Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 28-04-2021 Exécuté par jean (03-05-2021 18:34:34) Exécuté depuis C:\Users\jean\Desktop Windows 10 Pro Education Version 20H2 19042.964 (X64) (2020-06-06 18:49:30) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-697154995-3455906400-4025749246-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-697154995-3455906400-4025749246-503 - Limited - Disabled) Invité (S-1-5-21-697154995-3455906400-4025749246-501 - Limited - Disabled) jean (S-1-5-21-697154995-3455906400-4025749246-1001 - Administrator - Enabled) => C:\Users\jean sshd (S-1-5-21-697154995-3455906400-4025749246-1004 - Limited - Enabled) WDAGUtilityAccount (S-1-5-21-697154995-3455906400-4025749246-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.001.20150 - Adobe Systems Incorporated) Adobe Bridge 2020 (HKLM-x32\...\KBRG_10_0) (Version: 10.0 - Adobe Systems Incorporated) Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_0_1) (Version: 22.0.1.73 - Adobe Inc.) AORUS ENGINE (HKLM-x32\...\AORUS ENGINE_is1) (Version: 1.9.9.0 - GIGABYTE Technology Co.,Inc.) Apowersoft Gestionnaire de Smartphone version 2.8.9 (HKLM-x32\...\{4A00E3C4-2D0F-4AE7-9F2A-74870BE09EF8}_is1) (Version: 2.8.9 - APOWERSOFT LIMITED) Arduino (HKLM-x32\...\Arduino) (Version: 1.8.13 - Arduino LLC) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22807 - Microsoft Corporation) Asus Sonic Radar 3 (HKLM-x32\...\{d385a418-0a04-44f8-9284-522ed67a2926}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc) Asus Sonic Studio 3 (HKLM-x32\...\{acef060a-19fa-4c87-b145-524e6faf08c4}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Avidemux VC++ 64bits (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\{a092ed03-7437-4e3f-8959-702be77e7998}) (Version: 2.7.6 - Mean) AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - ) Backup and Sync from Google (HKLM\...\{3CBE1074-3A4F-4BA6-95E3-7A660B54FE33}) (Version: 3.55.3625.9414 - Google, Inc.) balenaEtcher 1.5.114 (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.5.114 - Balena Inc.) Bibliotheque 3000.2 / 6.1.8 ( XP, SEVEN, VISTA, WIN 10, 32/64 bits) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\Bibliotheque 3000.2 / 6.1.8 ( XP, SEVEN, VISTA, WIN 10, 32/64 bits)) (Version: - ) Bitwarden (HKLM\...\173a9bac-6f0d-50c4-8202-4744c69d091a) (Version: 1.25.1 - Bitwarden Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite MFC-J4410DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.) calibre 64bit (HKLM\...\{0B77CA50-85C1-4D5E-9518-D9B1D5F3DBC4}) (Version: 5.16.1 - Kovid Goyal) Canon Utilities Digital Photo Professional 4 (HKLM-x32\...\Digital Photo Professional 4 (x64)) (Version: 4.12.60.0 - Canon Inc.) Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.12.30.6 - Canon Inc.) Canon Utilities EOS Network Setting Tool (HKLM-x32\...\EOS Network Setting Tool) (Version: 1.1.0.9 - Canon Inc.) Canon Utilities EOS Sample Music (HKLM-x32\...\EOS Sample Music) (Version: 0.9.0.1 - Canon Inc.) Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.) Canon Utilities EOS Utility 3 (HKLM-x32\...\EOS Utility 3) (Version: 3.12.30.9 - Canon Inc.) Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.9.10.5 - Canon Inc.) Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.22.0.0 - Canon Inc.) Cartes du Ciel V4.0 (HKLM-x32\...\{A261F28E-6053-4414-9B84-AA8FE5F47AD4}_is1) (Version: - ) Cartes du Ciel V4.2.1 (HKLM\...\{A261F28E-6053-4414-9B84-AA8FE5F47AD4}_is1) (Version: - ) CDex - Digital Audio CD Extractor and Converter (HKLM-x32\...\CDex) (Version: 2.14.0.2019 - CDex.mu) Chromium (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\Chromium) (Version: 90.0.4430.85 - Auteurs de Chromium) Composer - Php Dependency Manager (HKLM-x32\...\{7315AF68-E777-496A-A6A2-4763A98ED35A}_is1) (Version: - getcomposer.org) CrystalDiskInfo 8.12.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.12.0 - Crystal Dew World) DB Browser for SQLite (HKLM-x32\...\DB Browser for SQLite) (Version: 3.10.1 - DB Browser for SQLite Team) Domoticz version 2021.1.13194 (HKLM-x32\...\{EC4A5746-2655-43CD-AC5F-73F4B2C12F46}_is1) (Version: 2021.1.13194 - Domoticz.com) Doomsday 2.0.3.2464 (HKLM\...\{954D7715-26BE-46A3-8F7F-4EF0D942C43A}) (Version: 2.0.3.2464 - dengine.net) DriversCloud.com (64 bits) (HKLM\...\{BD4AC883-4AF5-40BB-91F0-31A061F9588E}) (Version: 10.0.11.0 - Cybelsoft) Dropbox (HKLM-x32\...\Dropbox) (Version: 121.4.4267 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden DUNE CD Voix Françaises version 2 (HKLM-x32\...\{EE1D0F71-C2B1-4905-9172-4A3F47759D53}_is1) (Version: 2 - Abandonware-France) DxO PhotoLab 4 (HKLM\...\{97269B5E-EA24-4297-9FEC-7EA1ACA56638}) (Version: 4.2.1 - DxO) DxO PureRAW (HKLM\...\{8E4548EF-5B37-423D-942E-28FEBA4E6841}) (Version: 1.0.12 - DxO) Ear Test 1.00 (HKLM-x32\...\Ear Test_is1) (Version: - Johannes Wallroth) EMDB 2.72 (HKLM-x32\...\EMDB_is1) (Version: - Wicked & Wild Inc.) EncFS MP (HKLM\...\EncFSMP) (Version: 0.11.1 - Roman Hiestand) EncFSMP System Support Package (HKLM\...\pfm-license-encfsmp.txt) (Version: - ) FastStone Image Viewer (HKLM-x32\...\{589B93D4-BC83-4094-88A6-C09FD786BE5D}) (Version: 7.4.0.0 - FastStone Soft) foobar2000 v1.6.5 (HKLM-x32\...\foobar2000) (Version: 1.6.5 - Peter Pawlowski) FormatFactory 5.7.1.0 (HKLM-x32\...\FormatFactory) (Version: 5.7.1.0 - Free Time) Git version 2.31.1 (HKLM\...\Git_is1) (Version: 2.31.1 - The Git Development Community) GitHub Desktop (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\GitHubDesktop) (Version: 2.3.1 - GitHub, Inc.) GNU Privacy Guard (HKLM-x32\...\GnuPG) (Version: 2.2.27 - The GnuPG Project) Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google) Gpg4win (3.1.15) (HKLM-x32\...\Gpg4win) (Version: 3.1.15 - The Gpg4win Project) GPL Ghostscript (HKLM\...\GPL Ghostscript 9.50) (Version: 9.50 - Artifex Software Inc.) Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.01 - Janos Mathe) Hugin (HKLM\...\{4B13B8A4-7C40-4E0E-AFA4-AFBD8A2D883D}) (Version: 20.20.0 - Hugin developer team) Hugin (HKLM-x32\...