Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 02-11-2021 Exécuté par cash (04-11-2021 11:59:49) Exécuté depuis C:\Users\cash\Desktop Microsoft Windows 10 Famille Version 21H1 19043.1288 (X64) (2021-02-16 21:21:38) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2759000147-1505035581-997665020-500 - Administrator - Disabled) cash (S-1-5-21-2759000147-1505035581-997665020-1001 - Administrator - Enabled) => C:\Users\cash DefaultAccount (S-1-5-21-2759000147-1505035581-997665020-503 - Limited - Disabled) defaultuser0 (S-1-5-21-2759000147-1505035581-997665020-1000 - Limited - Disabled) => C:\Users\defaultuser0 Invité (S-1-5-21-2759000147-1505035581-997665020-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2759000147-1505035581-997665020-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 2048Desktop (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\2048Desktop) (Version: 1.0.0.0 - Rupesh Sreeraman) AlterPDF 4.9 (HKLM-x32\...\AlterPDF_is1) (Version: - Alternative PDF Solutions) AlterPDF Pro 4.4 (HKLM-x32\...\AlterPDF Pro_is1) (Version: 4.4 - lrepacks.ru) ASUS GIFTBOX Desktop (HKLM-x32\...\{4701E5AB-AF91-4D40-8F18-358CC80E4E5B}) (Version: 1.1.6 - ASUS) ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.9 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.105 - ICEpower a/s) Backup and Sync from Google (HKLM\...\{685BAD50-A3AA-4B91-A15B-77F9DC7346D4}) (Version: 3.57.4043.4118 - Google, Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) cbgeo (HKLM-x32\...\cbgeo) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.83 - Piriform) CDBurnerXP (HKLM-x32\...\{0F047784-7E23-4A4F-BFA8-8F28978C6A30}) (Version: 4.5.7.6499 - Canneverbe Limited) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) CyberLink PowerDVD 15 (HKLM-x32\...\{DE85B8F3-D088-4D6E-A970-EE0BC7883A66}) (Version: 15.0.1510.58 - CyberLink Corp.) dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 15.2 - Illustrate) dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 11 - Illustrate) DeepL (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\DeepL) (Version: 1.11.0 - DeepL GmbH) Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.2 - ASUSTek Computer Inc.) Dropbox (HKLM-x32\...\Dropbox) (Version: 134.4.4115 - Dropbox, Inc.) Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.503.1 - Dropbox, Inc.) Hidden Duplicate Cleaner Free 4.1.2 (HKLM-x32\...\Duplicate Cleaner Free) (Version: 4.1.2 - DigitalVolcano Software Ltd) Easy Video Joiner 5.01 (HKLM-x32\...\Easy Video Joiner_is1) (Version: - DoEasier Tech Inc.) Epson Easy Photo Print 2 (HKLM-x32\...\{7E0261C4-8495-4365-BE48-647701D8B9BD}) (Version: 2.8.3.0 - Seiko Epson Corporation) Epson Event Manager (HKLM-x32\...\{9F205E94-9E42-4486-A92A-DF3F6CB85444}) (Version: 3.10.0061 - Seiko Epson Corporation) Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION) Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 3.21.00 - Seiko Epson Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) EPSON Scan PDF EXtensions (HKLM-x32\...\{F9956472-6E16-4F83-BF9A-F887EF4A45B7}) (Version: 1.03.02 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation) EPSON WF-2760 Series Printer Uninstall (HKLM\...\EPSON WF-2760 Series) (Version: - Seiko Epson Corporation) EPSON WF-3620 Series Printer Uninstall (HKLM\...\EPSON WF-3620 Series) (Version: - SEIKO EPSON Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) ePUB to PDF Converter (HKLM-x32\...\ePUB to PDF Converter) (Version: 2.1.0.10 - Epubor Inc.) Eye Saver version 2.44 (HKLM-x32\...\Eye Saver_is1) (Version: 2.44 - Leosoft ltd.) FastStone Image Viewer 7.0 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.0 - FastStone Soft) FlashGet3.7 (HKLM-x32\...\FlashGet3.7) (Version: 3.7.0.1220 - hxxp://www.FlashGet.com) Free Download Manager (HKLM\...\{43781dff-e0df-49ce-a6d2-47da96a485e7}}_is1) (Version: 5.1.38.7312 - FreeDownloadManager.ORG) Free Download Manager 3.9.7 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG) FreshDownload (HKLM-x32\...\FreshDevices - FreshDownload_is1) (Version: - ) FrostWire 6.9.5 (HKLM\...\FrostWire 6) (Version: 6.9.5.308 - FrostWire LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden Heredis 2020 (HKLM\...\Heredis 2020_is1) (Version: 20 - BSD Concept) Heredis 2021 (HKLM\...\Heredis 2021_is1) (Version: 21 - BSD Concept) Heredis 2022 (HKLM\...\Heredis 2022_is1) (Version: 22 - BSD Concept) hide.me VPN 3.8.3 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 3.8.3 - eVenture Limited) hide.me Wintun (HKLM\...\{6A3B09CD-8B4A-4A66-9C90-833023E463E9}) (Version: 0.8 - hide.me) Hidden HWiNFO64 Version 7.12 (HKLM\...