Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-07-2021 Exécuté par Fad (11-07-2021 20:57:48) Exécuté depuis C:\Users\Fad\Desktop Windows 10 Pro Version 20H2 19042.1083 (X64) (2019-12-12 09:18:21) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1647520781-1985113409-3864015634-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1647520781-1985113409-3864015634-503 - Limited - Disabled) Fad (S-1-5-21-1647520781-1985113409-3864015634-1000 - Administrator - Enabled) => C:\Users\Fad Invité (S-1-5-21-1647520781-1985113409-3864015634-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1647520781-1985113409-3864015634-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\uTorrent) (Version: 3.5.5.45146 - BitTorrent Inc.) 64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.005.20048 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.125 - Adobe) Adobe CSI CS4 x64 (HKLM\...\{8DAA31EB-6830-4006-A99F-4DF8AB24714F}) (Version: 1 - Adobe Systems Incorporated) Hidden Adobe Drive CS4 x64 (HKLM\...\{A3454894-144A-4D80-B605-C128FE0D7329}) (Version: 1 - Adobe Systems Incorporated) Hidden Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Illustrator CS4 (HKLM-x32\...\Adobe_2a31ae7a5c43ff52d8577782dd34e04) (Version: 14.0 - Adobe Systems Incorporated) Adobe Photoshop (HKLM\...\{4A519918-6F4E-4F67-BAD5-842542094C0C}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden Apple Application Support (32 bits) (HKLM-x32\...\{A7039CC9-4669-4799-92B1-C5CE346DBE3D}) (Version: 8.3 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{DA78A9DC-3599-4D81-A960-B679687A6C14}) (Version: 8.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22243 - Microsoft Corporation) Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.22 - Atheros Communications Inc.) Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team) Autel PC Suit (HKLM-x32\...\{5A435634-46D9-47B5-8358-FFDC9D590775}) (Version: 6.34.03 - Autel) Hidden Autel PC Suit (HKLM-x32\...\InstallShield_{5A435634-46D9-47B5-8358-FFDC9D590775}) (Version: 6.34.03 - Autel) Avast Antivirus Gratuit (HKLM-x32\...\Avast Antivirus) (Version: 21.2.2455 - Avast Software) AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - ) Backup and Sync from Google (HKLM\...\{A0397FA8-34ED-4A41-A8C9-30EE0B89C464}) (Version: 3.56.3802.7766 - Google, Inc.) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.82 - Piriform) Connect (HKLM-x32\...\{B29AD377-CC12-490A-A480-1452337C618D}) (Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden Data Lifeguard Diagnostic for Windows 1.31 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation) DeepL (HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\DeepL) (Version: 2.5.1 - DeepL GmbH) Désinstallation de l'imprimante EPSON ET-2750 Series (HKLM\...\EPSON ET-2750 Series) (Version: - Seiko Epson Corporation) Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.4.2 - Seiko Epson Corporation) Epson Easy Photo Print 2 (HKLM-x32\...\{7E0261C4-8495-4365-BE48-647701D8B9BD}) (Version: 2.8.3.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{49048EBF-3803-4AA4-8943-675E6E8D5B30}) (Version: 3.11.0030 - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{189DE071-E0BC-4BA5-8E34-83D5ED12600B}) (Version: 3.2.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson ScanSmart (HKLM-x32\...\{BF35B9D9-C4A1-40DD-B13C-46F35BD35282}) (Version: 3.5.2 - Seiko Epson Corporation) Epson Software Updater (HKLM-x32\...\{2359E008-3C32-45B9-B984-39D46CDCA47B}) (Version: 4.6.0 - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) Google Chrome (HKLM-x32\...\{03A58939-2C88-38BE-8600-22444BC19BE6}) (Version: 91.0.4472.124 - Google, Inc.) Google Earth Pro (HKLM\...\{FB8010D4-05F4-420D-8DFC-2F911A6DD100}) (Version: 7.3.3.7786 - Google) IZArc 3.6 (HKLM-x32\...\{97C82B44-D408-4F14-9252-47FC1636D23E}_is1) (Version: 3.6 - Ivan Zahariev) K-Lite Codec Pack 11.2.8 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.2.8 - ) kuler (HKLM-x32\...