\{1BF9F49A-8139-4E0F-AC05-8B0B3BAB28E2}) (Version: 20.17.0 - Hugin developer team) Image Composite Editor (HKLM\...\{92AB5708-1AAA-4B1B-A8D5-45CF3AD77519}) (Version: 2.0.3 - Microsoft Corporation) Inkscape 0.92.4 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.92.4.0 - Inkscape project) Intel(R) Computing Improvement Program (HKLM\...\{D98C2DF9-C731-4322-A5F0-D897300216EE}) (Version: 2.4.05718 - Intel Corporation) Intel(R) Ethernet Connection Driver (HKLM-x32\...\Intel(R) Ethernet Connection Driver_is1) (Version: - ) Intel(R) Extreme Tuning Utility (HKLM-x32\...\{96d90b75-794d-49b2-9c6a-fb35a86c32a1}) (Version: 7.3.0.33 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation) Intel(R) Network Connections 21.1.30.0 (HKLM\...\PROSetDX) (Version: 21.1.30.0 - Intel) IrfanView 4.52 (64-bit) (HKLM\...\IrfanView64) (Version: 4.52 - Irfan Skiljan) Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation) Java 8 Update 291 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180291F0}) (Version: 8.0.2910.10 - Oracle Corporation) KiCad 5.1.5_2 (HKLM-x32\...\KiCad) (Version: 5.1.5_2 - KiCad) LibreOffice 7.1.2.2 (HKLM\...\{07426A34-E0CD-4EC4-843B-F7A47C7BC835}) (Version: 7.1.2.2 - The Document Foundation) LLVM (HKLM-x32\...\LLVM) (Version: 3.9.1 - LLVM) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden Loop12 V2 (HKLM-x32\...\Loop12 V2) (Version: - ) LTspice XVII (HKLM\...\LTspice XVII) (Version: - Linear Technology Corporation) Microsoft OneDrive (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\OneDriveSetup.exe) (Version: 21.041.0228.0001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{9B3F0A88-790D-3AD9-9F96-B19CF2746452}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{0d9d66bf-5d45-4aea-a4fb-0ef3b4d7b5b6}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{19ebcdbd-02d2-4ae9-a3eb-f7c7a04ceede}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.27.29016 (HKLM-x32\...\{40d3fee2-b257-46c2-bdc0-cb1088d97327}) (Version: 14.27.29016.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 3.1.14 (x64) (HKLM-x32\...\{bbeb5577-ab87-4f55-b980-e5c35798201e}) (Version: 3.1.14.29915 - Microsoft Corporation) Minimal ADB and Fastboot version 1.3.1 (HKLM-x32\...\{26AC9666-A2C6-4D33-8370-A50F50F277C4}_is1) (Version: 1.3.1 - Sam Rodberg) MiniTool Partition Wizard Free 12 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Software Limited) Mixxx (HKLM\...\{9664EA8F-B48B-11E8-8571-C28D1B8D0FF9}) (Version: 2.1.4.6765 - L'équipe de développement de Mixxx) Hidden Mixxx (HKLM-x32\...\{a5050f1c-a0aa-4b01-8db6-72a6d99a2b2d}) (Version: 2.1.4.6765 - The Mixxx Development Team) Monitor Calibration Wizard 1.0 (HKLM-x32\...\Monitor Calibration Wizard) (Version: - ) Mozilla Firefox 88.0 (x64 fr) (HKLM\...\Mozilla Firefox 88.0 (x64 fr)) (Version: 88.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 78.10.0 - Mozilla) Mozilla Thunderbird 78.10.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 78.10.0 (x86 fr)) (Version: 78.10.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) Natural Color Expert (HKLM-x32\...\{E2C56569-D3B6-4377-A04F-5AD95E9C5214}) (Version: 2.0.00 - ) Nik Collection (HKLM-x32\...\Nik Collection) (Version: 3.3.0 - DxO) Nmap 7.91 (HKLM-x32\...\Nmap) (Version: 7.91 - Nmap Project) Node.js (HKLM\...\{7E005925-0125-4A46-8B25-6DB1547488C2}) (Version: 10.15.0 - Node.js Foundation) Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.9.5 - Notepad++ Team) Npcap (HKLM-x32\...\NpcapInst) (Version: 1.00 - Nmap Project) nuclear 0.4.3 (only current user) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\7f153b3d-8967-5dd3-956e-2e98cb5f0d2d) (Version: 0.4.3 - nukeop) NVIDIA FrameView SDK 1.1.4923.29781331 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29781331 - NVIDIA Corporation) NVIDIA GeForce Experience 3.22.0.32 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.22.0.32 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation) NVIDIA Pilote graphique 466.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 466.27 - NVIDIA Corporation) OpenSSL 1.1.0j (64-bit) (HKLM\...\OpenSSL (64-bit)_is1) (Version: - OpenSSL Win64 Installer Team) Opera Stable 75.0.3969.243 (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\Opera 75.0.3969.243) (Version: 75.0.3969.243 - Opera Software) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.) Package de pilotes Windows - Segger (jlink) USB (08/02/2018 2.70.08.0) (HKLM\...\67EA26CAD232922E8506AD97DBD93123C434F28F) (Version: 08/02/2018 2.70.08.0 - Segger) Package de pilotes Windows - SEGGER (JLinkCDC) Ports (06/06/2019 1.34.0.44950) (HKLM\...\132A9445F9095BD5CEE4933C0C25054C253BD8A3) (Version: 06/06/2019 1.34.0.44950 - SEGGER) Package de pilotes Windows - SEGGER Microcontroller GmbH (WinUSB) USBDevice (06/14/2019 3.00.00.000) (HKLM\...\BCE8431F6070A538518E2C2403B8E063956798AA) (Version: 06/14/2019 3.00.00.000 - SEGGER Microcontroller GmbH) Patch Heredis 2019 (coolghost) version 19 (HKLM-x32\...\{4E0CBC44-734E-4B10-A2EB-993550EACF63}_is1) (Version: 19 - coolghost) ProductDaemonSetup (HKLM\...\{36606417-B1C4-42C2-B5C1-67972DA63DAB}) (Version: 3.1.301 - ASUSTeKcomputer.Inc) Hidden Proff Morse Version 3.2.6 (HKLM-x32\...\ST6UNST #1) (Version: - ) PuTTY release 0.74 (64-bit) (HKLM\...\{127B996B-5308-4012-865B-9446451EA326}) (Version: 0.74.0.0 - Simon Tatham) PyCharm Community Edition 2020.2.3 (HKLM-x32\...\PyCharm Community Edition 2020.2.3) (Version: 202.7660.27 - JetBrains s.r.o.) Python 2.7.18 (64-bit) (HKLM\...\{A5F504DF-2ED9-4A2D-A2F3-9D2750DD42D6}) (Version: 2.7.18150 - Python Software Foundation) Python 3.10.0a7 (32-bit) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\{08db002c-dacc-4ecf-ba90-e7d92b724bd5}) (Version: 3.10.107.0 - Python Software Foundation) Python 3.10.0a7 Core Interpreter (32-bit) (HKLM-x32\...\{74938758-B10C-4A59-A61C-55035622AF09}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Development Libraries (32-bit) (HKLM-x32\...\{91A1382E-FD1C-4F57-AC35-FF478326A35C}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Documentation (32-bit) (HKLM-x32\...