\HWiNFO64_is1) (Version: 7.12 - Martin Malik - REALiX) Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5107 - Intel Corporation) Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation) IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.2.0.1 - IObit) iTop VPN (HKLM-x32\...\iTop VPN_is1) (Version: 2.2.2.2025 - iTop Inc.) KaraFun Player 2 (HKLM-x32\...\KaraFun Player 2_is1) (Version: 2.6.1.1 - Recisio) KeyScrambler (HKLM-x32\...\KeyScrambler) (Version: 3.16.0.1 - QFX Software Corporation) La France à la Loupe 2 (HKLM-x32\...\La France à la Loupe 2_is1) (Version: - ) Magical Jelly Bean PasswdFinder (HKLM-x32\...\PasswdFinder_is1) (Version: 1.0.0.29 - PasswdFinder) Mahjong In Poculis (HKLM-x32\...\In Poculis) (Version: 5 - In Poculis) Malwarebytes version 4.4.7.134 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.7.134 - Malwarebytes) Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation) MediaHuman YouTube to MP3 Converter 3.9.9.61 (HKLM-x32\...\MediaHuman YouTube to MP3 Converter_is1) (Version: 3.9.9.61 - MediaHuman) Memory-Map Navigator (HKLM-x32\...\{C9C16728-F308-4EF4-A2F4-A3E2D8A4843E}) (Version: 5.1.3 - Memory-Map, Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.40 - Microsoft Corporation) Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation) Microsoft Money (HKLM-x32\...\Money2005b) (Version: 14 - Microsoft) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\OneDriveSetup.exe) (Version: 21.205.1003.0003 - Microsoft Corporation) Microsoft Support and Recovery Assistant (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\0527a644a4ddd31d) (Version: 17.0.7189.1 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27027 (HKLM-x32\...\{fd9b6070-d13e-45dc-819b-41806bf45b6b}) (Version: 14.16.27027.1 - Microsoft Corporation) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) Molotov (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\Molotov) (Version: 4.4.4 - Molotov) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 94.0 (x64 fr)) (Version: 94.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.2.1 - Mozilla) Mozilla Thunderbird (x64 fr) (HKLM\...\Mozilla Thunderbird 91.2.1 (x64 fr)) (Version: 91.2.1 - Mozilla) MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.9.0 - F.J. Wechselberger) NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) Opera Stable 80.0.4170.63 (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\Opera 80.0.4170.63) (Version: 80.0.4170.63 - Opera Software) OutlookFreeware.com Utilities (HKLM-x32\...\{E70D9BD0-6F26-491E-8854-3419113BFBFD}) (Version: 4.18.1 - Relief Software) PDFsam Basic (HKLM\...\{BEF44F2E-322A-4B7B-8B15-16E31B602E6C}) (Version: 4.2.7.0 - Sober Lemur S.a.s. di Vacondio Andrea) PDFsam Enhanced 7 Edit Module (HKLM\...\{84326B16-7742-4581-BBEF-9BD1C47BD6A2}) (Version: 7.0.44.13000 - Andrea Vacondio) Hidden PDFsam Enhanced 7 View Module (HKLM\...\{091146F4-9BF2-43F2-A94B-DB9DDCC79C39}) (Version: 7.0.44.13000 - Andrea Vacondio) Hidden PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.10 - Tracker Software Products Ltd) PeaZip 8.2.0 (WIN64) (HKLM\...\{5A2BC38A-406C-4A5B-BF45-6991F9A05325}_is1) (Version: 8.2.0 - Giorgio Tani) PhotoFiltre Studio X (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\PhotoFiltre Studio X) (Version: - ) PicosmosTools 2.6.0.0 (HKLM-x32\...\PicosmosTools) (Version: 2.6.0.0 - Free Time) Prism - Convertisseur de fichiers vidéo (HKLM-x32\...\Prism) (Version: 7.24 - NCH Software) Q-Dir (HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\Q-Dir) (Version: - ) QTranslate 6.7.5.1 (HKLM-x32\...\QTranslate) (Version: 6.7.5.1 - QuestSoft) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Radio Fr Solo 2.1 (HKLM-x32\...\Radio_Fr) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31233 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7571 - Realtek Semiconductor Corp.) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Registrar Registry Manager 8.51 (HKLM\...\RegistrarHome_is1) (Version: - Resplendence Software Projects Sp.) Revo Uninstaller 2.3.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.5 - VS Revo Group, Ltd.) SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology) Sine qua non version 2.9.3.4 (HKLM-x32\...\Sine qua non_is1) (Version: - 25 novembre 2018 Patrice Rabiller et Patrick Pradeau) Skype version 8.68 (HKLM-x32\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.) Smart Defrag 7 (HKLM-x32\...\Smart Defrag_is1) (Version: 7.2.0.91 - IObit) Smart Disk Checker 1.0.0.3870 (HKLM-x32\...