Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 29-08-2020 Exécuté par mjple (02-09-2020 19:51:13) Exécuté depuis C:\Users\mjple\Desktop Windows 10 Pro Version 2004 19041.450 (X64) (2020-08-03 20:06:45) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-4059788170-855544290-2501102518-500 - Administrator - Disabled) => C:\Users\Administrateur DefaultAccount (S-1-5-21-4059788170-855544290-2501102518-503 - Limited - Disabled) defaultuser1 (S-1-5-21-4059788170-855544290-2501102518-1009 - Limited - Enabled) => C:\Users\defaultuser1 evale (S-1-5-21-4059788170-855544290-2501102518-1014 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-4059788170-855544290-2501102518-1004 - Limited - Enabled) Invité (S-1-5-21-4059788170-855544290-2501102518-501 - Limited - Disabled) jplev (S-1-5-21-4059788170-855544290-2501102518-1011 - Administrator - Enabled) => C:\Users\jplev levil (S-1-5-21-4059788170-855544290-2501102518-1010 - Limited - Disabled) mjple (S-1-5-21-4059788170-855544290-2501102518-1002 - Administrator - Enabled) => C:\Users\mjple WDAGUtilityAccount (S-1-5-21-4059788170-855544290-2501102518-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.414 - Adobe) AIMP (HKLM-x32\...\AIMP) (Version: v4.70.2224, 22.07.2020 - AIMP DevTeam) AMD Catalyst Install Manager (HKLM\...\{66AFB595-BC05-2913-7696-6D58F9B733E1}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22589 - Microsoft Corporation) AutoHotkey 1.1.30.01 (HKLM\...\AutoHotkey) (Version: 1.1.30.01 - Lexikos) calibre 64bit (HKLM\...\{0185ADA8-A025-46A7-8A5C-7F5C2C000CC5}) (Version: 4.21.0 - Kovid Goyal) Dell SupportAssist (HKLM\...\{57CBE96A-3AA5-4421-A87C-6C6C3B6C5ECA}) (Version: 3.6.0.97 - Dell Inc.) Discord (HKU\S-1-5-21-4059788170-855544290-2501102518-1002\...\Discord) (Version: 0.0.306 - Discord Inc.) DLNow 1.2 (HKLM-x32\...\DLNow) (Version: 1.2 - Logixoft) Dropbox (HKLM-x32\...\Dropbox) (Version: 104.4.175 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden e-Carte Bleue Caisse d'Epargne (HKLM-x32\...\{D881F038-D767-45AA-90C1-1E5411A9670A}) (Version: 5.6.0.0 - e-Carte Bleue Caisse d'Epargne) ExamDiff 1.9 (Build 1.9.0.0) (HKLM-x32\...\ExamDiff_is1) (Version: 1.9.0.0 - PrestoSoft LLC) FastStone Image Viewer 6.4 (HKLM-x32\...\FastStone Image Viewer) (Version: 6.4 - FastStone Soft) FreeCommander XE (HKLM\...\FreeCommander XE_is1) (Version: - Marek Jasinski) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 85.0.4183.83 - Google LLC) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) KeePass Password Safe 2.45 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.45 - Dominik Reichl) Logiciel de base du périphérique HP Officejet Pro 6830 (HKLM\...\{59D4E082-C709-4A23-B01A-B5E31115D5CA}) (Version: 33.1.73.49987 - Hewlett-Packard Co.) Logiciel Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) Logitech Options (HKLM\...\LogiOptions) (Version: 8.10.84 - Logitech) Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.123 - Logitech) Macrium Reflect Workstation Edition (HKLM\...\{D515DA8A-6BB9-4997-9887-B6B22C0E9329}) (Version: 7.2.3957 - Paramount Software (UK) Ltd.) Hidden Macrium Reflect Workstation Edition (HKLM\...\MacriumReflect) (Version: 7.2 - Paramount Software (UK) Ltd.) Malwarebytes version 4.2.0.82 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.0.82 - Malwarebytes) Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.13029.20344 - Microsoft Corporation) Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 85.0.564.44 - Microsoft Corporation) Microsoft Edge Beta (HKLM-x32\...\Microsoft Edge Beta) (Version: 85.0.564.44 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.29 - ) Microsoft OneDrive (HKU\S-1-5-21-4059788170-855544290-2501102518-1002\...\OneDriveSetup.exe) (Version: 20.143.0716.0003 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.31119 - Microsoft Corporation) Mozilla Firefox 80.0 (x64 fr) (HKLM\...\Mozilla Firefox 80.0 (x64 fr)) (Version: 80.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.1 - Mozilla) Mp3tag v3.02 (HKLM-x32\...\Mp3tag) (Version: 3.02 - Florian Heidenreich) NordVPN (HKLM-x32\...\{A97BFB14-D0E2-4B55-9AA4-DC6A2A387DAB}) (Version: 6.24.14 - NordVPN) Hidden NordVPN (HKLM-x32\...\NordVPN 6.24.14) (Version: 6.24.14 - NordVPN) NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13029.20236 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.13029.20200 - Microsoft Corporation) Hidden OneNote Diagnostics (HKLM-x32\...\{DF95A11D-A0DF-458A-96B9-44B07895D611}) (Version: 1.0.0.0 - Microsoft) Outlook4Gmail 5.3.1 (HKLM-x32\...