Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-08-2021 Exécuté par balou (14-08-2021 17:11:07) Exécuté depuis C:\Users\balou\Desktop Windows 10 Home Version 21H1 19043.1165 (X64) (2020-05-31 10:03:09) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3565519794-2566505848-2842821374-500 - Administrator - Enabled) => C:\Users\Administrateur balou (S-1-5-21-3565519794-2566505848-2842821374-1001 - Administrator - Enabled) => C:\Users\balou DefaultAccount (S-1-5-21-3565519794-2566505848-2842821374-503 - Limited - Disabled) Invité (S-1-5-21-3565519794-2566505848-2842821374-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-3565519794-2566505848-2842821374-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) µTorrent (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\uTorrent) (Version: 3.5.5.45852 - BitTorrent Inc.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) Acronis True Image for Crucial (HKLM-x32\...\{4D4DA0E0-00C7-4AC5-9665-D3DBAF0767BE}) (Version: 23.0.21500 - Acronis) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.005.20060 - Adobe Systems Incorporated) AOMEI Backupper Professionel (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI Technology Co., Ltd.) Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Bel Atout 5.80 (HKLM-x32\...\BelAtoutFr_is1) (Version: - Vincent Brévart) Belarc Advisor 9.6 (HKLM-x32\...\Belarc Advisor) (Version: 9.6.0.0 - Belarc Inc.) BingSnap (remove only) (HKLM-x32\...\BingSnap) (Version: - ) Boris FX Continuum Plug-ins 11 for Cyberlink (HKLM\...\{7E607B62-1788-40CB-BADB-DC1511627F6C}_is1) (Version: - Boris FX, Inc.) Call of Duty - United Offensive (HKLM-x32\...\InstallShield_{A662E280-64A8-4CF5-8407-13D0808602B3}) (Version: 1.00.0000 - Activision) Call of Duty (HKLM-x32\...\Call of Duty) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.83 - Piriform) ChrisPC Win Experience Index 6.16.20 (HKLM-x32\...\{1116089C-14B5-1A23-8113-6124567ABCDE}_is1) (Version: - Chris P.C. srl) Conexant Polaris Unused CIR Function (HKLM\...\Uninstaller610aaf4e3b8) (Version: 1.0.0.0 - Conexant Systems) Contrôle d’intégrité du PC Windows (HKLM\...\{8535D886-84D2-4580-8BC8-F2F7D75BE34B}) (Version: 2.3.2106.25001 - Microsoft Corporation) CSR Harmony Wireless Software Stack (HKLM\...\{17DEA095-8EE1-49A2-AC5A-9663DB098FA9}) (Version: 2.1.63.0 - CSR Plc.) CyberLink PowerDirector 18 (HKLM-x32\...\{5C6A88EF-7090-4B7A-A7C2-7AC51C27D2B5}) (Version: 18.0.2028.0 - CyberLink Corp.) Duplicate Cleaner Free 4.1.2 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.1.2 - DigitalVolcano Software Ltd) EdgeManage (HKLM-x32\...\{535F8180-FCD4-4593-8E21-BF228B216BE3}) (Version: 2.2.8 - Emmet Gray) Excel (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) FastStone Photo Resizer 4.3 (HKLM-x32\...\FastStone Photo Resizer) (Version: 4.3 - FastStone Soft.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 10.1.3.37598 - Foxit Software Inc.) Free Video Joiner (HKLM-x32\...\{14FA6DD9-92ED-493D-A937-81A78870E08A}_is1) (Version: - FreeVideoJoiner.com) Google Earth Pro (HKLM\...\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}) (Version: 7.3.4.8248 - Google) HandBrake 1.3.3 (HKLM-x32\...\HandBrake) (Version: 1.3.3 - ) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden HP Photosmart 5520 series Aide (HKLM-x32\...\{CB08AF0F-D14B-4570-83CD-2567CE63CC5F}) (Version: 27.0.0 - Hewlett Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Intel Driver && Support Assistant (HKLM-x32\...\{10BECC47-44EA-43BF-90F7-6A392DD15F06}) (Version: 21.4.29.8 - Intel) Hidden Intel Processor Diagnostic Tool 64bit (HKLM-x32\...\{d23ef847-2a5d-49ad-a6b5-7ffc8f255179}) (Version: 4.1.4.36 - ) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{0a6e5067-9368-4f32-be84-aac5f85dc5c3}) (Version: 21.4.29.8 - Intel) Intel® Processor Identification Utility (HKLM-x32\...\{E8F8A376-CD2B-4CF6-B498-0EDD3E80A76A}) (Version: 6.5.115.0105 - Intel Corporation) iTunes (HKLM\...\{3228678D-B9A4-4DA5-846F-E58488F6C763}) (Version: 12.11.4.15 - Apple Inc.) Logiciel de base du périphérique HP Photosmart 5520 series (HKLM\...\{97104D7C-FAC1-40A2-A34D-7950424FAEDE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Medal of Honor Batailles du Pacifique™ (HKLM-x32\...\{56CFA833-F44F-4199-8C58-7F8B38F2BC7B}) (Version: 1.2.1.281 - Electronic Arts) Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts) MediaInfo 21.03 (HKLM\...