Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-11-2021 Exécuté par Anthony (21-11-2021 16:55:56) Exécuté depuis C:\Users\jeann\OneDrive\Bureau Microsoft Windows 10 Professionnel Version 21H1 19043.1348 (X64) (2020-11-16 19:07:26) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1020524199-3411935137-1089394653-500 - Administrator - Disabled) Anthony (S-1-5-21-1020524199-3411935137-1089394653-1001 - Administrator - Enabled) => C:\Users\jeann DefaultAccount (S-1-5-21-1020524199-3411935137-1089394653-503 - Limited - Disabled) Invité (S-1-5-21-1020524199-3411935137-1089394653-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1020524199-3411935137-1089394653-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov) 8GadgetPack (HKLM-x32\...\{9004136E-78D3-46A4-893C-C4E38D871243}) (Version: 34.0.0 - 8GadgetPack.net) Amazon Photos (HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Amazon Photos) (Version: 7.11.0 - Amazon.com, Inc.) Antidote - Connectix 11 (HKLM\...\{2643823D-D15F-4046-8388-401756A5C924}) (Version: 11.1.577 - Druide informatique inc.) Antidote 11 - Module français (HKLM\...\{2643823D-D15F-4046-8388-401756A5C922}) (Version: 11.1.577 - Druide informatique inc.) Antidote 11 (HKLM\...\{2643823D-D15F-4046-8388-401756A5C921}) (Version: 11.1.577 - Druide informatique inc.) AntiLogger Free version 1.8.2.320 (HKLM-x32\...\{A80DB23D-0618-405B-89D9-28F99814E287}_is1) (Version: 1.8.2.320 - Zemana Ltd.) Assistant de téléchargement (HKLM-x32\...\{93154A3C-9BB7-49D7-A571-4EB6373FA602}) (Version: 6.71.0 - Druide informatique inc.) Atomic Alarm Clock 6.3 beta (HKLM\...\Atomic Alarm Clock_is1) (Version: - Drive Software Company) Authy Desktop (HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\authy) (Version: 1.8.3 - Twilio Inc.) CHIRP (HKLM-x32\...\CHIRP) (Version: - ) Contrôle d’intégrité du PC Windows (HKLM\...\{CBB95100-24B2-4F7A-A7ED-9AB0FD0E0ADA}) (Version: 2.1.2106.23002 - Microsoft Corporation) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1762 - Disc Soft Ltd) Documentation Manager (HKLM\...\{54DD759A-9483-403E-9411-460E109FFBAA}) (Version: 22.70.0.6 - Intel Corporation) Hidden Dolby Audio X2 Windows API SDK (HKLM\...\{F290F786-5F69-48D4-B20B-D21C7DE56EF0}) (Version: 0.8.8.88 - Dolby Laboratories, Inc.) DriversCloud.com (HKLM\...\{0337BFA9-63C1-41A6-BB12-85690990C119}) (Version: 11.0.3.0 - Cybelsoft) Dropbox (HKLM-x32\...\Dropbox) (Version: 136.3.4333 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.547.1 - Dropbox, Inc.) Hidden Dynamic Application Loader Host Interface Service (HKLM\...\{A28339C8-E641-4CCE-A316-56F405D1C245}) (Version: 1.0.0.0 - Intel Corporation) Hidden Everything 1.4.1.1009 (x64) (HKLM\...\Everything) (Version: 1.4.1.1009 - voidtools) f.lux (HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\Flux) (Version: - f.lux Software LLC) foobar2000 v1.6.7 (HKLM-x32\...\foobar2000) (Version: 1.6.7 - Peter Pawlowski) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 52.0.6.0 - Google LLC) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.45 - Google LLC) Hard Disk Sentinel (HKLM-x32\...\Hard Disk Sentinel_is1) (Version: 5.61 - Janos Mathe) HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version: - EFD Software) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 2117.15.0.2272 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{246c6cc0-9810-4728-9a29-28474de2eec5}) (Version: 1.47.866.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00002090-0220-1036-84C8-B8D95FA3C8C3}) (Version: 22.90.2.1 - Intel Corporation) Intel® Software Installer (HKLM-x32\...\{a340629d-ba1c-4e33-bbf5-32354a545624}) (Version: 22.20.0.6 - Intel Corporation) Hidden Intel® Software Installer (HKLM-x32\...\{f4e29277-b55f-4541-8e0e-ca8bd8b76666}) (Version: 22.70.0.6 - Intel Corporation) Hidden Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.39.8 - Tonec Inc.) KMPlayer 64X (remove only) (HKLM\...\KMPlayer 64X) (Version: 2021.10.26.03 - PandoraTV) Last.fm Scrobbler 2.1.37 (HKLM-x32\...\LastFM_is1) (Version: - Last.fm) Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0131 - Lenovo) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{a2167b7c-e567-4ae5-9c88-8e1349a01363}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech) Malwarebytes version 4.4.7.134 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.7.134 - Malwarebytes) MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited) Microsoft .NET Runtime - 5.0.10 (x64) (HKLM-x32\...