Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-04-2021 Exécuté par Rom (16-04-2021 22:39:13) Exécuté depuis C:\Users\Rom\Desktop Windows 10 Home Version 2004 19041.928 (X64) (2020-10-11 00:21:38) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-3621776348-93825552-4056938600-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3621776348-93825552-4056938600-503 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-3621776348-93825552-4056938600-1003 - Limited - Enabled) Invité (S-1-5-21-3621776348-93825552-4056938600-501 - Limited - Disabled) Rom (S-1-5-21-3621776348-93825552-4056938600-1001 - Administrator - Enabled) => C:\Users\Rom UpdatusUser (S-1-5-21-3621776348-93825552-4056938600-1000 - Limited - Enabled) => C:\Users\UpdatusUser WDAGUtilityAccount (S-1-5-21-3621776348-93825552-4056938600-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4} AV: AVG Antivirus (Enabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649} FW: AVG Antivirus (Enabled) {2092F4DC-EC63-3680-C854-E2DACF7E736A} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 26.0.0.127 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe) Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{878CADF7-5BD6-4A29-A6F4-AC51C0CE8068}) (Version: 1.8.17.26026 - Alcor Micro Corp.) ANT Drivers Installer x64 (HKLM\...\{368B4CD9-A459-4A34-A303-AA63BC3B172A}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{9BA1A894-B42F-4805-BC8C-349C905A3930}) (Version: 5.3.1 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{7EAC8A42-9FAC-4F6B-AABF-C08C9F2E0F13}) (Version: 5.3.1 - Apple Inc.) ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS) ASUS FancyStart (HKLM-x32\...\{C944B4C5-1C4D-4D95-8AC0-7CEF13914131}) (Version: 1.1.1 - ASUSTeK Computer Inc.) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.24 - ASUS) ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.44 - ASUS) ASUS Secure Delete (HKLM\...\{761C6783-D3BC-48AB-8E7C-61CE918A8436}) (Version: 1.00.0007 - ASUS) ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{AECA3622-E634-4A55-A696-70A511CBE06E}) (Version: 1.0.0 - AsusTek Computer Inc.) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus) ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.84.161 - eCareme Technologies, Inc.) AsusScr_U Series_ENG (HKLM-x32\...\AsusScr_U Series_ENG) (Version: 1.0.0001 - ASUS) AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0008 - ASUS) Auslogics BoostSpeed 11 (HKLM-x32\...\{7216871F-869E-437C-B9BF-2A13F2DCE63F}_is1) (Version: 11.5.0.0 - Auslogics Labs Pty Ltd) Auslogics Duplicate File Finder (HKLM-x32\...\{6845255F-15CC-4DD1-94D5-D38F370118B3}_is1) (Version: 8.5.0.0 - Auslogics Labs Pty Ltd) AVG Internet Security (HKLM-x32\...\AVG Antivirus) (Version: 21.2.3170 - AVG Technologies) AVG Secure VPN (HKLM\...\AVG Secure VPN) (Version: 1.13.5430.1650 - AVG) AVG TuneUp (HKLM\...\AVG TuneUp) (Version: 21.1.2523.2006 - AVG) Backup and Sync from Google (HKLM\...\{3CBE1074-3A4F-4BA6-95E3-7A660B54FE33}) (Version: 3.55.3625.9414 - Google, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Business Everywhere (HKLM-x32\...\{791FDE0D-9DF9-4E3B-AA34-1D942F9FEF69}) (Version: 5.0.602 - OrangeBusinessServices) Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.10.2 - Canon Inc.) Canon IJ Printer Assistant Tool (HKLM-x32\...\Canon IJ Printer Assistant Tool) (Version: 1.30.1.52 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.5.5.3 - Canon Inc.) Canon Inkjet Printer/Scanner/Télécopieur Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.2.0 - Canon Inc.) Canon TS3300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS3300_series) (Version: 1.01 - Canon Inc.) Canon Utilities CameraWindow DC 8 (HKLM-x32\...\CameraWindowDC) (Version: 8.8.0.17 - Canon Inc.) Capturino V2.20 (HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\Capturino V2.20) (Version: - ) Capturino V2.20 (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Capturino V2.20) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.78 - Piriform) CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 89.1.8954.117 - Auteurs de CCleaner Browser) CertSign 1.2.2.353 (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\3404F954-0D07-48B3-8595-41AB1E515D8C_is1) (Version: 1.2.2.353 - Oodrive) Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation) CopyTrans Suite désinstallation uniquement (HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\CopyTrans Suite) (Version: 2.27 - WindSolutions) CopyTrans Suite désinstallation uniquement (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\CopyTrans Suite) (Version: 4.013 - WindSolutions) CPUID CPU-Z 1.92 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.92 - CPUID, Inc.) Crédit Mutuel (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\1895601504.mobile.creditmutuel.fr) (Version: - mobile.creditmutuel.fr) CrystalDiskInfo 8.9.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.9.0 - Crystal Dew World) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Détection de l'application Winamp (HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) dr.fone toolkit pour Android (Version 8.2.0) (HKLM-x32\...\{7B08A1E1-3644-4237-B39D-762B5F5564D0}_is1) (Version: 8.2.0.53 - Wondershare Technology Co.,Ltd.) Dropbox (HKLM-x32\...\Dropbox) (Version: 117.4.378 - Dropbox, Inc.) Dropbox (HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\Dropbox) (Version: 1.1.45 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden Elevated Installer (HKLM-x32\...