\{54D139CD-E89E-4370-9C4D-F26DBA31020F}_is1) (Version: 1.0.0.3870 - RECOVEO) STDU Viewer version 1.6.361.0 (HKLM-x32\...\STDU Viewer_is1) (Version: 1.6.361.0 - STDUtility) Stellar Phoenix Outlook PST Repair (HKLM\...\Stellar Phoenix Outlook PST Repair_is1) (Version: 5.0.0.0 - Stellar Information Systems Ltd.) SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk) Super jeu de dames 3D (HKLM-x32\...\Super jeu de dames 3D) (Version: - ) Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden vanBasco's Karaoke Player (HKLM-x32\...\VMidi) (Version: - ) VdhCoApp 1.3.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) WhereIsIt? 3.93 (HKLM-x32\...\whereisit-wii_is1) (Version: 3.93 - Robert Galle) Who Is On My Wifi version 4.0.5 (HKLM-x32\...\{010D45A1-093D-4534-8147-4E10E80F81CC}_is1) (Version: 4.0.5 - IO3O LLC) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.16 - WildTangent) Windows Driver Package - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) (HKLM\...\14588A15B66655338DBCC021FFA81E31DC281859) (Version: 06/17/2015 1.0.0.262 - ASUS) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 1.83 Build 20 - Windscribe Limited) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS) WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) WinSCP 5.17.5 (HKLM-x32\...\winscp3_is1) (Version: 5.17.5 - Martin Prikryl) XMedia Recode version 3.4.7.4 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.4.7.4 - XMedia Recode) Youtube Downloader HD v. 4.2 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) Packages: ========= Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.67.3.0_x86__kgqvnymyfvs32 [2021-10-21] (king.com) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2140.1.0_x86__kgqvnymyfvs32 [2021-10-29] (king.com) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-10-16] (Microsoft Corporation) Hotspot Shield Free VPN -> C:\Program Files\WindowsApps\6F71D7A7.HotspotShieldFreeVPN_2.10.5.0_x64__nsbqstbb9qxb6 [2021-10-29] (Pango Inc.) Jewels of Egypt -> C:\Program Files\WindowsApps\828B5831.JewelsofEgyptMatchGame_1.19.1901.0_x86__ytsefhwckbdv6 [2021-10-28] (G5 Entertainment AB) Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2021-10-16] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2021-10-16] (Microsoft Corporation) [MS Ad] Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.1.10060.0_x64__8wekyb3d8bbwe [2021-10-21] (Microsoft Studios) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-10-29] (Microsoft Studios) [MS Ad] Pyramid Solitaire++ -> C:\Program Files\WindowsApps\12291raymond.li.PyramidSolitaire_1.1.15.0_x64__szs6zaftcmqhc [2021-10-16] (raymond.li) Super-Fast Browser -> C:\Program Files\WindowsApps\First-Query.Super-FastBrowser_1.6.6.0_x64__pthwtxq7gdmdw [2021-10-16] (First-Query) WiFi Analyzer -> C:\Program Files\WindowsApps\19965MATTHAFNER.WIFIANALYZER_2.6.1.0_x64__gs5k5vmxr2ste [2021-10-29] (Matt Hafner) Windows File Recovery -> C:\Program Files\WindowsApps\Microsoft.WindowsFileRecovery_0.1.20151.0_x64__8wekyb3d8bbwe [2021-10-16] (Microsoft Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2759000147-1505035581-997665020-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6} CustomCLSID: HKU\S-1-5-21-2759000147-1505035581-997665020-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\cash\Dropbox [2019-12-30 17:39] ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-10-19] (Google LLC -> Google) ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google) ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger) [Fichier non signé] ContextMenuHandlers1: [PDFsamEnhanced7_ManagerExt] -> {91D6DCFE-A19D-41CC-8940-46C21D26CF83} => C:\Program Files\PDFsam Enhanced 7\context-menu.dll [2021-08-25] (Sober Lemur S.a.s. di Vacondio Andrea -> Andrea Vacondio) ContextMenuHandlers1: [PicosmosShell] -> {A3888921-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files\PicosmosTools\ShellEx_102.dll [2020-02-18] (Free Time) [Fichier non signé] ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2020-10-10] (IObit Information Technology -> IObit Information Technology) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.2.2.524\ASUSWSContextMenu.dll [2015-05-31] (ASUS Cloud Corporation -> ASUS Cloud Corporation) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => C:\Program Files (x86)\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-10-19] (Google LLC -> Google) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2020-10-10] (IObit Information Technology -> IObit Information