\{75A01EED-9B8C-4437-8228-925FE725FB86}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Executables (32-bit) (HKLM-x32\...\{89CC1E07-E4C1-4B44-A7F1-11BC4F9B39B1}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 pip Bootstrap (32-bit) (HKLM-x32\...\{10AE94DF-0A70-463D-B7C5-ADDF14ABD60C}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Standard Library (32-bit) (HKLM-x32\...\{38A30CE1-9B7A-49A1-949A-E754F09F3A10}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Tcl/Tk Support (32-bit) (HKLM-x32\...\{342A2F8E-28D1-4282-8E3D-C4383EB0CF02}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Test Suite (32-bit) (HKLM-x32\...\{EE31B753-FC19-43CB-9271-1DFD5E758F52}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.10.0a7 Utility Scripts (32-bit) (HKLM-x32\...\{BF18DA6C-DF32-49B7-AA12-0EA4085E1466}) (Version: 3.10.107.0 - Python Software Foundation) Hidden Python 3.7.5 Core Interpreter (64-bit) (HKLM\...\{6DC6BC71-F1FB-412D-A16A-2FE8C463E89F}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden Python 3.7.5 Development Libraries (64-bit) (HKLM\...\{5A54B213-36D8-40CB-9E55-D20864AEF3C8}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden Python 3.7.5 Executables (64-bit) (HKLM\...\{8864B390-4DFB-43AB-934B-F02C48577666}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden Python 3.7.5 pip Bootstrap (64-bit) (HKLM\...\{2E590D5A-4E40-4C9C-AFF8-7CB80F085752}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden Python 3.7.5 Standard Library (64-bit) (HKLM\...\{45CB356A-C0DF-430E-B75F-7764DBA06DF9}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden Python 3.7.5 Utility Scripts (64-bit) (HKLM\...\{EFF40415-0D5B-4CBA-9080-3EE2DADB527C}) (Version: 3.7.5150.0 - Python Software Foundation) Hidden Python 3.7.6rc1 (32-bit) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\{f50809a6-f70d-4545-9839-991443f5027e}) (Version: 3.7.6121.0 - Python Software Foundation) Python 3.7.6rc1 Add to Path (32-bit) (HKLM-x32\...\{C1F0AE4A-0303-4447-9EF6-57E8F9E195F6}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Core Interpreter (32-bit) (HKLM-x32\...\{20780998-9FFB-4806-9DC4-FF8268C72638}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Development Libraries (32-bit) (HKLM-x32\...\{CB045D4C-7B25-4302-935F-CA8E73393AAA}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Documentation (32-bit) (HKLM-x32\...\{4C32338C-776A-427F-A948-80FCE965B89A}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Executables (32-bit) (HKLM-x32\...\{58405D6C-5612-4C34-BCE8-3E561E09E338}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 pip Bootstrap (32-bit) (HKLM-x32\...\{1BBFF302-23B1-48D4-ACF7-04F3C66B5405}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Standard Library (32-bit) (HKLM-x32\...\{671F5564-1FE7-4CB8-9372-870545810422}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Tcl/Tk Support (32-bit) (HKLM-x32\...\{25CF38A7-D13C-4AD6-9F77-D73797126F87}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Test Suite (32-bit) (HKLM-x32\...\{FB1DB8B3-575C-4C48-BB3F-330F7149A54B}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.7.6rc1 Utility Scripts (32-bit) (HKLM-x32\...\{6E0191C9-394E-441F-8B4D-3B7A66E8504C}) (Version: 3.7.6121.0 - Python Software Foundation) Hidden Python 3.9.3 (64-bit) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\{ffaf1d09-5af7-43ee-97a3-335e1ae2c63a}) (Version: 3.9.3150.0 - Python Software Foundation) Python 3.9.3 Core Interpreter (64-bit) (HKLM\...\{B45428DE-68C5-48C3-BCFC-1A44113CC918}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Development Libraries (64-bit) (HKLM\...\{8A9AF6A4-DFCA-4B93-947D-BECDE242F039}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Documentation (64-bit) (HKLM\...\{115EE5B9-B3AC-4578-8225-24052644D60B}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Executables (64-bit) (HKLM\...\{D9641294-0419-48E6-91E5-E874BC7C0700}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 pip Bootstrap (64-bit) (HKLM\...\{1C139E3D-E466-44EB-A529-24AD7404731F}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Standard Library (64-bit) (HKLM\...\{BAEBBDEE-6BB1-4EBB-89FE-20DFE318D08D}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Tcl/Tk Support (64-bit) (HKLM\...\{E9D8A0E3-A3DE-475D-BED2-ACC3604A5CFE}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Test Suite (64-bit) (HKLM\...\{71790C3C-B4FA-4924-A4B6-05AC903A1C87}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.3 Utility Scripts (64-bit) (HKLM\...\{5A8EE1E7-5470-42F1-970C-740490FE83AC}) (Version: 3.9.3150.0 - Python Software Foundation) Hidden Python 3.9.4 (32-bit) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\{7e37fafd-2843-431c-8c38-80efbd232247}) (Version: 3.9.4150.0 - Python Software Foundation) Python 3.9.4 Core Interpreter (32-bit) (HKLM-x32\...\{8DA2CA44-7FBB-4135-BA21-B7CDEFEA8533}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Development Libraries (32-bit) (HKLM-x32\...\{1284EB51-AE15-440A-89C2-254CC42FEC88}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Documentation (32-bit) (HKLM-x32\...\{19ECB7FD-8646-471A-A257-65725F5FA14E}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Executables (32-bit) (HKLM-x32\...\{AE049D4F-6FD2-4AAF-8E23-374CC544B669}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 pip Bootstrap (32-bit) (HKLM-x32\...\{16027AB7-8A8B-4C49-ABB1-9CAF9FE882F7}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Standard Library (32-bit) (HKLM-x32\...\{47AC0583-087D-4E2E-8E0A-74B1AE2BFE32}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Tcl/Tk Support (32-bit) (HKLM-x32\...\{4FF3FC13-B314-4A8D-BCFB-61B7C5977F05}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Test Suite (32-bit) (HKLM-x32\...\{F121822A-3A5A-49B9-BD14-5A87A4670523}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python 3.9.4 Utility Scripts (32-bit) (HKLM-x32\...\{A900801C-E44C-48A2-B7BF-885BCFF9A164}) (Version: 3.9.4150.0 - Python Software Foundation) Hidden Python Launcher (HKLM-x32\...\{81569306-4CAE-4947-A3E7-A6E459FA7B9F}) (Version: 3.10.7400.0 - Python Software Foundation) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7997 - Realtek Semiconductor Corp.) RedshiftGUI (HKLM-x32\...