Additional scan result of Farbar Recovery Scan Tool (x86) Version: 22-11-2020 01 Ran by Tony (24-11-2020 15:50:08) Running from C:\Users\Tony\Downloads Microsoft Windows 7 Entreprise Service Pack 1 (X86) (2010-06-24 16:24:18) Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrator (S-1-5-21-448322351-3195172183-1875800185-500 - Administrator - Disabled) Guest (S-1-5-21-448322351-3195172183-1875800185-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-448322351-3195172183-1875800185-1002 - Limited - Enabled) Tony (S-1-5-21-448322351-3195172183-1875800185-1001 - Administrator - Enabled) => C:\Users\Tony ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Disabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189} AS: Microsoft Security Essentials (Disabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0} ==================== Installed Programs ====================== (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-448322351-3195172183-1875800185-1001\...\uTorrent) (Version: 3.5.3.44396 - BitTorrent Inc.) 7-Zip 4.65 (HKLM\...\7-Zip) (Version: - ) Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.453 - Adobe) Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.453 - Adobe) Adobe Reader XI (11.0.18) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.18 - Adobe Systems Incorporated) Apple Application Support (HKLM\...\{B3575D00-27EF-49C2-B9E0-14B3D954E992}) (Version: 1.5.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{85991ED2-010C-4930-96FA-52F43C2CE98A}) (Version: 3.1.0.62 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ArcSoft Panorama Maker 6 (HKLM\...\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}) (Version: 6.0.8.85 - ArcSoft) Bonjour (HKLM\...\{C2E4B5BD-32DB-4817-A060-341AB17C3F90}) (Version: 2.0.5.0 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.2.2212 - CDBurnerXP) CDDRV_Installer (HKLM\...\{0C826C5B-B131-423A-A229-C71B3CACCD6A}) (Version: 4.60 - Logitech) Hidden Centre Souris et Claviers Microsoft (HKLM\...\{0C41D003-E38E-4C8A-BA67-AFF061E27F3F}) (Version: 2.3.188.0 - Microsoft Corporation) Hidden Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden e-Carte Bleue Banque Populaire (HKLM\...\{B0900CB5-8EC0-43B4-9DAC-A32FE52DC864}) (Version: 2.2.7.0 - ) erLT (HKLM\...\{A498D9EB-927B-459B-85D6-DD6EF8C2C564}) (Version: 1.20.0137 - Logitech, Inc.) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 86.0.4240.198 - Google LLC) Google Earth Pro (HKLM\...\{59F21DFB-6977-434B-9CB9-67783D6E7B6B}) (Version: 7.3.3.7786 - Google) Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden iTunes (HKLM\...\{91F7F3F3-CE80-48C3-8327-7D24A0A5716A}) (Version: 9.2.1.5 - Apple Inc.) Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Junk Mail filter update (HKLM\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden KhalInstallWrapper (HKLM\...\{3101CB58-3482-4D21-AF1A-7057FC935355}) (Version: 2.00.0000 - Logitech) Hidden Logitech SetPoint (HKLM\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech) Micro Application - Architecte 3DHD Expert Cad (HKLM\...\{2C7FB3E3-A653-48A0-B290-885659E6ED5C}) (Version: 9.0R - ) Microsoft .NET Framework 4.8 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.8.03761 - Microsoft Corporation) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Standard Edition 2003 (HKLM\...\{9012040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) MobileMe Control Panel (HKLM\...\{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}) (Version: 3.1.6.0 - Apple Inc.) Module de compatibilité pour Microsoft Office System 2007 (HKLM\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Mozilla Firefox 72.0.2 (x86 fr) (HKLM\...\Mozilla Firefox 72.0.2 (x86 fr)) (Version: 72.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0.2.7321 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Nikon Message Center 2 (HKLM\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.0 - Nikon) Nikon Movie Editor (HKLM\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.6.0 - Nikon) NiouzeFire+ version 1.8.0 (HKLM\...\{A7E871FF-2989-4F74-8576-C3F8F4664A72}_is1) (Version: 1.8.0 - IdeoSi) Nuance PaperPort 12 (HKLM\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.) Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc) NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10 - NVIDIA Corporation) NVIDIA Stereoscopic 3D Driver (HKLM\...\NVIDIAStereo) (Version: 7.15.11.8634 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) PaperPort Image Printer (HKLM\...