Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 17.03.2019 Exécuté par NICOLE BUREAU (15-04-2019 14:13:52) Exécuté depuis C:\Users\NICOLE BUREAU\Desktop Windows 10 Pro Version 1809 17763.437 (X64) (2019-03-14 13:41:32) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-104376097-776204731-480569139-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-104376097-776204731-480569139-503 - Limited - Disabled) Invité (S-1-5-21-104376097-776204731-480569139-501 - Limited - Disabled) => C:\Users\Invité NICOLE BUREAU (S-1-5-21-104376097-776204731-480569139-1001 - Administrator - Enabled) => C:\Users\NICOLE BUREAU WDAGUtilityAccount (S-1-5-21-104376097-776204731-480569139-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 123 Free Solitaire v11.0 (HKLM-x32\...\123 Free Solitaire_is1) (Version: - TreeCardGames) 7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov) Acronis True Image WD Edition (HKLM-x32\...\{CEAC6D9F-944A-40F7-AB5D-A7412AF9CED9}) (Version: 19.0.33 - Acronis) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 19.010.20099 - Adobe Systems Incorporated) AMD Catalyst Install Manager (HKLM\...\{D07ED849-C15A-CB78-1DA1-EE85E03CFF03}) (Version: 3.0.864.0 - Advanced Micro Devices, Inc.) Apple Application Support (32 bits) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.) AquaSnap 1.23.5 (HKLM-x32\...\{94962114-ED36-4A38-8FC8-85CA4CE16271}) (Version: 1.23.5 - Nurgo Software) Assistant Support et récupération de Microsoft pour Office 365 (HKU\S-1-5-21-104376097-776204731-480569139-1001\...\7181b9498a4ee6aa) (Version: 16.0.2941.4 - Microsoft Corporation) Audiograbber 1.83 SE (HKLM-x32\...\Audiograbber) (Version: 1.83 SE - Audiograbber) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite DCP-7060D (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP) ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version: - DownloadHelper) CopyTrans Control Center désinstallation uniquement (HKU\S-1-5-21-104376097-776204731-480569139-1001\...\CopyTrans Suite) (Version: 4.017 - WindSolutions) Data Lifeguard Diagnostic version 1.36 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation) Defraggler (HKLM\...\Defraggler) (Version: 2.21 - Piriform) Device Access Manager for HP ProtectTools (HKLM\...\{55B52830-024A-443E-AF61-61E1E71AFA1B}) (Version: 7.1.2.0 - Hewlett-Packard Company) DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden DisplayLink Core Software (HKLM\...\{375F2188-7DAE-441E-B9AE-D69E473B359E}) (Version: 7.1.44152.0 - DisplayLink Corp.) Drive Encryption For HP ProtectTools (HKLM\...\{27F1E086-5691-4EB8-8BA1-5CBA87D67EB5}) (Version: 7.0.40.35706 - Hewlett-Packard Company) Dropbox (HKLM-x32\...\Dropbox) (Version: 66.4.84 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden File Sanitizer For HP ProtectTools (HKLM-x32\...\{6D6ADF03-B257-4EA5-BBC1-1D145AF8D514}) (Version: 7.0.0.4 - Hewlett-Packard Company) FormatFactory 3.8.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.8.0.0 - Free Time) FreeCommander XE (HKLM-x32\...\FreeCommander XE_is1) (Version: - Marek Jasinski) Google Earth Pro (HKLM-x32\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP Desktop Keyboard (HKLM-x32\...\HP Keyboard_is1) (Version: 1.0.0.13 - Hewlett-Packard) HP Port Replicator Software Installer (HKLM-x32\...\{6313BCDF-1109-4682-A19D-413189817787}) (Version: 1.3.19 - HP) HP ProtectTools Security Manager (HKLM\...\HPProtectTools) (Version: 7.0.2.1213 - Hewlett-Packard Company) HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company) HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C18278AC-049A-4F02-A97F-4FD7294CC4F5}) (Version: 12.10.49.21 - HP) HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.) HP USB Docking Video (HKLM\...\{F0E23712-6E59-4F24-8B09-BE3993EA27AD}) (Version: 7.1.44304.0 - Hewlett-Packard) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6395.0 - IDT) KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.9.0.3 - QFX Software Corporation) LabelPrint (HKLM-x32\...\{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) Hidden LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.4507 - CyberLink Corp.) Le Cloud d'Orange (HKLM\...\{9B9BCE5A-1C43-433F-9931-D16CA74C7968}) (Version: 4.4.0.3 - Orange) Hidden Le Cloud d'Orange (HKLM-x32\...\{404cbd2e-90ff-482a-9ace-caaba6edc6ac}) (Version: 4.4.0.3 - Orange) Logitech SetPoint 6.67 (HKLM\...\sp6) (Version: 6.67.83 - Logitech) Lupas Rename 2000 v5.0 Release (HKLM-x32\...\Lupas Rename 2000_is1) (Version: - Ivan Anton Albarracin) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.11425.20204 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-104376097-776204731-480569139-1001\...\OneDriveSetup.exe) (Version: 19.012.0121.0011 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.14.26429 (HKLM-x32\...