\{098727E1-775A-4450-B573-3F441F1CA243}) (Version: 2.0 - Adobe Systems Incorporated) Hidden Malwarebytes version 4.4.2.123 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.2.123 - Malwarebytes) Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\OneDriveSetup.exe) (Version: 21.124.0620.0001 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219.473 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219.473 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219.473 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219.473 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30037 (HKLM-x32\...\{4b2f3795-f407-415e-88d5-8c8ab322909d}) (Version: 14.29.30037.0 - Microsoft Corporation) Microsoft Visual C++ 2017 x86 Additional Runtime - 14.12.25810 (HKLM-x32\...\{7FED75A1-600C-394B-8376-712E2A8861F2}) (Version: 14.12.25810 - Microsoft Corporation) Microsoft Visual C++ 2017 x86 Minimum Runtime - 14.12.25810 (HKLM-x32\...\{828952EB-5572-3666-8CA9-000B6CE79350}) (Version: 14.12.25810 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.27.01.309 - Huawei Technologies Co.,Ltd) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 89.0.2 (x64 fr) (HKLM\...\Mozilla Firefox 89.0.2 (x64 fr)) (Version: 89.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 89.0.2 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation) NiouzeFire+ version 1.8.0 (HKLM-x32\...\{A7E871FF-2989-4F74-8576-C3F8F4664A72}_is1) (Version: 1.8.0 - IdeoSi) NVIDIA GeForce Experience 3.10.0.95 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.10.0.95 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.) Package de pilotes Windows - Qualcomm (qcusbnet) Net (01/22/2015 4.0.3.4) (HKLM\...\5A3651B0569E399BEACAC74DE336290F6E851732) (Version: 01/22/2015 4.0.3.4 - Qualcomm) Package de pilotes Windows - Qualcomm Incorporated (qcfilter) USB (01/14/2015 1.0.2.7) (HKLM\...\C2E3ECA9120E1236452A8B0CD770442818376C1D) (Version: 01/14/2015 1.0.2.7 - Qualcomm Incorporated) Package de pilotes Windows - Qualcomm Incorporated (qcusbser) Modem (12/04/2014 2.1.1.7) (HKLM\...\F5E607889C343E26F5189058973A947D741D1DDC) (Version: 12/04/2014 2.1.1.7 - Qualcomm Incorporated) Package de pilotes Windows - Qualcomm Incorporated (qcusbser) Ports (12/04/2014 2.1.1.7) (HKLM\...\914AB492E06987587BF2D1448ED3A10B84BB7CA1) (Version: 12/04/2014 2.1.1.7 - Qualcomm Incorporated) PC Suit (HKLM-x32\...\{C43DD15B-2AA2-4B2A-A026-49EE583038B8}) (Version: 6.34 - Autel) Hidden PC Suit (HKLM-x32\...\InstallShield_{C43DD15B-2AA2-4B2A-A026-49EE583038B8}) (Version: 6.34 - Autel) PDF Settings CS4 (HKLM-x32\...\{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}) (Version: 9.0 - Adobe Systems Incorporated) Hidden Photoshop Camera Raw (HKLM-x32\...\{CC75AB5C-2110-4A7F-AF52-708680D22FE8}) (Version: 5.0 - Adobe Systems Incorporated) Hidden Qualcomm USB Drivers For Windows (HKLM-x32\...\{D9FB7F91-9687-4B09-894D-072903CADEA4}) (Version: 1.00.30 - QUALCOMM Incorporated) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller 2.0.4 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.4 - VS Revo Group, Ltd.) Songr (HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\Songr) (Version: 2.1 - Xamasoft) Suite Shared Configuration CS4 (HKLM-x32\...\{842B4B72-9E8F-4962-B3C1-1C422A5C4434}) (Version: 1.0 - Adobe Systems Incorporated) Hidden Supercopier 4.0.1.13 (HKLM-x32\...\Supercopier) (Version: 4.0.1.13 - Supercopier) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) UpdateAssistant (HKLM-x32\...\{F9D14939-1792-44AB-8C53-F208534C2548}) (Version: 1.2.0.0 - Microsoft Corporation) Hidden VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.10 - VideoLAN) vReveal (HKLM-x32\...\vReveal) (Version: - MotionDSP) WhatsApp (HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\WhatsApp) (Version: 2.2110.12 - WhatsApp) Xvid 1.1.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.1 - Xvid team (Koepi)) Packages: ========= 7z ZIP RAR -> C:\Program Files\WindowsApps\MediaMobileTechnologies.7zZIPRAR_1.0.7.0_x64__pshwwm0bwg8de [2016-12-05] (Media Mobile Technologies) [MS Ad] Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-12-06] (Microsoft Corporation) KVADPhoto+ -> C:\Program Files\WindowsApps\KVADGroup.KVADPhoto_3.4.0.34_x64__zwkmxr0sbxrny [2018-01-24] (KVADGroup) Media Player -> C:\Program Files\WindowsApps\9FD20106.MediaPlayerQueen_1.2.5.0_x64__nwhm06f2kfry2 [2016-11-25] (Digital Cloud Technologies