\RedshiftGUI) (Version: 0.2.1 - Mao Yu) Reset Windows Update Tool (HKLM\...\Reset Windows Update Tool11.0.0.8) (Version: 11.0.0.8 - Manuel Gil) Revo Uninstaller Pro 4.4.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.4.2 - VS Revo Group, Ltd.) RGB Fusion (HKLM-x32\...\{FFA8F1FA-3C2C-4A94-AC0B-0DF47272C25F}) (Version: 3.18.1018.1 - GIGABYTE) Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.3.0.330 - Samsung Electronics) Samsung NVM Express Driver (HKLM-x32\...\{bfb0503a-76b9-415a-b0a3-dd55d2a01ebe}) (Version: 3.0.0.1802 - Samsung Electronics) Samsung NVM Express Driver 3.0.0.1802 (HKLM\...\{03FE2BA9-9538-4195-83E3-09B43901141E}) (Version: 3.0.0.1802 - Samsung Electronics Co., Ltd) Hidden Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung) SamsungFirmwareUpdater (HKLM-x32\...\{360AC456-30DD-40AF-B206-01424888587B}) (Version: 1.00.0000 - Samsung) Scan To (HKLM\...\{E8A34AC8-0137-4515-A94B-0A0946DDC251}) (Version: 2.0.1 - HP) SMPlayer 19.10.0 (x64) (HKLM\...\SMPlayer) (Version: 19.10.0 - Ricardo Villalba) SoftHSM2 for Windows (HKLM-x32\...\{D05788D6-F5A5-429D-B443-BD4A09BCDDF8}) (Version: 2.5.0 - OpenDNSSEC Project) SonicRadar3Setup (HKLM\...\{D1DF09DE-0347-42E7-9127-E66A85121C6D}) (Version: 3.1.3.38194 - ASUSTeKcomputer.Inc) Hidden SonicStudio3Setup (HKLM\...\{2FFEC736-656D-41D7-A4D2-AD3CCF3EC272}) (Version: 3.1.3.38259 - ASUSTeKcomputer.Inc) Hidden Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Stellarium 0.19.0.1 (HKLM\...\Stellarium_is1) (Version: 0.19.0.1 - Stellarium team) Sync Clippings Helper App (HKLM\...\Sync Clippings Helper) (Version: 1.0 - AE Creations) Terragen (HKLM-x32\...\{CCEB53A5-A252-4CF3-8602-429AB06BF0AE}) (Version: 0.9.43 - Planetside Software) TomTom MyDrive Connect 4.2.11.4200 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.11.4200 - TomTom) Transmission 3.00 (bb6b5a062e) (x64) (HKLM\...\{B206C51C-27D2-4251-95E2-B4B28DE80633}) (Version: 3.00.0 - Transmission Project) Tuto.com version 5.0.0 (HKLM-x32\...\{88AC85F0-BF65-420D-A8A7-8D04AFA1C424}_is1) (Version: 5.0.0 - SAS Weecast) Universal Extractor (HKLM-x32\...\Universal Extractor_addon) (Version: v1.7.9.95 - oszone.net) Universal Extractor 1.6.1 (HKLM-x32\...\Universal Extractor_is1) (Version: 1.6.1 - Jared Breland) Unknown Device Identifier 9.01 (HKLM\...\Unknown Device Identifier_is1) (Version: 9.01 - Huntersoft) Version (64 bits ) (HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\Version (64 bits ) ) (Version: - ) VirtualDJ 2020 (HKLM\...\{830C5751-6A7C-42C7-9AD3-278FFC68E0BC}) (Version: 8.4.5402.0 - Atomix Productions) Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) VNC Viewer 6.18.907 (HKLM\...\{8372DC07-603C-4627-A604-F9769BADADD0}) (Version: 6.18.907.38355 - RealVNC Ltd) Wampserver64 3.2.3 (HKLM\...\{wampserver64}_is1) (Version: 3.2.3 - Dominique Ottello aka Otomatic) Windows Subsystem for Linux Update (HKLM\...\{8D646799-DB00-4000-AE7A-756A05A4F1D8}) (Version: 5.4.72 - Microsoft Corporation) WinImage (HKLM-x32\...\WinImage) (Version: - ) WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH) WinSCP 5.17.10 (HKLM-x32\...\winscp3_is1) (Version: 5.17.10 - Martin Prikryl) Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare) Xirrus Wi-Fi Inspector (HKLM-x32\...\{BBB21AB1-2C45-435D-A05A-B563072E7B9B}) (Version: 1.2.1.4 - Xirrus) XnConvert 1.82 (HKLM\...\XnConvert_is1) (Version: 1.82 - Gougelet Pierre-e) XnViewMP 0.94.2 (HKLM\...\XnViewMP_is1) (Version: 0.94.2 - Gougelet Pierre-e) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-12-11] (Microsoft Corporation) Enhancer for YouTube™ for Microsoft Edge™ -> C:\Program Files\WindowsApps\48376MaximeRF.EnhancerforYouTubeforMicrosoftEdge_2.0.101.0_neutral__f4efyycdr3qdm [2020-12-11] (Maxime RF) Enpass Password Manager -> C:\Program Files\WindowsApps\SinewSoftwareSystems.EnpassPasswordManager_6.61.804.0_x86__fwdy0m65qb6h2 [2021-03-26] (Enpass Technologies Private Limited) [Startup Task] HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_126.2.222.0_x64__v10z8vjag6ke6 [2021-04-09] (HP Inc.) Lakeside Vistas -> C:\Program Files\WindowsApps\Microsoft.LakesideVistas_1.0.0.0_neutral__8wekyb3d8bbwe [2020-12-11] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-12-11] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-12-11] (Microsoft Corporation) [MS Ad] Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.11030.0_x64__8wekyb3d8bbwe [2020-12-11] (Microsoft Studios) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.4213.0_x64__8wekyb3d8bbwe [2021-04-30] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.960.0_x64__56jybvy8sckqj [2021-04-30] (NVIDIA Corp.) OneNote Web Clipper -> C:\Program Files\WindowsApps\Microsoft.OneNoteWebClipper_3.8.1.0_neutral__8wekyb3d8bbwe [2020-12-11] (Microsoft Corporation) PowerShell -> C:\Program Files\WindowsApps\Microsoft.PowerShell_7.1.3.0_x64__8wekyb3d8bbwe [2021-05-03] (Microsoft Corporation) Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.40392.0_x64__8wekyb3d8bbwe [2021-03-03] (Microsoft Corporation) Save to Pocket -> C:\Program Files\WindowsApps\Pocket.SavetoPocket_2.0.38.0_neutral__v63j13wrfzj3t [2020-12-11] (Read It Later, Inc) Windows Terminal -> C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_1.7.1033.0_x64__8wekyb3d8bbwe [2021-04-15] (Microsoft Corporation) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-697154995-3455906400-4025749246-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0 CustomCLSID: HKU\S-1-5-21-697154995-3455906400-4025749246-1001_Classes\CLSID\{0d767247-39de-4278-b989-9d7ae7cc9ac3} -> [ownCloud] => C:\Users\jean\ownCloud4 [2019-03-04 09:47] CustomCLSID: HKU\S-1-5-21-697154995-3455906400-4025749246-1001_Classes\CLSID\{1AC77AE9-9EC6-405A-9F9B-C06AB3C10B71}\InprocServer32 -> C:\Program Files\Microsoft Research\Image Composite Editor\ShellExtension.dll (Microsoft Corporation) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-697154995-3455906400-4025749246-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => F:\Dropbox\Dropbox [2019-03-22 09:26] ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-25] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-25] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-25] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-03-12] (Google LLC -> Google) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-25] (Adobe Inc. -> ) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2021-03-22] (Notepad++ -> ) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google) ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2021-01-12] (g10 Code GmbH) [Fichier non signé] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-03-12] (Google LLC -> Google) ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll [2021-01-12] (g10 Code GmbH) [Fichier non signé] ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.47.0.dll [2021-03-03] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_a494df49ba2f9f36\nvshext.dll [2021-04-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-11-25] (Adobe Inc. -> ) ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2020-09-28] (VS Revo Group Ltd. -> VS Revo Group) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4_S-1-5-21-697154995-3455906400-4025749246-1001: [Fb2kShellExt] -> {511D48AF-9E45-4CB8-8F02-9C1BE4BC3CF8} => C:\Program Files (x86)\foobar2000\ShellExt64.dll [2017-10-09] (Piotr Pawłowski -> Peter Pawlowski) [Fichier non signé] ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\jean\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\DUNE CD Voix Françaises.lnk -> G:\dosbox\DUNE CD Voix Françaises\DuneVF.bat () ==================== Modules chargés (Avec liste blanche) ============= 2018-10-21 14:33 - 2019-08-05 14:26 - 000025088 _____ () [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\BSL430.dll 2018-10-21 14:33 - 2019-08-05 14:26 - 000225792 _____ () [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvFireware.dll 2021-03-04 11:14 - 2021-01-05 20:40 - 000184832 _____ () [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\ITEDriver.dll 2018-10-22 08:55 - 2005-04-22 06:36 - 000143360 ____R () [Fichier non signé] C:\WINDOWS\system32\BrSNMP64.dll 2018-10-22 08:55 - 2012-07-27 07:07 - 000087040 ____R (Brother Industries, Ltd.) [Fichier non signé] C:\WINDOWS\system32\BrNetSti.dll 2020-08-04 11:46 - 2020-08-04 11:46 - 000341504 _____ (Free Time) [Fichier non signé] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll 2020-07-24 12:22 - 2021-01-12 15:30 - 000453632 _____ (g10 Code GmbH) [Fichier non signé] C:\Program Files (x86)\Gpg4win\bin_64\gpgex.dll 2020-03-30 08:39 - 2020-11-09 16:55 - 001970176 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GbtCpuLib.dll 2018-10-21 14:33 - 2019-02-16 00:07 - 000152576 _____ (GIGA-BYTE TECHNOLOGY CO., LTD.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\yccV2.dll 2018-10-21 14:33 - 2020-12-25 12:21 - 000295936 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVBIOSLib.dll 2018-10-21 14:33 - 2019-08-05 14:26 - 000628736 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvComW.dll 2018-10-21 14:33 - 2019-08-05 14:26 - 000013312 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvCrypt.dll 2018-10-21 14:33 - 2021-02-04 11:37 - 000475648 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GVDisplay.dll 2018-10-21 14:33 - 2019-08-05 14:26 - 000240640 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvIllumLib.dll 2018-10-21 14:33 - 2019-08-05 14:26 - 000218112 _____ (GIGABYTE Technology Co.,Ltd.) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvOrderLib.dll 2015-02-24 15:49 - 2015-02-24 15:49 - 000236544 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files\Microsoft Research\Image Composite Editor\ShellExtension.dll 2020-06-06 20:36 - 2020-06-06 20:36 - 001093120 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL 2020-06-06 20:36 - 2020-06-06 20:36 - 000061440 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80FRA.DLL 2020-03-10 10:31 - 2020-03-10 10:31 - 001918464 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll 2018-10-21 14:33 - 2019-08-27 14:22 - 000224256 _____ (TODO: ) [Fichier non signé] C:\Program Files (x86)\GIGABYTE\AORUS ENGINE\GvAutoUpdate.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-04-25] (Oracle America, Inc. -> Oracle Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-04-25] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\ssv.dll [2021-04-25] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-04-25] (Oracle America, Inc. -> Oracle Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\download.microsoft.com -> hxxp://download.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\download.windowsupdate.com -> hxxp://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\download.windowsupdate.com -> hxxps://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\microsoft.com -> hxxp://ntservicepack.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\ntservicepack.microsoft.com -> hxxp://ntservicepack.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\update.microsoft.com -> hxxp://update.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\update.microsoft.com -> hxxps://update.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\windows.com -> hxxp://wustat.windows.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\windowsupdate.com -> hxxp://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\windowsupdate.com -> hxxps://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\windowsupdate.microsoft.com -> hxxp://windowsupdate.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\ws.microsoft.com -> hxxp://ws.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\ws.microsoft.com -> hxxps://ws.microsoft.com IE trusted site: HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\wustat.windows.com -> hxxp://wustat.windows.