\MediaInfo) (Version: 21.03 - MediaArea.net) MeinPlatz (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\MeinPlatz) (Version: - ) Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.73 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 (HKLM\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3565519794-2566505848-2842821374-500\...\OneDriveSetup.exe) (Version: 21.139.0711.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) MiniTool Partition Wizard Free 12.5 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: 12.5 - MiniTool Software Limited) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 91.0 (x64 fr)) (Version: 91.0 - Mozilla) Mozilla Thunderbird 78.10.2 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 78.10.2 (x86 fr)) (Version: 78.10.2 - Mozilla) NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue) NewBlue Video Essentials VII for Windows (HKLM-x32\...\NewBlue Video Essentials VII for Windows) (Version: 3.0 - NewBlue) NVIDIA GeForce Experience 3.13.1.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.13.1.30 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation) NVIDIA Pilote graphique 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation) Objectif Tarot 4 (HKLM-x32\...\{078A8C00-412A-45C2-8A44-49DD736D3318}_is1) (Version: 4.0 - Daniel Bonniot) Oracle VM VirtualBox 6.1.18 (HKLM\...\{47077502-2193-4B16-ACC2-30665FFA47BA}) (Version: 6.1.18 - Oracle Corporation) Origin (HKLM-x32\...\Origin) (Version: 10.5.102.48654 - Electronic Arts, Inc.) Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Outlook (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) PDFsam Basic (HKLM\...\{5F69C3E1-65F3-4B53-99A1-AABF8E9FFBA6}) (Version: 4.2.1.0 - Sober Lemur S.a.s. di Vacondio Andrea) PowerPoint (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\319814cb56b667dff88f54e08be8f51f) (Version: 1.0 - PowerPoint) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.50.511.2021 - Realtek) ReiBoot for Android (HKLM-x32\...\{ReibootforAndroid}_is1) (Version: 2.1.4.6 - Tenorshare, Inc.) SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.4.0 - SAMSUNG Electronics Co., Ltd.) SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.1.19269 - Gemalto N.V.) Serviio (HKLM\...\Serviio) (Version: 2.1 - Six Lines Ltd) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Terratec Grabby Pro (x64) (HKLM-x32\...\{5861F04A-1211-4CCF-92F3-6DA1150ECF01}) (Version: 10.00.0000 - Nom de votre société) Update for Skype for Business 2016 (KB4493155) 64-Bit Edition (HKLM\...\{90160000-0011-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5376168B-3DBF-4B19-9F74-2ECBDC1BFB46}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4493155) 64-Bit Edition (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}_Office16.PROPLUS_{5376168B-3DBF-4B19-9F74-2ECBDC1BFB46}) (Version: - Microsoft) Update for Skype for Business 2016 (KB4493155) 64-Bit Edition (HKLM\...\{90160000-012B-040C-1000-0000000FF1CE}_Office16.PROPLUS_{5376168B-3DBF-4B19-9F74-2ECBDC1BFB46}) (Version: - Microsoft) Video Grabber (HKLM\...\Uninstaller610aaf50bd) (Version: 1.0.0.0 - Conexant Systems) VLC media player (HKLM\...\VLC media player) (Version: 3.0.13 - VideoLAN) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com) Word (HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\1b837d0bf93d01407352736c91b7bf50) (Version: 1.0 - Word) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-02] (Microsoft Corporation) GPX Player -> C:\Program Files\WindowsApps\11508Heptazane.GPXPlayer_1.1.31.0_x64__ztrc3ct85bf02 [2021-03-16] (Heptazane) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_129.1.234.0_x64__v10z8vjag6ke6 [2021-07-24] (HP Inc.) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.7.536.0_x64__v10z8vjag6ke6 [2021-08-11] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-12] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-12] (Microsoft Corporation) [MS Ad] Network Speed Test -> C:\Program Files\WindowsApps\Microsoft.NetworkSpeedTest_1.0.0.23_x64__8wekyb3d8bbwe [2019-11-28] (Microsoft Research) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3565519794-2566505848-2842821374-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\balou\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\CoreTempReader.dll (AddGadgets IT -> ) CustomCLSID: HKU\S-1-5-21-3565519794-2566505848-2842821374-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\balou\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3565519794-2566505848-2842821374-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\balou\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-3565519794-2566505848-2842821374-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe (Intel Corporation -> Intel) ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-09-26] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-09-26] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-09-26] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-09-26] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => F:\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [PeContextMenuExtension] -> {098A124A-AA1C-38C8-A65E-D1199A14516A} => C:\Program Files (x86)\Common Files\Wondershare\PDFelement\AddIns\PEShellExt_x64.dll [2020-08-25] (Wondershare Technology Co.,Ltd -> Wondershare) ContextMenuHandlers1: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> Pas de fichier ContextMenuHandlers1: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => -> Pas de fichier ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> Pas de fichier ContextMenuHandlers2: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => -> Pas de fichier ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => F:\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> Pas de fichier ContextMenuHandlers4: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [WinMerge] -> {4E716236-AA30-4C65-B225-D68BBA81E9C2} => -> Pas de fichier ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => F:\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => -> Pas de fichier ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\system32\prodad-codec.dll [607256 2019-09-06] (proDAD GmbH -> proDAD GmbH) HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\balou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm --app-url=hxxps://excel.office.com/ ShortcutWithArgument: C:\Users\balou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb --app-url=hxxps://outlook.com/ ShortcutWithArgument: C:\Users\balou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=opfacbhaojodjaojgocnibmklknchehf --app-url=hxxps://powerpoint.office.com/ ShortcutWithArgument: C:\Users\balou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Word.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=hikhggiobiflkdfdgdajcfklmcibbopi --app-url=hxxps://word.office.com/ ==================== Modules chargés (Avec liste blanche) ============= 2021-04-13 12:36 - 2021-04-13 12:36 - 005745664 _____ () [Fichier non signé] C:\Program Files (x86)\Intel\Driver and Support Assistant\irmfuu_module.dll 2021-02-12 12:49 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] F:\7-Zip\7-zip.dll 2013-11-21 09:31 - 2013-11-21 09:31 - 000286720 _____ (Intel Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll 2013-11-21 09:31 - 2013-11-21 09:31 - 000499200 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll 2020-05-31 11:59 - 2018-03-24 01:05 - 000880024 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll 2020-05-31 11:59 - 2018-03-24 01:05 - 000343728 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll 2021-05-21 14:04 - 2021-05-21 14:04 - 000130048 _____ (Sam Grogan) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Intel\Driver and Support Assistant\NotifyIconWin32.dll 2020-05-06 09:48 - 2011-04-20 03:03 - 000120320 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\E_ILMJCE.DLL 2021-05-18 22:00 - 2021-05-18 21:59 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll 2021-05-18 22:00 - 2021-05-18 21:59 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll 2021-05-18 22:00 - 2021-05-18 21:59 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll 2021-07-28 20:31 - 2021-05-18 21:59 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll 2021-07-28 20:31 - 2021-05-18 21:59 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll 2021-07-28 20:31 - 2021-05-18 21:59 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll 2021-07-28 20:31 - 2021-05-18 21:59 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll 2021-07-28 20:31 - 2021-05-18 