\{80586c77-db42-44bb-bfc8-7aebbb220c00}) (Version: 14.14.26429.4 - Microsoft Corporation) MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek) Mozilla Thunderbird 52.9.1 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 fr)) (Version: 52.9.1 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Nuance PaperPort 12 (HKLM-x32\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.) Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.11425.20204 - Microsoft Corporation) Hidden Office Tab FreeEdition 9.70 (HKLM\...\{DE469D65-1DEB-4058-BF95-C642D733668D}_is1) (Version: - Detong Technology Ltd.) opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden Opera Stable 56.0.3051.104 (HKLM-x32\...\Opera 56.0.3051.104) (Version: 56.0.3051.104 - Opera Software) Opera Stable 56.0.3051.116 (HKLM-x32\...\Opera 56.0.3051.116) (Version: 56.0.3051.116 - Opera Software) Opera Stable 57.0.3098.116 (HKLM-x32\...\Opera 57.0.3098.116) (Version: 57.0.3098.116 - Opera Software) Opera Stable 58.0.3135.127 (HKLM-x32\...\Opera 58.0.3135.127) (Version: 58.0.3135.127 - Opera Software) PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 1.00.0001 - Nuance Communications, Inc.) Paragon Backup & Recovery™ 2013 Free (HKLM-x32\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software) PDF24 Creator 8.0.4 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org) Photo Transport (HKLM-x32\...\{63CFD835-FF50-4F8B-91CD-5662A8C640F8}) (Version: 1.0.1 - CASIO COMPUTER CO., LTD.) PhoXo (HKLM-x32\...\PhoXo) (Version: 8.3.0.0 - PhoXo) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5223 - CyberLink Corp.) Hidden Rep-Listing (HKLM-x32\...\{887EF08A-011E-477C-B6CB-01E540538ADB}) (Version: 4.0.0 - JPA) Scansoft PDF Professional (HKLM-x32\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version: - ) Hidden Services d’impression Bonjour (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.) Skype version 8.33 (HKLM-x32\...\Skype_is1) (Version: 8.33 - Skype Technologies S.A.) swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden SyncFileSetup (x86) (HKLM-x32\...\{04848A0A-02B1-4703-B15D-6E7DCF95FB84}) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc) Hidden SysTools Outlook to MBOX Converter v1.0 (HKLM-x32\...\{E114F078-16EB-4247-9B0B-BC62B67ACB9E}_is1) (Version: - SysTools Software Pvt. Ltd.) TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.132598 - TeamViewer) Theft Recovery for HP ProtectTools (HKLM-x32\...\{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company) Hidden Theft Recovery for HP ProtectTools (HKLM-x32\...\InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}) (Version: 7.0.1.02 - Hewlett-Packard Company) TomTom HOME (HKLM-x32\...\{3C595537-D968-48D5-AAB1-CCB2E90FA59A}) (Version: 2.9.94 - Nom de votre société) TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) Unchecky v1.2 (HKLM-x32\...\Unchecky) (Version: 1.2 - Reason Software Company Inc.) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.6 - VideoLAN) WD Access (HKLM-x32\...\{046643f7-6206-46bb-8968-92c37fee39e0}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc.) WD Access (HKLM-x32\...\{C0624809-D60D-4AFF-8AF3-9452125AF4C1}) (Version: 1.4.5949.29996 - Western Digital Technologies, Inc) Hidden WD My Cloud (HKLM\...\{4B86F896-11DC-4711-BB60-81104832FA44}) (Version: 1.0.7.17 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{F99172EC-CC5E-4FF2-975F-5415B6E6B8FA}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{4555885d-a64c-4234-9aac-72a8a6b5590b}) (Version: 2.4.16.16 - Western Digital Technologies, Inc.) WD Sync (HKLM-x32\...\{0d591303-bbc5-4645-a03b-1c3f75f1a762}) (Version: 1.3.5949.26210 - Western Digital Technologies, Inc.) Windows Deployment Tools (HKLM-x32\...\{BFC9778E-9765-C94C-C082-C2514F8DEB9B}) (Version: 8.59.25584 - Microsoft) Windows PE x86 x64 (HKLM-x32\...\{F89D69CA-6EE1-E037-DD3B-08CDDE1BED1C}) (Version: 8.59.25584 - Microsoft) Windows PE x86 x64 wims (HKLM-x32\...\{85F4ACB1-E7DC-C3C6-F4FD-BB936DF2695E}) (Version: 8.59.25584 - Microsoft) ==================== Personnalisé CLSID (Avec liste blanche): ========================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-104376097-776204731-480569139-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\NICOLE BUREAU\AppData\Local\Microsoft\OneDrive\17.3.6998.0830\amd64\FileCoAuthLib64.dll => Pas de fichier ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ AWCOverlayIconFailed] -> {807B3DE6-04E1-41CD-BE17-79259C6F287E} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ShellIconOverlayIdentifiers: [ AWCOverlayIconIgnored] -> {78E727AC-5F74-44D4-AB7B-1AF593CAB71A} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ShellIconOverlayIdentifiers: [ AWCOverlayIconUploaded] -> {6AB3E22E-6F5C-4D4A-9F00-76BB29BAEAEF} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ShellIconOverlayIdentifiers: [ AWCOverlayIconUploading] -> {5A062BD3-C231-4E7A-8782-D83B74BC2B08} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis International GmbH -> Acronis) ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis International GmbH -> Acronis) ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2015-11-11] (Acronis International GmbH -> Acronis) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [0WCShellExtensions] -> {1F55CA10-A975-498A-B812-CA7FC2AB1799} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [PhoXo] -> {47F14307-F923-44F9-86CB-A1E193DA6070} => C:\Program Files (x86)\PhoXo\ExploreMenu64.dll [2014-09-05] (Fu Li -> PhoXo) ContextMenuHandlers1-x32: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\versions_page.dll [2015-11-11] (Acronis International GmbH -> Acronis) ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) ContextMenuHandlers2: [0WCShellExtensions] -> {F8585DFE-2EE2-4ABB-87BD-8AB44C10A6EA} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) ContextMenuHandlers4: [0WCShellExtensions] -> {1F55CA10-A975-498A-B812-CA7FC2AB1799} => C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll [2018-09-07] (Orange) [Fichier non signé] ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-02-05] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2016-03-08] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6-x32: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\versions_page.dll [2015-11-11] (Acronis International GmbH -> Acronis) ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2016-04-19] (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) ==================== Tâches planifiées (Avec liste blanche) ============= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) Task: {007EEF3C-357B-4E62-AB42-6BCB5C2C9BF1} - System32\Tasks\Western Digital\SmartWare\____Volume_1dc27c98_05ed_11e3_aa62_806e6f6e6963______Volume_1e580910_e8d3_11e3_9dad_78e3b5bee849__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {04348BDF-EBDA-4329-AFA1-9FBDC6263BF2} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe Task: {04AB05EF-133F-4F80-ACC2-D1CED2673B11} - \Opera scheduled Autoupdate 1526559440 -> Pas de fichier <==== ATTENTION Task: {07BF6A00-645F-445B-AE50-3C9185D03E39} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation) Task: {0806F482-4657-4C4E-AB95-0F5E422480B0} - System32\Tasks\{215AF174-917C-453D-9FCB-0A96FAEA8639} => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {09B8E1D6-92DF-4921-9C56-BA51555BA508} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe Task: {100E9CD0-7C8A-46DA-8859-4C59CECBE008} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Task: {153A8CE3-BC93-4651-981F-8BD28AB09C3F} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) Task: {15DA0CEF-F31E-429B-97C8-D723848B82ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe (HP Inc. -> HP Inc.) Task: {1611D121-7B64-40AF-BF38-1F74EB55E852} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe Task: {192F7450-1714-4387-813D-6663CF3B58B4} - System32\Tasks\Microsoft\Windows\MobilePC\DisplayLink TMM Control Task: {1B7E0396-4894-4583-BA98-FC37BAFA16A2} - System32\Tasks\Western Digital\SmartWare\____Volume_1e580910_e8d3_11e3_9dad_78e3b5bee849__uuid_73656761_7465_7375_636b_0014ee0c1161_SmartWare_ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {218CA032-9F1C-4429-93AB-1B735E0F04AF} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe Task: {264F9B23-E159-4BAB-A532-0132EDD319D7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation) Task: {2B2382C0-19C1-4E0A-898E-F7800E951395} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe (Hewlett Packard -> HP Inc.) Task: {2C46D5EF-B892-43FC-AD26-7CDCD9D75A72} - System32\Tasks\{B9EE60EC-E123-4163-A6B5-0ABC7891BE77} => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {324751F3-713F-4DF8-8793-67C4EAD0B03B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {35FA3322-1292-4DB0-B960-CBEF29046E4C} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {37A42B4A-AAA8-4381-8A35-716AA3744D9F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation) Task: {38BFF780-0624-4BFD-9F5B-37FB9AD0B117} - System32\Tasks\Opera scheduled Autoupdate 1550267088 => C:\Program Files\Opera\launcher.exe (Opera Software AS -> Opera Software) Task: {3A3893F2-D2E9-4F85-AE2F-A09987E43DCF} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe (AVAST Software s.r.o. -> AVAST Software) Task: {4B475FE7-8DD8-4F4C-ABE3-7CB5D44B8FB8} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe (HP Inc. -> ) Task: {4D0FF355-5DFF-4978-B15D-94DD0B644C67} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {51E044D4-E07C-48DC-B235-0D8983E2D3F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {635FDCC1-C0CB-45A6-AF5D-2ABAF75836FD} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe Task: {71FA6689-4987-49CF-9E2D-C6D001032601} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe Task: {73B79E09-060B-420C-9E07-6CB8A0FF35CB} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {758FE549-D034-4A33-91E2-5724C520A75B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation) Task: {76ACA4E2-C3A4-4CD1-9126-DFC2911469E9} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (HP Inc. -> HP Inc.) Task: {7BC095C2-4476-4943-BC78-5371ED0E2E7C} - System32\Tasks\{702D97CB-2FD4-4B13-BF66-D9F9FF225A22} => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {83E1F65D-38DB-42DC-93E2-7D5FC46F6AA4} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {87828D3F-CBC0-4EE6-8A74-CCC5860DCF02} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation) Task: {8880A251-4EC4-4863-AF06-9D45F79C28AF} - System32\Tasks\HPCeeScheduleForNICOLE BUREAU => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe (Hewlett-Packard Company -> Hewlett-Packard) Task: {89A17677-59F5-434B-9248-445146887D6A} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe Task: {8B6BD8CE-B063-4214-AE37-6E70E9050C06} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe (Dropbox, Inc -> Dropbox, Inc.) Task: {93BE01BA-2E50-4FE8-B25E-0309CD33C7A4} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe (HP Inc. -> HP Inc.) Task: {9695DE37-9381-4035-B6F8-6D87A95ACD84} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {9AB9104D-D336-4C67-A7B3-19C1141932CA} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe Task: {9B9957FE-F748-47D8-8C7E-191CA5E16F5A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe (HP Inc. -> HP Inc.) Task: {A7FCFDE0-7B73-4AB6-8391-388204C9EA76} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe Task: {A8DADF29-6409-4ACD-BB62-B2ED483E1FC3} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe Task: {B90B3A32-D90E-418B-9CF2-FBE32EEDC5A9} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe Task: {B94C087A-C826-4540-AC0D-126C3A6B876B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (HP Inc. -> HP Inc.) Task: {C23E6509-D3CF-4093-8E6D-25E97D7AE185} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd) Task: {C33A8D5A-9B4A-403C-9DAC-C74D6D66A849} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {C4535B3A-90BA-4974-BEFC-60461E871949} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe Task: {C509A7C8-6AEA-4F04-9FBC-40CC6A950E80} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation) Task: {C5F5EB66-33D4-4D5E-8D39-792D52F124C2} - System32\Tasks\{B9FFF113-AFA0-4B9F-907C-D6CAE4F40959} => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {CA06BE02-671E-4EE9-A76A-F091E3DF223C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.) Task: {CA44584D-2CD5-4493-8269-4DA52E98E1AF} - System32\Tasks\Western Digital\SmartWare\____Volume_1dc27c98_05ed_11e3_aa62_806e6f6e6963__uuid_73656761_7465_7375_636b_0014ee0c1161_Nicole_ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {CE6EF019-D6B6-4A6F-BF6F-D48D742CAA35} - System32\Tasks\Opera scheduled Autoupdate 1538029498 => C:\Program Files\Opera\launcher.exe (Opera Software AS -> Opera Software) Task: {D496A740-E887-46FE-B65C-F20807498000} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {D672C3BD-D93E-4942-8C0D-DD64CCF06343} - System32\Tasks\Western Digital\SmartWare\____Volume_1dc27c98_05ed_11e3_aa62_806e6f6e6963__dropbox_0eb35328_a208_4c87_b8f4_bf359714ef53_dropbox_ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) Task: {D7E0CF17-06D5-44F2-B771-80EF50DB8F9A} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe Task: {D9DBEA6A-3973-4C77-AA14-45BB43A0DDD9} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DA8317C0-F9F6-4136-9D31-B55F53C08A4D} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DBB2270E-8D38-4611-923A-54DAA084D826} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe Task: {DBDCD729-3BC0-42DC-99B2-3D966B2D550C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe Task: {E03820A8-5DB7-4080-A9AF-094B3DDCACA3} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe Task: {E469D787-0207-4983-B145-A8EB9E2FF0AD} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation) Task: {F245C407-79D9-4F1C-9758-651D2E6B7731} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe Task: {F26CAFB4-2AC4-4B5A-AA1F-FA28618D9E63} - System32\Tasks\Opera scheduled Autoupdate 1521189216 => C:\Program Files\Opera\launcher.exe (Opera Software AS -> Opera Software) Task: {F2B34C1B-939E-415A-A33C-D6F0F4106A6A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) Task: {F5EA452D-80EF-4B77-BE68-035AE8B84392} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation) Task: {F8157435-E485-4065-97BD-6FCB4E173455} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe (HP Inc. -> HP Inc.) Task: {FB4400FB-F566-4D4B-BF9C-F27AEA95CC38} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1903.4-0\MpCmdRun.exe (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, le fichier tâche (.job) sera déplacé. Le fichier exécuté par la tâche ne sera pas déplacé.) Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleForNICOLE BUREAU.