\{1D2951A7-36F2-40F6-9428-54E742F6FBBE}) (Version: 7.4.2.0 - Garmin Ltd or its subsidiaries) Hidden Enregistrement de l'imprimante (HKLM-x32\...\Canon EISRegistration) (Version: 1.6.0 - Canon Inc.) Everything 1.4.1.969 (x64) (HKLM\...\Everything) (Version: 1.4.1.969 - David Carpenter) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.9 - ASUS) Fresco Logic USB3.0 Host Controller (HKLM\...\{B1E301A1-C2B4-4B0B-AF31-C71F8A53DCDA}) (Version: 3.0.119.1 - Fresco Logic Inc.) Galeria de Fotografias do Windows Live (HKLM-x32\...\{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galería fotográfica de Windows Live (HKLM-x32\...\{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Garmin Communicator Plugin (HKLM-x32\...\{032A13FF-D26D-4844-9597-7EF698627985}) (Version: 4.1.0 - Garmin Ltd or its subsidiaries) Garmin Communicator Plugin x64 (HKLM\...\{AFA301E1-B410-4F1B-B1C0-2E92FDCD94AD}) (Version: 4.1.0 - Garmin Ltd or its subsidiaries) Garmin Express (HKLM-x32\...\{0A696C9D-D446-46AC-BEA4-8BD449909481}) (Version: 7.4.2.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express (HKLM-x32\...\{0ed393fb-f601-48bb-8b9e-e4c9ec3853bf}) (Version: 7.4.2.0 - Garmin Ltd or its subsidiaries) Garmin Training Center (HKLM-x32\...\{7D542452-84EB-47C0-97BA-735C523AB555}) (Version: 3.6.5 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Google Chrome (HKLM-x32\...\{9D6AB405-DDC3-330B-9D65-8C1C83E8B4C6}) (Version: 89.0.4389.128 - Google, Inc.) Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google) HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.1.0.303 - ) HP Deskjet F2200 All-In-One Driver Software 13.0 Rel. 3 (HKLM\...\{3690900F-85EA-447F-BAD1-5CA25AA9B627}) (Version: 13.0 - HP) HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP) HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP) HP Smart Web Printing 4.51 (HKLM\...\HP Smart Web Printing) (Version: 4.51 - HP) HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{846B5DED-DC8C-4E1A-B5B4-9F5B39A0CACE}) (Version: 1.00.0000 - Microsoft) Hidden iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2291 - Intel Corporation) Intel(R) Turbo Boost Technology Monitor 2.0 (HKLM\...\{B77EFA0B-9BD3-4122-9F9A-15A963B5EA24}) (Version: 2.1.23.0 - Intel) Java 2 Runtime Environment Standard Edition v1.3.1 (HKLM-x32\...\JRE 1.3.1) (Version: - ) Java 8 Update 181 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180181F0}) (Version: 8.0.1810.13 - Oracle Corporation) Java 8 Update 201 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180201F0}) (Version: 8.0.2010.9 - Oracle Corporation) JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Logiciel de base du périphérique HP ENVY 5000 series (HKLM\...\{E970997F-B4F9-4CC4-856A-28605CE70186}) (Version: 44.4.2678.1977 - HP Inc.) Malwarebytes version 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.13801.20266 - Microsoft Corporation) Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.77 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 89.0.774.77 - Microsoft Corporation) Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Sync Framework 2.0 Core Components (x86) ENU (HKLM-x32\...\{FF63121D-91C6-42CC-B341-F1AA729728E7}) (Version: 2.0.1578.0 - Microsoft Corporation) Microsoft Sync Framework 2.0 Provider Services (x86) ENU (HKLM-x32\...\{D3A80508-CD83-4CA3-8671-914A1BC78B61}) (Version: 2.0.1578.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Teams) (Version: 1.4.00.7174 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) MonAlbumPhoto (HKLM-x32\...\MonAlbumPhoto_is1) (Version: 6.3.6.5 - MonAlbumPhoto) Mozilla Firefox 75.0 (x64 fr) (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Mozilla Firefox 75.0 (x64 fr)) (Version: 75.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.) NVIDIA Pilote 3D Vision 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.57 - NVIDIA Corporation) NVIDIA Pilote graphique 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.57 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13801.20182 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20182 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20182 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.13801.20182 - Microsoft Corporation) Hidden Orange Inside (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Orange Inside) (Version: 3.3.1.1 - Orange) Orange Installer (HKLM-x32\...\Orange Installer) (Version: 2.0.0.13 - Orange) Orange Update (HKLM-x32\...\Orange Update) (Version: 3.6.0.1 - Orange) Package de pilotes Windows - Dynastream Innovations (libusb0) LibUsbDevices (07/07/2009 1.12.2) (HKLM\...\24DA573F901348FFDFF7717497830D45BE0C362E) (Version: 07/07/2009 1.12.2 - Dynastream Innovations) Package de pilotes Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Package de pilotes Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) Papers, Please (HKLM-x32\...\GOGPACKPAPERSPLEASE_is1) (Version: 2.0.0.4 - GOG.com) PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.3.2 - Frank Heindörfer, Philip Chinery) Raccolta foto di Windows Live (HKLM-x32\...\{ED16B700-D91F-44B0-867C-7EB5253CA38D}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Rapport (HKLM\...\{1DD81E7D-0D28-4CEB-87B2-C041A4FCB215}) (Version: 3.5.1205.15 - Trusteer) Hidden Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6373 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.41 - Piriform) RentASoft Image Converter v2.3 (HKLM-x32\...