Global) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-14] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-14] (Microsoft Corporation) [MS Ad] Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-12-06] (Adobe Systems Incorporated) Sticky Notes Rainbow -> C:\Program Files\WindowsApps\AttractorMobileSoftware.StickyNotesRainbow_1.0.10.0_x64__1a2j9j160p2gw [2016-11-08] (Attractor Mobile Software) UnZip -> C:\Program Files\WindowsApps\62632UNETA.492836F161CC8_1.1.23.0_x64__rmspfwnbz040j [2016-12-06] (UNETA) [MS Ad] WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-11-13] (Microsoft Corporation) Zip Rar Extractor Store Edition -> C:\Program Files\WindowsApps\15647NeonBand.ZipRarExtractorStoreEdition_1.114.87.0_x64__g3b9h1p9bdemw [2021-02-13] (Andrii Leshchinskiy) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-06-18] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-06-18] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-06-18] (Google LLC -> Google) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-22] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-22] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-22] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-06-18] (Google LLC -> Google) ContextMenuHandlers1-x32: [IZArcCM] -> {8D9D4D0D-FDDD-44CB-AAB2-6161FA0757C5} => C:\Program Files (x86)\IZArc\IZArcCM.dll [2006-10-22] () [Fichier non signé] ContextMenuHandlers2: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-22] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-07-07] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-06-18] (Google LLC -> Google) ContextMenuHandlers4-x32: [IZArcCM] -> {8D9D4D0D-FDDD-44CB-AAB2-6161FA0757C5} => C:\Program Files (x86)\IZArc\IZArcCM.dll [2006-10-22] () [Fichier non signé] ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-01-29] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [{C95FFEAE-A32E-4122-A5C4-49B5BFB69795}] -> {C95FFEAE-A32E-4122-A5C4-49B5BFB69795} => C:\Program Files\Common Files\Adobe\Adobe Drive CS4\ADFSMenu.dll [2008-08-14] (Adobe Systems Incorporated -> Adobe Systems Incorporated) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-03-22] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-07-07] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\SysWOW64\xvidvfw.dll [180224 2006-11-01] () [Fichier non signé] ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\Fad\Desktop\Freebox Server - Raccourci.lnk -> hxxp://mafreebox.freebox.fr ==================== Modules chargés (Avec liste blanche) ============= 2014-02-19 18:52 - 2014-02-19 18:52 - 000052224 _____ () [Fichier non signé] C:\Program Files (x86)\Supercopier\libgcc_s_sjlj-1.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000377856 _____ () [Fichier non signé] C:\Program Files (x86)\Supercopier\libstdc++-6.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 001026560 _____ () [Fichier non signé] C:\Program Files (x86)\Supercopier\qt-plugins\platforms\qwindows.dll 2008-08-14 08:15 - 2008-08-14 08:15 - 000481792 _____ (Adobe Systems Incorporated) [Fichier non signé] C:\Program Files\Common Files\Adobe\Adobe Drive CS4\BIB.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 001825280 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Supercopier\Qt5Core.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 001240064 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Supercopier\Qt5Gui.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000325120 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Supercopier\Qt5Network.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000053248 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Supercopier\Qt5SystemInfo.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 001998336 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Supercopier\Qt5Widgets.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000087040 _____ (Digia Plc and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Supercopier\Qt5Xml.