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ==================== Modules chargés (Avec liste blanche) ============== 2013-02-21 20:50 - 2013-02-21 20:50 - 003346432 _____ () [Fichier non signé] C:\Program Files\Hewlett-Packard\Drive Encryption\EpeHpFve64.dll 2013-02-21 20:03 - 2013-02-21 20:03 - 000141824 _____ () [Fichier non signé] C:\Program Files\Hewlett-Packard\Drive Encryption\EEAgent\MfeEpeHostInterface64.dll 2018-09-07 11:59 - 2018-09-07 11:59 - 001318400 _____ (Orange) [Fichier non signé] C:\Program Files\Le Cloud d'Orange\WindowsCloudShellExtensions64_3.dll 2019-04-06 15:45 - 2019-04-06 15:45 - 000000000 ____LMicrosoft Corporation C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2019-04-06 15:45 - 2019-04-06 15:45 - 000000000 ____LMicrosoft Corporation C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2013-08-15 22:18 - 2012-04-06 05:43 - 000037888 _____ (Hewlett-Packard ) [Fichier non signé] C:\Program Files\IDT\WDM\beats64.exe 2014-06-17 15:09 - 2012-06-06 15:31 - 003076096 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe 2014-06-17 15:09 - 2012-06-05 15:56 - 000266240 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrYNSvc.exe 2016-04-15 15:33 - 2016-04-15 15:33 - 001239552 _____ (Robert Simpson, et al.) [Fichier non signé] C:\Program Files (x86)\Western Digital\WD App Manager\Plugins\WD Sync\App\Plugins\System.Data.SQLite.dll 2019-03-15 17:33 - 2019-03-15 17:33 - 000922112 _____ (The Apache Software Foundation) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_64\log4net\7e72cb2db9d3208ee08b2b9ad151de63\log4net.ni.dll 2016-04-19 12:02 - 2016-04-19 12:02 - 001006080 ____R (Robert Simpson, et al.) [Fichier non signé] C:\Program Files (x86)\Western Digital\WD SmartWare\System.Data.SQLite.dll 2014-06-17 15:09 - 2009-02-27 16:38 - 000139264 ____R () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2014-06-17 15:09 - 2012-01-11 14:39 - 000626688 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrStMonWRes.dll 2014-06-17 15:09 - 2011-02-28 11:32 - 000208896 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\Brother\BrFirmUpdateCheck.dll 2014-06-17 15:09 - 2012-04-23 15:03 - 000380928 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\BrMonitor.dll 2014-06-17 15:09 - 2008-08-18 18:27 - 000122880 ____N (Brother Industries, Ltd.) [Fichier non signé] C:\Program Files (x86)\Browny02\brlmw03a.dll ==================== Alternate Data Streams (Avec liste blanche) ========= (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Temp:58A5270D [316] ==================== Mode sans échec (Avec liste blanche) =================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) ==================== Internet Explorer sites de confiance/sensibles =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) ==================== Hosts contenu: ========================== (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2019-04-15 08:50 - 000001370 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com ==================== Autres zones ============================ (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: c:\Program Files (x86)\AMD APP\bin\x86_64;c:\Program Files (x86)\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;c:\Program Files (x86)\Hewlett-Packard\HP ProtectTools Security Manager\Bin\;c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-104376097-776204731-480569139-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\NICOLE BUREAU\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé. MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: Apple Mobile Device => 2 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: McAfee Endpoint Encryption Agent => 2 MSCONFIG\Services: pdfcDispatcher => 2 MSCONFIG\Services: PDFProFiltSrvPP => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: TomTomHOMEService => 2 MSCONFIG\startupfolder: C:^Users^NICOLE BUREAU^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EfficientPIM Free.lnk => C:\Windows\pss\EfficientPIM Free.lnk.Startup MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup MSCONFIG\startupreg: Dropbox Update => "C:\Users\NICOLE BUREAU\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c MSCONFIG\startupreg: File Sanitizer => c:\Program Files (x86)\Hewlett-Packard\File Sanitizer\CoreShredder.exe MSCONFIG\startupreg: HP KEYBOARDx => "C:\Program Files (x86)\Hewlett-Packard\HP Desktop Keyboard\HPKEYBOARDx.EXE" MSCONFIG\startupreg: IndexSearch => "C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe" MSCONFIG\startupreg: OneDrive => "C:\Users\NICOLE BUREAU\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe" MSCONFIG\startupreg: PDF Complete => C:\Program Files (x86)\PDF Complete\pdfsty.exe MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe MSCONFIG\startupreg: PDFHook => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe MSCONFIG\startupreg: PDFPrint => "C:\Program Files (x86)\PDF24\pdf24.exe" MSCONFIG\startupreg: PPort12reminder => "C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini" MSCONFIG\startupreg: StartCCC => "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor" HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe" HKLM\...