\{a5d9614c-78d2-4d81-8f74-5dfea9206cc6}) (Version: 5.0.10.30412 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 95.0.1020.53 - Microsoft Corporation) Microsoft Encarta 2009 - Études (HKLM-x32\...\{09181881-2C94-4A67-8E55-8483C019C7D2}) (Version: 2009 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14527.20276 - Microsoft Corporation) Microsoft OneDrive (HKLM-x32\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 5.0.12 (x64) (HKLM-x32\...\{ce8037d8-35f7-4142-ad18-23609ac5db17}) (Version: 5.0.12.30623 - Microsoft Corporation) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 94.0.2 (x64 fr)) (Version: 94.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 94.0.2 - Mozilla) MPC-HC 1.9.17 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.17 - MPC-HC Team) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.1.9.1 - Notepad++ Team) NoVirusThanks OSArmor v1.4.3 (HKLM\...\NoVirusThanks OSArmor_is1) (Version: 1.4.3.0 - NoVirusThanks Company Srl) OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.1.3 - OBS Project) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14527.20276 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.14527.20234 - Microsoft Corporation) Hidden OnionShare (HKLM-x32\...\{E713ACA1-9E17-478B-9399-B64BA7EA2DD0}) (Version: 2.4.0 - Micah Lee) Open-Shell (HKLM\...\{F4B6EE58-F183-4B0D-930B-4480673C0F5B}) (Version: 4.4.160 - The Open-Shell Team) Oracle VM VirtualBox 6.1.28 (HKLM\...\{472109C5-C7CB-4639-BF8E-89A0B70A6116}) (Version: 6.1.28 - Oracle Corporation) PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.322.10 - Tracker Software Products Ltd) Purebreaker 2 version 1.0 (HKLM-x32\...\Purebreaker 2 - Evolution_is1) (Version: - BGAMES) qBittorrent 4.3.9 (HKLM-x32\...\qBittorrent) (Version: 4.3.9 - The qBittorrent project) Rainlendar2 (remove only) (HKLM-x32\...\Rainlendar2) (Version: 2.17.1 - Rainy) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.188 - Realtek Semiconductor Corp.) Ri-li (HKLM-x32\...\Ri-li) (Version: - ) RomStation 2.1 (HKLM\...\{21E12B32-85E3-4B4E-BFB1-0190A01CAE34}_is1) (Version: 2.1 - RomStation) RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden Sentinel Protection Installer 7.6.6 (HKLM-x32\...\{8C2218AC-D1B1-4530-9E67-15164E0E52AB}) (Version: 7.6.6 - SafeNet, Inc.) ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.6.1 - ShareX Team) Signal 5.15.0 (HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\7d96caee-06e6-597c-9f2f-c7bb2e0948b4) (Version: 5.15.0 - Open Whisper Systems) simplewall (HKLM\...\simplewall) (Version: 3.6.1 - Henry++) SpyShelter Free 12.5 (HKLM\...\Spyshelter_is1) (Version: 12.5 - Datpol) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Synology Cloud Station Backup (HKLM-x32\...\{7ADEB4D5-4DFC-4C8D-B987-6D05F8D39CE9}) (Version: 4.3.3.4469 - Synology) Synology Drive Client (HKLM-x32\...\{EBADDBB2-ED88-4FCA-9909-9D12A0EC95DD}) (Version: 6.0.2.11078 - Synology) TallowBundle (HKLM-x32\...\Tallow) (Version: - ) VirtualBox OSE Guest Additions-signed 3.2.12-0 (HKLM-x32\...\VBoxOSEGuest) (Version: - ) VirusTotal Uploader 2.2 (HKLM-x32\...\VTUploader) (Version: - ) Visual Pinball (HKLM-x32\...\{B36C4994-A563-4339-8754-CCCE51314A4C}) (Version: 0.0.4.1226 - Randy Davis) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN) Watchtower Library - Français (HKLM-x32\...\{D17C5B85-FEA3-493D-97EE-E27C2E09908C}) (Version: 19.0 - Watchtower Bible and Tract Society of Pennsylvania, Inc.) WhatsApp (HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\WhatsApp) (Version: 2.2144.11 - WhatsApp) WhoCrashed 6.70 (HKLM\...\WhoCrashed_is1) (Version: - Resplendence Software Projects Sp.) WireGuard (HKLM\...\{464F54CC-7644-440F-928A-FFD48A9C5968}) (Version: 0.5.2 - WireGuard LLC) Youtube-DLG version 0.4 (HKLM-x32\...