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000071680 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzinw12.dll 2010-08-06 12:15 - 2010-08-06 12:15 - 000089600 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzipm12.dll 2017-02-13 14:54 - 2017-02-13 14:54 - 000132096 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON Software\Event Manager\epnsm.dll 2018-03-05 16:41 - 2018-03-05 16:41 - 000057856 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON Software\Event Manager\EPNWPSHDevFinder.DLL 2009-10-21 17:39 - 2009-10-21 17:39 - 000291328 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll 2019-02-22 17:01 - 2019-02-22 17:01 - 000704512 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON\MyEpson Portal\Configration_00000171\MepCfg.dll 2020-04-17 10:15 - 2020-04-17 10:15 - 000577536 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON\MyEpson Portal\MepUploader_00000542\MepUploader.dll 2019-02-22 15:09 - 2019-02-22 15:09 - 000475136 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\EPSON\MyEpson Portal\Online Manual_00000013\MepFAQ.dll 2016-11-09 11:33 - 2007-12-07 03:08 - 000108032 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\E_ILMEKE.DLL 2018-06-01 14:20 - 2018-06-01 14:19 - 000120320 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\E_ILMHOE.DLL 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll 2014-02-19 18:51 - 2014-02-19 18:51 - 000845824 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files (x86)\Supercopier\CopyEngine\Ultracopier\copyEngine.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000107520 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files (x86)\Supercopier\Listener\catchcopy-v0002\listener.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000075776 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files (x86)\Supercopier\PluginLoader\catchcopy-v0002\pluginLoader.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000042496 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files (x86)\Supercopier\SessionLoader\Windows\sessionLoader.dll 2014-02-19 18:52 - 2014-02-19 18:52 - 000305664 _____ (ultracopier.first-world.info) [Fichier non signé] C:\Program Files (x86)\Supercopier\Themes\Supercopier\interface.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.fr/ HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/fr-fr/?ocid=iehp SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll [2015-07-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\localhost -> localhost ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 04:34 - 2021-07-07 11:57 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Users\Fad\AppData\Local\Microsoft\WindowsApps;C:\adb;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Fad\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg HKU\S-1-5-82-3006700770-424185619-1745488364-794895919-4004696415\Control Panel\Desktop\\Wallpaper -> DNS Servers: 80.67.169.12 - 80.67.169.40 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3 MSCONFIG\Services: MaConfigAgent => 2 MSCONFIG\Services: qcmtusvc => 2 MSCONFIG\Services: SkypeUpdate => 2 MSCONFIG\Services: ss_conn_service => 2 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: VRAID Log Service => 2 HKLM\...\StartupApproved\StartupFolder: => "Install LastPass IE RunOnce.lnk" HKLM\...\StartupApproved\StartupFolder: => "Install LastPass FF RunOnce.lnk" HKLM\...\StartupApproved\StartupFolder: => "Le logiciel de transfert de données OneTouch Reveal®.lnk" HKLM\...\StartupApproved\Run: => "Malwarebytes TrayApp" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "KiesTrayAgent" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "MiWiFi" HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\StartupApproved\StartupFolder: => "Facebook Gameroom.lnk" HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\StartupApproved\Run: => "Skype" HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\StartupApproved\Run: => "DAEMON Tools Pro Agent" HKU\S-1-5-21-1647520781-1985113409-3864015634-1000\...