\RentASoft Image Converter_is1) (Version: - RentASoft.com) Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.23.0 - Samsung Electronics Co., Ltd.) SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.6 - ASUS) Scribus 1.4.5 (HKLM-x32\...\Scribus 1.4.5) (Version: 1.4.5 - The Scribus Team) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20013.2 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20013.2 - Samsung Electronics Co., Ltd.) Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys ) Spotify (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\Spotify) (Version: 1.0.96.181.gf6bc1b6b - Spotify AB) Supercopier 1.2.3.5 (HKLM-x32\...\Supercopier) (Version: 1.2.3.5 - Supercopier) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.18.0 - Synaptics Incorporated) syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables) SyncToy 2.1 (x86) (HKLM-x32\...\{A066194B-DC8F-449A-8E0F-B57BDD3A2072}) (Version: 2.1.0 - Microsoft) Synology Cloud Station Backup (remove only) (HKLM\...\Synology Cloud Station Backup) (Version: 4.2.5.4396 - Synology, Inc.) Synology Cloud Station Drive (remove only) (HKLM\...\Synology Cloud Station Drive) (Version: 4.2.5.4396 - Synology, Inc.) TomTom Sports Connect (HKLM-x32\...\TomTom Sports Connect) (Version: 3.3.4.0 - TomTom International B.V.) TreeSize Free V4.4.2 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.4.2 - JAM Software) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden UpdateAssistant (HKLM\...\{E1D7CB46-BAE9-4D58-99C4-582332B1755A}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies) Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.6 - VideoLAN) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.7.6.0 - Azureus Software, Inc.) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.1 - ASUS) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 4.01 (HKLM-x32\...\WinRAR 4.01) (Version: - ) WinRAR 6.00 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) Zoom (HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\ZoomUMX) (Version: 5.4.3 (58891.1115) - Zoom Video Communications, Inc.) Zwift version 1.0.44 (HKLM-x32\...\{E4DA422A-82AB-44A4-B3A5-0AF60F47B7AB}_is1) (Version: 1.0.44 - Zwift, LLC) Συλλογή φωτογραφιών του Windows Live (HKLM-x32\...\{C00C2A91-6CB3-483F-80B3-2958E29468F1}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (HKLM-x32\...\{E83DC314-C926-4214-AD58-147691D6FE9F}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (HKLM-x32\...\{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}) (Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (HKLM-x32\...\{77F69CA1-E53D-4D77-8BA3-FA07606CC851}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden גלריית התמונות של Windows Live (HKLM-x32\...\{CE929F09-3853-4180-BD90-30764BFF7136}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden بريد Windows Live (HKLM-x32\...\{0A4C4B29-5A9D-4910-A13C-B920D5758744}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden معرض صور Windows Live (HKLM-x32\...\{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Packages: ========= ASUS Welcome -> C:\Program Files\WindowsApps\B9ECED6F.ASUSWelcome_1.0.1.0_x64__qmba6cd70vzyy [2016-07-25] (ASUSTeK COMPUTER INC.) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-19] (Canon Inc.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-08-27] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_126.2.222.0_x64__v10z8vjag6ke6 [2021-04-16] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-03-23] (Microsoft Studios) [MS Ad] Power BI Desktop -> C:\Program Files\WindowsApps\Microsoft.MicrosoftPowerBIDesktop_2.91.884.0_x64__8wekyb3d8bbwe [2021-03-31] (Microsoft Corporation) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.) WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2021-03-24] (Microsoft Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Rom\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll () [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{68D44A27-FFB6-4B89-A3E5-7B0E50A7AB33}\InprocServer32 -> C:\Program Files\Supercopier\PluginLoader\catchcopy-v0002\catchcopy32.dll () [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{68FF37C4-51BC-4C2A-A992-7E39BC0E706F}\InprocServer32 -> C:\Program Files\Supercopier\PluginLoader\catchcopy-v0002\catchcopy64.dll () [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Rom\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-3621776348-93825552-4056938600-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Rom\Dropbox [2020-01-25 12:54] ShellExecuteHooks: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [6671064 2013-12-19] (Microsoft Corporation -> Microsoft Corporation) ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [4171480 2013-12-19] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll [2018-02-01] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll [2018-02-01] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll [2018-02-01] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll [2018-02-01] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll [2018-02-01] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-04-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.) [Fichier non signé] ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.) [Fichier non signé] ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-04-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-04-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers1: [DataSanitizerShellExtObj] -> {35595751-F655-4A14-90AB-C2EC32780F41} => C:\Program Files (x86)\Common Files\ASUS\Secure Delete\ASUS Secure Delete ShellExt.dll [2011-01-24] (TODO: ) [Fichier non signé] ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google) ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2015-04-26] (Apple Inc. -> Apple Inc.) ContextMenuHandlers1: [RentASoftImageConverter] -> {2D15BC7F-76E0-45BC-A159-9D870013E95C} => C:\Program Files (x86)\RentASoft\Image Converter\xCore.dll [2009-05-04] () [Fichier non signé] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [00avg] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-04-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2325} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\XPClient.DLL [2011-02-21] (eCareme) [Fichier non signé] ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [DataSanitizerShellExtObj] -> {35595751-F655-4A14-90AB-C2EC32780F41} => C:\Program Files (x86)\Common Files\ASUS\Secure Delete\ASUS Secure Delete ShellExt.dll [2011-01-24] (TODO: ) [Fichier non signé] ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google) ContextMenuHandlers4: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.016.0124.0003\amd64\FileSyncShell64.dll [2021-02-27] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\WINDOWS\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2021-04-09] (AVG Technologies USA, LLC -> AVG Technologies CZ, s.r.o.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1_S-1-5-21-3621776348-93825552-4056938600-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll [2018-02-01] () [Fichier non signé] ContextMenuHandlers6_S-1-5-21-3621776348-93825552-4056938600-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\ContextMenu.dll [2018-02-01] () [Fichier non signé] ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Rom\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> hxxps://r.orange.fr/r/Oodc_oi_odc_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_odc_shortcut ShortcutWithArgument: C:\Users\Rom\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> hxxps://r.orange.fr/r/Oodc_oi_odc_shortcut?ref=O_OI_defaultPage_CHe64_w10e64_odc_shortcut ==================== Modules chargés (Avec liste blanche) ============= 2009-03-02 04:07 - 2009-03-02 04:07 - 000200704 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\LogicNP.EZShellExtensions.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000080384 _____ () [Fichier non signé] C:\Program Files\Supercopier\libgcc_s_seh-1.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 001013760 _____ () [Fichier non signé] C:\Program Files\Supercopier\libstdc++-6.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000204800 _____ () [Fichier non signé] C:\Program Files\Supercopier\PluginLoader\catchcopy-v0002\catchcopy64.dll 2011-02-21 06:05 - 2011-02-21 06:05 - 000266240 _____ (.) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\eCaremeDLL.dll 2004-05-28 03:13 - 2004-05-28 03:13 - 000080384 _____ (ACTIONTEC Electronics,Inc) [Fichier non signé] C:\Program Files (x86)\ASUS\Wireless Console 3\ATKWLIOC.DLL 2005-09-22 02:30 - 2005-09-22 02:30 - 000036864 _____ (ATK) [Fichier non signé] C:\Program Files (x86)\ASUS\Wireless Console 3\inter_f2.dll 2011-02-21 06:06 - 2011-02-21 06:06 - 004493312 _____ (eCareme) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\XPClient.dll 2009-09-20 12:36 - 2009-09-20 12:36 - 000249344 _____ (Hewlett-Packard Co.) [Fichier non signé] c:\program files (x86)\hp\digital imaging\bin\hpqcxs08.dll 2009-09-20 12:24 - 2009-09-20 12:24 - 000213504 _____ (Hewlett-Packard Co.) [Fichier non signé] c:\program files (x86)\hp\digital imaging\bin\hpqddcmn.dll 2009-09-20 12:24 - 2009-09-20 12:24 - 000133120 _____ (Hewlett-Packard Co.) [Fichier non signé] c:\program files (x86)\hp\digital imaging\bin\hpqddsvc.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000071680 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzinw12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000089600 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzipm12.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000054272 _____ (MingW-W64 Project. All rights reserved.) [Fichier non signé] C:\Program Files\Supercopier\libwinpthread-1.dll 2020-10-11 01:39 - 2017-12-04 20:43 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll 2012-04-24 21:00 - 2012-03-14 18:23 - 000065024 _____ (pdfforge GbR) [Fichier non signé] C:\WINDOWS\System32\pdfcmon.dll 2005-01-13 09:36 - 2005-01-13 09:36 - 000303104 _____ (Silicon Integrated Systems Corp.) [Fichier non signé] C:\Program Files (x86)\ASUS\Wireless Console 3\SiSPkt.dll 2009-10-29 03:41 - 2009-10-29 03:41 - 000270336 _____ (The Apache Software Foundation) [Fichier non signé] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\log4net.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 005277696 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Supercopier\Qt5Core.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 003768320 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Supercopier\Qt5Gui.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 001107456 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Supercopier\Qt5Network.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 005601792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Supercopier\Qt5Widgets.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000217600 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Supercopier\Qt5Xml.