\{3C455028-FC99-4846-8E04-4FCD87D85613}_is1) (Version: 0.4 - Sotiris Papadopoulos) Zoom (HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\ZoomUMX) (Version: 5.8.4 (1736) - Zoom Video Communications, Inc.) Packages: ========= Amazon Music -> C:\Program Files\WindowsApps\AmazonMobileLLC.AmazonMusic_8.8.2.0_x86__kc6t79cpj4tp0 [2021-11-21] (AMZN Mobile LLC) Amazon Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.82.0_x64__pwbj9vvecjh7j [2021-11-03] (Amazon Development Centre (London) Ltd) Audible - Livres audio à télécharger -> C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.67.0_x64__xns73kv1ymhp2 [2021-06-14] (Audible Inc) Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-11-21] (INTEL CORP) [Startup Task] Dictionary. -> C:\Program Files\WindowsApps\Farlex.581429F59E1D8_6.1.1.0_x64__wyegy4e46y996 [2021-01-31] (Farlex) [MS Ad] IDM Integration Module -> C:\Program Files\WindowsApps\TonecInc.IDMIntegrationModule_6.38.19.0_neutral__e7b5mm5d3r6v2 [2021-04-13] (Tonec FZE) Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1020.0_x64__8j3eq9eme6ctt [2021-10-25] (INTEL CORP) JW Language -> C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.JWLanguage_2.7.331.0_x64__5rz59y55nfz3e [2021-08-12] (Watchtower Bible and Tract Society of New York) JW Library -> C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.5.47.0_x64__5rz59y55nfz3e [2021-10-16] (Watchtower Bible and Tract Society of New York) Kate -> C:\Program Files\WindowsApps\KDEe.V.Kate_21.400.1267.0_x64__7vt06qxq7ptv8 [2021-05-08] (KDE e.V.) Kiwix JS -> C:\Program Files\WindowsApps\Kiwix.KiwixJS_1.7.8.0_neutral__mc3511b08yc0e [2021-11-05] (Kiwix) Les Échecs Lv.100 -> C:\Program Files\WindowsApps\6918E89D.THECHESSLV.100_1.3.8.0_x64__66n08swfvvka0 [2021-08-12] (UNBALANCE corp.) [MS Ad] Marmiton -> C:\Program Files\WindowsApps\aufeminin.com.Marmiton_1.1.0.49_neutral__mkpeb3b5nmday [2020-11-27] (aufeminin.com) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-11-16] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-11-16] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-11-02] (Microsoft Studios) [MS Ad] myCANAL -> C:\Program Files\WindowsApps\CANALGroupe.CANALTOUCH_4.4.7.0_x64__4d0jsvmsaqz2m [2021-11-15] (Groupe Canal +) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-11-26] (Netflix, Inc.) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0 [2021-11-14] (Spotify AB) [Startup Task] TuneIn Radio -> C:\Program Files\WindowsApps\TuneIn.TuneInRadio_4.0.7.0_x64__6bhtb546zcxnj [2021-06-14] (TuneIn) [MS Ad] yTwitch for Twitch.tv -> C:\Program Files\WindowsApps\42731GoodMediaGroup.VidsTokforTwitchGamingLiveStre_1.1.24.0_x64__wzw6dymc89v9p [2021-06-19] (Good Media Group) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\jeann\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\jeann\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{20894375-46AE-46E2-BAFD-CB38975CDCE6}\InprocServer32 -> C:\Users\jeann\AppData\Local\Microsoft\OneDrive\21.160.0808.0002\FileSyncShell64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll () [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{38626B40-64E1-4F8C-AEDA-CFF32F38602E}\localserver32 -> "C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\AgentAntidote.exe" -activex => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{47E6DCAF-41F8-441C-BD0E-A50D5FE6C4D1}\localserver32 -> "C:\Users\jeann\AppData\Local\Microsoft\OneDrive\21.160.0808.0002\Microsoft.SharePoint.exe" => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> "C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe" -activex => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> "C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe" -activex => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{917E8742-AA3B-7318-FA12-10485FB322A2}\localserver32 -> "C:\Users\jeann\AppData\Local\Microsoft\OneDrive\21.160.0808.0002\Microsoft.SharePoint.exe" => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.) CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> "C:\Program Files (x86)\Druide\Antidote 9\Application\Bin64\Antidote.exe" -activex => Pas de fichier CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll (TODO: ) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{E107ADEE-4622-42B4-A339-D94B76EBDE80} -> [Synology Drive - DiskStation] => C:\Users\jeann\AppData\Local\SynologyDrive\SystemFolders\1 [2021-05-30 13:12] CustomCLSID: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [dropbox-NamespaceExtensionRole.Personal] => C:\Users\jeann\Dropbox [2021-05-26 15:36] ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2021-03-03] (Tonec Inc. -> Tonec FZE) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-05-30] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-05-30] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-05-30] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-05-30] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll [2021-05-30] (TODO: ) [Fichier non signé] ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2020-09-26] (Open-Shell) [Fichier non signé] ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2020-09-26] (Open-Shell) [Fichier non signé] ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-11-13] (Notepad++ -> ) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\jeann\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-14] (Mega Limited -> ) ContextMenuHandlers1: [SpyshelterExt] -> {030D32F7-BF26-40a2-AB44-A34E78908701} => C:\WINDOWS\system32\SpyShelterShellExt.dll [2019-10-23] (Datpol Janusz Siemienowicz -> Datpol) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-09-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\jeann\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-14] (Mega Limited -> ) ContextMenuHandlers2: [SpyshelterExt] -> {030D32F7-BF26-40a2-AB44-A34E78908701} => C:\WINDOWS\system32\SpyShelterShellExt.dll [2019-10-23] (Datpol Janusz Siemienowicz -> Datpol) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2021-09-16] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-10] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\jeann\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-14] (Mega Limited -> ) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\jeann\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-14] (Mega Limited -> ) ContextMenuHandlers4: [SpyshelterExt] -> {030D32F7-BF26-40a2-AB44-A34E78908701} => C:\WINDOWS\system32\SpyShelterShellExt.dll [2019-10-23] (Datpol Janusz Siemienowicz -> Datpol) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files (x86)\Microsoft OneDrive\21.030.0211.0002\amd64\FileSyncShell64.dll [2021-09-17] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\52.0.6.0\drivefsext.dll [2021-10-18] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.51.0.dll [2021-10-01] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-12-10] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2020-09-26] (Open-Shell) [Fichier non signé] ContextMenuHandlers1_S-1-5-21-1020524199-3411935137-1089394653-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll [2021-05-30] () [Fichier non signé] ContextMenuHandlers6_S-1-5-21-1020524199-3411935137-1089394653-1001: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll [2021-05-30] () [Fichier non signé] ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\jeann\OneDrive\Bureau\Google Drive.lnk -> C:\Program Files\Google\Drive File Stream\launch.bat () ShortcutWithArgument: C:\Users\jeann\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Chrome Connectivity Diagnostics.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eemlkeanncmjljgehlbplemhmdmalhdc ==================== Modules chargés (Avec liste blanche) ============= 2020-09-02 11:26 - 2020-09-02 11:26 - 000766464 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\avcodec-fb2k-58.dll 2020-09-02 11:26 - 2020-09-02 11:26 - 000598016 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\avutil-fb2k-56.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000275968 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_albumlist.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000208384 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_cdda.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000549888 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_converter.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000232448 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_dsp_eq.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000206336 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_dsp_std.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000244736 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_fileops.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000182784 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_freedb2.