Technology) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-09] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2020-10-10] (IObit Information Technology -> IObit Information Technology) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\cash\Desktop\maths\Maxima.lnk -> C:\maxima-5.42.1\bin\maxima.bat () Shortcut: C:\Users\cash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\maxima-5.42.1\Configure default LISP for Maxima.lnk -> C:\maxima-5.42.1\bin\lispselector.bat () Shortcut: C:\Users\cash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\maxima-5.42.1\Maxima (command line).lnk -> C:\maxima-5.42.1\bin\maxima.bat () Shortcut: C:\Users\cash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\maxima-5.42.1\XMaxima (simple GUI).lnk -> C:\maxima-5.42.1\bin\xmaxima.bat () Shortcut: C:\Users\cash\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FrostWire 6\FrostWire 6.9.5-SafeMode.lnk -> C:\Program Files\FrostWire 6\frostwire.bat () ==================== Modules chargés (Avec liste blanche) ============= 2015-08-25 10:40 - 2015-08-25 10:40 - 000124928 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 000027648 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 001680384 _____ (ASUS TeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ApplyLUT.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 000178688 _____ (ASUS TeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\GenLUT.dll 2015-08-25 10:40 - 2015-08-25 10:40 - 000164864 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\Splendid\ColorU.dll 2020-08-04 10:46 - 2020-08-04 10:46 - 000341504 _____ (Free Time) [Fichier non signé] C:\Program Files (x86)\FormatFactory\ShellEx_108.dll 2020-02-18 15:23 - 2020-02-18 15:23 - 000354304 _____ (Free Time) [Fichier non signé] C:\Program Files\PicosmosTools\ShellEx_102.dll 2016-09-14 13:31 - 2016-09-14 13:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll 2020-06-30 13:37 - 2020-06-30 13:37 - 000460288 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] C:\Program Files\PDFsam Enhanced 7\libcurl.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ZAM.exe" /service => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ZAM.exe" /service => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zam64.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\zamguard64.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-2759000147-1505035581-997665020-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-2759000147-1505035581-997665020-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 SearchScopes: HKU\S-1-5-21-2759000147-1505035581-997665020-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04 BHO: Pas de nom -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Pas de fichier BHO: Pas de nom -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> Pas de fichier BHO-x32: Pas de nom -> {13D67BB7-DB5F-48AA-884D-7A5D94168509} -> Pas de fichier BHO-x32: E-Web Print -> {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} -> C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) BHO-x32: Pas de nom -> {206E52E0-D52E-11D4-AD54-0000E86C26F6} -> C:\Program Files (x86)\FreshDevices\FreshDownload\fdcatch.dll [2011-04-26] (FreshDevices Corp.) [Fichier non signé] BHO-x32: FlashGetBHO -> {b070d3e3-fec0-47d9-8e8a-99d4eeb3d3b0} -> C:\Users\cash\AppData\Roaming\FlashGetBHO\FlashGetBHO.dll [2012-11-01] (Trend Media Corporation Limited -> Trend Media Group) BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2018-11-15] (Softdeluxe Ltd. -> FreeDownloadManager.ORG) Toolbar: HKLM - Pas de nom - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Pas de fichier Toolbar: HKLM-x32 - FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} - C:\Program Files (x86)\FreshDevices\FreshDownload\fdiebar.dll [2011-01-17] (FreshDevices Corp.) [Fichier non signé] Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll [2014-11-27] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\localhost -> localhost ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2021-09-13 16:37 - 2021-09-13 16:37 - 000002103 _____ C:\WINDOWS\system32\drivers\etc\hosts 0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly 0.0.0.0 tracking.opencandy.com.s3.amazonaws.com 0.0.0.0 media.opencandy.com 0.0.0.0 cdn.opencandy.com 0.0.0.0 tracking.opencandy.com 0.0.0.0 api.opencandy.com 0.0.0.0 api.recommendedsw.com 0.0.0.0 rp.yefeneri2.com 0.0.0.0 os.yefeneri2.com 0.0.0.0 os2.yefeneri2.com 0.0.0.0 installer.betterinstaller.com 0.0.0.0 installer.filebulldog.com 0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net 0.0.0.0 inno.bisrv.com 0.0.0.0 