Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 20-10-2021 Exécuté par DAD (28-10-2021 17:57:09) Exécuté depuis C:\Users\DAD\Desktop Microsoft Windows 10 Professionnel Version 21H1 19043.1288 (X64) (2020-09-05 07:51:14) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2027434735-1488328025-95585397-500 - Administrator - Enabled) DAD (S-1-5-21-2027434735-1488328025-95585397-1001 - Administrator - Enabled) => C:\Users\DAD DefaultAccount (S-1-5-21-2027434735-1488328025-95585397-503 - Limited - Disabled) Invité (S-1-5-21-2027434735-1488328025-95585397-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2027434735-1488328025-95585397-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated) Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: - Adobe) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_1_2) (Version: 21.1.2 - Adobe Systems Incorporated) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 1.01.76 - ASUSTeK Computer Inc.) AIDA64 Extreme v6.50 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.50 - FinalWire Ltd.) AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.05.04.352 - Advanced Micro Devices, Inc.) AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 21.10.2 - Advanced Micro Devices, Inc.) AMD_Chipset_Drivers (HKLM-x32\...\{810a2b63-212d-4a59-bfb5-f2d575cd44f0}) (Version: 2.05.04.352 - Advanced Micro Devices, Inc.) Hidden AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI International Network Limited.) Branding64 (HKLM\...\{C871FC62-0186-40ED-BAEA-7C65BE367755}) (Version: 1.00.0006 - Advanced Micro Devices, Inc.) Hidden CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.0.19 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.3.1.4 - Canon Inc.) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.) Canon TS5000 series Manuel à l'écran (HKLM-x32\...\Canon TS5000 series Manuel à l'écran) (Version: 1.1.0 - Canon Inc.) Canon TS5000 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_TS5000_series) (Version: 1.02 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) DVB Dream Trial version 3.7.1 (HKLM-x32\...\DVB Dream_is1) (Version: - ) Enregistrement utilisateur de Canon TS5000 series (HKLM-x32\...\Enregistrement utilisateur de Canon TS5000 series) (Version: - ‭Canon Inc.) erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden Fresco Logic USB3.0 Host Controller (HKLM\...\{1FED00AC-F001-4186-9344-0ACDD026070C}) (Version: 3.5.106.0 - Fresco Logic Inc.) Google Earth Pro (HKLM\...\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}) (Version: 7.3.4.8248 - Google) LAV Filters 0.73.1 (HKLM-x32\...\lavfilters_is1) (Version: 0.73.1 - Hendrik Leppkes) Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech) Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.) Malwarebytes version 4.4.8.137 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.8.137 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.30 - Microsoft Corporation) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14430.20306 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\OneDriveSetup.exe) (Version: 21.196.0921.0007 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation) Molotov (HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\molotov) (Version: 4.4.4 - Molotov) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 93.0 (x64 fr)) (Version: 93.0 - Mozilla) Nero 2018 (HKLM-x32\...\{DB8EF13D-AD5C-4893-BB41-BD010964E730}) (Version: 19.0.10200 - Nero AG) Nero 2018 Content Pack 1 (HKLM-x32\...\{ED2B4941-349B-4E16-B339-0D1FF2B7A788}) (Version: 19.0.01300 - Nero AG) Nero 2018 Content Pack 2 (HKLM-x32\...\{4E3C72F5-9FEF-4380-ABA3-BA670F995538}) (Version: 19.0.01400 - Nero AG) Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 19.0.1003 - Nero AG) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14430.20306 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.14430.20234 - Microsoft Corporation) Hidden OpenVPN 2.3.13-fip (HKLM-x32\...\OpenVPN) (Version: 2.3.13-fip - ) Package de pilotes Windows - TBS (TBS8922) Media (11/18/2013 1.0.1.6) (HKLM\...\C47C042D73D8A4BC1EF221B08F23F84F94388FF0) (Version: 11/18/2013 1.0.1.6 - TBS) Package de pilotes Windows - TBS (TBS8922) Media (11/18/2013 1.0.1.6) (HKLM\...\D54BA23F45EB16DD1D6FF5CF2D966B715A58F21C) (Version: 11/18/2013 1.0.1.6 - TBS) Package de pilotes Windows - TBS (tbs8922vhid) HIDClass (12/20/2011 1.0.3.0) (HKLM\...\84D13B77B508F1F2CBCD98DCD810DD200EDCF2F8) (Version: 12/20/2011 1.0.3.0 - TBS) Personal Solution Pac (HKLM-x32\...\{0335E386-9ECB-11D4-BA6E-0020AFBCF620}) (Version: - ) PhotoFiltre 11.0 (HKLM\...\{562D5B35-6D7E-415D-8554-30A2D0146FE6}_is1) (Version: 11.0 - PhotoFiltre) Polar FlowSync version 3.0.0.1337 (HKLM-x32\...\{A1538F5C-7B65-4DB6-9FFB-FFC0DF2E85D8}_is1) (Version: 3.0.0.1337 - Polar Electro Oy) Pouchin TV Mod (HKLM\...\Pouchin TV Mod) (Version: - ) Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden qBittorrent 4.1.2 (HKLM-x32\...