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 001390080 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_input_std.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000288768 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_rgscan.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 001070080 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_ui_std.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000408064 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_unpack.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000023040 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\PP-UWP-Interop.dll 2021-08-09 14:53 - 2021-08-09 14:53 - 000115712 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\shared.dll 2019-12-02 10:45 - 2019-12-02 10:45 - 000071680 _____ () [Fichier non signé] C:\Program Files (x86)\foobar2000\zlib1.dll 2020-11-17 18:19 - 2016-08-09 12:57 - 001886720 _____ () [Fichier non signé] C:\Program Files\Atomic Alarm Clock\Clock.dll 2021-06-14 13:10 - 2021-06-14 13:10 - 040403968 _____ () [Fichier non signé] C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.67.0_x64__xns73kv1ymhp2\AudibleRT.WindowsPhone.dll 2021-06-14 13:10 - 2021-06-14 13:10 - 000052224 _____ () [Fichier non signé] C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.67.0_x64__xns73kv1ymhp2\AudibleSystemFileWrapperRT.dll 2019-12-07 15:56 - 2019-12-07 15:56 - 001123840 _____ () [Fichier non signé] C:\Program Files\WindowsApps\AudibleInc.AudibleforWindowsPhone_10.5.67.0_x64__xns73kv1ymhp2\e_sqlite3.dll 2020-06-27 19:15 - 2020-06-27 19:19 - 001194496 _____ () [Fichier non signé] C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.5.47.0_x64__5rz59y55nfz3e\e_sqlite3.dll 2021-07-07 10:06 - 2021-07-07 10:06 - 000302592 _____ () [Fichier non signé] C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.5.47.0_x64__5rz59y55nfz3e\libsodium.dll 2021-07-07 10:06 - 2021-07-07 10:06 - 006433792 _____ () [Fichier non signé] C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.5.47.0_x64__5rz59y55nfz3e\realm-wrappers.dll 2021-07-14 09:40 - 2021-07-13 07:09 - 000014848 _____ () [Fichier non signé] C:\Users\jeann\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\AccentColor.64.dll 2021-05-30 13:15 - 2021-05-30 13:15 - 001367552 _____ () [Fichier non signé] C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\ContextMenu.dll 2021-05-30 13:15 - 2021-05-30 13:15 - 000198144 _____ () [Fichier non signé] C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\WinCFWrapper.dll 2020-11-23 19:13 - 2019-03-11 19:32 - 000188928 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_abx\foo_abx.dll 2020-11-25 18:16 - 2020-04-11 05:21 - 000683520 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_discogs\foo_discogs.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000507904 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_dsp_effect\foo_dsp_effect.dll 2020-11-25 18:16 - 2008-07-13 02:49 - 000310272 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_dsp_eqsplit\foo_dsp_eqsplit.dll 2020-11-25 18:16 - 2019-10-06 18:47 - 000040448 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_dsp_fadeinout\foo_dsp_fadeinout.dll 2021-01-18 17:15 - 2020-09-18 01:10 - 000208384 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_enhanced_playcount\foo_enhanced_playcount.dll 2020-11-25 18:16 - 2020-09-20 16:53 - 000707584 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_external_tags\foo_external_tags.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 001767936 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_facets\foo_facets.dll 2020-11-23 19:13 - 2020-08-08 17:52 - 000570880 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_input_adplug\foo_input_adplug.dll 2021-01-18 17:15 - 2021-01-16 15:16 - 000174592 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_input_vio2sf\foo_input_vio2sf.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000090624 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_jesus\foo_jesus.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000049152 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_keep_queue\foo_keep_queue.dll 2020-11-25 18:08 - 2010-01-07 19:57 - 000084992 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_lnk\foo_lnk.dll 2020-11-23 19:13 - 2019-08-07 17:15 - 000238080 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_masstag\foo_masstag.