nsis.bisrv.com 0.0.0.0 cdn.file2desktop.com 0.0.0.0 cdn.goateastcach.us 0.0.0.0 cdn.guttastatdk.us 0.0.0.0 cdn.inskinmedia.com 0.0.0.0 cdn.insta.oibundles2.com 0.0.0.0 cdn.insta.playbryte.com 0.0.0.0 cdn.llogetfastcach.us 0.0.0.0 cdn.montiera.com 0.0.0.0 cdn.msdwnld.com 0.0.0.0 cdn.mypcbackup.com 0.0.0.0 cdn.ppdownload.com 0.0.0.0 cdn.riceateastcach.us 0.0.0.0 cdn.shyapotato.us 0.0.0.0 cdn.solimba.com 0.0.0.0 cdn.tuto4pc.com 2021-03-19 17:39 - 2021-03-19 17:44 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-2759000147-1505035581-997665020-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg HKU\S-1-5-21-2759000147-1505035581-997665020-1001\Control Panel\Desktop\\Wallpaper -> D:\Images\a trier\belcastel.JPG DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: EpsonScanSvc => 2 MSCONFIG\Services: GamesAppService => 3 MSCONFIG\Services: hmevpnsvc => 3 MSCONFIG\Services: MyEpson Portal Service => 3 MSCONFIG\Services: WindscribeService => 3 HKLM\...\StartupApproved\StartupFolder: => "avast! SecureLine.lnk" HKLM\...\StartupApproved\StartupFolder: => "Who Is On My Wifi.lnk" HKLM\...\StartupApproved\Run: => "NvBackend" HKLM\...\StartupApproved\Run: => "Q-Dir" HKLM\...\StartupApproved\Run: => "ZAM" HKLM\...\StartupApproved\Run32: => "WebStorage" HKLM\...\StartupApproved\Run32: => "mcpltui_exe" HKLM\...\StartupApproved\Run32: => "EEventManager" HKLM\...\StartupApproved\Run32: => "PowerDVD15Agent" HKLM\...\StartupApproved\Run32: => "Dropbox" HKLM\...\StartupApproved\Run32: => "FUFAXRCV" HKLM\...\StartupApproved\Run32: => "FUFAXSTM" HKLM\...\StartupApproved\Run32: => "KeyScrambler" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\StartupFolder: => "hide.me VPN.lnk" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Chromium" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_FB4B6C41C3A40A82E7A0042B51A067AA" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000002" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Free Download Manager" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "SandboxieControl" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "OCCDesktop" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Eye Saver" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Picosmos" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "Windscribe" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "IDMan" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "EPSDNMON" HKU\S-1-5-21-2759000147-1505035581-997665020-1001\...\StartupApproved\Run: => "GoogleDriveFS" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{600FC927-CE72-48C3-AB11-772A69BE3198}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [TCP Query User{C287EEC5-08D0-44AF-AEAE-515067B30E08}C:\program files (x86)\windscribe\wsappcontrol.exe] => (Allow) C:\program files (x86)\windscribe\wsappcontrol.exe (Windscribe Limited -> Windscribe Limited) FirewallRules: [UDP Query User{8914162D-7E63-41EA-9669-997E0FE9B60B}C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [TCP Query User{24044091-506E-4A63-8613-F37A43D73274}C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{43838801-FF52-42EA-A370-6632652B4D3E}] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{727ED057-0063-4CA4-AE63-9B7A647F50D6}] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{2D0976E9-E288-48D6-B3F1-1C4CFAFBCFC7}] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{A2654C9C-3A36-484E-8420-57B1E5CD984B}] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{3C17E113-E452-4FC8-8056-15B4ABFB1869}] => (Allow) D:\program files (x86)\bsd concept\heredis 2019\heredis19.exe (BSD Concept -> BSD Concept) FirewallRules: [{94DACE28-3382-4E43-BD0C-BA229DC67775}] => (Allow) D:\program files (x86)\bsd concept\heredis 2019\heredis19.exe (BSD Concept -> BSD Concept) FirewallRules: [{2AC5FF0A-9B4C-4542-8003-34E3717E5167}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{23579485-C969-47AE-906C-CFE0545F4550}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [UDP Query User{B990515F-02A4-4BFF-ADF9-B65416FC0F34}C:\program files\frostwire 6\frostwire.exe] => (Allow) C:\program files\frostwire 6\frostwire.exe (FrostWire) [Fichier non signé] FirewallRules: [TCP Query User{9E20BFBE-C30B-41AB-A961-FDC1FCBD907E}C:\program files\frostwire 6\frostwire.exe] => (Allow) C:\program files\frostwire 6\frostwire.exe (FrostWire) [Fichier non signé] FirewallRules: [{BA5F3236-3AAA-4D23-A911-A03C7834891B}] => (Allow) C:\Program Files\FrostWire 6\FrostWire.exe (FrostWire) [Fichier non signé] FirewallRules: [{54A72D78-BFBE-4A5C-B181-D0A4D9738E35}] => (Allow) C:\Program