Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-12-2020 Exécuté par charr (22-12-2020 12:17:33) Exécuté depuis C:\Users\charr\Desktop Windows 10 Home Version 2004 19041.685 (X64) (2020-09-25 01:02:32) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-1333090055-3807291771-4262163453-500 - Administrator - Disabled) charr (S-1-5-21-1333090055-3807291771-4262163453-1001 - Administrator - Enabled) => C:\Users\charr DefaultAccount (S-1-5-21-1333090055-3807291771-4262163453-503 - Limited - Disabled) defaultuser0 (S-1-5-21-1333090055-3807291771-4262163453-1000 - Limited - Disabled) => C:\Users\defaultuser0 Invité (S-1-5-21-1333090055-3807291771-4262163453-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1333090055-3807291771-4262163453-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton Security (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75} AV: Darty Sécurité by F-Secure (Enabled - Up to date) {01EEC97C-28E5-34E7-6F5F-47CED8192856} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Darty Sécurité by F-Secure (Enabled - Up to date) {31A9D001-F96D-024E-EACB-7693DE78B727} FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\uTorrent) (Version: 3.5.5.45798 - BitTorrent Inc.) abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.08.2001 - Acer Incorporated) abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated) Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3024 - Acer Incorporated) Acer Collection (HKLM-x32\...\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}) (Version: 1.01.3011 - Acer Incorporated) Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer) Acer Jumpstart (HKLM-x32\...\{4B92BFBE-917D-4FA1-97E9-DB9D91286E90}) (Version: 3.0.18135.100 - Acer) Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated) Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3008 - Acer Incorporated) Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.03.3009 - Acer Incorporated) AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated) Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.1.0 - Electronic Arts, Inc.) App Explorer (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\Host App Service) (Version: 0.273.4.186 - SweetLabs) <==== ATTENTION Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22532 - Microsoft Corporation) Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.) CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5917.02 - CyberLink Corp.) Darty Cloud v3.2.0.0 (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\{736FD45F-F62C-4389-B763-D7581F80980A}_is1) (Version: 3.2.0.0 - Darty) Darty Mot de Passe (HKLM-x32\...\{5728AAEE-D1B6-4C5A-9C2E-5DEC8FDA2562}) (Version: 4.9.59 - Darty Corporation) Darty Mot de Passe: User Data (HKLM-x32\...\{F6A4621C-F31F-42E2-BD11-632615967A56}) (Version: 1.1.0.0 - F-Secure Corporation) Darty Sécurité (HKLM-x32\...\{46B8A013-32EE-4158-A401-E25B63FE5D28}) (Version: 17.9 - F-Secure Corporation) DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3019 - Acer Incorporated) Epic Games Launcher (HKLM-x32\...\{6653362F-9365-4A3C-9BF8-71494529DE06}) (Version: 1.1.236.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden GeoGebra Classic (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\GeoGebra_6) (Version: 6.0.498 - International GeoGebra Institute) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1025 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4534 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1633.3 - Intel Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.13426.20332 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - ) Microsoft Office Famille et Étudiant 2016 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 16.0.13426.20332 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\Teams) (Version: 1.3.00.30866 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{dab68466-3a7d-41a8-a5cf-415e3ff8ef71}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation) Mises à jour NVIDIA 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Molotov (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\Molotov) (Version: 4.3.0 - Molotov) Mozilla Firefox 84.0 (x64 en-US) (HKLM\...\Mozilla Firefox 84.0 (x64 en-US)) (Version: 84.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 84.0.0.7650 - Mozilla) NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13426.20332 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13426.20332 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13426.20332 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.13426.20332 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 10.5.46.29856 - Electronic Arts, Inc.) Panneau de configuration NVIDIA 376.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 376.54 - NVIDIA Corporation) Hidden Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10388 - Qualcomm Atheros) Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.278 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.21292 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8569 - Realtek Semiconductor Corp.) SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden Soda PDF Desktop 11 (HKLM-x32\...\SodaDesktop11) (Version: 11.2.45.1756 - LULU Software) Soda PDF Desktop 11 Asian Fonts Pack (HKLM\...\{00139DE0-09EA-42EF-AAE2-24A5FB4BFE39}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Convert Module (HKLM\...