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000107008 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_np_remove\foo_np_remove.dll 2020-11-25 18:16 - 2020-11-10 14:45 - 000667136 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_pd_aac\foo_pd_aac.dll 2020-11-25 18:16 - 2011-05-04 15:14 - 000169984 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_playlisthistory\foo_playlisthistory.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000171008 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_plorg\foo_plorg.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000209408 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_random_pools\foo_random_pools.dll 2020-11-25 18:08 - 2010-04-21 15:03 - 000093696 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_seek_box\foo_seek_box.dll 2020-11-25 18:08 - 2011-08-18 20:01 - 001334272 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_simplaylist\foo_simplaylist.dll 2020-11-25 18:08 - 2011-08-18 20:03 - 000868352 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_simplaylist_manager\foo_simplaylist_manager.dll 2021-01-18 17:15 - 2020-11-29 13:15 - 000161792 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_skip\foo_skip.dll 2020-11-23 19:13 - 2017-08-09 20:23 - 001551872 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_sqlite\foo_sqlite.dll 2020-11-25 18:16 - 2015-10-04 17:40 - 000157184 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_trackpos\foo_trackpos.dll 2020-11-23 19:13 - 2019-04-26 14:58 - 000219648 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_ui_classic\foo_ui_classic.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000419840 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_uie_esplaylist\foo_uie_esplaylist.dll 2020-11-23 19:34 - 2016-03-18 16:04 - 000730112 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_uie_lyrics3\foo_uie_lyrics3.dll 2020-11-25 18:16 - 2020-07-02 11:34 - 000261632 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_verifier\foo_verifier.dll 2020-11-16 20:27 - 2020-11-16 20:27 - 000242176 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_vis_shpeck\foo_vis_shpeck.dll 2020-11-25 18:08 - 2009-11-07 13:57 - 001874432 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_vorbisstream\foo_vorbisstream.dll 2020-11-25 18:16 - 2014-08-09 00:37 - 000251392 _____ () [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_whatsnew\foo_whatsnew.dll 2021-01-18 17:15 - 2020-12-17 16:47 - 006946304 _____ (3DYD Soft) [Fichier non signé] C:\Users\jeann\AppData\Roaming\foobar2000\user-components\foo_youtube\foo_youtube.dll 2021-07-14 09:37 - 2021-07-13 07:45 - 000662528 _____ (Helmut Buhler) [Fichier non signé] C:\Program Files\Windows Sidebar\dwmapi.dll 2021-07-14 09:40 - 2021-04-10 08:29 - 000485376 _____ (Helmut Buhler) [Fichier non signé] C:\Users\jeann\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll 2020-11-16 20:12 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2021-10-19 15:21 - 2021-10-19 15:22 - 042803200 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt\IGCC.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000353248 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\lastfm.dll 2020-11-16 20:24 - 2015-04-20 01:59 - 000113120 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\libvlc.dll 2020-11-16 20:24 - 2015-04-20 01:59 - 002288608 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\libvlccore.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000128992 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\listener.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000034784 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\logger.dll 2020-11-16 20:24 - 2015-04-20 01:59 - 000304608 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\phonon.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000051680 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\plugins\audio_output\libaout_directx_plugin.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000184800 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\plugins\phonon_backend\phonon_vlc.