21:59 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll 2021-07-28 20:31 - 2021-05-18 21:59 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [148] AlternateDataStreams: C:\Users\balou\Documents\configuration imprimante HP PHOTOSMART 5520.bmp:3or4kl4x13tuuug3Byamue2s4b [101] AlternateDataStreams: C:\Users\balou\Documents\configuration imprimante HP PHOTOSMART 5520.bmp:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2021-04-15] (Microsoft Corporation -> Microsoft Corporation) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-20] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2021-04-14] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office16\GROOVEEX.DLL [2018-07-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2020-07-01] (Belarc, Inc. -> Belarc, Inc.) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2019-06-12] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2011-01-19] (Skype Technologies SA -> Skype Technologies) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\localhost -> localhost ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2019-11-30 13:10 - 2021-01-10 16:48 - 000000447 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 9.254.248.177 DESKTOP-CPT119A.mshome.net # 2024 11 4 28 11 10 7 803 ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\balou\AppData\Roaming\Carthago\BingSnap\Wallpaper.jpg HKU\S-1-5-21-3565519794-2566505848-2842821374-500\Control Panel\Desktop\\Wallpaper -> C:\Windows\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. Network Binding: ============= Ethernet 2: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Ethernet 3: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) Wi-Fi 4: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled) ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "RealProtect" HKLM\...\StartupApproved\Run: => "IAStorIcon" HKLM\...\StartupApproved\Run: => "VX1000" HKLM\...\StartupApproved\Run: => "MTPW" HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "vksts" HKLM\...\StartupApproved\Run: => "CsrAudioguiCtrl" HKLM\...\StartupApproved\Run: => "CsrHCRPServer" HKLM\...\StartupApproved\Run: => "CsrSyncMLServer" HKLM\...\StartupApproved\Run: => "HarmonyUserStartup" HKLM\...\StartupApproved\Run: => "TrayApplication" HKLM\...\StartupApproved\Run32: => "VX1000" HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant" HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor" HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe" HKLM\...\StartupApproved\Run32: => "Acronis Scheduler2 Service" HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "CSRHarmonySkypePlugin" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "IAStorIcon" HKLM\...\StartupApproved\Run32: => "SecurityHealth" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\StartupFolder: => "BingSnap.lnk" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\StartupFolder: => "Sidebar70.lnk" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "SUPERAntiSpyware" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "Lync" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "NETGEARGenie" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_8749423E1A656369799CDA13EC037503" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "SanDiskSecureAccess_Manager.exe" HKU\S-1-5-21-3565519794-2566505848-2842821374-1001\...\StartupApproved\Run: => "HP Photosmart 5520 series (NET)" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{F9116C75-887A-472B-9917-1A123C4560AD}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{0F076555-7B8C-4C04-97D0-B0DAD4229E57}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{8B22855E-3C99-4E67-A1AA-0A02846D4A2C}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Block) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45608.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{F6ECD029-731B-4C0E-88AB-142168E74216}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45608.exe] => (Block) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45608.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{7B69134A-2A1C-4606-AD9D-ADC55DC60FAD}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45574.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45574.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{08A602FE-27C0-49F6-82C3-7D4B4056D978}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45574.