Files\FrostWire 6\FrostWire.exe (FrostWire) [Fichier non signé] FirewallRules: [UDP Query User{3337208E-48DD-4BEA-A10E-BBCAFBD11B55}D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [TCP Query User{8114278B-3AC3-4EEB-9AE9-A97E7DF0CFB1}D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{915FA54E-3DF5-48E7-8622-C0E2C3F2E031}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Pas de fichier FirewallRules: [{560277F8-3FA4-4B6F-A24A-F85E4BC8490C}] => (Allow) E:\Network\EpsonNetSetup\ENEasyApp.exe => Pas de fichier FirewallRules: [UDP Query User{CEF6B97D-4364-44E9-BC55-8115E0BE88BC}D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [TCP Query User{22CFD3B0-62BE-42B9-9D9C-65EAE2E27C72}D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe] => (Allow) D:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{E5A29526-305E-4C97-B988-82FA7CA6E4DA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{91E4C005-63BF-4F7F-8520-523F30D5F483}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F1658282-82DE-4785-984B-8A35C9DC4CC6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D47D0E6B-BEE3-49B3-A760-F99F06532514}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{FEE72D8F-4F5C-4018-8C27-D32C61E8CED7}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{7DF71483-4330-4463-BD37-C6BC81F907A4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{8A77DFF0-3AB6-4C0A-BC41-8B4A2862C2D1}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD15Agent.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{FB88ABE2-4777-4896-8FE3-C95CCF9EE167}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\Kernel\DMS\CLMSServerPDVD15.exe (CyberLink Corp. -> CyberLink) FirewallRules: [{B32D3FA2-F797-4822-9C23-E647E02DEBF4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD15\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.) FirewallRules: [{FF2CE3C3-5B75-47C1-AFEA-AA2E1A8F7F27}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (FreeDownloadManager.org) [Fichier non signé] FirewallRules: [{9BDFA4A5-9D2D-4A35-87D8-CA45D1FB9B7B}] => (Allow) C:\Program Files\FreeDownloadManager.ORG\Free Download Manager\fdm.exe (FreeDownloadManager.org) [Fichier non signé] FirewallRules: [{D0AAC877-191F-45E3-877A-903834468799}] => (Allow) C:\Program Files (x86)\FreshDevices\FreshDownload\fd.exe (FreshDevices Corp.) [Fichier non signé] FirewallRules: [{DC3BC4BC-5FDF-481E-8B23-720F96908204}] => (Allow) C:\Program Files (x86)\FreshDevices\FreshDownload\fd.exe (FreshDevices Corp.) [Fichier non signé] FirewallRules: [{8AA3A4CF-42D2-49C4-9C42-10C95E53CB2A}] => (Allow) C:\Program Files (x86)\FreshDevices\FreshDownload\fd.exe (FreshDevices Corp.) [Fichier non signé] FirewallRules: [{8759B8B7-AF9D-4344-AC6D-2A7D4A392C9B}] => (Allow) C:\Program Files (x86)\FreshDevices\FreshDownload\fd.exe (FreshDevices Corp.) [Fichier non signé] FirewallRules: [UDP Query User{96C489E8-B76E-4E7B-BB49-1F838241D991}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe (Trend Media Corporation Limited -> Trend Media Corporation Limited) FirewallRules: [TCP Query User{F487920A-AC78-4964-BB2D-D1CE1A784497}C:\program files (x86)\flashget network\flashget 3\flashget3.exe] => (Allow) C:\program files (x86)\flashget network\flashget 3\flashget3.exe (Trend Media Corporation Limited -> Trend Media Corporation Limited) FirewallRules: [{F4C91C41-52F0-4506-B94B-347084763D89}] => (Allow) C:\Program Files (x86)\Free Download Manager\fdm.exe (Softdeluxe Ltd. -> FreeDownloadManager.ORG) FirewallRules: [{65F04D92-7E7C-40EB-B6EC-4F72EA86127E}] => (Allow) C:\Program Files (x86)\Free Download Manager\fdm.exe (Softdeluxe Ltd. -> FreeDownloadManager.ORG) FirewallRules: [{35E2F797-D581-4240-997E-6434FE909E8F}] => (Allow) C:\Program Files (x86)\Free Download Manager\fdm.exe (Softdeluxe Ltd. -> FreeDownloadManager.ORG) FirewallRules: [{6F62DE7A-172C-4D68-8743-071A326D3215}] => (Allow) C:\Program Files (x86)\Free Download Manager\fdm.exe (Softdeluxe Ltd. -> FreeDownloadManager.ORG) FirewallRules: [UDP Query User{74998C84-9DC9-4343-9851-ED51C6ED0892}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger) FirewallRules: [TCP Query User{0EC7315D-46DD-41D3-83F7-F6BCFB52DEB1}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe (Franz Josef Wechselberger -> F.J. Wechselberger) FirewallRules: [TCP Query User{6F8F8BD9-EE54-461B-BAC2-ED64DD5B2090}D:\program files (x86)\bsd concept\heredis 2019\heredis19.exe] => (Allow) D:\program files (x86)\bsd concept\heredis 2019\heredis19.exe (BSD Concept -> BSD Concept) FirewallRules: [UDP Query