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000598528 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Supercopier\qt-plugins\platforms\qwindows.dll 2018-02-01 23:15 - 2018-02-01 23:15 - 002768896 _____ (TODO: ) [Fichier non signé] C:\Users\Rom\AppData\Local\CloudStation\CloudStation.app\icon-overlay\18\x64\iconOverlay.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000883712 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\CopyEngine\Ultracopier\copyEngine.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000117760 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\Listener\catchcopy-v0002\listener.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000065024 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\PluginLoader\catchcopy-v0002\pluginLoader.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000028672 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\SessionLoader\Windows\sessionLoader.dll 2016-01-02 01:00 - 2016-01-02 01:00 - 000324608 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files\Supercopier\Themes\Supercopier\interface.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\avgSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\avgSP.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-3621776348-93825552-4056938600-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://allssearch.com/ HKU\S-1-5-21-3621776348-93825552-4056938600-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus.msn.com SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3621776348-93825552-4056938600-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3621776348-93825552-4056938600-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3621776348-93825552-4056938600-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT SearchScopes: HKU\S-1-5-21-3621776348-93825552-4056938600-1000 -> {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL = hxxp://search.fr-recherche.com?q={searchTerms} SearchScopes: HKU\S-1-5-21-3621776348-93825552-4056938600-1001 -> {E0EFFB17-9AB4-4D59-B593-E17C8C531C71} URL = hxxps://fr.search.yahoo.com/search?p={searchTerms}&intl=fr&fr=yset_ie_syc_oracle&type=orcl_default&partnerexternal-oracle=external-oracle BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-09-20] (Hewlett-Packard Company -> Hewlett-Packard Co.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2021-03-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2021-03-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-09-20] (Hewlett-Packard Company -> Hewlett-Packard Co.) DPF: HKLM-x32 {0D41B8C5-2599-4893-8183-00195EC8D5F9} hxxp://support.asus.com/select/asusTek_sys_ctrl3.cab DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\1-2005-search.com -> www.1-2005-search.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\1000gratisproben.com -> www.1000gratisproben.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\1001namen.com -> www.1001namen.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\100888290cs.com -> mir.100888290cs.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\100sexlinks.com -> www.100sexlinks.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\10sek.com -> www.10sek.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\12-26.net -> user1.12-26.net IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\12-27.net -> user1.12-27.net IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\123fporn.info -> www.123fporn.info IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\123moviedownload.com -> www.123moviedownload.com IE restricted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\123simsen.com -> www.123simsen.com Il y a 7702 plus de sites. IE trusted site: HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\sharepoint.com -> hxxps://steria-files.sharepoint.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2018-12-30 11:09 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-3621776348-93825552-4056938600-1000\Control Panel\Desktop\\Wallpaper -> HKU\S-1-5-21-3621776348-93825552-4056938600-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Rom\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 100.120.194.1 - 192.168.0.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s HKLM\...\StartupApproved\StartupFolder: => "BackupRemind.lnk" HKLM\...\StartupApproved\Run: => "RtHDVBg" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "Everything" HKLM\...\StartupApproved\Run32: => "APSDaemon" HKLM\...\StartupApproved\Run32: => "ASUSPRP" HKLM\...\StartupApproved\Run32: => "SonicMasterTray" HKLM\...\StartupApproved\Run32: => "ASUSWebStorage" HKLM\...\StartupApproved\Run32: => "ATKMEDIA" HKLM\...\StartupApproved\Run32: => "ATKOSD2" HKLM\...\StartupApproved\Run32: => "Start_BusinessEverywhere_{e34778cb-4457-4646-b83d-76c8241d15b9}" HKLM\...\StartupApproved\Run32: => "Nuance PDF Reader-reminder" HKLM\...\StartupApproved\Run32: => "HControlUser" HKLM\...\StartupApproved\Run32: => "hpqSRMon" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "BCSSync" HKLM\...\StartupApproved\Run32: => "Start_SMSNotifier_{e34778cb-4457-4646-b83d-76c8241d15b9}" HKLM\...\StartupApproved\Run32: => "Start_Update_{e34778cb-4457-4646-b83d-76c8241d15b9}" HKLM\...\StartupApproved\Run32: => "USBChargerPlusTray" HKLM\...\StartupApproved\Run32: => "vProt" HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "Zwift" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX2" HKU\S-1-5-21-3621776348-93825552-4056938600-1000\...