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45574.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{21CA642B-9039-4C55-9E28-D70DE1E19795}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{38DFDD9E-8EDA-47DC-9A21-B50E17C4F43B}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{43EF34BF-3A3D-41E8-A89F-E89733611C99}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{35D60299-6398-441F-9BA2-9A2476234EBE}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45505.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{B65C2ECE-EE83-438C-BA37-A29E99E461F5}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5A50459A-8A0C-4F2C-B660-F21DEA92EF0F}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AB9E4A3D-9619-423D-895F-39D3043B45AA}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6921F951-A5C8-4CE1-A3D2-9D9EE82787BF}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{BE5B33CB-47FB-4A4B-A17B-601EA7461823}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe FirewallRules: [TCP Query User{EF5AA85D-F91C-42C4-AF21-70E4FCC70641}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe FirewallRules: [{67093EBF-CD0C-429B-8010-52D6CF96A363}] => (Allow) C:\Users\balou\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{3C162F41-305A-4E84-B7CA-186C3B83417F}] => (Allow) C:\Users\balou\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{AAC6D4CE-6FF5-4DAD-B658-CE3A8F3DB58B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{EEDB2F03-6429-491C-A5F8-BCF6B4128F18}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{DBC87A1B-BF21-45C1-96B4-66C8C6DE9749}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{0591B109-A67F-443A-8454-B36D098C18A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{6DB0EABF-A845-4330-B783-3E2A03B86C5C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{63C124A3-A449-474B-A728-5EB94D156F26}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{11880472-8242-45AA-A790-405465E8BFE9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{740BD4C6-10ED-42B9-9531-6B1EC548D7CA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{611EB264-D831-4428-9A18-27249488A5F7}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CF9A9818-31F0-4111-BF4C-D83BE8619797}] => (Allow) C:\Program Files\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{88847963-AE0F-4950-ACFB-1AC232719224}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{509C9C0B-C8DC-48B8-B156-D18221F6899C}] => (Allow) C:\Program Files\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A97A3307-0C5E-4D6B-A0CB-3686D9FC1291}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [Fichier non signé] FirewallRules: [{646558E1-D327-46E6-B9E5-D6AD13F64870}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [Fichier non signé] FirewallRules: [{9733702F-59F0-4C94-B2B7-CC853A8588C0}] => (Allow) C:\Program Files\Serviio\console\ServiioConsole.exe (Six Lines Ltd) [Fichier non signé] FirewallRules: [TCP Query User{8B506FF5-47F9-4480-8964-EBC2152B7357}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{A8D197A1-3C7B-41D4-8841-94F23FF2EDF2}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45628.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [TCP Query User{793C38EA-9F9C-4016-81EA-0D246C1C21CB}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45790.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45790.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{FAADC4E6-67C9-45F7-98B1-95AB4DC78178}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45790.exe] => (Allow) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45790.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{0CA19D56-A22E-43B1-A7E6-402A4EAE8D58}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.1.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{4376960E-C623-44DF-9289-1D4D86A907F8}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.1.