\qBittorrent) (Version: 4.1.2 - The qBittorrent project) REALTEK DTV USB DEVICE (HKLM-x32\...\{DDBB7C89-1A09-441E-AA0F-6AA465755C17}) (Version: 1.00.0000 - Realtek) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.39.212.2020 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 4.5.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.5.0 - VS Revo Group, Ltd.) RyzenMasterSDK (HKLM\...\{589A596F-2C65-4AF7-B1C3-C8697B1F327A}) (Version: 1.2.3.5 - Advanced Micro Devices, Inc.) Hidden Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.) Skype version 8.77 (HKLM-x32\...\Skype_is1) (Version: 8.77 - Skype Technologies S.A.) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20013.2 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.20013.2 - Samsung Electronics Co., Ltd.) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) TBS 8922 Tuner driver 1.0.1.6 for windows (HKLM\...\TBS 8922 Tuner driver for windows_is1) (Version: - TBS Technologies) VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN) WinRAR 6.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.0 - win.rar GmbH) Packages: ========= Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-11-25] (Microsoft Corporation) Gmail -> C:\Program Files\WindowsApps\accounts.google.com-32C15D42_1.0.0.2_neutral__feg15j34tv818 [2021-10-04] (accounts.google.com) Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2019-10-03] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2019-10-03] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-04-15] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-04-15] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.9220.0_x64__8wekyb3d8bbwe [2021-10-10] (Microsoft Studios) [MS Ad] MyIPTV Player -> C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78 [2021-10-04] (Vbfnet Apps) [MS Ad] Outlook.com - Microsoft free personal email -> C:\Program Files\WindowsApps\outlook.live.com-86DCC8E_1.0.0.2_neutral__ad12m90dr0gt2 [2021-10-04] (outlook.live.com) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0 [2021-10-14] (Spotify AB) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2027434735-1488328025-95585397-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0x72F91B0CFD0BD60104321D0CFD0BD601010000000700000000000000 => Pas de fichier ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-10-07] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2021-10-05] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2020-09-28] (VS Revo Group Ltd. -> VS Revo Group) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-04-07] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-23] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-23] (Logitech, Inc. -> Logitech Inc.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\DAD\AppData\Local\Microsoft\Edge\User Data\Profile 1\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 1" ==================== Modules chargés (Avec liste blanche) ============= 2021-10-16 19:43 - 2021-06-22 14:41 - 000014336 _____ () [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.3.0\AOMEI Backupper\6.6.1\libamcbconsole.dll 2019-04-15 17:18 - 2017-03-24 11:16 - 000208896 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll 2019-04-15 17:18 - 2017-03-24 11:16 - 000681984 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll 2019-04-15 17:18 - 2015-09-17 04:58 - 000104448 ____R () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.02.03\ATKEX.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000017920 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libEGL.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 003567616 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll 2021-10-05 10:44 - 2021-10-05 10:44 - 000022016 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra 2021-07-07 06:37 - 2021-07-07 06:37 - 000562688 _____ (Advanced Micro Devices) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Device.dll 2021-07-07 06:37 - 2021-07-07 06:37 - 000058880 _____ (Advanced Micro Devices) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Platform.dll 2021-10-16 19:43 - 2015-05-21 14:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.3.0\AOMEI Backupper\6.6.1\vcomp.dll 2019-04-15 17:18 - 2015-06-05 13:00 - 000108544 ____R (ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\AAHM\1.00.31\ASACPI.DLL 2019-04-15 17:19 - 2016-03-07 21:42 - 000108544 _____ (ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpi.dll 2019-04-15 17:19 - 2016-03-07 21:42 - 000676864 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\asacpiex.dll 2019-04-15 17:19 - 2016-03-07 15:42 - 000676864 ____R (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\AsusFanControlService\1.09.08\asacpiex.dll 2019-04-17 16:58 - 2015-09-15 16:07 - 000318464 _____ (CANON INC) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\scchmpm.dll 2019-04-17 16:58 - 2015-09-01 18:11 - 000194560 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnmpu2.dll 2019-04-17 16:58 - 2015-06-17 16:01 - 000008704 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_FRA.DLL 2019-04-17 16:58 - 2015-06-17 16:00 - 000104960 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_IMG.dll 2019-04-17 16:58 - 2015-05-26 09:44 - 000141312 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnwidsd.dll 2017-09-05 00:15 - 2017-09-05 00:15 - 004396032 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\D3DCompiler_47.