\{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}) (Version: 1.00.0001 - Nuance Communications, Inc.) PhotoFiltre (HKU\S-1-5-21-448322351-3195172183-1875800185-1001\...\PhotoFiltre) (Version: - ) Picture Control Utility (HKLM\...\{87441A59-5E64-4096-A170-14EFE67200C3}) (Version: 1.4.7 - Nikon) PVSonyDll (HKLM\...\{3D3E663D-4E7E-4577-A560-7ECDDD45548A}) (Version: 1.00.0001 - NVIDIA Corporation) Hidden QuickTime (HKLM\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.) Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5911 - Realtek Semiconductor Corp.) Safari (HKLM\...\{6C1E7AA1-44E9-446D-AAB2-0DE6D9EFEAB1}) (Version: 5.33.21.1 - Apple Inc.) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.) Scansoft PDF Professional (HKLM\...\{068724F8-D8BE-4B43-8DDD-B9FE9E49FD76}) (Version: - ) Hidden Skype™ 7.3 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.) Smart Switch (HKLM\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16084.4 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.16084.4 - Samsung Electronics Co., Ltd.) Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.) TeamViewer 5 (HKLM\...\TeamViewer 5) (Version: 5.0.9104 - TeamViewer GmbH) ViewNX 2 (HKLM\...\{E64C137C-D0B7-467A-B47F-460AAB30F0A3}) (Version: 2.6.0 - Nikon) VLC media player 1.1.0 (HKLM\...\VLC media player) (Version: 1.1.0 - VideoLAN) WikiMotInstaller version 1.0 (HKLM\...\{B55B479C-5CA9-41BD-9611-24BD3F9C39EA}_is1) (Version: 1.0 - WikiMot) Windows Live (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) World of Warplanes (HKLM\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1) (Version: - Wargaming.net) ==================== Custom CLSID (Whitelisted): ============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{08244EE6-92F0-47F2-9FC9-929BAA2E7235}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{0E5AAE11-A475-4C5B-AB00-C66DE400274E}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{1F486A52-3CB1-48FD-8F50-B8DC300D9F9D}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{23170F69-40C1-278A-1000-000100020000}\InprocServer32 -> C:\Program Files\7-Zip\7-zip.dll (Igor Pavlov) [File not signed] CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{4E77131D-3629-431C-9818-C5679DC83E81}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{66E8DCC7-97D2-4A89-8E08-D0610FF0878C}\InprocServer32 -> C:\Users\Tony\AppData\Local\Conduit\Community Alerts\Aler0.dll => No File CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{76765B11-3F95-4AF2-AC9D-EA55D8994F1A}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{B685BB59-1264-4ECF-B45F-31C2485C7A51}\InprocServer32 -> C:\Users\Tony\AppData\LocalLow\appbarioFR\prxtbapp0.dll => No File CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D}\InprocServer32 -> no filepath CustomCLSID: HKU\S-1-5-21-448322351-3195172183-1875800185-1001_Classes\CLSID\{DFFACDC5-679F-4156-8947-C5C76BC0B67F}\InprocServer32 -> no filepath ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2009-02-03] (Igor Pavlov) [File not signed] ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files\Spybot - Search & Destroy 2\SDECon32.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2009-02-03] (Igor Pavlov) [File not signed] ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2009-09-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files\Spybot - Search & Destroy 2\SDECon32.dll [2014-06-24] (Safer Networking Ltd. -> Safer-Networking Ltd.) ContextMenuHandlers1_S-1-5-21-448322351-3195172183-1875800185-1001: [7-ZIP] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2009-02-03] (Igor Pavlov) [File not signed] ContextMenuHandlers4_S-1-5-21-448322351-3195172183-1875800185-1001: [7-ZIP] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2009-02-03] (Igor Pavlov) [File not signed] ==================== Codecs (Whitelisted) ==================== ==================== Shortcuts & WMI ======================== (The entries could be listed to be restored or removed.) ShortcutWithArgument: C:\Users\Tony\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --use-spdy=off --disable-quic ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --use-spdy=off --disable-quic ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --use-spdy=off --disable-quic ==================== Loaded Modules (Whitelisted) ============= 2015-01-21 03:06 - 2015-01-21 03:06 - 000061440 _____ () [File not signed] C:\Program Files\CCleaner\lang\lang-1036.dll 2012-04-01 19:43 - 2008-02-27 13:54 - 000061440 _____ () [File not signed] C:\Program Files\e-Carte Bleue Banque Populaire\ecbl-nxbp.dll 2012-01-28 10:41 - 2007-08-21 13:32 - 000098304 _____ () [File not signed] C:\Windows\System32\redmonnt.dll 2002-02-18 22:50 - 2002-02-18 22:50 - 000024576 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\1036\mdmui.dll 2011-06-18 02:01 - 2011-06-18 02:01 - 000097280 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL 2011-06-18 02:01 - 2011-06-18 02:01 - 001093120 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL 2011-06-18 02:01 - 2011-06-18 02:01 - 000061440 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80FRA.DLL 2009-07-08 10:42 - 2009-07-08 10:42 - 001097728 _____ (NVIDIA Corporation) [File not signed] C:\Windows\system32\NVSVCR.DLL 2012-04-01 19:43 - 2007-10-10 07:56 - 000147456 _____ (Orbiscom Ltd. All rights reserved.) [File not signed] C:\Program Files\e-Carte Bleue Banque Populaire\CertDlg.dll ==================== Alternate Data Streams (Whitelisted) ======== (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:373E1720 [280] ==================== Safe Mode (Whitelisted) ================== ==================== Association (Whitelisted) ================= (If an entry is included in the fixlist, the registry item will be restored to default or removed.) HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.exe: => <==== ATTENTION HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.reg: => <==== ATTENTION HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.bat: => <==== ATTENTION HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.cmd: => <==== ATTENTION HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.com: => <==== ATTENTION HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Classes\.scr: => <==== ATTENTION ==================== Internet Explorer (Version 11) (Whitelisted) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/ HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://fr.msn.com/?ocid=iehp SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll [2009-02-06] (Zeon Corporation) [File not signed] BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-02-21] (Oracle America, Inc. -> Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corporation -> Microsoft Corp.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-21] (Oracle America, Inc. -> Oracle Corporation) BHO: OffresShopping -> {F4A9D6FE-8C16-4D72-B845-7AE0FFAB2DAB} -> C:\Program Files\WikiMotInstaller\BHO.dll [2015-02-10] (Prestafind) [File not signed] Toolbar: HKU\S-1-5-21-448322351-3195172183-1875800185-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) [File not signed] ==================== Hosts content: ========================= (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:04 - 2009-06-10 22:39 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Other Areas =========================== (Currently there is no automatic fix for this section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Windows Live\Shared;C:\Program Files\QuickTime\QTSystem\;%PROGRAMFILES%\Internet Explorer;C:\Program Files\Skype\Phone\ HKU\S-1-5-21-448322351-3195172183-1875800185-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tony\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 89.2.0.1 - 89.2.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (If an entry is included in the fixlist, it will be removed.) MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: AppleSyncNotifier => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe MSCONFIG\startupreg: ccApp => "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" MSCONFIG\startupreg: IndexSearch => "C:\Program Files\Nuance\PaperPort\IndexSearch.exe" MSCONFIG\startupreg: ISUSPM => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: Kernel and Hardware Abstraction Layer => KHALMNPR.EXE MSCONFIG\startupreg: Nikon Message Center 2 => C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe -s MSCONFIG\startupreg: PaperPort PTD => "C:\Program Files\Nuance\PaperPort\pptd40nt.exe" MSCONFIG\startupreg: PDF5 Registry Controller => C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe MSCONFIG\startupreg: PDFHook => C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe MSCONFIG\startupreg: PPort12reminder => "C:\Program Files\Nuance\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\12\Config\Ereg\Ereg.ini" MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s MSCONFIG\startupreg: uTorrent => "C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED ==================== FirewallRules (Whitelisted) ================ (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) C:\Windows\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{75E1A914-DE8F-4AA2-85EF-2306017636F4}] => (Allow) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe => No File FirewallRules: [{71BD532D-6BE5-42C5-9648-ABB3D7E4AFDA}] => (Allow) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe => No File FirewallRules: [{1FCCD9C0-3371-45DE-88CE-F06D836BEA38}] => (Allow) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE => No File FirewallRules: [{F0086393-43FC-4DFE-B1EF-A03C1E23CD2A}] => (Allow) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE => No File FirewallRules: [{D450E977-E055-4944-81D5-67AE4F3F92EC}] => (Allow) C:\Program Files\Common Files\Symantec Shared\ccApp.exe => No File FirewallRules: [{4BF6B316-3979-42B5-A698-60739CDACB77}] => (Allow) C:\Program Files\Common Files\Symantec Shared\ccApp.exe => No File FirewallRules: [{ACE99080-5BF7-4595-9C7D-25F4A615D0CE}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{DD65B65A-0F0C-49CB-85E4-E2936FED9E91}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{64702ABD-E9E6-444B-BA02-EF11FC5530C6}] => (Allow) C:\Program Files\TeamViewer\Version5\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [{B0AA8D3E-D3E4-4C70-942A-961DB01663E2}] => (Allow) C:\Program Files\TeamViewer\Version5\TeamViewer.exe (TeamViewer GmbH -> TeamViewer GmbH) FirewallRules: [TCP Query User{BE37D652-3DEC-4270-8922-D174150C3934}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe => No File FirewallRules: [UDP Query User{8C7CB5AB-7A6C-4696-9E4A-293F84D3F1DD}C:\program files\google\google earth\client\googleearth.exe] => (Allow) C:\program files\google\google earth\client\googleearth.exe => No File FirewallRules: [{9BE908EF-DC8D-4F75-8375-BB9AE8FDA1D3}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1D3B7BE5-BBBE-4EE2-AD5F-39DC852B3CEE}] => (Allow) LPort=2869 FirewallRules: [{747ABFD7-CD1D-4C24-B384-19AC2E375C59}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{B73994E8-5394-4DF9-8AF8-DB017BAC1932}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe () [File not signed] FirewallRules: [UDP Query User{8F273D93-D0A0-496E-83F9-CBE0687DC1CB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe () [File not signed] FirewallRules: [TCP Query User{ECEC3D00-11DE-4166-B562-8395D9E0014F}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe => No File FirewallRules: [UDP Query User{70DD39DD-EC57-4CF7-A5F2-AA78882C3E73}C:\program files\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files\google\google earth\plugin\geplugin.exe => No File FirewallRules: [TCP Query User{C5363465-0CC9-4909-9C9D-4CBF0BFCF3AB}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{5610E717-577D-4194-8B19-321275B5FFA3}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FFE94143-DDBB-426E-B2EE-D90C2E179E13}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{52BD9F37-D873-470B-B180-41B3036A316C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{4A842D5A-29D6-49E6-932D-479A22C34981}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe () [File not signed] FirewallRules: [UDP Query User{396C8FFD-1932-4036-AAFC-20CE08101570}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe () [File not signed] FirewallRules: [TCP Query User{703906B2-C626-4F19-9AE0-AB0BFBC552BF}C:\program files\itunes\itunes.exe] => (Block) C:\program files\itunes\itunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{77E69FDA-E8CB-40C6-9E17-ECF3F2774B1B}C:\program files\itunes\itunes.exe] => (Block) C:\program files\itunes\itunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7722C97D-6D71-4107-A1AA-3FB27C584656}] => (Allow) C:\Users\Tony\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\38Z724TX\SweetImSetup[1].exe => No File FirewallRules: [{042A2D27-B3FE-4F57-9A72-FA90BB1EB4EF}] => (Allow) C:\Users\Tony\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\38Z724TX\SweetImSetup[1].exe => No File FirewallRules: [{C68998EA-4EA2-437B-9BD5-DAC062627311}] => (Allow) C:\Users\Tony\AppData\Local\Temp\SweetIMReinstall\SweetImSetup[1].exe => No File FirewallRules: [{B103CB64-1186-42E0-A98A-0806254CAA1A}] => (Allow) C:\Users\Tony\AppData\Local\Temp\SweetIMReinstall\SweetImSetup[1].exe => No File FirewallRules: [{1766C53E-D52B-4073-A8A6-D89D40D31DB0}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{2475F132-564D-4F0C-B4ED-DBEC48577A9E}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{58E49F5F-2190-4E96-A03C-5289939873AA}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{AD0A6554-B8CF-4B0E-A04C-BA0BC5B342AF}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{FDB9FC0F-7E8F-4A6D-AF40-3755D5BF8946}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe FirewallRules: [TCP Query User{56B8CFDB-C75C-4D74-8BBF-4F63580EBD2E}C:\appchereau\wowplauncher.exe] => (Allow) C:\appchereau\wowplauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed] FirewallRules: [UDP Query User{F89EF308-78C2-4CC9-9331-05E2F2CCE3C2}C:\appchereau\wowplauncher.exe] => (Allow) C:\appchereau\wowplauncher.exe (Wargaming.net LLP -> Wargaming.net) [File not signed] FirewallRules: [{6CC21AC4-51C4-4070-95B5-7708E89D4557}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F3DE49D9-A8AB-4430-B3E4-CD985C1DF433}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{EFE8AC2B-5307-4D96-91C7-387C85C8A51A}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{1C7EB8EE-DFC3-4E3E-B98A-4C9C26D8015A}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{D773D847-0549-48A3-85E7-F2717C3C285E}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{A3CBDF98-B016-4E5E-A3B2-3716D9AE4AAE}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{59150073-FD15-49EC-9756-2EFD520D2F90}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{F590E5FC-6D9B-4162-B328-463B3759F217}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{FC55EAAD-7658-45D0-B594-0156447FECB7}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{810A687B-C5DB-448F-9381-80D9D2E6C928}] => (Allow) C:\Users\Tony\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{3D4C3346-2372-4DCC-A889-43830EF377D5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{CFBC532B-CD29-499D-BEDE-519C0A96FB62}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{15515191-5E7F-4088-81F5-1B0240F879E5}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BBF61D20-8F97-4153-A98C-99B73CAD881F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater StandardProfile\AuthorizedApplications: [C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service ==================== Restore Points ========================= 28-09-2020 17:56:25 Windows Update 05-10-2020 14:08:34 Windows Update 10-10-2020 12:49:18 Windows Update 14-10-2020 13:26:03 Windows Update 29-10-2020 23:17:47 Windows Update 05-11-2020 14:23:03 Windows Update 09-11-2020 18:03:47 Windows Update 12-11-2020 21:00:55 Windows Update 18-11-2020 09:32:53 Windows Update 22-11-2020 13:11:40 Windows Update ==================== Faulty Device Manager Devices ============ ==================== Event log errors: ======================== Application errors: ================== Error: (11/23/2020 05:54:15 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST (1).exe version 22.11.2020.1 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1aec Heure de début : 01d6c1b88e7c43a0 Heure de fin : 17 Chemin d’accès de l’application : C:\Users\Tony\Downloads\FRST (1).exe ID de rapport : Error: (11/23/2020 05:32:51 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Explorer.EXE, version : 6.1.7601.23537, horodatage : 0x57c44cc4 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x031f0fef ID du processus défaillant : 0x18c Heure de début de l’application défaillante : 0x01d6c19c5c086fa0 Chemin d’accès de l’application défaillante : C:\Windows\Explorer.EXE Chemin d’accès du module défaillant: unknown ID de rapport : 87245400-2da9-11eb-9989-6cf0492b43e8 Error: (11/23/2020 04:29:02 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante explorer.exe, version : 6.1.7601.23537, horodatage : 0x57c44cc4 Nom du module défaillant : SHELL32.dll, version : 6.1.7601.24468, horodatage : 0x5ce88549 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0004b150 ID du processus défaillant : 0x16c Heure de début de l’application défaillante : 0x01d6c1ad580abcd0 Chemin d’accès de l’application défaillante : C:\Windows\explorer.exe Chemin d’accès du module défaillant: C:\Windows\system32\SHELL32.dll ID de rapport : 9d2a1450-2da0-11eb-9989-6cf0492b43e8 Error: (11/01/2020 05:23:46 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY) Description: Les chaînes de performance dans la valeur de Registre Performance sont endommagées lors du traitement du fournisseur de compteurs d’extension Performance. La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans la section Données, la valeur LastCounter est le deuxième DWORD dans la section Données, et la valeur LastHelp est le