\StartupApproved\Run: => "Discord" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{2B70F6A5-6D8C-4091-B9EF-9FC4A2F6D063}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{CE025FDE-78FE-4721-A9FC-DB388BE479B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{1FC22800-028E-4D76-B1C4-3BCA7A864920}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C5C2071E-2D1C-4A7C-A8CC-CA1E021CA60B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{CDEF3FEA-9722-470E-872C-56DC94C4BCF7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7C70DBEE-73F4-4FF8-B89B-77FC71EF85D0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{9763F296-511D-454D-8CF0-99B32F915F61}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{5D3FA58C-4D8F-4488-B127-8927DA6A8F5C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0A244E81-E6D1-4F08-9798-4D84DA324326}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{0D6C3CF1-CC1C-411A-B491-1822F21AAE1F}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [Fichier non signé] FirewallRules: [{9E84CCB5-5AE4-40AE-9564-AD78ACBDB08B}] => (Allow) C:\Windows\SysWOW64\muzapp.exe (Musiccity Co.Ltd.) [Fichier non signé] FirewallRules: [{A0A53721-B52E-4026-83D1-9760D529790E}] => (Allow) LPort=48113 FirewallRules: [{2E658919-ABCC-4879-89FA-F103E7C490D1}] => (Allow) LPort=48114 FirewallRules: [TCP Query User{387665CE-A197-49CA-A499-B8CFABBCC922}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{3BE58658-1162-41F5-B298-6E85C238DE1C}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3463CD81-F2E6-4272-85FE-BE2C19652165}] => (Allow) C:\Users\Fad\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{E6BEA50E-F9C4-4CBB-8B5D-EC6823F7D437}] => (Allow) C:\Users\Fad\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{457276A7-154D-456F-A7F7-5911437829D1}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{1D93EFF6-3268-4DF6-A0AB-33408AB40F22}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7E85417A-717D-450A-8640-B4471C3AAD43}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{844383D7-FB70-46E8-B7F6-9B4F115FE0DE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{6F557BC1-AF54-49F2-B99C-E580CEEF55AD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{5EFDB29E-5236-423F-9E12-A34AE50444FB}] => (Allow) LPort=5353 FirewallRules: [{26FA6572-6F40-440C-8F22-B7471D049DCD}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{9B8EB3EA-5D75-4EC6-8304-9671BC81C71B}] => (Allow) C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) FirewallRules: [{C98E7802-7600-436C-A66B-444E44F5BC37}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{CA1D27CA-5B17-4AFE-AD58-1A091510546F}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{172856A6-EC3B-4340-B5D7-E772B3C13BC3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B2C1470B-40A9-46D7-BA55-95ADD6786F04}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{6229C6DD-D707-4A09-B718-82799FCB4B15}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{F380361D-2811-4F7D-A361-F80BA2280715}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe (Seiko Epson Corporation) [Fichier non signé] FirewallRules: [{8D395CBB-3B8C-4BFE-9539-3DB5F2253B08}] => (Allow) C:\Program Files (x86)\EPSON Software\ECPrinterSetup\ENPApp.exe (Seiko Epson Corporation) [Fichier non signé] FirewallRules: [TCP Query User{C3E22FB7-628F-4A44-BE43-FAF2CF70DE19}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{55CBB57D-0787-4523-A292-FD8D503CF06B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{91EB74F8-B120-4D1A-B611-0FBF85BFDB19}] => (Allow) LPort=1688 FirewallRules: [{BCFC9154-933B-4784-8499-95A7BAED26CC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{7917FD98-1D8A-4A39-9F40-300368249B54}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{35D8D0F1-6733-4D3B-B775-41FAB86AAC95}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B7F4312B-DD68-4B7F-AA5F-2D9D381EF3D1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B0003546-FA06-41A5-9A2F-0DFFE96BDFB4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.72.94.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (07/10/2021 10:40:05 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST64.exe version 7.7.2021.