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000057856 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000031744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000039424 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000031232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000415232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000023552 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000532992 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 001455104 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 001227776 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000135680 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 006270976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 006947328 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000740352 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000123392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 001110528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000326656 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 003798528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000440832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000054784 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 004255744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000171520 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 001128448 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000206336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000334336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000133120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000396800 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 102854656 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 005611008 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000463360 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000210432 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 002877440 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000056832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000059392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000267776 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000017408 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000017920 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000290816 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000336896 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000134144 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000106496 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000325120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000045568 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll 2021-04-21 03:21 - 2021-04-21 03:21 - 000093184 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2027434735-1488328025-95585397-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp//go.microsoft.com/fwlink/?LinkId=54896 HKU\S-1-5-21-2027434735-1488328025-95585397-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp//go.microsoft.com/fwlink/p/?LinkId=255141 SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp//www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-2027434735-1488328025-95585397-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-10-02] (Microsoft Corporation -> Microsoft Corporation) BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-05-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-05-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-10-02] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-05-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-05-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2021-05-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2021-05-28] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-02] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-10-02] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-09-15 09:31 - 2020-10-14 12:06 - 000002940 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 activation.acronis.com web-api-tih.acronis.com 127.0.0.1 na1r.services.adobe.com 127.0.0.1 hlrcv.stage.adobe.com 127.0.0.1 lmlicenses.wip4.adobe.com 127.0.0.1 lm.licenses.adobe.com 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 genuine.adobe.com 127.0.0.1 209.34.83.73:443 127.0.0.1 209.34.83.73:43 127.0.0.1 209.34.83.67:443 127.0.0.1 209.34.83.67:43 127.0.0.1 ood.opsource.net 127.0.0.1 199.7.52.190:80 127.0.0.1 OCSP.SPO1.VERISIGN.COM 127.0.0.1 199.7.54.72:80 127.0.0.1 192.150.14.69 127.0.0.1 192.150.18.101 127.0.0.1 192.150.18.108 127.0.0.1 192.150.22.40 127.0.0.1 192.150.8.100 127.0.0.1 192.150.8.118 127.0.0.1 209-34-83-73.ood.opsource.net 127.0.0.1 3dns-1.