\{7538FE32-BDF5-4B10-B53B-44C723735399}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Create Module (HKLM\...\{F54FFEFA-6E61-4F12-AB81-5FC01260E34F}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Edit Module (HKLM\...\{64F42A71-53D2-402C-8BE9-49118B96BAFA}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Forms Module (HKLM\...\{EF13AD6E-66C8-4C99-A6FD-256D0845AA03}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Insert Module (HKLM\...\{0D579E32-1D69-4FA2-99AD-145734AA91AD}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 OCR TESS Module (HKLM\...\{CD22BB33-A14A-46BA-A06D-DCBB99E522FC}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Review Module (HKLM\...\{D1B33A4E-D487-490E-965F-EFEDBDC9D122}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 Secure Module (HKLM\...\{37721FD1-C1B0-421A-92CF-C0491AC20DB2}) (Version: 11.2.32.6014 - LULU Software) Hidden Soda PDF Desktop 11 View Module (HKLM\...\{3741D06C-DB5D-49CE-91AF-F78F9CD96692}) (Version: 11.2.32.6014 - LULU Software) Hidden Spotify (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\Spotify) (Version: 1.1.47.684.g136419d9 - Spotify AB) Spotify Weblink (HKLM-x32\...\{8CADF0CB-E834-4019-9B11-B84E051F2A8E}) (Version: 1.16.1210 - Acer) TI Connect CE (HKLM-x32\...\{6FE90E22-9AFA-4895-9115-5565A204C577}) (Version: 5.4.0.1181 - Texas Instruments Inc.) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) Zoom (HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\...\ZoomUMX) (Version: 5.3.2 (53291.1011) - Zoom Video Communications, Inc.) Packages: ========= Acer Collection -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCollection_1.1.3013.0_x64__48frkmn4z8aw4 [2018-10-20] (Acer Incorporated) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.) Booking.com -> C:\Program Files\WindowsApps\Booking.com_1.0.1606.2210_x64__96rgg7pjt343r [2017-03-23] (CN=Acer Incorporated) Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-20] (king.com) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.183.600.0_x86__kgqvnymyfvs32 [2020-12-12] (king.com) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-09] (Canon Inc.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-28] (Microsoft Corporation) eBay -> C:\Program Files\WindowsApps\eBay_1.0.1606.2210_x64__96rgg7pjt343r [2017-03-23] (CN=Acer Incorporated) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2020-12-20] (HP Inc.) Les Échecs Lv.100 -> C:\Program Files\WindowsApps\6918E89D.THECHESSLV.100_1.3.6.0_x64__66n08swfvvka0 [2020-12-12] (UNBALANCE corp.) [MS Ad] March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_5.3.0.5_x86__h6adky7gbf63m [2020-12-20] (Gameloft SE) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-14] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-23] (Microsoft Studios) [MS Ad] Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.20102.0_x64__8wekyb3d8bbwe [2020-12-20] (Microsoft Studios) MobileDiscord PTB -> C:\Program Files\WindowsApps\11359TimothyLiang.MobileDiscordPTB_1.1.7.0_x64__x50kx86and41j [2019-06-18] (Timothy Liang) Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-02-15] (MAGIX) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-18] (Netflix, Inc.) PDF Office : PDF Editor ,Reader , Merger ,Create PDF ,Merge Scanned Pages,Annotate PDF,Watermark on PDF -> C:\Program Files\WindowsApps\58337MediaAppsDev.PDFOfficePDFEditorReaderMergerCr_1.0.60.0_x64__fwxdebw7hh1dt [2020-12-20] (Media Apps Dev) PDF Reader Maker Creator & Editor : Merge,Rotate,Annotate &Write Text On PDF -> C:\Program Files\WindowsApps\25223MovieMakerApps.PDFReaderMakerCreatorEditorMer_1.0.33.0_x64__b59072y458cte [2020-12-20] (MovieMakerApps) WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.82.0_x64__qt5r5pa5dyg8m [2020-01-02] (WildTangent Games) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1333090055-3807291771-4262163453-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\charr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20275.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-1333090055-3807291771-4262163453-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\charr\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20244.4\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers: [ 0ShareboxUpToDateOverlayIcon] -> {8167AF6A-AB2F-4ACA-940B-9FCB7700767E} => C:\Users\charr\AppData\Local\Pack Sérénité\Darty Cloud\bin\Sharebox.ShellIntegration.DLL [2019-05-10] (Oodrive -> Oodrive) ShellIconOverlayIdentifiers: [ 1ShareboxSyncOverlayIcon] -> {76344480-04C1-4D15-A0A5-578881CEF415} => C:\Users\charr\AppData\Local\Pack Sérénité\Darty Cloud\bin\Sharebox.ShellIntegration.DLL [2019-05-10] (Oodrive -> Oodrive) ShellIconOverlayIdentifiers: [ 2ShareboxErrorOverlayIcon] -> {3976090B-700F-433D-93B0-2D2BC93C0099} => C:\Users\charr\AppData\Local\Pack Sérénité\Darty Cloud\bin\Sharebox.ShellIntegration.DLL [2019-05-10] (Oodrive -> Oodrive) ShellIconOverlayIdentifiers: [ 4ShareboxIgnoredOverlayIcon] -> {78A2A1F2-1584-4334-A4A0-D6E398C5A5AB} => C:\Users\charr\AppData\Local\Pack Sérénité\Darty Cloud\bin\Sharebox.ShellIntegration.DLL [2019-05-10] (Oodrive -> Oodrive) ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers: [F-Secure DataGuard Icon Overlay] -> {CA789262-D278-40F7-AC12-19C0395F9DD9} => C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\FsShellExtension64.dll [2020-11-03] (F-Secure Corporation -> F-Secure Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers1: [SodaPDFDesktop11_ManagerExt] -> {95288ec1-ce0d-11e8-b453-40167e6e7313} => C:\Program Files\Soda PDF Desktop 11\context-menu.dll [2019-10-09] (LULU Software -> LULU Software) ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\NavShExt.