Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-06-2021 Exécuté par KIWI (26-06-2021 01:08:08) Exécuté depuis C:\Users\KIWI\Desktop Windows 10 Home Version 2004 19041.746 (X64) (2020-08-21 17:01:43) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= Administrateur (S-1-5-21-2205633058-1032291407-2753346053-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2205633058-1032291407-2753346053-503 - Limited - Disabled) defaultuser0 (S-1-5-21-2205633058-1032291407-2753346053-1000 - Limited - Disabled) => C:\Users\defaultuser0 Invité (S-1-5-21-2205633058-1032291407-2753346053-501 - Limited - Disabled) KIWI (S-1-5-21-2205633058-1032291407-2753346053-1001 - Administrator - Enabled) => C:\Users\KIWI WDAGUtilityAccount (S-1-5-21-2205633058-1032291407-2753346053-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Bitdefender Antivirus (Enabled - Up to date) {BAD274F4-FA00-8560-1CDE-6C830442BEFA} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated) Ant Video downloader (Native messaging host) (HKLM-x32\...\{EF61BF45-53FF-41A8-96C9-0527735FE8CE}) (Version: 4.3 - Ant.com) Apple Application Support (32 bits) (HKLM-x32\...\{6CF0CAEE-54B6-4D84-A055-3AF110F189D3}) (Version: 8.4 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{8B127943-89E7-4691-A7A4-D05807920A84}) (Version: 8.4 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{6E93B248-22B6-48B2-A568-2E49C65B2EA4}) (Version: 13.5.0.20 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) BitComet 1.48 (HKLM-x32\...\BitComet_x64) (Version: 1.48 - CometNetwork) Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.21.970 - Bitdefender) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 22.0.1.1 - Bitdefender) Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 25.0.1.25 - Bitdefender) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Clavier+ 10.7.0 (HKLM\...\Clavier+_is1) (Version: 10.7.0 - Guillaume Ryder) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Deezer 4.10.2 (HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\67490f87-0893-5593-ae76-b1e5d0acd13f) (Version: 4.10.2 - Deezer) Deezer 4.18.70 (HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\{67490f87-0893-5593-ae76-b1e5d0acd13f}) (Version: 4.18.70 - Deezer) Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\{0E791EC0-B7AF-3E47-92EE-C435F246738A}) (Version: 91.0.4472.114 - Google LLC) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden IBM SPSS Statistics 20 (HKLM\...\{2AF8017B-E503-408F-AACE-8A335452CAD2}) (Version: 20.0.0.0 - IBM Corp) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.63.1519.7 - Intel Corporation) Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{B294CE94-FE0F-4427-910C-180AF9FCFED1}) (Version: 1.0.1.620 - Intel Corporation) Intel® Small Business Advantage (HKLM-x32\...\{C7A82877-2365-4A03-B23F-DFDD629B7F3A}) (Version: 4.0.44 - Intel Corporation) iTunes (HKLM\...\{93D4D2ED-46D7-4AAE-A121-E6B0B71AD488}) (Version: 12.10.6.2 - Apple Inc.) L&H TTS3000 Français (HKLM-x32\...\LHTTSFRF) (Version: - ) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden Malwarebytes version 4.4.0.117 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.0.117 - Malwarebytes) Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.54 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14026.20308 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\OneDriveSetup.exe) (Version: 21.099.0516.0003 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23506 (HKLM-x32\...\{3ee5e5bb-b7cc-4556-8861-a00a82977d6c}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23506 (HKLM-x32\...\{23daf363-3020-4059-b3ae-dc4ad39fed19}) (Version: 14.0.23506.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Molotov (HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\Molotov) (Version: 4.4.2 - Molotov) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox 89.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 89.0.2 (x86 fr)) (Version: 89.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 89.0.2 - Mozilla) MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 2.0.0.36 - MSI) MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version: - MSI Co., LTD) MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.2.0.69 - MSI) MSIRegister (HKLM-x32\...\{80B995A4-3A86-4690-98A6-563F1A788835}_is1) (Version: 2.0.0.19 - MSI) NVIDIA Pilote audio HD : 1.3.38.