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-4.adobe.com 127.0.0.1 3dns-5.adobe.com 127.0.0.1 3dns.adobe.com 127.0.0.1 activate.wip.adobe.com 2021-03-05 19:19 - 2021-03-05 21:29 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2027434735-1488328025-95585397-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\DAD\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\20200828_115523.jpg DNS Servers: 1.1.1.1 - 1.0.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "RTHDVCPL" HKLM\...\StartupApproved\Run: => "Logitech Download Assistant" HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor" HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run32: => "LWS" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0" HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\StartupApproved\StartupFolder: => "Logitech . Enregistrement du produit.lnk" HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2027434735-1488328025-95585397-1001\...\StartupApproved\Run: => "Polar FlowSync" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{08BC6071-79AA-403B-9652-F3EC9771BCE9}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{CFC156E4-9E93-4A71-A5EB-BF35B4C347B5}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{587BFE06-1D03-4BCF-9A42-F43BF98EFE65}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{4E030CA2-E0C0-4336-A79A-509E91803802}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{B2D99533-13BB-4609-A38D-26522EE1E808}] => (Allow) F:\LOGICIELS\ANALYSE\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DriverBooster.exe (IObit Information Technology -> IObit) FirewallRules: [{98D59DE3-DDE0-406A-A976-FDA7224D236D}] => (Allow) F:\LOGICIELS\ANALYSE\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DriverBooster.exe (IObit Information Technology -> IObit) FirewallRules: [{21359D4D-B136-4C83-A364-76C60741C7D2}] => (Allow) F:\LOGICIELS\ANALYSE\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DBDownloader.exe (IObit Information Technology -> IObit) FirewallRules: [{FBD499E1-3DB4-482B-9E26-C54308619541}] => (Allow) F:\LOGICIELS\ANALYSE\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DBDownloader.exe (IObit Information Technology -> IObit) FirewallRules: [{85697AFC-C9A3-4757-90C1-DDED20523AA3}] => (Allow) F:\LOGICIELS\ANALYSE\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\AutoUpdate.exe (IObit Information Technology -> IObit) FirewallRules: [{46109A00-0655-44DF-883C-871F0E9A2470}] => (Allow) F:\LOGICIELS\ANALYSE\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\AutoUpdate.exe (IObit Information Technology -> IObit) FirewallRules: [{354D4BE9-C70C-4F3A-9CDC-F8327C543E2A}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG) FirewallRules: [{028C76B3-6A87-4D8D-8B7A-9A44414ADD50}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\NMDllHost.exe (Nero AG -> Nero AG) FirewallRules: [{0812AA4E-3656-40BD-96F7-205F0669FADF}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero MediaHome\MediaHome.exe (Nero AG -> Nero AG) FirewallRules: [{E96A79C7-0AB8-476A-A01D-BF0FD6F25D19}] => (Allow) C:\Program Files (x86)\Nero\Nero 2018\Nero Burning ROM\nero.exe (Nero AG -> Nero AG) FirewallRules: [{6894C9E7-F061-4F6F-81A5-CF052E6E3430}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [{41AF4885-F477-4CFC-8BA9-BD3F3C97F7D9}] => (Allow) C:\Program Files (x86)\qBittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [{B5E8AE0D-949B-47F7-8821-60BC39FD7D96}] => (Allow) C:\Users\DAD\Downloads\PROGRAMMES\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DriverBooster.exe (IObit Information Technology -> IObit) FirewallRules: [{A9313BDE-1CED-4902-B8D1-C7105763B4AF}] => (Allow) C:\Users\DAD\Downloads\PROGRAMMES\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DriverBooster.exe (IObit Information Technology -> IObit) FirewallRules: [{C771A141-3B2B-4892-A4E8-A0FAC04DF829}] => (Allow) C:\Users\DAD\Downloads\PROGRAMMES\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DBDownloader.exe (IObit Information Technology -> IObit) FirewallRules: [{8CB6FBB5-0BDA-49AB-8BA5-CF7BA2766D25}] => (Allow) C:\Users\DAD\Downloads\PROGRAMMES\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\DBDownloader.exe (IObit Information Technology -> IObit) FirewallRules: [{2EBD500D-A1AB-427B-9AD0-F553F256C4FE}] => (Allow) C:\Users\DAD\Downloads\PROGRAMMES\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\AutoUpdate.exe (IObit Information Technology -> IObit) FirewallRules: [{D43EA0CE-FA3F-49BE-9A52-C95536CFFB64}] => (Allow) C:\Users\DAD\Downloads\PROGRAMMES\DriverBoosterPROPortable_6.0.2.691\DriverBoosterPROPortable\App\DriverBoosterPRO\AutoUpdate.exe (IObit Information Technology -> IObit) FirewallRules: [{EB1BE4B0-AA90-40D3-AB52-D9061283E503}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 