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-09-29 15:46 - 2021-04-14 09:51 - 000001101 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 accueil 127.0.0.1 cours 192.168.1.34 host.docker.internal 192.168.1.34 gateway.docker.internal 127.0.0.1 kubernetes.docker.internal 2019-05-19 09:13 - 2021-04-14 09:51 - 000000823 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 172.21.16.1 JEAN-PC-PRO.mshome.net # 2026 4 1 13 7 51 56 938 172.27.160.1 JEAN-PC-PRO.mshome.net # 2026 2 5 6 6 34 48 462 79 36 172.17.59.2 securenat-dabbc205cbf5.mshome.net # 2020 6 0 14 3 1 26 522 172.17.20.132 securenat-daff74097149.mshome.net # 2020 3 2 17 16 3 46 960 172.17.20.132 securenat-daff74097149.mshome.net # 2020 3 2 17 16 3 46 960 60 ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %SystemRoot%\system32\WBEM;C:\WINDOWS\system32\WBEM;C:\Program Files\Python38\Scripts\;C:\Program Files\Python38\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\System32\wbem;C:\Windows\System32;C:\Windows;C:\Program Files (x86)\Intel\iCLS Client;C:\Program Files\Intel\iCLS Client;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Windows\System32\OpenSSH;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Calibre2;G:\Programmes\Sqlite;C:\Users\jean\AppData\Local\Microsoft\WindowsApps;C:\Program Files\PuTTY;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\nodejs;G:\Apache24\bin;C:\Program Files\MySQL\MySQL Utilities 1.6;G:\Php7;G:\Php7\ext;C:\Users\jean\AppData\Roaming\npm;F:\VisualStudio\Microsoft VS Code\bin;C:\Program Files (x86)\sqlite3;C:\Program Files\Calibre2\;C:\Program Files (x86)\Universal Extractor;C:\Program Files (x86)\Universal Extractor\bin;C:\Program Files\dotnet\;C:\ProgramData\ComposerSetup\bin;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;G:\SoftHSM2\lib;C:\Program Files\PuTTY\;C:\Program Files (x86)\Gpg4win\..\GnuPG\bin;C:\Users\jean\AppData\Local\Programs\Python\Python39\Scripts\;C:\Users\jean\AppData\Local\Programs\Python\Python39\;C:\Users\jean\AppData\Local\Programs\Python\Python38-32\Scripts\;C:\Users\jean\AppData\Local\Programs\Python\Python38-32\;C:\Program Files (x86)\Nmap;C:\WINDOWS\system32;C:\Program Files (x86)\Windows 10 Manager;C:\ProgramData\chocolatey\bin;C:\Program Files\Git\cmd HKCU\Environment\\Path -> C:\Users\jean\AppData\Local\Programs\Python\Python37-32\Scripts\;C:\Users\jean\AppData\Local\Programs\Python\Python37-32\;C:\Program Files (x86)\Nmap HKU\S-1-5-21-697154995-3455906400-4025749246-1001\Control Panel\Desktop\\Wallpaper -> E:\Images\Ecran\251819.jpg DNS Servers: 192.168.1.12 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\startupreg: AGCInvokerUtility.exe => F:\MesDocuments\Utils\jv16PTPortable_4.0.0.1506\App\jv16PT\StartupOptimizer.exe "C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe" MSCONFIG\startupreg: CCXProcess.exe => F:\MesDocuments\Utils\jv16PTPortable_4.0.0.1506\App\jv16PT\StartupOptimizer.exe "C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe" MSCONFIG\startupreg: jusched.exe => F:\MesDocuments\Utils\jv16PTPortable_4.0.0.1506\App\jv16PT\StartupOptimizer.exe "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: TomTom MyDrive Connect.exe => C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe -startwithoutDA MSCONFIG\startupreg: UpdaterStartupUtility.exe => F:\MesDocuments\Utils\jv16PTPortable_4.0.0.1506\App\jv16PT\StartupOptimizer.exe "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" MSCONFIG\startupreg: vmware-tray.exe => F:\MesDocuments\Utils\jv16PTPortable_4.0.0.1506\App\jv16PT\StartupOptimizer.exe "C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe" HKLM\...\StartupApproved\StartupFolder: => "Domoticz.lnk" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "jv16 PT (Startup Optimizer)" HKLM\...\StartupApproved\Run: => "jv16 PT (System Startup Check)" HKLM\...\StartupApproved\Run32: => "IndexSearch" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-697154995-3455906400-4025749246-1001\...\StartupApproved\Run: => "GoogleDriveSync" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{D99BEEE6-5721-48AA-B214-A772FBD5F02A}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [UDP Query User{3D316836-6514-45B2-AF92-FBC0D64909DD}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [{346FE0F7-90F1-46F1-8064-B438D92E8DB3}] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [{05F9451E-FC35-45EB-AC38-7C71C11F3419}] => (Block) C:\program files (x86)\arduino\java\bin\javaw.exe FirewallRules: [TCP Query User{16C80279-E062-4AA7-BE65-2AED07017C6F}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe (SignPath Foundation -> Transmission Project) FirewallRules: [UDP Query User{6A473A09-959F-4D9A-9C2D-0C895F9CF774}C:\program files\transmission\transmission-qt.exe] => (Allow) C:\program files\transmission\transmission-qt.exe (SignPath Foundation -> Transmission Project) FirewallRules: [{EEA28E52-2725-4686-88AD-D73B6CF6BF39}] => (Block) C:\program files\transmission\transmission-qt.exe (SignPath Foundation -> Transmission Project) FirewallRules: [{7EBA2A41-D676-47D1-B9C6-3D43E07603FF}] => (Block) C:\program files\transmission\transmission-qt.exe (SignPath Foundation -> Transmission Project) FirewallRules: [{7B60245A-F0AB-4595-ABDA-6AFFFE2096DE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{2B95EB96-D04B-4B79-99AB-C65F7451400C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{C2654C65-3B75-479C-82AE-4E3CCDC1D9DE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C77802A5-A08D-4FF9-9FE0-5E149BDEE446}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{5C574509-6320-4259-A73B-A36B1864E03C}C:\program files\doomsday 2.0.3\bin\doomsday.exe] => (Allow) C:\program files\doomsday 2.0.3\bin\doomsday.exe () [Fichier non signé] FirewallRules: [UDP Query User{B2E27ED3-B411-4880-86B1-0F37E2E1E41D}C:\program files\doomsday 2.0.3\bin\doomsday.exe] => (Allow) C:\program files\doomsday 2.0.3\bin\doomsday.exe () [Fichier non signé] FirewallRules: [{4135332E-68F1-4F20-B131-7A4DF3A6E6F8}] => (Block) C:\program files\doomsday 2.0.3\bin\doomsday.exe () [Fichier non signé] FirewallRules: [{5BF01E74-B270-4745-9FD9-2E6A63959952}] => (Block) C:\program files\doomsday 2.0.3\bin\doomsday.exe () [Fichier non signé] FirewallRules: [{09F97235-4FCB-4827-B4D3-33E2542C45E9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5F8AE419-EDF3-4B62-B244-5398E7022CFE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B91C89DA-DC01-40E9-A1FB-540B7742C454}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C5DC39D2-B7F8-4857-9600-E9A6672C762E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.63.76.