troisième DWORD dans la section Données. Error: (11/01/2020 05:10:58 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY) Description: Les chaînes de performance dans la valeur de Registre Performance sont endommagées lors du traitement du fournisseur de compteurs d’extension Performance. La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans la section Données, la valeur LastCounter est le deuxième DWORD dans la section Données, et la valeur LastHelp est le troisième DWORD dans la section Données. Error: (10/29/2020 11:22:38 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY) Description: Les chaînes de performance dans la valeur de Registre Performance sont endommagées lors du traitement du fournisseur de compteurs d’extension Performance. La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans la section Données, la valeur LastCounter est le deuxième DWORD dans la section Données, et la valeur LastHelp est le troisième DWORD dans la section Données. Error: (06/22/2020 06:52:48 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme WINWORD.EXE version 11.0.8411.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 11f0 Heure de début : 01d648bd96e5a6e0 Heure de fin : 145 Chemin d’accès de l’application : C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE ID de rapport : 2877eaa1-b4b1-11ea-9daa-6cf0492b43e8 Error: (06/09/2020 08:56:04 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT AUTHORITY) Description: Les chaînes de performance dans la valeur de Registre Performance sont endommagées lors du traitement du fournisseur de compteurs d’extension Performance. La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans la section Données, la valeur LastCounter est le deuxième DWORD dans la section Données, et la valeur LastHelp est le troisième DWORD dans la section Données. System errors: ============= Error: (11/23/2020 05:55:32 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Le service NVIDIA Display Driver Service a signalé un état actuel 32 non valide. Error: (11/22/2020 01:34:24 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Le service NVIDIA Display Driver Service a signalé un état actuel 32 non valide. Error: (11/18/2020 10:56:56 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Le service NVIDIA Display Driver Service a signalé un état actuel 32 non valide. Error: (11/12/2020 09:08:40 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Le service NVIDIA Display Driver Service a signalé un état actuel 32 non valide. Error: (11/12/2020 03:50:33 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 15:49:17 le ‎12/‎11/‎2020 n’était pas prévu. Error: (11/12/2020 01:52:31 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: ) Description: Logiciel anti-programme malveillant Microsoft a rencontré une erreur lors de la tentative de mise à jour des signatures. Nouvelle version des signatures : Version précédente des signatures : 1.327.794.0 Source de la mise à jour : Serveur Microsoft Update Étape de la mise à jour : Installer Chemin d'accès source : http://www.microsoft.com Type de signature : Antivirus Type de la mise à jour : Complète Utilisateur : NT AUTHORITY\SYSTEM Version actuelle du moteur : Version précédente du moteur : 1.1.17600.5 Code d'erreur : 0x80240017 Description de l'erreur : An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. Error: (11/09/2020 11:20:54 PM) (Source: Service Control Manager) (EventID: 7016) (User: ) Description: Le service NVIDIA Display Driver Service a signalé un état actuel 32 non valide. Error: (11/09/2020 06:12:41 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: Le serveur {1F87137D-0E7C-44D5-8C73-4EFFB68962F2} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. ==================== Memory info =========================== BIOS: Award Software International, Inc. F4 05/07/2010 Motherboard: Gigabyte Technology Co., Ltd. M68M-S2P Processor: AMD Sempron(tm) 140 Processor Percentage of memory in use: 87% Total physical RAM: 1790.49 MB Available physical RAM: 230.29 MB Total Virtual: 3580.98 MB Available Virtual: 1440.66 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:465.66 GB) (Free:257.97 GB) NTFS \\?\Volume{405409a3-7fac-11df-82b1-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==================== MBR & Partition Table ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 123023E5) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS) ==================== End of Addition.txt =======================