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.35 - NVIDIA Corporation) NVIDIA Pilote graphique 456.71 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 456.71 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20308 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14026.20246 - Microsoft Corporation) Hidden OSFMount v2.0 (HKLM\...\OSFMount_is1) (Version: 2.0.1001 - Passmark Software) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7891 - Realtek Semiconductor Corp.) Revo Uninstaller 2.2.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.8 - VS Revo Group, Ltd.) RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software) Shotcut (HKLM-x32\...\Shotcut) (Version: 19.08.05 - Meltytech, LLC) Spotify (HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\Spotify) (Version: 1.1.31.703.g256add22 - Spotify AB) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Resource Kit Tools (HKLM-x32\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation) WinRAR 5.40 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Packages: ========= Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_5.6.10.0_x86__h6adky7gbf63m [2020-12-16] (Gameloft SE) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Studios) [MS Ad] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-15] (Netflix, Inc.) OneDrive -> C:\Program Files\WindowsApps\microsoft.microsoftskydrive_19.23.11.0_x64__8wekyb3d8bbwe [2020-07-23] (Microsoft Corporation) Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2021-05-11] (Adobe Systems Incorporated) TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2019-09-21] (TuneIn) [MS Ad] Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-06-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-10-01] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-06-25] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [msacm.voxacm160] => C:\WINDOWS\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Fichier non signé] HKLM\...\Drivers32: [msacm.scg726] => C:\WINDOWS\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Fichier non signé] HKLM\...\Drivers32: [msacm.alf2cd] => C:\WINDOWS\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Fichier non signé] HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Fichier non signé] HKLM\...\Drivers32: [msacm.lame] => C:\WINDOWS\system32\lame.ax [245760 2005-08-01] () [Fichier non signé] HKLM\...\Drivers32: [vidc.dvsd] => C:\WINDOWS\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Fichier non signé] HKLM\...\Drivers32: [vidc.mpg4] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Fichier non signé] HKLM\...\Drivers32: [vidc.mp42] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Fichier non signé] HKLM\...\Drivers32: [vidc.mp43] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Fichier non signé] HKLM\...\Drivers32: [vidc.xvid] => C:\WINDOWS\system32\xvidvfw.dll [139264 2004-07-03] () [Fichier non signé] HKLM\...\Drivers32: [vidc.DIVX] => C:\WINDOWS\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Fichier non signé] HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Fichier non signé] HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Fichier non signé] HKLM\...\Drivers32: [vidc.VP62] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Fichier non signé] HKLM\...\Drivers32: [vidc.LAGS] => C:\WINDOWS\system32\lagarith.dll [216064 2011-12-07] () [Fichier non signé] ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2019-09-21 01:08 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2019-09-21 01:08 - 2017-09-12 10:34 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2020-06-18 09:27 - 2005-07-18 13:43 - 000160256 _____ () [Fichier non signé] C:\Program Files (x86)\MSI\Live Update\unrar.dll 2016-08-22 20:16 - 2007-09-02 13:57 - 000069632 _____ () [Fichier non signé] C:\Program Files (x86)\RocketDock\RocketDock.dll 2019-09-21 01:08 - 2017-09-12 10:36 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=620947&OCID=AVRES000&pc=UE00 SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2205633058-1032291407-2753346053-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00 SearchScopes: HKU\S-1-5-21-2205633058-1032291407-2753346053-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE00 BHO: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender 2017\bdtbie.dll [2021-06-25] (Bitdefender SRL -> Bitdefender) BHO: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2021-06-25] (Bitdefender SRL -> Bitdefender) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Bitdefender Trackers Blocking -> {159ff5d5-55f1-4d2f-b706-767a55f77abb} -> C:\Program Files\Bitdefender\Bitdefender 2017\antispam32\bdtbie.dll [2021-06-25] (Bitdefender SRL -> Bitdefender) BHO-x32: Bitdefender Wallet -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2021-06-25] (Bitdefender SRL -> Bitdefender) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\pmbxie.dll [2021-06-25] (Bitdefender SRL -> Bitdefender) Toolbar: HKLM-x32 - Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2017\Antispam32\pmbxie.dll [2021-06-25] (Bitdefender SRL -> Bitdefender) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-05-29] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2016-07-16 13:47 - 2021-06-26 00:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2017-10-20 09:48 - 2017-10-20 09:53 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Windows Resource Kits\Tools\;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Windows Live\Shared;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-2205633058-1032291407-2753346053-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\KIWI\Downloads\Sunset-Cathedral-Rock-Sedona-Arizona-Desktop-HD-Wallpaper-for-Mobile-phones-Tablet-and-PC-3840x2160-1920x1080.jpg DNS Servers: 89.2.0.1 - 89.2.0.2 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "Live Update" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "Spotify Web Helper" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "Spotify" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "DashlanePlugin" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "Dashlane" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "CyberGhost" HKU\S-1-5-21-2205633058-1032291407-2753346053-1001\...\StartupApproved\Run: => "com.deezer.deezer-desktop" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{B8F241E0-EDB7-4178-A71B-0FADB02D21D9}C:\program files\bitdefender\bitdefender 2017\obk.exe] => (Block) C:\program files\bitdefender\bitdefender 2017\obk.exe (Bitdefender SRL -> Bitdefender) FirewallRules: [TCP Query User{A3D63259-E30A-425F-B192-40B314954311}C:\program files\bitdefender\bitdefender 2017\obk.exe] => (Block) C:\program files\bitdefender\bitdefender 2017\obk.exe (Bitdefender SRL -> Bitdefender) FirewallRules: [{0B00EABC-6677-414D-9804-4A6C97EC8B61}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [UDP Query User{2736E11A-8E64-4468-A80D-91836FD05F91}C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe (Deezer -> Deezer) FirewallRules: [TCP Query User{D9982EB6-751E-415F-AC0B-E08AF286BC62}C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe (Deezer -> Deezer) FirewallRules: [UDP Query User{9F07EB39-BF23-464C-8507-DD23A571C28F}C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe (Deezer -> Deezer) FirewallRules: [TCP Query User{1649B95E-DADA-4C23-9671-4517559E7682}C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe] => (Allow) C:\users\kiwi\appdata\local\programs\deezer-desktop\deezer.exe (Deezer -> Deezer) FirewallRules: [{B8299163-6F66-4180-A784-2C78E63C8DFA}] => (Block) C:\users\kiwi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{BD1AD42D-E828-4A4F-9CC6-DA2BA1346E64}] => (Block) C:\users\kiwi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{0ADCB5C9-E249-4C92-A569-1EF07DE459D1}C:\users\kiwi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kiwi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{619E2C7F-FE25-4009-B6EA-BF9F033F2558}C:\users\kiwi\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kiwi\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{48D50B46-F859-44CA-819B-34722485C422}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe FirewallRules: [TCP Query User{4B13C265-4A1B-495F-85AA-368E6356B6B3}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Allow) C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe FirewallRules: [{8DD4D653-BF82-44BE-8192-0DA6AF73D168}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.com (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [{46B5EA8D-F40D-4C10-AD03-DC08DD58E4EB}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.com (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [{E73E1B28-2950-4329-83CC-6389A9BB18B6}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [{0770DE05-ADBB-4A9F-9C16-5066E0AC5088}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\WinWrapIDE.exe (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [{A05DECF7-C9F4-4EE5-886E-B1987710F52A}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\stats.exe (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [{AB634224-E527-4B96-9AAC-739BC538FA9C}] => (Allow) C:\Program Files\IBM\SPSS\Statistics\20\WinWrapIDE.exe (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [{6C8F3C3E-6374-44E3-A42D-7A8F6CA2E182}] => (Allow) LPort=1900 FirewallRules: [{7312D475-4A1D-4973-A427-E05CE907A8F6}] => (Allow) LPort=2869 FirewallRules: [{4A795AA3-6141-4AA7-912D-0EDDCFC0F256}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6D09EF48-4184-4D0B-B4EC-704D55D57F3E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B3C122AE-9FBF-4FB6-A4B2-8212E4D10245}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F4961C7F-9E8F-4064-855B-862E267B388D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{FA5968FF-0823-4A3C-BDA1-6A32D3911BEF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0A283117-D6F6-4A6A-A1B6-16458E0B14B5}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com) FirewallRules: [{0066496F-D831-4434-A9A1-3691418ACDAA}] => (Allow) C:\Program Files\BitComet\BitComet.exe (Xing Wang -> www.BitComet.com) FirewallRules: [{E6587FF0-06D0-4404-82C2-4CDEB14319D6}] => (Allow) C:\Program Files (x86)\Intel\Intel(R) Small Business Advantage Next\Sba.exe (Intel(R) Small Business Advantage -> Intel Corporation) FirewallRules: [TCP Query User{B2FE0BAF-9B60-48AD-B901-558CFF8F2106}C:\program files\ibm\spss\statistics\20\stats.exe] => (Block) C:\program files\ibm\spss\statistics\20\stats.exe (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [UDP Query User{AE73F2C9-722B-45B3-85AB-D3BF3CE63729}C:\program files\ibm\spss\statistics\20\stats.exe] => (Block) C:\program files\ibm\spss\statistics\20\stats.exe (International Business Machines Corporation -> IBM Corp.) [Fichier non signé] FirewallRules: [TCP Query User{BB4C99D8-987A-4357-B96C-BF8CE2D757D9}C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe] => (Block) C:\program files\ibm\spss\statistics\20\jre\bin\javaw.exe FirewallRules: [TCP Query User{9C6EBF72-7FD3-4D20-BAD3-FAC42D74585B}C:\program files\bitcomet\bitcomet.exe] => (Allow) C:\program files\bitcomet\bitcomet.exe (Xing Wang -> www.BitComet.com) FirewallRules: [UDP Query User{9F7613F3-025C-4B09-BECE-BCD5B582DFEE}C:\program files\bitcomet\bitcomet.exe] => (Allow) C:\program files\bitcomet\bitcomet.exe (Xing Wang -> www.BitComet.com) FirewallRules: [TCP Query User{98DAFBEA-701B-4668-9EC9-EED8370F3445}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{288D9156-799D-457F-927B-6BD46D6C1E7B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3516BA0B-120F-4CDF-873D-0A3615D244F0}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{52439714-F4DA-48AF-9740-1E886DC28BA2}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation) FirewallRules: [{654CA602-BD56-4233-BFEB-74F38954F4C1}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{1F03CB80-717E-4C79-9F10-F0FF6A18B96D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FB4840D2-7D31-4B28-8BD2-38F1F1AF0671}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{BD9ED6F2-EC7D-4E22-8AB5-89636495973B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F6CCDF0D-4500-40CF-9FAA-46E56C5AADEB}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E734AC46-4644-4F47-92F3-141C2E9D3264}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F0EF9DCD-8999-4246-A16B-E323E6BD9A15}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{AFCB0925-A8EB-4BB9-92CA-58E33C02D028}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7CDADEFD-9843-46D6-8926-189B787E1C15}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= 24-06-2021 20:43:41 ResetBrowser 25-06-2021 19:37:14 ZHPcleaner ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Clavier standard PS/2 Description: Clavier standard PS/2 Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318} Manufacturer: (Claviers standard) Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Souris Microsoft PS/2 Description: Souris Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (06/25/2021 07:12:40 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Nom du module défaillant : MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Code d’exception : 0xc000041d Décalage d’erreur : 0x0002645f ID du processus défaillant : 0x1468 Heure de début de l’application défaillante : 0x01d769e53d3396f2 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe ID de rapport : 00ab5f31-992c-443c-8a90-1467186831e6 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (06/25/2021 07:12:38 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Nom du module défaillant : MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002645f ID du processus défaillant : 0x1468 Heure de début de l’application défaillante : 0x01d769e53d3396f2 