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{50D7D89D-C2B2-4769-B9BD-06BE9195F231}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom) FirewallRules: [{7CCB74BB-C1A1-45AA-A812-00E77D4C2C73}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{30460FB6-7007-47D4-8E0D-E9B62BD413F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{6555EC26-DF4C-4B97-83DE-F533F6A03E97}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{4969740C-C45B-4174-A9AC-2CC91EE9FCA6}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{C2FB4294-3B12-4253-9DA3-48F96F27A5EF}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{270FE76B-F27D-463C-8B9A-6165C8DD65BD}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) FirewallRules: [{FFF368DF-B4F0-43D2-8A60-3E0885A6AA60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{582F4EF2-6694-44C6-9A28-44CA133A1307}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{97D27FAF-5B27-4B5B-9DD5-6FACD7DA758D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{98C5ED42-6B2B-4989-9E59-6EF5606C7114}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [TCP Query User{8913B504-30A8-4AAE-88A3-473FD1CF2475}C:\program files (x86)\domoticz\domoticz.exe] => (Allow) C:\program files (x86)\domoticz\domoticz.exe () [Fichier non signé] FirewallRules: [UDP Query User{E472CB71-BB56-416E-B7E5-2149D8242B31}C:\program files (x86)\domoticz\domoticz.exe] => (Allow) C:\program files (x86)\domoticz\domoticz.exe () [Fichier non signé] FirewallRules: [{73DD311F-E088-4350-B480-763416C69F24}] => (Block) C:\program files (x86)\domoticz\domoticz.exe () [Fichier non signé] FirewallRules: [{03ED5751-F4FF-4D54-9386-74646E2A2768}] => (Block) C:\program files (x86)\domoticz\domoticz.exe () [Fichier non signé] FirewallRules: [TCP Query User{858035B9-35B1-4554-A27F-92DE1D517CE4}C:\program files (x86)\foobar2000\foobar2000.exe] => (Allow) C:\program files (x86)\foobar2000\foobar2000.exe (Piotr Pawlowski) [Fichier non signé] FirewallRules: [UDP Query User{9E8BCEC8-1D93-44E8-BCAD-6D5774B1BFD5}C:\program files (x86)\foobar2000\foobar2000.exe] => (Allow) C:\program files (x86)\foobar2000\foobar2000.exe (Piotr Pawlowski) [Fichier non signé] FirewallRules: [{5E2D9A2B-613C-4AB1-B541-2745F93B0840}] => (Block) C:\program files (x86)\foobar2000\foobar2000.exe (Piotr Pawlowski) [Fichier non signé] FirewallRules: [{0D763178-6DDC-42FD-81B3-04EADC31CB70}] => (Block) C:\program files (x86)\foobar2000\foobar2000.exe (Piotr Pawlowski) [Fichier non signé] FirewallRules: [{889CA9B3-89AF-4D40-9535-FC140A005D6E}] => (Allow) C:\Users\jean\AppData\Local\Programs\Opera\75.0.3969.218\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{423A8420-0170-45E7-8B37-DF7F3CC19E38}] => (Allow) C:\Users\jean\AppData\Local\Chromium\Application\chrome.exe (The Chromium Authors) [Fichier non signé] FirewallRules: [{1524EE52-FD5E-497A-B43B-6F638F78DAA0}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{B33E6E2E-993C-45F4-93E7-8502B3035CF2}] => (Allow) C:\Users\jean\AppData\Local\Programs\Opera\75.0.3969.243\opera.exe (Opera Software AS -> Opera Software) ==================== Points de restauration ========================= 21-04-2021 10:39:47 Removed Module externe DxO PhotoLab 4 pour Adobe Lightroom 21-04-2021 10:41:47 Installed DxO PhotoLab 4 30-04-2021 12:37:14 Point de contrôle planifié 03-05-2021 11:30:14 Programme d’installation pour les modules Windows 03-05-2021 11:31:10 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (05/03/2021 06:29:15 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement. . Opération : Opération asynchrone en cours d’exécution Contexte : État actuel: DoSnapshotSet Error: (05/03/2021 06:29:02 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {e201f486-f939-4d21-a065-549c9f4ddbc9} Error: (05/03/2021 11:47:29 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: JEAN-PC-PRO) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code de statut. Error: (05/03/2021 10:24:56 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: JEAN-PC-PRO) Description: Impossible d’ouvrir l’objet de performance pour le service Serveur. Les quatre premiers octets (DWORD) de la section Data contiennent le code de statut. Error: (05/03/2021 07:20:09 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (05/03/2021 07:20:08 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (05/03/2021 07:20:08 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (05/03/2021 07:20:08 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Erreurs système: ============= Error: (05/03/2021 06:33:48 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (120000 millisecondes) a été atteint lors de l’attente de la connexion du service Intel(R) SUR QC Software Asset Manager. Error: (05/03/2021 06:33:43 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Gestion d’ordinateurs virtuels Hyper-V s’est arrêté avec l’erreur : Mémoire insuffisante Error: (05/03/2021 06:31:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service WMPNetworkSvc s’est arrêté avec l’erreur : Tentative de référence à un jeton qui n’existe pas. Error: (05/03/2021 06:31:36 PM) (Source: volmgr) (EventID: 46) (User: ) Description: L'initialisation du fichier de vidage sur incident a échoué. Error: (05/03/2021 06:31:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Adaptateur d'écouteur Net.Msmq dépend du service Message Queuing qui n’a pas pu démarrer en raison de l’erreur : Le service ou le groupe de dépendance n’a pas pu démarrer. Error: (05/03/2021 06:31:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service d'activation des processus Windows n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (05/03/2021 06:31:09 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Message Queuing dépend du service Journal d’événements Windows qui n’a pas pu démarrer en raison de l’erreur : L’échec d’une ouverture de session a empêché le démarrage du service. Error: (05/03/2021 06:31:09 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Journal d’événements Windows n’a pas pu démarrer en raison de l’erreur : L’échec d’une ouverture de session a empêché le démarrage du service. Windows Defender: ================ Date: 2021-05-03 18:22:40 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Contebrew.A!ml&threatid=251873&enterprise=0 Nom : Program:Win32/Contebrew.A!ml ID : 251873 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\jean\ZHPSuite.