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{594070B9-10F5-4B17-91E4-88EC5D68A6EF}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> ) FirewallRules: [{8646236A-1C60-4B26-BBEE-2C849CB52544}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> ) FirewallRules: [{12078003-686A-4317-900B-5B5C32EAAB44}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> ) FirewallRules: [{05C8C879-8E7B-454A-986A-A943D5ECB8C8}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> ) FirewallRules: [{4AEBEDA4-85C1-4633-9F41-DCD141BB0B6E}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> ) FirewallRules: [{D6E58C63-D285-474E-AF73-984C6610996D}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> ) FirewallRules: [{0C22B7CA-1923-42F4-B4FE-05F96200901A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH) FirewallRules: [{36E82D2E-7CD0-43BA-BA2F-41AEB3D6C9CB}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> ) FirewallRules: [{DCE7D14A-5DFF-472E-A512-202CC3F058E4}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> ) FirewallRules: [{0BF875F9-7111-4E26-A381-898A79752BB8}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> ) FirewallRules: [{D5452FA2-11DB-454B-811D-E147D2B09A76}] => (Allow) C:\Users\balou\Desktop\Jeux\steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{21C1D0CD-1F2E-413D-A9B8-8BAABB953A3D}] => (Allow) C:\Users\balou\Desktop\Jeux\steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [TCP Query User{9B912919-BF73-4296-B33D-1EE3C896A8BD}G:\call of duty black ops\blackops.exe] => (Allow) G:\call of duty black ops\blackops.exe (Valve Corporation -> ) [Fichier non signé] FirewallRules: [UDP Query User{A7DB976F-620E-4F27-A100-1B52F0F8F3AC}G:\call of duty black ops\blackops.exe] => (Allow) G:\call of duty black ops\blackops.exe (Valve Corporation -> ) [Fichier non signé] FirewallRules: [TCP Query User{855DC3F6-EBAA-473A-9261-A99F1C07C7AA}G:\call of duty 5 waw\codwaw.exe] => (Allow) G:\call of duty 5 waw\codwaw.exe (Activision Blizzard, Inc.) [Fichier non signé] FirewallRules: [UDP Query User{8A58BAB5-2E73-4CA5-BA3B-16375CB7D55A}G:\call of duty 5 waw\codwaw.exe] => (Allow) G:\call of duty 5 waw\codwaw.exe (Activision Blizzard, Inc.) [Fichier non signé] FirewallRules: [TCP Query User{CECBB19D-304C-4E1D-9FFD-1186CD3708BA}G:\tom clancy's h.a.w.x\hawx.exe] => (Allow) G:\tom clancy's h.a.w.x\hawx.exe (Ubisoft Entertainment -> ) FirewallRules: [UDP Query User{07B5E030-9547-4C1B-9B29-4710E3975A52}G:\tom clancy's h.a.w.x\hawx.exe] => (Allow) G:\tom clancy's h.a.w.x\hawx.exe (Ubisoft Entertainment -> ) FirewallRules: [TCP Query User{00850A54-7AD2-4382-8CF5-50477D127762}G:\call of duty black ops ii\t6sp.exe] => (Allow) G:\call of duty black ops ii\t6sp.exe (Valve Corporation -> Activision Publishing Inc.) [Fichier non signé] FirewallRules: [UDP Query User{8814D31C-57D2-4290-897A-2C05FAE8D5EB}G:\call of duty black ops ii\t6sp.exe] => (Allow) G:\call of duty black ops ii\t6sp.exe (Valve Corporation -> Activision Publishing Inc.) [Fichier non signé] FirewallRules: [{453DFFC3-32DF-4D8A-8E9C-96E4CDC2918F}] => (Allow) C:\Users\balou\Desktop\Jeux\steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{6E901F63-D13B-4094-87F6-3793C8D16119}] => (Allow) C:\Users\balou\Desktop\Jeux\steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{8783B766-995D-4D07-8970-9CBCDBB6F505}] => (Allow) G:\Dirt rally\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé] FirewallRules: [{7D3FCAFA-9B50-42FB-A0A8-66473849CA56}] => (Allow) G:\Dirt rally\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé] FirewallRules: [{FF36F060-20EA-49B3-AAFA-C901A2138589}] => (Allow) G:\Dirt rally\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe () [Fichier non signé] FirewallRules: [{8C618D51-8D94-4E34-9F38-2C3BB62DE12B}] => (Allow) G:\Dirt rally\steamapps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe () [Fichier non signé] FirewallRules: [{D3402624-BBD4-4D75-97DE-000EBC6EFE09}] => (Allow) G:\Dirt rally\steamapps\common\WRC 5\WRC5.exe () [Fichier non signé] FirewallRules: [{B504D59C-E3AD-495E-8901-FFDB5162A326}] => (Allow) G:\Dirt rally\steamapps\common\WRC 5\WRC5.exe () [Fichier non signé] FirewallRules: [{40DDC529-C17F-4756-9FD3-AF6EC67A30D4}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{19CA56B7-7D78-4E56-8109-40B900E84EA1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe (Even Balance, Inc. -> ) FirewallRules: [{5CEAD8E7-54EA-4F6E-8846-91B95265C2D9}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{CC67FD63-F635-4BEA-92C0-E9F69E66261A}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe (Even Balance, Inc. -> ) FirewallRules: [{1D0D7E13-BE9A-46E8-BA23-E1F700E818CA}] => (Allow) G:\Medal of Honor Warfighter\Medal