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe ID de rapport : fc6a1ba6-4fdb-4db3-adb9-9486df0b0b8c Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (06/25/2021 07:06:05 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {f207c28d-cdf8-4cf8-9dec-ff3d46cef851} Error: (06/24/2021 11:57:40 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_ON. Error: (06/24/2021 11:57:40 PM) (Source: SecurityCenter) (EventID: 16) (User: ) Description: Erreur lors de la mise à jour du statut vers SECURITY_PRODUCT_STATE_ON. Error: (06/24/2021 11:56:10 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Nom du module défaillant : MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Code d’exception : 0xc000041d Décalage d’erreur : 0x0002645f ID du processus défaillant : 0x15cc Heure de début de l’application défaillante : 0x01d76943aa82eb39 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe ID de rapport : c97b1e98-8cf4-4874-9487-62eb9dc355f7 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (06/24/2021 11:56:09 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Nom du module défaillant : MSIDDRService.exe, version : 2.0.0.35, horodatage : 0x5775622f Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002645f ID du processus défaillant : 0x15cc Heure de début de l’application défaillante : 0x01d76943aa82eb39 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe Chemin d’accès du module défaillant: C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe ID de rapport : 74a55ab9-f86e-4f35-9ec7-32b391d2a851 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (06/24/2021 11:28:08 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante dwm.exe, version : 10.0.19041.746, horodatage : 0x6be51595 Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.662, horodatage : 0xec58f015 Code d’exception : 0xc00001ad Décalage d’erreur : 0x000000000010bd5c ID du processus défaillant : 0x56cc Heure de début de l’application défaillante : 0x01d7693fd3484cf1 Chemin d’accès de l’application défaillante : C:\WINDOWS\System32\dwm.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 70b59ec2-befe-406f-a658-de42c82a2c90 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (06/25/2021 07:12:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service MSI Command Center DDR Service s’est terminé de façon inattendue pour la 1ème fois. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service ProductAgentService s’est terminé de façon inattendue pour la 1ème fois. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Dynamic Application Loader Host Interface Service s’est terminé de façon inattendue pour la 1ème fois. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Management and Security Application Local Management Service s’est terminé de façon inattendue pour la 1ème fois. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Security Assist s’est terminé de façon inattendue pour la 1ème fois. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Service Intel(R) Small Business Advantage s’est terminé de façon inattendue pour la 1ème fois. Error: (06/25/2021 07:10:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service MSI Live Update Service s’est terminé de façon inattendue pour la 1ème fois. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 2.50 02/23/2016 Carte mère: MSI H110M PRO-VD (MS-7996) Processeur: Intel(R) Core(TM) i5-6400 CPU @ 2.70GHz Pourcentage de mémoire utilisée: 51% Mémoire physique - RAM - totale: 8155.09 MB Mémoire physique - RAM - disponible: 3971.95 MB Mémoire virtuelle totale: 25563.09 MB Mémoire virtuelle disponible: 20070.01 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:110.78 GB) (Free:39.54 GB) NTFS Drive f: (Elements) (Fixed) (Total:465.76 GB) (Free:130.96 GB) NTFS Drive j: (Espace de stockage) (Fixed) (Total:929.87 GB) (Free:787.37 GB) NTFS \\?\Volume{cde01f3b-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS \\?\Volume{cde01f3b-0000-0000-0000-50d11b000000}\ () (Fixed) (Total:0.52 GB) (Free:0.07 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: CDE01F3B) Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=110.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=530 MB) - (Type=27) ========================================================== Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 2. ========================================================== Disk: 3 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: 0002941A) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================