\{6A53C42D-DCCD-46B7-9143-51071726A6F6}_is1) (Version: - Scand Ltd.) PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.23.2-r122830-release - Plays.tv, LLC) Raptr (HKLM-x32\...\Raptr) (Version: 5.2.10-r123135-release - Raptr, Inc) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8186 - Realtek Semiconductor Corp.) ReNamer (HKLM-x32\...\ReNamer_is1) (Version: 6.8.0.0 - den4b Team) Service Xperia Companion (HKLM\...\{170F2831-C087-4536-B3A5-3CF872F6BC0F}) (Version: 2.10.2.0 - Sony) Hidden Skype version 8.63 (HKLM-x32\...\Skype_is1) (Version: 8.63 - Skype Technologies S.A.) SoundTouch (HKLM-x32\...\{8E7AF73A-42A0-4BD0-BD86-6614AE4A6D8A}) (Version: 14.80.6.708 - BOSE) SyncBackPro (HKLM-x32\...\SyncBackPro_is1) (Version: - 2BrightSparks) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.5.3 - TeamViewer) VbaDiff (HKLM\...\{B9FEC40B-2985-45AA-AC45-310ED6D4D708}) (Version: 5.4.0.0 - Technicana Ltd) V-P@ss (HKLM-x32\...\VPass) (Version: 1.1.0.10 - Crédit du Nord) WinMerge 2.16.2.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.16.2.0 - Thingamahoochie Software) Xperia Companion (HKLM-x32\...\{4C89779F-A2CD-4EF7-83F3-B84F9CB79422}) (Version: 2.10.2.0 - Sony) Hidden Xperia Companion (HKLM-x32\...\{cc171adc-ddf5-4459-9a2c-61b09746b2ff}) (Version: 2.10.2.0 - Sony) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-10] (Microsoft Corporation) Dell SupportAssist for Home PCs -> C:\Program Files\WindowsApps\DellInc.DellSupportAssistforPCs_3.6.6.0_x64__htrsf667h5kn2 [2020-07-18] (Dell Inc) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.4.255.0_x64__rz1tebttyb220 [2020-08-28] (Dolby Laboratories) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-03-24] (Microsoft Corporation) Flights Radar -> C:\Program Files\WindowsApps\2860SnakeChia.FlightsRadar_1.5.7.0_x64__tb8aretqykba6 [2020-07-26] (Snake Chia) [MS Ad] HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.) Mahjong In Poculis -> C:\Program Files\WindowsApps\55166BernardLERAT.MahjongInPoculis_5.89.9.0_x64__74yk7f4zdpdat [2020-07-30] (Bernard LERAT) Météo 14 jours -> C:\Program Files\WindowsApps\tiempo.com.ElTiempo14das_3.2.10.0_x64__1jw6nrrrzn4a6 [2019-09-19] (Meteo Network) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-13] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-13] (Microsoft Corporation) [MS Ad] Microsoft Edge Beta -> C:\Program Files (x86)\Microsoft\Edge Beta\Application [2020-09-01] (0) Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad] Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.25.32322.0_x64__8wekyb3d8bbwe [2020-08-28] (Microsoft Corporation) MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-04] (Microsoft Corporation) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-05] (Microsoft Corporation) [MS Ad] MyReader -> C:\Program Files\WindowsApps\7588JeremyJEANSON.MyReader_128.18362.0.0_x64__vgmc1dr6vsx6p [2020-07-26] (Jeremy JEANSON) Newsflow -> C:\Program Files\WindowsApps\6958MaxN.Newsflow_2.1.12.1000_x64__5jrsa023thkzc [2019-07-10] (MaxN) OneNote Web Clipper -> C:\Program Files\WindowsApps\Microsoft.OneNoteWebClipper_3.8.1.0_neutral__8wekyb3d8bbwe [2019-06-06] (Microsoft Corporation) Send to OneNote -> C:\Program Files\WindowsApps\Microsoft.SendtoOneNote_1.0.5.0_x86__8wekyb3d8bbwe [2020-08-30] (Microsoft Corporation) WhatsApp Desktop -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2035.14.0_x64__cv1g1gvanyjgm [2020-09-02] (WhatsApp Inc.) Wunderlist: Liste des tâches -> C:\Program Files\WindowsApps\6Wunderkinder.Wunderlist_3.6.43.0_x64__b4cwydgxqx59r [2020-05-04] (6 Wunderkinder GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-4059788170-855544290-2501102518-1002_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => D:\Sauvegardes\Dropbox [2020-03-05 15:45] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-08-08] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Fichier non signé] ContextMenuHandlers1: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd) ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2019-03-22] (hxxp://winmerge.org) [Fichier non signé] ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Fichier non signé] ContextMenuHandlers2: [ReflectShellExt] -> {DEBB9B79-B3DD-47F4-9E5C-EA6975BAB611} => C:\Program Files\Macrium\Reflect\RContextMenu.dll [2019-09-20] (Paramount Software UK Ltd -> Paramount Software UK Ltd) ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2019-03-22] (hxxp://winmerge.org) [Fichier non signé] ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-02] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => C:\Program Files (x86)\AIMP\System\aimp_menu64.dll [2020-08-08] (IP Izmaylov Artem Andreevich -> AIMP DevTeam) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Fichier non signé] ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2019-03-22] (hxxp://winmerge.org) [Fichier non signé] ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiacm64.dll [2015-08-04] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.44.0.dll [2020-08-04] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll [2019-03-22] (hxxp://winmerge.org) [Fichier non signé] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-02] (Malwarebytes Corporation -> Malwarebytes) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\mjple\AppData\Local\Microsoft\Edge Beta\User Data\Default\Microsoft Edge Beta.lnk -> C:\Program Files (x86)\Microsoft\Edge Beta\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default ShortcutWithArgument: C:\Users\mjple\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ShortcutWithArgument: C:\Users\mjple\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\396b803340084593\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=blpcfgokakmgnkcojhhkbfbldkacnbeo ==================== Modules chargés (Avec liste blanche) ============= 2020-08-06 04:08 - 2020-07-30 19:15 - 001899520 _____ () [Fichier non signé] C:\Program Files (x86)\Microsoft\Skype for Desktop\ffmpeg.dll 2020-08-06 04:09 - 2020-07-30 19:15 - 000259584 _____ () [Fichier non signé] C:\Program Files (x86)\Microsoft\Skype for Desktop\swiftshader\libegl.dll 2020-08-06 04:09 - 2020-07-30 19:15 - 003044352 _____ () [Fichier non signé] C:\Program Files (x86)\Microsoft\Skype for Desktop\swiftshader\libglesv2.dll 2019-01-21 13:55 - 2019-01-21 13:55 - 000251392 _____ () [Fichier non signé] C:\Program Files (x86)\NordVPN\x86\Liberation.Native.Firewall.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000144896 _____ () [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\libssh2.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000077824 _____ () [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\zlib.dll 2020-05-04 22:41 - 2020-05-04 22:41 - 028111360 _____ (6 Wunderkinder GmbH) [Fichier non signé] C:\Program Files\WindowsApps\6Wunderkinder.Wunderlist_3.6.43.0_x64__b4cwydgxqx59r\Wunderlist.dll 2015-08-04 01:14 - 2015-08-04 01:14 - 000004608 _____ (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\atiamfra.dll 2020-07-11 11:28 - 2020-07-11 11:28 - 000398336 _____ (Florian Heidenreich) [Fichier non signé] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll 2019-06-07 18:11 - 2019-03-22 00:18 - 000202752 _____ (hxxp://winmerge.org) [Fichier non signé] C:\Program Files (x86)\WinMerge\ShellExtensionX64.dll 2017-08-02 16:07 - 2016-10-04 16:51 - 000076800 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2019-09-19 17:24 - 2019-09-19 17:31 - 011948544 _____ (Meteo Network) [Fichier non signé] C:\Program Files\WindowsApps\tiempo.com.ElTiempo14das_3.2.10.0_x64__1jw6nrrrzn4a6\tiempocom.dll 2017-05-14 15:14 - 2017-05-14 15:14 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Client\AppVIsvSubsystems64.dll 2017-05-14 15:15 - 2017-05-14 15:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2017-05-14 15:15 - 2017-05-14 15:15 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2018-06-08 13:39 - 2018-06-08 13:39 - 001895424 _____ (Primo Software Corp) [Fichier non signé] C:\program files\macrium\reflect\PRIMOBURNER64.dll 2020-01-13 08:04 - 2020-01-13 08:04 - 001899008 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\Dell\SupportAssistAgent\bin\x64\sqlite3.dll 2019-09-19 17:24 - 2019-09-19 17:31 - 001517568 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\WindowsApps\tiempo.com.ElTiempo14das_3.2.10.0_x64__1jw6nrrrzn4a6\sqlite3.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBCURL.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBEAY32.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\SSLEAY32.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\mjple\Desktop\FRST64.exe:SmartScreen [7] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer sites de confiance/sensibles ========== ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-04-11 09:17 - 2016-04-11 09:15 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-4059788170-855544290-2501102518-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\mjple\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 89.2.0.1 - 89.2.