\StartupApproved\Run32: => "ControlCenter4" HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "WD Quick View" HKU\S-1-5-21-104376097-776204731-480569139-1001\...\StartupApproved\Run: => "AquaSnap" HKU\S-1-5-21-104376097-776204731-480569139-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-104376097-776204731-480569139-1001\...\StartupApproved\Run: => "OCCDesktop" ==================== RèglesPare-feu (Avec liste blanche) =============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{1A1BBC50-DB8A-47B1-BD93-2FC6E12DB8DB}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{9B05D975-2670-4D6D-BD84-6E56B35F2F16}] => (Allow) C:\Program Files\Opera\57.0.3098.116_0\opera.exe Pas de fichier FirewallRules: [{D2B73CFF-BE27-4749-BB8A-1F0E2277CC6D}] => (Allow) C:\Program Files\Opera\57.0.3098.116\opera.exe Pas de fichier FirewallRules: [{98EBA88E-4E35-44CA-8119-662C666A02F8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{688FED5C-4726-44C6-8AEC-BC3626314C2D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{0F91A672-EBE3-4F4B-B2C1-E2DA80367AE1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{1FEF98EA-525A-4C02-A8CB-A4CDA65141D1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{65122A57-1F16-49F4-8AB4-293506430620}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis) FirewallRules: [{49BCF5A9-07E2-4B09-BADE-F36B2302782D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis) FirewallRules: [{B5DA32B1-4E08-4BFD-8D0A-C7608BB2765C}] => (Allow) C:\Program Files\Opera\56.0.3051.116_0\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{827A9E42-31F3-4A15-952C-C54EAEA4144B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A4C1E471-C83C-4EF9-9184-656C977C99AE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6C879E04-14BC-4125-9E50-B2D544BC5A52}] => (Allow) C:\Program Files\Opera\56.0.3051.99\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{C6D856A1-6F3E-4FD7-8D73-33B96A1B4C3C}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe Pas de fichier FirewallRules: [TCP Query User{6E8986C1-BDDF-46F5-A5FA-26A593867650}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe Pas de fichier FirewallRules: [{23A0CF50-4D76-4C66-ACD2-0C199C7BE0A4}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Pas de fichier FirewallRules: [{3E71F458-4CC6-4527-B4C7-A64218DE67BA}] => (Allow) C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe Pas de fichier FirewallRules: [{7AE505C3-0DC7-43CA-A8C9-B120849B5573}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{1DF85BAB-628F-4F33-BE3B-C90D364C60F2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd) FirewallRules: [{A8C8AE81-A167-4466-8258-7DE9B39562C6}] => (Allow) C:\Program Files\Opera\54.0.2952.71\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{D5A1A6EF-48A4-4677-87DE-9832AC968584}] => (Allow) C:\Program Files\Opera\54.0.2952.64\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{93FAB3B9-6DAF-4BC7-B23F-11F06AE43FC6}C:\program files (x86)\formatfactory\formatfactory.exe] => (Block) C:\program files (x86)\formatfactory\formatfactory.exe (chen jun hao -> Free Time) [Fichier non signé] FirewallRules: [TCP Query User{CC5066C0-122B-4D9B-92B4-9C437BC16CD8}C:\program files (x86)\formatfactory\formatfactory.exe] => (Block) C:\program files (x86)\formatfactory\formatfactory.exe (chen jun hao -> Free Time) [Fichier non signé] FirewallRules: [UDP Query User{0D43AD6F-431E-4C7A-9F44-604F526F699E}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe Pas de fichier FirewallRules: [TCP Query User{7F88D114-4C0B-4E80-9215-B6A90DF4D0CA}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe Pas de fichier FirewallRules: [UDP Query User{0B4D30A2-48FD-4474-8FEB-737AC5A8CBA6}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) FirewallRules: [TCP Query User{FF9716F6-32B0-435E-9669-F13CAD18E672}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) FirewallRules: [UDP Query User{054A0991-5F58-4567-800D-F1C3FA41CE72}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) FirewallRules: [TCP Query User{5A2C412B-6BA3-47D4-8AA5-E85F0974CDA4}C:\program files (x86)\western digital\wd app manager\wdappmanager.exe] => (Allow) C:\program files (x86)\western digital\wd app manager\wdappmanager.exe (WESTERN DIGITAL TECHNOLOGIES -> Western Digital Technologies, Inc.) FirewallRules: [{A6FF718A-9744-4533-83F0-F4967801DE87}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F3BDEFA9-39E0-4DCE-824D-1C119C23B32C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5AB11706-F5B6-43E3-A06A-1CA7DDA69717}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2FF934D9-90F3-459E-859F-92D45399A522}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{5996C0C9-EEBA-461D-8A6C-30D2DCE9783A}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe Pas de fichier FirewallRules: [UDP Query User{498647A2-80C3-4729-A30C-14DACC601911}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe Pas de fichier FirewallRules: [{5CBA15B8-BBDB-45D8-BC2A-5E4E4627DB11}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe Pas de fichier FirewallRules: [{67BF7962-47E4-4050-8AA5-297F81033F89}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe Pas de fichier FirewallRules: [{45CA86A6-9104-46AF-921E-E1D657F82D1F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5EF8015F-E19B-4054-BB84-E38893E46B98}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{ADF8511B-FCD1-44D5-BE95-89AB606D9F40}] => (Allow) C:\Program Files\Opera\58.0.3135.118\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{50FEEAC6-173E-480F-B7E3-DB632E8494F4}] => (Allow) C:\Program Files\Opera\58.0.3135.127\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{8FF37AC4-28BE-40F9-8759-B1B4E83FCD4D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{EE74C58D-12AC-4BC5-B43A-13576A1A1B02}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C885FEAC-61A0-42A9-BCEB-9CD5292B0476}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============= ==================== Erreurs du Journal des événements: ========================= Erreurs Application: ================== Error: (04/15/2019 01:25:56 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme SystemSettings.exe version 10.0.17763.1 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 2414 Heure de début : 01d4f372f376c0d2 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Windows\ImmersiveControlPanel\SystemSettings.exe ID de rapport : a54ba88b-162b-42cc-b735-ebd9949e5eb4 Nom complet du package défectueux : windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy ID de l'application relative à un package défectueux : microsoft.windows.immersivecontrolpanel Type de blocage : Quiesce Error: (04/15/2019 01:22:15 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme opera.exe version 58.0.3135.127 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 1aa0 Heure de début : 01d4f36fb215407e Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Program Files\Opera\58.0.3135.127\opera.exe ID de rapport : 61a8b72e-d57d-4acb-8748-cfb0875d55ce Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (04/15/2019 12:51:13 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Error: (04/15/2019 07:40:30 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante HxOutlook.exe, version : 16.0.11425.20184, horodatage : 0x5c958df3 Nom du module défaillant : Mso20Imm.dll, version : 16.0.11425.20184, horodatage : 0x5c9587d6 Code d’exception : 0x0152139a Décalage d’erreur : 0x00000000001c4dd3 ID du processus défaillant : 0x1ac4 Heure de début de l’application défaillante : 0x01d4f34db5c6f2f6 Chemin d’accès de l’application défaillante : C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\HxOutlook.exe Chemin d’accès du module défaillant: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe\Mso20Imm.dll ID de rapport : d6e8186f-6190-48d3-a027-3c099534e886 Nom complet du package défaillant : microsoft.windowscommunicationsapps_16005.11425.20190.0_x64__8wekyb3d8bbwe ID de l’application relative au package défaillant : microsoft.windowslive.mail Error: (04/15/2019 07:25:15 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: AUTORITE NT) Description: Windows ne peut pas charger la DLL de compteur extensible « C:\WINDOWS\system32\sysmain.dll » (code d'erreur Win32 126). Error: (04/14/2019 10:31:31 PM) (Source: Outlook) (EventID: 35) (User: ) Description: Impossible de déterminer si la banque se trouve dans l'étendue d'analyse (erreur=0x8007045b). Error: (04/14/2019 10:31:31 PM) (Source: Outlook) (EventID: 34) (User: ) Description: Erreur liée gestionnaire d'étendue d'analyse =0x8007045b. Error: (04/14/2019 09:10:57 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer. Details: AddLegacyDriverFiles: Unable to back up image of binary Protocole LLDP (Link Layer Discovery Protocol) Microsoft. System Error: Accès refusé. . Erreurs système: ============= Error: (04/15/2019 01:32:48 PM) (Source: volsnap) (EventID: 14) (User: ) Description: Les clichés instantanés C: ont été annulés à cause d’une défaillance d’E/S sur le volume C:. Error: (04/15/2019 01:32:04 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service afcdpsrv. Error: (04/15/2019 01:26:12 PM) (Source: DCOM) (EventID: 10016) (User: NICOLEBUREAU-HP) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID NICOLEBUREAU-HP\NICOLE BUREAU de l’utilisateur (S-1-5-21-104376097-776204731-480569139-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/15/2019 