\StartupApproved\Run: => "OneDriveSetup" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station Drive.lnk" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station Backup.lnk" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\StartupFolder: => "OneNote 2010 Screen Clipper and Launcher.lnk" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "iCloudServices" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "TomTom MySports Connect.exe" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "ApplePhotoStreams" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "GarminExpress" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "GoogleDriveSync" HKU\S-1-5-21-3621776348-93825552-4056938600-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{10ED1525-BECD-4AFF-BEEB-61EFB48EFAA6}C:\users\rom\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\rom\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{3470951F-7B65-4759-98BA-10075257DF3A}C:\users\rom\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\rom\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{706BF6B4-E4CF-4793-978C-291207861EB0}C:\users\rom\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\rom\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{FCFB2AF6-6910-4B7C-82AF-F2850E7494F3}C:\users\rom\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\rom\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{10DB60B0-37AF-4431-B901-0C4F0797128A}C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => (Allow) C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [TCP Query User{166D44F1-0290-4A60-B6C1-12056580636E}C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => (Allow) C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [{F1A2B428-8613-4722-9ED0-081BF2E3B092}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{FB144A38-1DDE-440A-ADCD-9524E60A9BEB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{16B854BD-4846-4A47-8674-42225A0FD8D8}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{6A2495B2-9C40-4A37-8A0F-98FFE72634CD}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{A637D97D-6D92-42A7-A167-5661B1C3C420}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{445FE08A-6914-4DCE-B162-241DB6ACCFA1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7F5199BA-F5E7-448E-875C-68E8A0E79BAC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A0ADBF5D-9299-4B8C-A262-11176BB38B28}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{ADA8E70C-86EE-443F-BC14-5D7493C866E5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D1E6B6FD-561E-4EE0-9859-FC9C88BEA3E9}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{ECAEE44B-D36E-4F67-A9FA-4658D17378DE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{4E7DDE3B-BFDB-4667-9FAF-678CB287395F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{850BC27A-E4EF-4784-9F77-9A8D8B982C54}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe FirewallRules: [TCP Query User{0F7A3264-AC73-4561-8F3C-3C44C4333C71}C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\syncables\syncables desktop\jre\bin\javaw.exe FirewallRules: [{A784783A-9229-4F30-916B-78F289F73EC8}] => (Allow) C:\SportTracks 2.1\SportTracks.exe (ZoneFiveSoftware) [Fichier non signé] FirewallRules: [{E88F0012-DC4A-42B6-BAA5-D17E5E786D96}] => (Allow) C:\SportTracks 2.1\SportTracks.exe (ZoneFiveSoftware) [Fichier non signé] FirewallRules: [{03116E66-98B0-4628-A83F-44D9F8B1EFE6}] => (Allow) C:\SportTracks 2.1\SportTracks.exe (ZoneFiveSoftware) [Fichier non signé] FirewallRules: [{406C4082-4DED-483A-9486-180DE1C3E460}] => (Allow) C:\SportTracks 2.1\SportTracks.exe (ZoneFiveSoftware) [Fichier non signé] FirewallRules: [{BB4314A5-7463-4829-8AA7-D7BFFC6114A3}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe (Hewlett-Packard Company -> Hewlett-Packard Co.) FirewallRules: [{3C9F71DA-7FB5-40D0-A281-417226662BC8}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard) FirewallRules: [{E8004FF2-C2E4-421D-AA53-206175E4788C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett-Packard) [Fichier non signé] FirewallRules: [{1FC18D4E-D50E-4BE1-8767-4B7E3B3718D4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett-Packard Co.) [Fichier non signé] FirewallRules: [{F345F4ED-0802-481D-AF1A-D3BAD568DA54}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpse.exe (Hewlett Packard -> Hewlett-Packard Development Co. L.P.) FirewallRules: [{3DFC3B3C-A27F-40B6-8499-A90F4571BD1D}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqpsapp.exe (Hewlett-Packard Development Co. L.P.) [Fichier non signé] FirewallRules: [{C350807D-400C-4838-AB6B-320723C881B4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsudi.exe (Hewlett-Packard Development Co. L.P.) [Fichier non signé] FirewallRules: [{69BE3531-C173-4F2E-A1C5-A85D543DDFDF}] => (Allow) C:\Program Files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe (Hewlett-Packard Development Co. L.P.) [Fichier non signé] FirewallRules: [{54D5F9F8-3D68-40F2-B1B1-982F5364CCBF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard) [Fichier non signé] FirewallRules: [{52144944-0B14-495A-8DEA-D825F167A22A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe () [Fichier non signé] FirewallRules: [{C3FAB0F9-BADC-4A89-B0A8-1CD81B8415B4}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcopy2.exe (Hewlett-Packard Co.) [Fichier non signé] FirewallRules: [{FC58BC65-76A9-4032-AED6-EF539205546A}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard) [Fichier non signé] FirewallRules: [{E43AE11F-0609-44B8-94C6-29264613E8A2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett-Packard Co.) [Fichier non signé] FirewallRules: [{2D2F563A-D9F7-4703-AD82-F3AC5AEEFF8F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) [Fichier non signé] FirewallRules: [{F3DBD746-DAA6-4E92-B39A-0C284025D0D9}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) [Fichier non signé] FirewallRules: [{C4DB81C4-5238-4291-9AA7-2D07D3F6A1E8}] => (Allow) C:\Program Files (x86)\VLC\vlc.exe () [Fichier non signé] FirewallRules: [{2F12D70A-EB11-492F-ACDE-992CD4C0F88C}] => (Allow) C:\Program Files (x86)\VLC\vlc.exe () [Fichier non signé] FirewallRules: [UDP Query User{128BCDB2-117D-4996-A137-4B1FAECBCC8E}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe () [Fichier non signé] FirewallRules: [TCP Query User{473DAD2A-AFFC-48C6-927E-EE1836907CDD}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe () [Fichier non signé] FirewallRules: [UDP Query User{FE2EB5C5-B20F-4BFF-AEAC-82C0327319F8}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe () [Fichier non signé] FirewallRules: [TCP Query User{8FD1FC5A-D712-4D2B-8DEB-A0D72175372D}C:\program files (x86)\vlc\vlc.exe] => (Allow) C:\program files (x86)\vlc\vlc.exe () [Fichier non signé] FirewallRules: [{769CA30F-B911-41BD-8D01-563E448D228B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{167432A9-7B75-4924-80F3-4681153C046A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{506984D9-DE61-4E40-9679-2D3BDE5A3CB8}] => (Allow) LPort=8182 FirewallRules: [{A72233AF-337A-40D3-BCE9-4CBCFF8C6B0B}] => (Allow) LPort=5353 FirewallRules: [{8EF01BA1-D1F6-4D73-AADB-AB5E81F83EF1}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{25BDD843-A815-48A8-A216-66D065687049}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B827E1C7-5A7A-484C-9653-2FE388A8B888}] => (Allow) LPort=1900 FirewallRules: [{6D86BBA6-660B-4EA4-9C85-ADBCBF533D55}] => (Allow) LPort=2869 FirewallRules: [{50D76052-134E-46DB-AF8E-63827F883C0F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{60211FE5-10D2-4071-A9A6-301DC14AE843}C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [UDP Query User{F98EA71A-2BC6-4B78-BE99-C16000D7E19D}C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe] => (Allow) C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-ui.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [TCP Query User{56E236D2-3B83-4AC8-97DE-A32A42E5CD91}C:\users\rom\appdata\local\cloudstationbackup\cloudstation.app\bin\cloud-backup-connect.exe] => (Allow) C:\users\rom\appdata\local\cloudstationbackup\cloudstation.app\bin\cloud-backup-connect.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [UDP Query User{4EAF9FE1-85A1-48E3-8F4B-76C1A6426F5B}C:\users\rom\appdata\local\cloudstationbackup\cloudstation.app\bin\cloud-backup-connect.exe] => (Allow) C:\users\rom\appdata\local\cloudstationbackup\cloudstation.app\bin\cloud-backup-connect.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [TCP Query User{236053AA-39CE-4824-8EB8-0F8D708C8358}C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => (Allow) C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [UDP Query User{45DC9C31-E102-40BA-BDEB-DDB22A368AF1}C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe] => (Allow) C:\users\rom\appdata\local\cloudstation\cloudstation.app\bin\cloud-drive-connect.exe (Synology Inc. -> Synology Inc.) [Fichier non signé] FirewallRules: [{4E880FBE-9755-41F4-B4E5-EAE1F714C4C8}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{7E40FA18-CFA9-49F4-9F9E-9795EB7BEF21}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [TCP Query User{DEC9C969-E77A-4850-A45E-1ABEC1117E8B}C:\users\rom\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rom\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{3147183C-2C8C-4004-B322-0529D5F812D5}C:\users\rom\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\rom\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6304627D-6403-418F-B0E8-34346336A218}] => (Block) C:\users\rom\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{65597CFD-4F9F-42BA-9B81-BA3A780FBD00}] => (Block) C:\users\rom\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{54EC80B6-9A20-4A88-84AD-4B404E837769}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{030AE9AF-6D34-4A39-A84A-B5E63CE554FA}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{AFC37EEB-E7C3-4C6A-841A-2F9DF15C3E64}] => (Allow) C:\Program Files\HP\HP ENVY 5000 series\Bin\DeviceSetup.exe (HP Inc -> HP Inc.) FirewallRules: [{05C8029D-E9E8-4674-8EFD-3ABC908FA215}] => (Allow) LPort=5357 FirewallRules: [{1C3C3C29-A184-4572-A08E-C2C915940FBC}] => (Allow) C:\Program Files\HP\HP ENVY 5000 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc -> HP Inc.) FirewallRules: [{74ED4DC3-6FE5-47FA-B7EB-F813DF8069F2}] => (Allow) C:\Users\Rom\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{78BADD99-DCB9-4ABE-B386-4F9327D4131E}] => (Allow) C:\Users\Rom\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{4D1DD429-AA49-4E83-98F3-F0AE0F65F1E7}] => (Allow) C:\Users\Rom\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier FirewallRules: [{5C1F3738-A8B9-4D64-88D8-51C479A796CD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D88FC83C-26D3-4AA2-B03B-96D85C70A4AA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{BFEB7817-10E2-4516-B76B-E02696D38AEC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{9CDC2F15-4B64-46A5-9243-265308A26377}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8536A469-00DD-4F12-BA21-11B9368390AD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3291B71F-8DD2-4A4A-83A1-4A33DB65D502}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{86BFF447-CA25-462D-9421-9548715E7864}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software) FirewallRules: [{6770ED8C-583B-4C34-A8CB-600A3FC9DD64}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{F7020C3B-553E-4005-9E88-857B2547F8B5}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\89.0.774.77\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= 13-04-2021 01:02:58 Point de contrôle planifié 14-04-2021 01:14:00 Programme d’installation pour les modules Windows 14-04-2021 01:55:32 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (04/16/2021 07:15:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe, PID : 3288, PID ProfSvc : 1988. Error: (04/16/2021 07:15:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe, PID : 3288, PID ProfSvc : 1988. Error: (04/16/2021 07:15:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe, PID : 3288, PID ProfSvc : 1988. Error: (04/16/2021 07:15:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files (x86)\AVG\Antivirus\avgToolsSvc.exe, PID : 3288, PID ProfSvc : 1988. Error: (04/16/2021 07:15:50 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files\AVG\TuneUp\TuneupSvc.exe, PID : 4560, PID ProfSvc : 1988. Error: (04/16/2021 07:11:43 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files\AVG\TuneUp\TuneupSvc.exe, PID : 4560, PID ProfSvc : 1988. Error: (04/14/2021 01:12:46 AM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: AUTORITE NT) Description: Windows ne peut pas charger la DLL de compteur extensible « C:\WINDOWS\system32\inetsrv\w3ctrs.dll » (code d'erreur Win32 126). Error: (04/13/2021 01:00:42 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur DATA (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Erreurs système: ============= Error: (04/16/2021 09:58:26 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service Mettre à jour le service Orchestrator est en attente de démarrage. Error: (04/16/2021 09:55:19 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service NVIDIA Update Service Daemon est en attente de démarrage. Error: (04/16/2021 09:50:38 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service MessagingService_656b5 s’est arrêté avec l’erreur : Le périphérique n’est pas prêt. Error: (04/16/2021 09:48:40 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 19:45:51 le ‎16/‎04/‎2021 n’était pas prévu. Error: (04/16/2021 07:16:06 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service MessagingService_1c60e6 s’est arrêté avec l’erreur : Le périphérique n’est pas prêt. Error: (04/16/2021 07:14:12 PM) (Source: Service Control Manager) (EventID: 7022) (User: ) Description: Le service NVIDIA Update Service Daemon est en attente de démarrage. Error: (04/16/2021 05:04:26 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service FDResPub. Error: (04/16/2021 05:03:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service FDResPub. Windows Defender: ================ Date: 2020-10-18 14:16:21 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {11F23154-009D-4036-88E9-6167001AC366} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2020-10-18 14:03:55 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.311.1728.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16800.2 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-10-18 14:03:55 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.311.1728.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16800.2 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-10-18 14:03:55 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.311.1728.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16800.2 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-10-18 14:03:55 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.311.1728.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16800.2 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu Date: 2020-10-18 14:03:55 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.311.1728.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16800.2 Code d’erreur : 0x80072ee7 Description de l’erreur : L’adresse ou le nom de serveur n’a pas pu être résolu CodeIntegrity: =============== Date: 2021-04-16 22:30:07 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. Date: 2021-04-16 22:27:34 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\AVG\Antivirus\aswhook.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. U36SD.203 05/13/2011 Carte mère: ASUSTeK Computer Inc. U36SD Processeur: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz Pourcentage de mémoire utilisée: 66% Mémoire physique - RAM - totale: 8097.07 MB Mémoire physique - RAM - disponible: 2720.28 MB Mémoire virtuelle totale: 10785.07 MB Mémoire virtuelle disponible: 5396.46 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:278.69 GB) (Free:27.62 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (DATA) (Fixed) (Total:394.18 GB) (Free:9.26 GB) NTFS \\?\Volume{38601c96-0000-0000-0000-40ec4b000000}\ () (Fixed) (Total:0.76 GB) (Free:0.3 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 38601C96) Partition 1: (Not Active) - (Size=25 GB) - (Type=1C) Partition 2: (Active) - (Size=278.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=782 MB) - (Type=27) Partition 4: (Not Active) - (Size=394.2 GB) - (Type=0F Extended) ==================== Fin de Addition.txt =======================