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Discord" HKU\S-1-5-21-4059788170-855544290-2501102518-1002\...\StartupApproved\StartupFolder: => "EvernoteClipper.lnk" HKU\S-1-5-21-4059788170-855544290-2501102518-1002\...\StartupApproved\StartupFolder: => "EvernoteTray.lnk" HKU\S-1-5-21-4059788170-855544290-2501102518-1002\...\StartupApproved\StartupFolder: => "Envoyer * OneNote.lnk<*>" HKU\S-1-5-21-4059788170-855544290-2501102518-1002\...\StartupApproved\StartupFolder: => "Executor.exe" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{9E46B026-4B10-4B6C-8B21-3CD98575F085}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony) FirewallRules: [{DD9CFBEF-3E18-4AB9-B467-2C81970AD1C1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{08AC440A-4DE9-4A7F-8F6A-AFAC05856DCE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{E2C8AA22-F0A2-41B5-941E-0AEA08F17552}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{14829658-2B8A-48BC-8820-2043BB02FCEE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BB1F8346-5D61-43E4-A16D-EA23A809AA4E}] => (Allow) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.EXE (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{998C95A3-4F4C-437C-A380-3FA5821C43E3}D:\programs\liberkey\apps\vlc\app\vlc\x64\vlc.exe] => (Block) D:\programs\liberkey\apps\vlc\app\vlc\x64\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{ACA8B61B-8A0A-403D-AFE1-435B81463757}D:\programs\liberkey\apps\vlc\app\vlc\x64\vlc.exe] => (Block) D:\programs\liberkey\apps\vlc\app\vlc\x64\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{1FF20757-87F3-4FB7-BD6B-A4A40924BB16}C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) FirewallRules: [TCP Query User{847A3304-724B-490D-A62C-60B769BA0BE3}C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) FirewallRules: [UDP Query User{7588EC97-EDDD-4874-A82B-7E50EE7F77C6}C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) FirewallRules: [TCP Query User{8D5422B5-9B41-413D-A615-5A9F41F6ED64}C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet pro 6830\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP) FirewallRules: [{EF7628CC-04DB-411B-B00C-8251F13FEFFF}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2DBCE100-5314-4421-93E2-7923271ED9AD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0D70D0B1-D4E7-441D-92BF-08333D9B58BE}] => (Allow) D:\Programs\Songr\Songr.exe (Xamasoft) [Fichier non signé] FirewallRules: [{F28FA46F-C775-43D5-942B-3EB6B78678F6}] => (Allow) D:\Programs\Songr\Songr.exe (Xamasoft) [Fichier non signé] FirewallRules: [{E8D1175B-4B2B-4CA0-BE8C-BFEFF3A61B39}] => (Allow) D:\Programs\Songr\Songr.exe (Xamasoft) [Fichier non signé] FirewallRules: [{4CF5FA51-6F7B-492B-81A4-51A83783629D}] => (Allow) D:\Programs\Songr\Songr.exe (Xamasoft) [Fichier non signé] FirewallRules: [TCP Query User{1B0B7DE7-4A16-485D-84DF-D8D257193F9B}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> ) FirewallRules: [UDP Query User{D45819F3-EB58-4A37-9C35-36FBFF34C170}C:\program files\calibre2\calibre.exe] => (Block) C:\program files\calibre2\calibre.exe (Kovid Goyal -> ) FirewallRules: [{EDE3C2FF-265D-4DCA-8A0B-975A69ABC44C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{26B78E66-5A00-49A7-B65C-021B12E8368F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{695C7DE8-452A-4791-9EA9-403739379A7A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8D4FC345-24A3-499A-98AC-289DED7228B8}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{98D83904-0153-4D1F-A7A6-179C33CC8B1D}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\85.0.564.41\msedgewebview2.exe => Pas de fichier FirewallRules: [{4F05741B-3546-433B-9CFB-08F2F70EE79B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{8196E653-6FEF-4D17-B901-B391DF2EAE8B}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3A368415-D770-4186-A47A-27BA3CF92254}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\85.0.564.44\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AA5E1FB7-ED60-4B5D-823C-BAA140500475}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{545DC9A5-D8B6-4839-9EB9-E08E23BFD4F6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{74BC53A6-06FF-4CEF-986F-DAD7228AD28A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9BB50169-5359-44C1-B619-9E2779BCB04F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:107.32 GB) (Free:30.53 GB) (28%) ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (09/02/2020 07:02:48 PM) (Source: Macrium Reflect) (EventID: 