of Honor Warfighter\MOHW.exe (Electronic Arts -> Danger Close Games) FirewallRules: [{DB609558-12D6-443D-BF07-2555EEFDCD72}] => (Allow) G:\Medal of Honor Warfighter\Medal of Honor Warfighter\MOHW.exe (Electronic Arts -> Danger Close Games) FirewallRules: [TCP Query User{AFBB4F2D-4A44-4539-A21F-9071D4A28C4C}C:\program files (x86)\call of duty\codmp.exe] => (Allow) C:\program files (x86)\call of duty\codmp.exe () [Fichier non signé] FirewallRules: [UDP Query User{0B69DA92-9615-4FC6-BBB8-E061CB9A87D3}C:\program files (x86)\call of duty\codmp.exe] => (Allow) C:\program files (x86)\call of duty\codmp.exe () [Fichier non signé] FirewallRules: [{BDBC9756-2935-4E76-AB06-353028719051}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{F695776D-BC85-4DF2-8EC3-FA8C8AB02BC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CE91F3C5-3877-4C05-9058-D202EE15A361}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{562C27B8-7B94-43E5-ABE9-F1E9634FABD5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{934E4E34-148C-4FD9-9D66-A73BFDA2A51E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{9F6EACAC-BAB7-43C8-B1F2-C82611D2F757}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{A2513B5E-1679-4FF4-9702-4768D13A0788}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{39E1518E-F125-45BA-A04C-33469AEF20BD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.152.687.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{417FC961-417F-4D25-8375-9E6F4D3FE934}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45852.exe] => (Block) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45852.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [UDP Query User{36A58795-1490-4DD8-ACC5-7BEDF4AB5369}C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45852.exe] => (Block) C:\users\balou\appdata\roaming\utorrent\updates\3.5.5_45852.exe (BitTorrent Inc -> BitTorrent Inc.) FirewallRules: [{2433DC3F-A8BF-4576-B558-4658B5E6BC50}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3340AD03-DEF2-4EE2-951B-6C2A7EECCA57}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D0DC172D-C492-4FEB-B555-478C30CEC869}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{8C4CFAAE-BC01-4453-9AEC-7DB6CFFA8C63}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{5915D0DB-5C25-471B-ABF9-77ADFEDD769E}] => (Allow) C:\Users\balou\AppData\Local\Temp\7zS1489\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{69AD50F9-18E5-482B-B807-D58225917BCD}] => (Allow) C:\Users\balou\AppData\Local\Temp\7zS1489\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{6A35C633-54E4-49F8-A63D-DB700EEB83A6}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{8CAA8292-1763-4526-A58B-57806E4F2ED9}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{5CBA94DE-322E-477E-A33B-F8153E3AFB52}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{30DDB9A1-EB4F-43C3-8BD5-F915065A9D05}] => (Allow) C:\Program Files\HP\HP Photosmart 5520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.) ==================== Points de restauration ========================= 12-08-2021 14:46:09 Removed 8GadgetPack 13-08-2021 11:48:55 Programme d’installation pour les modules Windows 13-08-2021 11:50:39 Programme d’installation pour les modules Windows 14-08-2021 11:31:44 ZHPcleaner ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: VirtualBox Host-Only Ethernet Adapter Description: VirtualBox Host-Only Ethernet Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Oracle Corporation Service: VBoxNetAdp Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: 802.11n Wireless PCI Express Card LAN Adapter Description: Carte réseau sans fil PCI Express Card 802.11n Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: LITE-ON TECHNOLOGY CORPORATION Service: netr28x Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (08/14/2021 05:00:10 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (08/14/2021 11:49:02 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (08/14/2021 11:49:02 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (08/14/2021 12:16:35 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (08/14/2021 12:16:35 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (08/14/2021 12:16:35 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (08/14/2021 12:16:35 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Erreurs