9303-DC77-4973-8965-955C4276D3DE}] => (Allow) LPort=23008
FirewallRules: [{C579149A-F0F1-462B-A24C-C0757163D4B1}] => (Allow) LPort=33009
FirewallRules: [{2DC4B8DB-F9D2-4982-8904-82150526D2BC}] => (Allow) LPort=33010
FirewallRules: [{280512BB-AEE8-4E6D-B8AB-B8447674EBA9}] => (Allow) LPort=33011
FirewallRules: [{B6804C03-ECA4-40A2-89AA-7F16A601A602}] => (Allow) LPort=43012
FirewallRules: [{39D7C53B-9CBF-4857-94D2-4A5D9C7B6E5F}] => (Allow) LPort=43013
FirewallRules: [{53FA068D-C4D8-4C0D-A559-CE5B7BCA245E}] => (Allow) LPort=53014
FirewallRules: [{6D43ED6A-C007-46A1-9B0A-160F3FA7A797}] => (Allow) LPort=53015
FirewallRules: [{F853E741-7F7D-42A5-A05D-199E6080545F}] => (Allow) LPort=53016
FirewallRules: [{AF8A550F-42BA-4A4E-B44B-F105F250747C}] => (Allow) LPort=50053
FirewallRules: [{C4C63B93-7B8A-44EA-BF94-A08BEC114AE1}] => (Allow) LPort=50053
FirewallRules: [{FC93E252-A9D9-4A1E-B179-B61C941CAF16}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5CB150A4-017E-4EE0-8E8C-01D5682B25C1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{288B13E6-E406-4099-B0F3-3F419BA60D66}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C1387CD4-0F34-470A-BA0D-4483FB34BC39}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.102.3211.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
==================== Points de restauration =========================
12-08-2023 19:27:00 paint.net v5.0.9
22-08-2023 12:22:53 Point de contrôle planifié
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Broadcast Receiver Server...
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Wait Workflow Commands request from device.
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Start Server...
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[3]: 192.168.1.17
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[2]: 2a01:cb19:81ca:ad00:257a:b81:9a5b:212d
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[1]: 2a01:cb19:81ca:ad00:8431:1d9c:2c10:8a8c
Error: (08/28/2023 01:05:53 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: )
Description: Host.AddressList[0]: fe80::c997:4022:ac48:fe0c%8
Erreurs système:
=============
Error: (08/28/2023 01:05:49 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:33:44 le 28/08/2023 n’était pas prévu.
Error: (08/28/2023 12:47:14 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service wlidsvc s’est arrêté avec l’erreur :
Mémoire insuffisante
Error: (08/26/2023 01:55:30 PM) (Source: DCOM) (EventID: 10010) (User: ORDIPHOTOS)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (08/26/2023 01:55:30 PM) (Source: DCOM) (EventID: 10010) (User: ORDIPHOTOS)
Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.
Error: (08/26/2023 08:53:02 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 19:51:21 le 25/08/2023 n’était pas prévu.
Error: (08/21/2023 06:30:17 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: )
Description: Vérification du volume chiffré : impossible de lire les informations de volume sur H:.
Error: (08/19/2023 09:11:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (08/19/2023 09:11:52 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Windows Defender:
================
Date: 2023-08-28 18:08:04
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUADlManager:Win32/OfferCore&threatid=311999&enterprise=0
Nom : PUADlManager:Win32/OfferCore
ID : 311999
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\yanni\Downloads\microsoft-image-composite-editor-2.0.3-installer_WB9-do1.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur :
Nom du processus : C:\Users\yanni\Desktop\FRST64.exe
Version de la veille de sécurité : AV: 1.395.1497.0, AS: 1.395.1497.0, NIS: 1.395.1497.0
Version du moteur : AM: 1.1.23070.1005, NIS: 1.1.23070.1005
Date: 2023-08-27 15:58:42
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {796FBF75-7962-4FA0-8C22-C3DE38087530}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-26 19:08:32
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {47259BE4-3750-4BA5-BB42-38DB24D6B612}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-25 14:43:15
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C98CA523-4AF2-4D5F-9A2A-786EB74415C5}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-24 15:09:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {FA720CB9-CED6-4BFC-8D2C-380A6040DFE8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]:
Date: 2023-03-29 17:28:54
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.385.1443.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.20100.6
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
CodeIntegrity:
===============
Date: 2023-08-28 16:02:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-07-17 09:06:43
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. F22 11/14/2013
Carte mère: Gigabyte Technology Co., Ltd. Z77-D3H
Processeur: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Pourcentage de mémoire utilisée: 47%
Mémoire physique - RAM - totale: 12246.32 MB
Mémoire physique - RAM - disponible: 6430.96 MB
Mémoire virtuelle totale: 13465.25 MB
Mémoire virtuelle disponible: 5150.68 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:230.02 GB) (Free:134.78 GB) (Model: Samsung SSD 840 PRO Series ATA Device) NTFS
Drive d: (Films-Photos) (Fixed) (Total:596.17 GB) (Free:309.88 GB) (Model: WDC WD6401AALS-00L3B2 ATA Device) NTFS
Drive e: (PHOTOS-MUSIQUES) (Fixed) (Total:1863 GB) (Free:1182.63 GB) (Model: WDC WD20EZBX-00AYRA0 ATA Device) NTFS
Drive g: (jeux-back up) (Fixed) (Total:292.97 GB) (Free:235.66 GB) (Model: WDC WD6401AALS-00L3B2 ATA Device) NTFS
Drive k: (LOGICIELS) (Fixed) (Total:303.19 GB) (Free:236.91 GB) (Model: WDC WD6401AALS-00L3B2 ATA Device) NTFS
\\?\Volume{1ed80d71-6142-4209-9c41-25ca928a61f9}\ (Récupération) (Fixed) (Total:0.52 GB) (Free:0.5 GB) NTFS
\\?\Volume{597d37f3-11c3-4ac0-9796-bd22e0a83a52}\ () (Fixed) (Total:0.57 GB) (Free:0.08 GB) NTFS
\\?\Volume{372b2a72-2d12-498f-95ab-31c31e7a60bb}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 863FF8C0)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: CC61CC61)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (Size: 596.2 GB) (Disk ID: C7C4C7C5)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=0F Extended)
==================== Fin de Addition.txt =======================