User{60BBA9C4-2D5A-4D19-8EDC-5CF4776654D3}D:\program files (x86)\bsd concept\heredis 2019\heredis19.exe] => (Allow) D:\program files (x86)\bsd concept\heredis 2019\heredis19.exe (BSD Concept -> BSD Concept) FirewallRules: [{DCBA08DB-D750-4B46-AB45-88287AE43913}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7B37B890-C7FA-4931-BE00-62C8F23B0B1C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{CDA7AD7D-A0B6-4A84-B363-29158FF73208}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [UDP Query User{7E0B79B9-B92C-4D14-8E0D-BF2EB36BDB4A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files (x86)\epson software\event manager\eeventmanager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{7626C826-E4E0-4316-BF4D-59EF808E9868}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{132721E7-B7C9-48D6-B49E-FBAB0B89F8AD}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{D310FC0C-FF1B-4AE0-97F0-C7DF656A9325}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{EF800E68-08AA-489C-AAEF-28900E263BF0}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{89177752-B0EA-4B17-A7DB-0EF2CD792E0F}C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [UDP Query User{7D9F25F9-766D-4919-A5E1-2673EC7EA3DF}C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2021\heredis21.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [TCP Query User{C0F760F9-F04B-4B5D-B04A-DAF8DDBED942}C:\program files (x86)\bsd concept\heredis 2022\heredis22.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2022\heredis22.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [UDP Query User{D15C7C0C-A557-4303-B4BA-5F2B2B5B7E8A}C:\program files (x86)\bsd concept\heredis 2022\heredis22.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2022\heredis22.exe (HEREDIS S.C.O.P -> Heredis) FirewallRules: [{A0704655-FFE9-4587-AB10-37C122CBC527}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B3EDEE51-AC8F-4D1A-B934-FA1C3D443932}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0DF0BE7F-B6C6-4709-A821-3EE514A13495}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D4B1CFD1-D517-4358-83C9-2D77E48DB37C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{B5E6C67B-3511-458A-BC8C-DEB0123E1A8B}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe] => Enabled:Flashget3 ==================== Points de restauration ========================= 19-10-2021 06:49:16 Programme d’installation pour les modules Windows 01-11-2021 10:28:31 "01/11/2021 ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/04/2021 09:07:14 AM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Heredis22.exe version 22.1.0.1 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 1380 Heure de début : 01d7d14608f764ef Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Program Files (x86)\BSD Concept\Heredis 2022\Heredis22.exe ID de rapport : dfe6a8d5-0cbe-4255-9d66-13063ca9a9ed Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Top level window is idle Error: (11/04/2021 07:56:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Heredis22.exe, version : 22.1.0.1, horodatage : 0x00000000 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000409 Décalage d’erreur : 0x259dce18 ID du processus défaillant : 0x2db0 Heure de début de l’application défaillante : 0x01d7d145e69c9d6f Chemin d’accès de l’application défaillante : C:\Program Files (x86)\BSD Concept\Heredis 2022\Heredis22.exe Chemin d’accès du module défaillant: unknown ID de rapport : 2818d44d-8f34-4122-9ce1-8125ae3aa68d Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (11/04/2021 07:32:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname PC-JPC.local already in use; will try PC-JPC-2.local instead Error: (11/04/2021 07:32:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 PC-JPC.local. Addr 192.168.1.13 Error: (11/04/2021 07:32:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.13:5353 16 PC-JPC.local. AAAA 2A01:CB1D:8AEC:6700:B850:7A56:9357:5BD4 Error: (11/04/2021 07:32:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 16 PC-JPC.local. AAAA FE80:0000:0000:0000:B46C:0BE9:2EAD:C065 Error: (11/04/2021 07:32:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 16 PC-JPC.local. AAAA 2A01:CB1D:8AEC:6700:8505:A49C:8E9E:7ED6 Error: (11/04/2021 07:32:24 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Ignoring response received before we even began probing: 16 PC-JPC.local. AAAA 2A01:CB1D:8AEC:6700:B46C:0BE9:2EAD:C065 Erreurs système: ============= Error: (11/03/2021 01:38:44 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Mozilla Maintenance Service s’est arrêté avec l’erreur : Fonction incorrecte. Error: (11/03/2021 10:14:40 AM) (Source: DCOM) (EventID: 10010) (User: PC-JPC) Description: Le serveur {94269C4E-071A-4116-90E6-52E557067E4E} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2021 07:03:47 PM) (Source: DCOM) (EventID: 10010) (User: PC-JPC) Description: Le serveur microsoft.windowscommunicationsapps_16005.14326.20544.