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 4e0 Heure de début : 01d77566f4b6b3f8 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Users\Fad\Desktop\FRST64.exe ID de rapport : c5a803f6-58ea-4cf9-90c8-fc70758ba8a5 Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (07/09/2021 12:04:34 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Disque local (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (07/09/2021 12:03:29 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur Disque local (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (07/09/2021 11:36:10 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SystemSettings.exe, version : 10.0.19041.1081, horodatage : 0x4aa1ce82 Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1081, horodatage : 0xde3fc775 Code d’exception : 0xc0000409 Décalage d’erreur : 0x000000000010bd3e ID du processus défaillant : 0x2a70 Heure de début de l’application défaillante : 0x01d77491d92cfd37 Chemin d’accès de l’application défaillante : C:\Windows\ImmersiveControlPanel\SystemSettings.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : cba78e33-1e94-4100-a891-60fce71e8b99 Nom complet du package défaillant : windows.immersivecontrolpanel_10.0.2.1000_neutral_neutral_cw5n1h2txyewy ID de l’application relative au package défaillant : microsoft.windows.immersivecontrolpanel Error: (07/08/2021 11:14:11 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (07/08/2021 12:29:41 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (07/07/2021 10:48:48 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (07/07/2021 10:48:48 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Erreurs système: ============= Error: (07/11/2021 08:47:20 PM) (Source: DCOM) (EventID: 10001) (User: Fad-PC) Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.19041.1023.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : "C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca Error: (07/11/2021 08:45:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (07/11/2021 08:45:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetPipeActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (07/11/2021 08:45:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetMsmqActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (07/11/2021 08:45:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service W3SVC dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (07/11/2021 08:45:50 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service WAS s’est arrêté avec l’erreur : Le lecteur spécifié est introuvable. Error: (07/11/2021 08:45:49 PM) (Source: WAS) (EventID: 5005) (User: ) Description: Le service d'activation des processus Windows (WAS) s'arrête, car il a rencontré une erreur. Le champ des données contient le numéro de l'erreur. Error: (07/11/2021 08:45:49 PM) (Source: WAS) (EventID: 5215) (User: ) Description: Le service d'activation des processus Windows (WAS) n'a pas pu exécuter l'initialisation du programme d'installation hors connexion. Le champ de données contient le nombre d'erreurs. Windows Defender: ================ Date: 2019-12-12 10:35:11 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {E11683F2-C043-45B0-8091-7FBBDFB7B4FD} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\SERVICE RÉSEAU  CodeIntegrity: =============== Date: 2021-07-11 20:58:21 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2021-07-11 20:53:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswhook.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1306 08/20/2008 Carte mère: ASUSTeK Computer INC. P5Q-PRO Processeur: Intel(R) Core(TM)2 Quad CPU Q9400 @ 2.66GHz Pourcentage de mémoire utilisée: 66% Mémoire physique - RAM - totale: 4095.04 MB Mémoire physique - RAM - disponible: 1362.66 MB Mémoire virtuelle totale: 8191.04 MB Mémoire virtuelle disponible: 5186.53 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:110.96 GB) (Free:4.88 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (Disque local) (Fixed) (Total:149.05 GB) (Free:141.16 GB) NTFS Drive e: (Disque local) (Fixed) (Total:74.53 GB) (Free:55.53 GB) NTFS \\?\Volume{93a27101-0000-0000-0000-60bd1b000000}\ () (Fixed) (Total:0.83 GB) (Free:0.41 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 5C7622E3) Partition 1: (Active) - (Size=149 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 74.5 GB) (Disk ID: 00011E31) Partition 1: (Not Active) - (Size=74.5 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 93A27101) Partition 1: (Active) - (Size=111 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=849 MB) - (Type=27) ==================== Fin de Addition.txt =======================