système: ============= Error: (08/14/2021 04:11:51 PM) (Source: volmgr) (EventID: 46) (User: ) Description: L'initialisation du fichier de vidage sur incident a échoué. Error: (08/14/2021 11:48:57 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service CsrBtService avec les arguments « Non disponible » pour exécuter le serveur : {BFF6845D-E49A-4A99-9609-418ED36F1C54} Error: (08/14/2021 11:12:23 AM) (Source: volmgr) (EventID: 46) (User: ) Description: L'initialisation du fichier de vidage sur incident a échoué. Error: (08/14/2021 09:19:58 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service CsrBtService avec les arguments « Non disponible » pour exécuter le serveur : {BFF6845D-E49A-4A99-9609-418ED36F1C54} Error: (08/14/2021 08:12:07 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service WMPNetworkSvc s’est arrêté avec l’erreur : Tentative de référence à un jeton qui n’existe pas. Error: (08/14/2021 08:12:00 AM) (Source: volmgr) (EventID: 46) (User: ) Description: L'initialisation du fichier de vidage sur incident a échoué. Error: (08/14/2021 08:09:24 AM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT) Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service CsrBtService avec les arguments « Non disponible » pour exécuter le serveur : {BFF6845D-E49A-4A99-9609-418ED36F1C54} Error: (08/14/2021 07:52:06 AM) (Source: volmgr) (EventID: 46) (User: ) Description: L'initialisation du fichier de vidage sur incident a échoué. Windows Defender: ================ Date: 2021-08-13 17:43:58 Description: L'apport de modification par C:\VLC\vlc.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2021-08-13T15:43:58.333Z Utilisateur : DESKTOP-CPT119A\balou Chemin d'accès : %userprofile%\Documents Nom du processus : C:\VLC\vlc.exe Version de la veille de sécurité : 1.345.456.0 Version du moteur : 1.1.18400.4 Version du produit : 4.18.2107.4 Date: 2021-08-13 17:20:18 Description: L'apport de modification par C:\VLC\vlc.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2021-08-13T15:20:18.305Z Utilisateur : DESKTOP-CPT119A\balou Chemin d'accès : %userprofile%\Documents Nom du processus : C:\VLC\vlc.exe Version de la veille de sécurité : 1.345.456.0 Version du moteur : 1.1.18400.4 Version du produit : 4.18.2107.4 Date: 2021-08-13 16:48:12 Description: L'apport de modification par C:\VLC\vlc.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2021-08-13T14:48:12.024Z Utilisateur : DESKTOP-CPT119A\balou Chemin d'accès : %userprofile%\Documents Nom du processus : C:\VLC\vlc.exe Version de la veille de sécurité : 1.345.456.0 Version du moteur : 1.1.18400.4 Version du produit : 4.18.2107.4 Date: 2021-08-13 16:31:25 Description: L'apport de modification par C:\VLC\vlc.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2021-08-13T14:31:25.954Z Utilisateur : DESKTOP-CPT119A\balou Chemin d'accès : %userprofile%\Documents Nom du processus : C:\VLC\vlc.exe Version de la veille de sécurité : 1.345.456.0 Version du moteur : 1.1.18400.4 Version du produit : 4.18.2107.4  CodeIntegrity: =============== Date: 2021-08-14 11:36:33 Description: Windows blocked file \Device\HarddiskVolume2\Windows\System32\scrobj.dll which has been disallowed for protected processes. Date: 2021-08-14 07:57:36 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. EM0424-M8 04/24/2012 Carte mère: MEDION H77H2-EM Processeur: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz Pourcentage de mémoire utilisée: 26% Mémoire physique - RAM - totale: 16345.69 MB Mémoire physique - RAM - disponible: 11964.31 MB Mémoire virtuelle totale: 16345.69 MB Mémoire virtuelle disponible: 11914.43 MB ==================== Lecteurs ================================ Drive c: (philou) (Fixed) (Total:445.76 GB) (Free:347.52 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (Données) (Fixed) (Total:465.76 GB) (Free:202.57 GB) NTFS Drive f: (Multimédia) (Fixed) (Total:897.21 GB) (Free:507.5 GB) NTFS Drive g: (Logiciels et jeux) (Fixed) (Total:500.04 GB) (Free:256.88 GB) NTFS Drive h: (Réservé au système) (Fixed) (Total:0.57 GB) (Free:0.55 GB) NTFS \\?\Volume{e4d9f365-0000-0000-0000-e0946f000000}\ () (Fixed) (Total:0.8 GB) (Free:0.36 GB) NTFS ==================== MBR & Table des partitions ==================== ==================== Fin de Addition.txt =======================