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/02/2021 06:55:52 PM) (Source: DCOM) (EventID: 10010) (User: PC-JPC) Description: Le serveur {F9717507-6651-4EDB-BFF7-AE615179BCCF} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/01/2021 11:10:13 AM) (Source: DCOM) (EventID: 10000) (User: PC-JPC) Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur « 2147942767 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (11/01/2021 11:06:56 AM) (Source: DCOM) (EventID: 10000) (User: PC-JPC) Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur « 2147942767 » s’est produite lors du démarrage de la commande : C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} Error: (11/01/2021 10:30:37 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service PDFsam Enhanced 7 s’est terminé de façon inattendue pour la 1ème fois. Error: (11/01/2021 09:34:42 AM) (Source: disk) (EventID: 11) (User: ) Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1. Windows Defender: ================ Date: 2021-11-04 11:40:00 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {B2B881FE-79AC-4D94-AA29-E8B934C5D6D8} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-11-04 11:14:40 Description: L'accès contrôlé aux dossiers a empêché C:\Users\cash\AppData\Local\Temp\_iu14D2N.tmp de modifier la mémoire. Heure de détection : 2021-11-04T10:14:40.227Z Utilisateur : PC-JPC\cash Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Users\cash\AppData\Local\Temp\_iu14D2N.tmp Version de la veille de sécurité : 1.353.389.0 Version du moteur : 1.1.18700.4 Version du produit : 4.18.2110.6 Date: 2021-11-04 11:07:04 Description: L'accès contrôlé aux dossiers a empêché C:\Program Files\Diag\Diag64.exe de modifier la mémoire. Heure de détection : 2021-11-04T10:07:04.066Z Utilisateur : PC-JPC\cash Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Program Files\Diag\Diag64.exe Version de la veille de sécurité : 1.353.389.0 Version du moteur : 1.1.18700.4 Version du produit : 4.18.2110.6 Date: 2021-11-04 11:06:38 Description: L'accès contrôlé aux dossiers a empêché C:\Users\cash\AppData\Local\Temp\is-S9FFI.tmp\Diag_setup.tmp de modifier la mémoire. Heure de détection : 2021-11-04T10:06:38.669Z Utilisateur : PC-JPC\cash Chemin d'accès : \Device\Harddisk0\DR0 Nom du processus : C:\Users\cash\AppData\Local\Temp\is-S9FFI.tmp\Diag_setup.tmp Version de la veille de sécurité : 1.353.389.0 Version du moteur : 1.1.18700.4 Version du produit : 4.18.2110.6 Date: 2021-11-04 08:40:01 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {10F6FC1B-17A4-4B99-A0A4-9B2DAB6DE701} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2021-11-02 07:05:41 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\WaaSMedicAgent.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll that did not meet the Microsoft signing level requirements. Date: 2021-10-16 22:33:11 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cdrom.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-10-16 22:33:08 Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\cimfs.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source. Date: 2021-10-14 18:18:34 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll that did not meet the Microsoft signing level requirements. Date: 2021-10-14 18:18:33 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\dllhost.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. X555LJ.603 02/19/2019 Carte mère: ASUSTeK COMPUTER INC. X555LJ Processeur: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz Pourcentage de mémoire utilisée: 59% Mémoire physique - RAM - totale: 8094.33 MB Mémoire physique - RAM - disponible: 3272.13 MB Mémoire virtuelle totale: 10190.09 MB Mémoire virtuelle disponible: 4565.75 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:371.46 GB) (Free:216.6 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (DATA) (Fixed) (Total:558.91 GB) (Free:144.29 GB) NTFS \\?\Volume{4c1ec997-0aca-42da-bb47-3bca712a34ed}\ () (Fixed) (Total:0.88 GB) (Free:0.38 GB) NTFS \\?\Volume{d63f5a10-fed6-4d52-95fd-4e2b4f00ac2c}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: C9DEDFC5) Partition: GPT. ==================== Fin de Addition.txt =======================