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\NavShExt.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_82119d956c80af5a\igfxDTCM.dll [2017-02-07] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-12-29] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\buShell.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.19.8.65\NavShExt.dll [2019-09-11] (Symantec Corporation -> Symantec Corporation) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2017-03-23 03:11 - 2016-06-14 21:01 - 001298640 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll 2017-03-23 03:12 - 2016-06-14 21:01 - 001767944 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé] C:\WINDOWS\system32\nvspcap64.dll 2019-07-09 14:38 - 2019-07-09 14:38 - 000449536 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] C:\Program Files\Soda PDF Desktop 11\libcurl.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\Public\AppData:CSM [466] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [482] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-15] (Microsoft Corporation -> Microsoft Corporation) BHO: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\http\1608129094\browser\fs_ie_https\fs_ie_https64.dll [2020-12-16] (F-Secure Corporation -> F-Secure Corporation) BHO: Soda PDF Desktop 11 Helper -> {9703de71-ce0d-11e8-9c83-40167e6e7313} -> C:\Program Files\Soda PDF Desktop 11\creator\plugins\IEAddin\creator-ie-helper.dll [2019-10-09] (LULU Software -> LULU Software) BHO-x32: Browsing Protection by F-Secure -> {45BBE08D-81C5-4A67-AF20-B2A077C67747} -> C:\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\http\1608129094\browser\fs_ie_https\fs_ie_https.dll [2020-12-16] (F-Secure Corporation -> F-Secure Corporation) BHO-x32: Soda PDF Desktop 11 Helper -> {9703de71-ce0d-11e8-9c83-40167e6e7313} -> C:\Program Files (x86)\Soda PDF Desktop 11\creator\plugins\IEAddin\creator-ie-helper.dll [2019-10-09] (LULU Software -> LULU Software) Toolbar: HKLM - Soda PDF Desktop 11 Creator - {970516f0-ce0d-11e8-8baa-40167e6e7313} - C:\Program Files\Soda PDF Desktop 11\creator\plugins\IEAddin\creator-ie-plugin.dll [2019-10-09] (LULU Software -> LULU Software) Toolbar: HKLM-x32 - Soda PDF Desktop 11 Creator - {970516f0-ce0d-11e8-8baa-40167e6e7313} - C:\Program Files (x86)\Soda PDF Desktop 11\creator\plugins\IEAddin\creator-ie-plugin.dll [2019-10-09] (LULU Software -> LULU Software) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-12-07] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-07-16 12:47 - 2019-01-08 18:28 - 000000839 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1333090055-3807291771-4262163453-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\acer01.jpg DNS Servers: 192.168.43.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{B7810595-0ACC-49A1-8401-EB613194332A}C:\users\charr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\charr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{955E1B02-49BF-40EB-B514-D025B13DC3F1}C:\users\charr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\charr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{7A6D8924-E48C-4DBE-8EC3-A4AA2A813D0B}] => (Allow) C:\Users\charr\AppData\Local\Programs\Opera\71.0.3770.148\opera.exe => Pas de fichier FirewallRules: [{87257ECD-5323-48C5-B0F4-59F3F1487FDD}] => (Allow) C:\Users\charr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{461B37CF-0E84-4523-9FE9-C8C3EB60B521}] => (Allow) C:\Users\charr\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{0FA92D93-C827-41A3-81CC-1CF36CDB7694}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{6DE1BB38-5751-4540-9BE1-35B9B6A9AB92}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{88DA3A1B-3DC9-4E6E-9EF5-146F78FE297A}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [TCP Query User{16FE1D76-AEC1-4B62-AE63-192FC961AE2D}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Block) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{00844F12-40E1-40B0-86AA-E84196853930}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{2346884C-7199-4936-9FDB-8C1463AB92A7}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{854B80D5-F6E2-4218-8691-56BB01386023}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{80A642F2-DA44-4861-BAE5-098C1F2DFC3B}C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win32\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [{4704881D-127C-4049-9C0C-B5FEA51048B5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{EECF20BD-09F8-45FE-858A-1BA58322AE36}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{EEA847D1-628C-48F5-BF80-01B02504C94A}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{BB7DD493-7CB9-4A32-A068-2EDA2F6E583E}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer) FirewallRules: [{17AF8D32-CE78-4369-B285-E783DF0C5C74}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{F39104AE-599F-4B54-9FDB-B22808DFB8F3}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer) FirewallRules: [{8258DDD9-0ABA-40EE-BB98-6E437576A6BE}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{2AEC4FAF-12C1-4765-956C-2F7753712B30}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology) FirewallRules: [{AE6EDB41-17E8-4E96-8013-0CC6D60C3360}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{6AA5113A-D722-4C59-A2F7-800F6B3AC6B8}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{A8B4BA90-013F-48B8-9C12-9F9A177C3F24}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe => Pas de fichier FirewallRules: [{9A3BFA4F-C240-4777-9A10-E9EF57B58869}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe => Pas de fichier FirewallRules: [{74601FBB-9203-4094-A02F-502284B272B6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe => Pas de fichier FirewallRules: [{9B046570-0A1B-4E55-8A56-DB84DA16481A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{1F69C039-448F-4622-96ED-81FB230D1D59}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{AD3D1FA8-0573-4776-B69E-8C876F4064FF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3BA60250-0B12-4ADA-BF3D-F1FBB439A3EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{422323EE-AA8D-4A69-8C62-3352AE15D918}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{40076A62-6F5D-4CD6-93F2-D89F024C13C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0A4548FD-D99C-422B-8498-C02A4207F9D7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe => Pas de fichier FirewallRules: [{9E9B8B5F-B4C4-437A-B911-D5FA1B9B7D9B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe => Pas de fichier FirewallRules: [{79BBB0D6-5796-4581-9C99-A96EBDDEA5D4}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{EB182B83-B556-44B7-9692-09F5C1A7E9A5}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{2ACD5184-71F8-4097-B9F2-C9AA0E10880B}C:\program files (x86)\origin games\apex\r5apex.exe] => (Block) C:\program files (x86)\origin games\apex\r5apex.exe (NVIDIA GameStream Server -> Respawn Entertainment) [Fichier non signé] FirewallRules: [UDP Query User{9C25ACF8-FC5C-420B-8B33-31467365C544}C:\program files (x86)\origin games\apex\r5apex.exe] => (Block) C:\program files (x86)\origin games\apex\r5apex.exe (NVIDIA GameStream Server -> Respawn Entertainment) [Fichier non signé] FirewallRules: [{3ADCDBA8-A626-4A36-8FB0-D016A2D567EE}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{020472C4-0CA9-45BB-BD7B-D7665886F6A4}] => (Allow) C:\Program Files (x86)\Origin Games\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd) FirewallRules: [{26DB0F49-B3CE-4D3F-BAC7-2DD2C9D6368F}] => (Allow) C:\Users\charr\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{CB0C0EEF-C1FB-472B-9AA0-DAE89FC1CB2B}] => (Allow) C:\Users\charr\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{799445A0-80E1-40C7-B286-BEBF0C9FD3B2}] => (Allow) C:\Users\charr\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [TCP Query User{D452EC02-4406-4DE9-BC4A-39EFB1B211EC}C:\users\charr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\charr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{4946A0F8-DC54-463C-AC42-6F4089399BEB}C:\users\charr\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\charr\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{39CFDA1A-CDAB-482C-9C29-6CBDF4F687CC}C:\users\charr\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\charr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{70177ADC-2362-4223-B3BC-381971A36ABA}C:\users\charr\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\charr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{4FD58393-012E-434A-BB17-470AC63699D9}C:\users\charr\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\charr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{D0517901-2EB3-461D-9845-0C4E1D327D0F}C:\users\charr\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\charr\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3EC1622C-E767-414F-9462-974B0D253EEC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{96623C4C-8802-4FD8-AF64-52E3A48EE53F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{84BC2E6D-84F6-4D69-87FD-BD30F45B226E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2798CE4B-ED6A-4B90-9AAA-6886139783D4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{2CE66F66-7931-4C12-891E-4E4CB8C07927}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{03418308-75C3-4A52-8B80-D478FCF9B135}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Points de restauration ========================= 12-12-2020 13:59:15 Programme d’installation pour les modules Windows 20-12-2020 14:56:36 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (12/21/2020 09:35:06 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (12/20/2020 08:23:42 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (12/20/2020 08:21:55 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (12/20/2020 08:17:44 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {586c8ce7-60e1-4cfb-9955-de71b2eb3b17} Error: (12/20/2020 10:53:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante DllHost.exe, version : 10.0.19041.546, horodatage : 0xb850de5d Nom du module défaillant : combase.dll, version : 10.0.19041.662, horodatage : 0x8f79024d Code d’exception : 0xc0000005 Décalage d’erreur : 0x0010e7ca ID du processus défaillant : 0x4174 Heure de début de l’application défaillante : 0x01d6d54061e8307a Chemin d’accès de l’application défaillante : C:\WINDOWS\SysWOW64\DllHost.