5.7.0\ABService.exe (AOMEI International Network Limited -> AOMEI Tech Co., Ltd.) FirewallRules: [{B635BA1F-A8BF-4AD0-9B01-98249DD886F1}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 5.7.0\ABService.exe (AOMEI International Network Limited -> AOMEI Tech Co., Ltd.) FirewallRules: [TCP Query User{6F72610E-2FA6-4398-9983-6CFDAED86234}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [UDP Query User{4F3568A5-1B05-453C-97BC-60F410216D0F}C:\program files (x86)\qbittorrent\qbittorrent.exe] => (Allow) C:\program files (x86)\qbittorrent\qbittorrent.exe () [Fichier non signé] FirewallRules: [{FC85DB5D-470C-4382-B1D8-1D51295FC102}] => (Allow) LPort=5354 FirewallRules: [{B23D7A14-5648-489A-9638-0531C9F3E981}] => (Allow) LPort=5354 FirewallRules: [{100BC1E7-BBC9-4A7D-9D3C-E78674DE7C7F}] => (Allow) LPort=5354 FirewallRules: [{8D0C790A-7ABB-4D0E-BBF8-01659AE0A05A}] => (Allow) LPort=5354 FirewallRules: [{52061CD9-5138-4C1C-B9D6-FF8364907900}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0E74504A-7C82-4E34-9901-BABC5969DD4A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{53582853-6196-4009-A441-599D46617E86}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{89A24359-BC4C-49B0-ADFE-FB6ABD3249D9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4083A0B8-51B0-409C-B4E4-9BE1C5C95BA1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{609795E3-DBCA-4F37-B5D1-9E08E6F4BA3A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{CC48D515-4630-4E51-9C85-0BBFF6823AE7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7F1A94F5-A892-463C-9573-241A97122EE5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E59C1C97-C073-4CC4-9D8B-6B39E2B61767}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{466D94A8-A7C4-4B69-8E46-4A96FB072F5B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{5B9C6F38-E5FE-4ECB-8EF9-036F6268999C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8C018FA5-84CB-44F7-AF6B-1BFBFA115CDB}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{E9A660E4-5191-408E-8F96-863CA0EC2B86}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.170.610.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B536A541-B088-4EBB-AC14-9A699813DFD6}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{ACC3EEFB-51D8-4769-80ED-FB4882E955DF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{760D34CF-FA48-414E-8934-7EF87941C64F}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.3.0\AOMEI Backupper\6.6.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{5456B653-DD26-4279-9837-3C7B4D0E14D6}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.3.0\AOMEI Backupper\6.6.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) ==================== Points de restauration ========================= 26-10-2021 10:49:48 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Intel(R) Wi-Fi 6 AX200 160MHz Description: Intel(R) Wi-Fi 6 AX200 160MHz Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Intel Corporation Service: Netwtw10 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/28/2021 05:34:12 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 15:34:13 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 137e4807-c558-4605-bead-3adcc5866641 Méthode : GET(813ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 05:07:47 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 15:07:47 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 49919a78-2f74-443b-ba93-01548b8e189f Méthode : GET(594ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 04:53:53 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 14:53:53 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: aff80000-1e66-4c91-90ed-e17e6ad842f9 Méthode : GET(500ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 04:33:46 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 14:33:45 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 5c9a3e9b-f4c3-4785-8809-b62ede986bc1 Méthode : GET(813ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 03:59:45 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 13:59:45 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 443b722d-f216-49d1-a9a7-68e33a780359 Méthode : GET(516ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 10:23:32 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 08:23:32 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: 3389d613-8c7a-4b8f-b800-022acbbce3d9 Méthode : GET(672ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 06:04:23 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 04:04:22 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: a43491ba-e6bf-46bf-a7fa-0381b8474a2a Méthode : GET(593ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Error: (10/28/2021 05:56:35 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT) Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\DESKTOP-81GG5HR$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep : GetCACaps GetCACaps: Not Found {"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."