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la veille de sécurité : AV: 1.337.496.0, AS: 1.337.496.0, NIS: 1.337.496.0 Version du moteur : AM: 1.1.18100.5, NIS: 1.1.18100.5 Date: 2021-04-26 07:15:44 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {D3789ADF-0BAA-40ED-97C5-3A90021DE97B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-04-24 08:07:24 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {883F2C4C-103B-4CD3-A22C-921C1731C08C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-04-21 10:44:01 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Program Files\DxO\DxO PhotoLab 4\dxo.photolab.elite.4.2 [x64]-MPT.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : JEAN-PC-PRO\jean Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.335.1314.0, AS: 1.335.1314.0, NIS: 1.335.1314.0 Version du moteur : AM: 1.1.18000.5, NIS: 1.1.18000.5 Date: 2021-04-21 10:37:45 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0 Nom : HackTool:Win32/Keygen ID : 2147593794 Gravité : Élevée Catégorie : Outil Chemin : file:_C:\Users\jean\Desktop\DxOPhotoLab_4.2.1_build4542_ (x64)_Elite_Win_Multi_patch\dxo.photolab.elite.4.2 [x64]-MPT.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : JEAN-PC-PRO\jean Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.335.1314.0, AS: 1.335.1314.0, NIS: 1.335.1314.0 Version du moteur : AM: 1.1.18000.5, NIS: 1.1.18000.5 Date: 2021-04-29 14:23:24 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : 1.337.186.0 Version précédente de la veille de sécurité : 1.335.1685.0 Source de mise à jour : Utilisateur Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Delta Utilisateur : AUTORITE NT\Système Version actuelle du moteur : 1.1.18100.5 Version précédente du moteur : 1.1.18000.5 Code d’erreur : 0x80070666 Description de l’erreur : Une autre version de ce produit est déjà installée. L’installation de cette version ne peut pas continuer. Pour configurer ou supprimer la version existante de ce produit utilisez Ajout/Suppression de programmes depuis le Panneau de configuration. Date: 2021-04-29 14:23:24 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : 1.337.186.0 Version précédente de la veille de sécurité : 1.335.1685.0 Source de mise à jour : Utilisateur Type de veille de sécurité : Anti-virus Type de mise à jour : Delta Utilisateur : AUTORITE NT\Système Version actuelle du moteur : 1.1.18100.5 Version précédente du moteur : 1.1.18000.5 Code d’erreur : 0x80070666 Description de l’erreur : Une autre version de ce produit est déjà installée. L’installation de cette version ne peut pas continuer. Pour configurer ou supprimer la version existante de ce produit utilisez Ajout/Suppression de programmes depuis le Panneau de configuration. Date: 2021-04-29 14:23:24 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour du moteur. Nouvelle version du moteur : 1.1.18100.5 Version précédente du moteur : 1.1.18000.5 Utilisateur : AUTORITE NT\Système Code d’erreur : 0x80070666 Description de l’erreur : Une autre version de ce produit est déjà installée. L’installation de cette version ne peut pas continuer. Pour configurer ou supprimer la version existante de ce produit utilisez Ajout/Suppression de programmes depuis le Panneau de configuration. CodeIntegrity: =============== Date: 2021-05-03 18:31:50 Description: Code Integrity determined that a process (\Device\HarddiskVolume10\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume10\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1301 03/14/2018 Carte mère: ASUSTeK COMPUTER INC. STRIX Z270F GAMING Processeur: Intel(R) Core(TM) i5-7600 CPU @ 3.50GHz Pourcentage de mémoire utilisée: 29% Mémoire physique - RAM - totale: 16322.77 MB Mémoire physique - RAM - disponible: 11551.86 MB Mémoire virtuelle totale: 16322.77 MB Mémoire virtuelle disponible: 10648.82 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:207.35 GB) (Free:75.73 GB) NTFS Drive d: (Disque2) (Fixed) (Total:931.39 GB) (Free:170.38 GB) NTFS Drive e: (DisqueE) (Fixed) (Total:347.6 GB) (Free:312.3 GB) NTFS Drive f: (DisqueF) (Fixed) (Total:583.91 GB) (Free:355.78 GB) NTFS Drive g: (Disque-G) (Fixed) (Total:931.39 GB) (Free:194.7 GB) NTFS \\?\Volume{38493876-d1b6-444e-962b-c080b346314c}\ (Récupération) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS \\?\Volume{10974480-9dff-4db3-ab18-e0d523ce22f8}\ () (Fixed) (Total:0.82 GB) (Free:0.38 GB) NTFS \\?\Volume{9413abcd-7c3c-45b3-b9c2-a91b5140dd81}\ () (Fixed) (Total:0.86 GB) (Free:0.46 GB) NTFS \\?\Volume{d29f0d52-e7b4-4eff-8e76-fc3f7163909b}\ (Nouveau nom) (Fixed) (Total:6.99 GB) (Free:6.93 GB) NTFS \\?\Volume{629458e4-0000-0000-0000-010000000000}\ (PortableBaseLayer) (Fixed) (Total:8 GB) (Free:7.51 GB) NTFS \\?\Volume{4f667ad5-89af-4911-99fc-483b8f0d22f8}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 232.9 GB) (Disk ID: 05C31B85) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 021DB43B) Partition: GPT. ========================================================== Disk: 2 (Size: 931.5 GB) (Disk ID: 5A37A74D) Partition: GPT. ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 05C3FB87) Partition: GPT. ========================================================== Disk: 4 (MBR Code: Windows 7/8/10) (Size: 8 GB) (Disk ID: 629458E4) Partition 1: (Not Active) - (Size=8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================