01:23:29 PM) (Source: DCOM) (EventID: 10016) (User: NICOLEBUREAU-HP) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID NICOLEBUREAU-HP\NICOLE BUREAU de l’utilisateur (S-1-5-21-104376097-776204731-480569139-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/15/2019 01:22:09 PM) (Source: DCOM) (EventID: 10016) (User: NICOLEBUREAU-HP) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID NICOLEBUREAU-HP\NICOLE BUREAU de l’utilisateur (S-1-5-21-104376097-776204731-480569139-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/15/2019 01:17:16 PM) (Source: DCOM) (EventID: 10016) (User: NICOLEBUREAU-HP) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID NICOLEBUREAU-HP\NICOLE BUREAU de l’utilisateur (S-1-5-21-104376097-776204731-480569139-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/15/2019 11:43:59 AM) (Source: DCOM) (EventID: 10016) (User: NICOLEBUREAU-HP) Description: Les paramètres d’autorisation propres à l’application n’accordent pas l’autorisation Local Activation pour l’application serveur COM avec le CLSID {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} et l’APPID {15C20B67-12E7-4BB6-92BB-7AFF07997402} au SID NICOLEBUREAU-HP\NICOLE BUREAU de l’utilisateur (S-1-5-21-104376097-776204731-480569139-1001) depuis l’adresse LocalHost (avec LRPC) s’exécutant dans le SID Non disponible du conteneur d’applications (Non disponible). Cette autorisation de sécurité peut être modifiée à l’aide de l’outil d’administration Services de composants. Error: (04/15/2019 09:48:46 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80240017 : Mise à jour des définitions pour Windows Defender Antivirus – KB2267602 (Définition 1.291.1940.0). Windows Defender: =================================== Date: 2019-04-15 11:43:16.696 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {9B08AE6D-9AEA-4703-BD2A-515624C653F2} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-04-10 09:56:53.730 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {CD7D09BC-FD1E-4277-A71B-707E183208D7} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-04-08 16:50:51.581 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {39B4A8D4-BF1E-4A61-BC93-830467B27DDE} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-04-08 16:44:56.924 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {0F011938-35F7-4A95-A3CA-0AD837C92475} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2019-04-06 10:51:32.927 Description: L’analyse Antivirus Windows Defender a été arrêtée avant la fin. ID de l’analyse : {D686D8CB-C448-4463-91F4-AEC42153DD52} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système CodeIntegrity: =================================== Date: 2019-04-15 14:05:45.028 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 14:05:45.025 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 13:52:44.713 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 13:52:44.686 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 13:37:42.260 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 13:37:42.259 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 13:35:44.963 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2019-04-15 13:35:44.958 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== Processeur: AMD A6-5400K APU with Radeon(tm) HD Graphics Pourcentage de mémoire utilisée: 80% Mémoire physique - RAM - totale: 3479.29 MB Mémoire physique - RAM - disponible: 678.55 MB Mémoire virtuelle totale: 9479.29 MB Mémoire virtuelle disponible: 2753.52 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:451.29 GB) (Free:247.56 GB) NTFS Drive d: (LES VIVANTS ET LES DIEUX) (CDROM) (Total:0.04 GB) (Free:0 GB) UDF Drive e: (HP_RECOVERY) (Fixed) (Total:14.27 GB) (Free:1.67 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive f: (WD ELEMENTS) (Fixed) (Total:931.45 GB) (Free:612.68 GB) exFAT Drive g: (ALI BABA 2) (Fixed) (Total:1397.22 GB) (Free:1130.7 GB) exFAT Drive y: (Nicole) (Network) (Total:1829.36 GB) (Free:1146.38 GB) NTFS Drive z: (Public) (Network) (Total:1829.36 GB) (Free:1146.38 GB) NTFS \\?\Volume{ed535658-e91d-11e3-8586-806e6f6e6963}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS \\?\Volume{1dc27c9b-05ed-11e3-aa62-806e6f6e6963}\ (HP_TOOLS) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ================== ======================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0E464D46) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=451.3 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=14.3 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=101 MB) - (Type=27) ======================================================== Disk: 2 (Size: 931.5 GB) (Disk ID: 401E77A5) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (Size: 1397.3 GB) (Disk ID: EC4465B0) Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt ============================