8290) (User: DESKTOP-T58TL4C) Description: The backup failed to complete successfully - Reason: Operation Cancelled Error: (09/02/2020 07:00:19 PM) (Source: Macrium Reflect) (EventID: 8290) (User: AUTORITE NT) Description: The backup failed to complete successfully - Reason: Backup aborted! - XML validation error Error: (09/02/2020 07:00:19 PM) (Source: Macrium Reflect) (EventID: 8289) (User: AUTORITE NT) Description: The backup XML definition file was invalid or not found Error: (09/02/2020 05:00:02 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (09/02/2020 05:00:01 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (09/02/2020 09:00:48 AM) (Source: Macrium Reflect) (EventID: 8290) (User: AUTORITE NT) Description: The backup failed to complete successfully - Reason: Backup aborted! - XML validation error Error: (09/02/2020 09:00:46 AM) (Source: Macrium Reflect) (EventID: 8289) (User: AUTORITE NT) Description: The backup XML definition file was invalid or not found Error: (09/02/2020 07:54:12 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur SauvegardeU (X:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Erreurs système: ============= Error: (09/02/2020 05:19:38 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Gestionnaire des cartes téléchargées est en attente de démarrage. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Dell Hardware Support s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Dell Data Vault Collector s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Carte de performance WMI s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Dell Data Vault Service API s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Application système COM+ s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Dell Data Vault Processor s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (09/02/2020 05:12:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Windows Defender: =================================== Date: 2020-09-02 04:53:09.8100000Z Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {29DF6F1E-439A-4801-8E41-F174DD5E7A62} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2020-08-29 05:19:59.0230000Z Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {A9B08AF2-57A0-4550-8643-1C01A6367F21} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2020-09-02 17:13:13.1880000Z Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.323.349.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.17400.5 Code d’erreur : 0x8024001e Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =================================== Date: 2020-09-02 19:26:12.9350000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:26:12.9350000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:25:57.9620000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:25:57.9310000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:25:57.8710000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:25:56.2910000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:25:56.2400000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. Date: 2020-09-02 19:25:56.1030000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: Dell Inc. A06 10/17/2011 Carte mère: Dell Inc. 0Y2MRG Processeur: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz Pourcentage de mémoire utilisée: 61% Mémoire physique - RAM - totale: 8174.44 MB Mémoire physique - RAM - disponible: 3145.59 MB Mémoire virtuelle totale: 11374.44 MB Mémoire virtuelle disponible: 5085.75 MB ==================== Lecteurs ================================ Drive c: (_1) (Fixed) (Total:107.32 GB) (Free:30.53 GB) NTFS Drive d: (_D) (Fixed) (Total:824.05 GB) (Free:350.74 GB) NTFS Drive u: (_U) (Fixed) (Total:931.51 GB) (Free:296.36 GB) NTFS Drive x: (SauvegardeU) (Fixed) (Total:931.51 GB) (Free:175.21 GB) NTFS \\?\Volume{1a41f0ae-0000-0000-0000-800200000000}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1A41F0AE) Partition 1: (Not Active) - (Size=39 MB) - (Type=DE) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=107.3 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=824.1 GB) - (Type=0F Extended) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 98EE13E6) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) Partition 00: (Active) - (Size=0) - (Type=00) ATTENTION ===> 0 byte partition bootkit. ========================================================== Disk: 2 (Size: 931.5 GB) (Disk ID: F92103FF) Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================