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\combase.dll ID de rapport : dd7542bb-b66b-4c80-829b-6a7546ddcc14 Nom complet du package défaillant : Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c ID de l’application relative au package défaillant : App Error: (12/20/2020 10:45:33 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-1S0AMNQ0) Description: Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy-2147023878 Error: (12/18/2020 04:21:03 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7242969 Error: (12/18/2020 04:21:03 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 7242969 Erreurs système: ============= Error: (12/20/2020 12:14:08 PM) (Source: F-Secure Gatekeeper) (EventID: 1) (User: ) Description: Event-ID 1 Error: (12/20/2020 11:20:00 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Mozilla Maintenance Service s’est arrêté avec l’erreur : Fonction incorrecte. Error: (12/20/2020 11:05:51 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9WZDNCRFJ364-MICROSOFT.SKYPEAPP. Error: (12/20/2020 10:45:36 AM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-1S0AMNQ0) Description: Le serveur microsoft.windowscommunicationsapps_16005.13426.20316.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/18/2020 02:06:01 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Service Broker du moniteur d'exécution System Guard est en attente de démarrage. Error: (12/18/2020 02:02:26 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Intel(R) Rapid Storage Technology. Error: (12/18/2020 02:01:40 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Optimisation de livraison est en attente de démarrage. Error: (12/18/2020 01:57:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Origin Web Helper Service n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Windows Defender: =================================== Date: 2020-12-18 14:08:12.8780000Z Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.325.1499.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.17600.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-12-18 14:08:12.8760000Z Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.325.1499.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.17600.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-12-18 14:08:12.8750000Z Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.325.1499.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.17600.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-12-18 14:08:12.8430000Z Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.325.1499.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.17600.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-12-18 14:08:12.8410000Z Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.325.1499.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.17600.5 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu CodeIntegrity: =================================== Date: 2020-12-22 09:48:57.9640000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.19.8.65\symamsi.dll that did not meet the Windows signing level requirements. Date: 2020-12-22 09:48:57.9330000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1607432682\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-12-22 09:48:57.8940000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.19.8.65\symamsi.dll that did not meet the Windows signing level requirements. Date: 2020-12-22 09:48:57.8500000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1607432682\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-12-22 09:48:57.7830000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.19.8.65\symamsi.dll that did not meet the Windows signing level requirements. Date: 2020-12-22 09:48:57.7500000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1607432682\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2020-12-22 09:48:57.7110000Z Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.19.8.65\symamsi.dll that did not meet the Windows signing level requirements. Date: 2020-12-22 09:48:57.5100000Z Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Pack Sérénité\Darty Sécurité\Ultralight\ulcore\1607432682\fsamsi64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. ==================== Infos Mémoire =========================== BIOS: Insyde Corp. V1.23 01/16/2017 Carte mère: Acer Hulk_SK Processeur: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Pourcentage de mémoire utilisée: 64% Mémoire physique - RAM - totale: 6012.22 MB Mémoire physique - RAM - disponible: 2106.07 MB Mémoire virtuelle totale: 9212.22 MB Mémoire virtuelle disponible: 3935.61 MB ==================== Lecteurs ================================ Drive c: (Acer) (Fixed) (Total:930.4 GB) (Free:818.89 GB) NTFS Drive e: (Acer) (RAMDisk) (Total:930.4 GB) (Free:813.94 GB) NTFS Drive f: (Acer) (RAMDisk) (Total:930.4 GB) (Free:812.17 GB) NTFS \\?\Volume{ea558dfb-6f6d-4c9b-a96a-578e923fbae4}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.53 GB) NTFS \\?\Volume{83d8fc4a-cb47-4140-a57e-8ade1ad1efec}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: E18690C4) Partition: GPT. ==================== Fin de Addition.txt =======================