} HTTP/1.1 404 Not Found Date: Thu, 28 Oct 2021 03:56:35 GMT Content-Length: 121 Content-Type: application/json; charset=utf-8 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000;includeSubDomains x-ms-request-id: ac56f129-8442-4002-8c63-316ade1a74d3 Méthode : GET(656ms) Étape : GetCACaps Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND) Erreurs système: ============= Error: (10/28/2021 05:34:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service AMDRyzenMasterDriverV17 n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (10/28/2021 05:33:10 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-81GG5HR) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2021-10-27 17:08:24 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Program:Win32/Contebrew.A!ml&threatid=251873&enterprise=0 Nom : Program:Win32/Contebrew.A!ml ID : 251873 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_E:\qBittorent\download\[WIN] Adobe Acrobat Pro DC 2020.006.20042 Multilingue ( Fr ) + Patch\Patch\adobe.snr.patch.v2.0-painter.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la veille de sécurité : AV: 1.351.1143.0, AS: 1.351.1143.0, NIS: 1.351.1143.0 Version du moteur : AM: 1.1.18600.4, NIS: 1.1.18600.4 Date: 2021-10-27 17:06:14 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nom : Trojan:Win32/Tiggre!rfn ID : 2147723625 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_E:\qBittorent\download\WinRAR version 7.01 Final (Release) Français avec licence [Windows]\wrar701fr.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-81GG5HR\DAD Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.351.1143.0, AS: 1.351.1143.0, NIS: 1.351.1143.0 Version du moteur : AM: 1.1.18600.4, NIS: 1.1.18600.4 Date: 2021-10-27 06:52:03 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Tiggre!rfn&threatid=2147723625&enterprise=0 Nom : Trojan:Win32/Tiggre!rfn ID : 2147723625 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_E:\qBittorent\download\WinRAR version 7.01 Final (Release) Français avec licence [Windows]\winrar-x64-701fr.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-81GG5HR\DAD Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.351.1138.0, AS: 1.351.1138.0, NIS: 1.351.1138.0 Version du moteur : AM: 1.1.18600.4, NIS: 1.1.18600.4 Date: 2021-10-27 06:48:10 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Patcher!MSR&threatid=2147743354&enterprise=0 Nom : HackTool:Win32/Patcher!MSR ID : 2147743354 Gravité : Élevée Catégorie : Outil Chemin : file:_G:\qBittorent\download\IObit.Driver.Booster.PRO.7.3.0.665_Portable\IObit Driver Booster Pro.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-81GG5HR\DAD Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.351.1138.0, AS: 1.351.1138.0, NIS: 1.351.1138.0 Version du moteur : AM: 1.1.18600.4, NIS: 1.1.18600.4 Date: 2021-10-26 20:13:48 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Patcher!MSR&threatid=2147743354&enterprise=0 Nom : HackTool:Win32/Patcher!MSR ID : 2147743354 Gravité : Élevée Catégorie : Outil Chemin : file:_E:\qBittorent\download\IObit.Driver.Booster.PRO.7.3.0.665_Portable\IObit Driver Booster Pro.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : DESKTOP-81GG5HR\DAD Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.351.1104.0, AS: 1.351.1104.0, NIS: 1.351.1104.0 Version du moteur : AM: 1.1.18600.4, NIS: 1.1.18600.4 Date: 2021-10-27 05:10:31 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Patcher!MSR&threatid=2147743354&enterprise=0 Nom : HackTool:Win32/Patcher!MSR ID : 2147743354 Gravité : Élevée Catégorie : Outil Utilisateur : DESKTOP-81GG5HR\DAD Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.351.1115.0, AS: 1.351.1115.0 Version du moteur : 1.1.18600.4 CodeIntegrity: =============== Date: 2021-10-20 09:11:46 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 5606 07/13/2021 Carte mère: ASUSTeK COMPUTER INC. PRIME X370-A Processeur: AMD Ryzen 5 1500X Quad-Core Processor Pourcentage de mémoire utilisée: 28% Mémoire physique - RAM - totale: 16319.34 MB Mémoire physique - RAM - disponible: 11600.61 MB Mémoire virtuelle totale: 18751.34 MB Mémoire virtuelle disponible: 10648.73 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:222.86 GB) (Free:111.82 GB) NTFS Drive e: (SEAGATE BARRACUDA 2TO) (Fixed) (Total:1863 GB) (Free:1478.17 GB) NTFS Drive f: (2To) (Fixed) (Total:1863.01 GB) (Free:445.94 GB) NTFS Drive h: (DD EXTERNE 2TO) (Fixed) (Total:1863.01 GB) (Free:884.73 GB) NTFS \\?\Volume{b871b938-e477-40ed-a70e-72d0d559deab}\ () (Fixed) (Total:0.49 GB) (Free:0.04 GB) NTFS \\?\Volume{a0d8f3c1-c915-436d-983f-40cc916f0bb8}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 223.6 GB) (Disk ID: 310ECC22) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 01D96965) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: 1B4EF005) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================