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000738784 _____ (Last.fm Limited -> ) [Fichier non signé] C:\Program Files (x86)\Last.fm\unicorn.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000417248 _____ (Last.fm Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Last.fm\MSVCP100.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000764896 _____ (Last.fm Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Last.fm\MSVCR100.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000028640 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\plugins\imageformats\qgif4.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000203232 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\plugins\imageformats\qjpeg4.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000224224 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\plugins\imageformats\qmng4.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 002578400 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\QtCore4.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 008573408 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\QtGui4.dll 2020-11-16 20:24 - 2015-04-20 01:59 - 001054176 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\QtNetwork4.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 013112288 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\QtWebKit4.dll 2020-11-16 20:24 - 2015-04-20 01:59 - 000357856 _____ (Last.fm Limited -> Nokia Corporation and/or its subsidiary(-ies)) [Fichier non signé] C:\Program Files (x86)\Last.fm\QtXml4.dll 2020-11-16 20:24 - 2015-04-20 01:59 - 001158112 _____ (Last.fm Limited -> The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Last.fm\LIBEAY32.dll 2020-11-16 20:24 - 2015-04-20 02:00 - 000267232 _____ (Last.fm Limited -> The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Last.fm\ssleay32.dll 2020-11-16 23:11 - 2012-08-20 14:49 - 000200704 _____ (Last.fm) [Fichier non signé] C:\Program Files (x86)\foobar2000\components\foo_audioscrobbler.dll 2001-06-20 17:14 - 2001-06-20 17:14 - 000188416 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\itircl54.dll 2001-06-20 17:26 - 2001-06-20 17:26 - 000221184 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll 2008-05-28 11:35 - 2008-05-28 11:35 - 000033792 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Microsoft Etudes\Microsoft Encarta 2009 - Études DVD\custsat.dll 2021-07-14 09:38 - 2012-05-19 05:16 - 000083456 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files\Windows Sidebar\sbdrop.dll 2020-11-18 13:19 - 2020-11-18 13:19 - 001093632 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.42_none_d6c3e7af9bae13a2\MFC80.DLL 2020-11-18 13:19 - 2020-11-18 13:19 - 000061440 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.42_none_0e9c2a8d74fd3ce6\MFC80FRA.DLL 2021-09-17 13:36 - 2021-09-17 13:36 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll 2021-09-17 13:36 - 2021-09-17 13:36 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll 2020-09-26 12:47 - 2020-09-26 12:47 - 002659328 _____ (Open-Shell) [Fichier non signé] C:\Program Files\Open-Shell\StartMenuDLL.dll 2020-09-26 12:48 - 2020-09-26 12:48 - 000562688 _____ (Open-Shell) [Fichier non signé] C:\WINDOWS\system32\StartMenuHelper64.dll 2013-01-09 00:03 - 2013-01-09 00:03 - 000221184 _____ (SafeNet, Inc.) [Fichier non signé] C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\MD5CHAP.dll 2020-04-28 04:05 - 2020-04-28 04:05 - 006164600 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] C:\Users\jeann\AppData\Local\MEGAsync\Qt5Core.dll 2021-05-30 13:15 - 2021-05-30 13:15 - 002822144 _____ (TODO: ) [Fichier non signé] C:\Users\jeann\AppData\Local\SynologyDrive\SynologyDrive.app\icon-overlay\22\x64\iconOverlay.dll 2020-11-17 18:19 - 2013-02-19 18:16 - 000223744 _____ (Un4seen Developments) [Fichier non signé] C:\Program Files\Atomic Alarm Clock\bass.dll 2021-10-16 08:41 - 2021-10-16 08:41 - 039764992 _____ (Watch Tower Bible and Tract Society of Pennsylvania) [Fichier non signé] C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_12.5.47.0_x64__5rz59y55nfz3e\JWLibrary.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\jeann\Downloads\Anti-Hacker_Tool_Kit__Fourth_Edition.pdf:$CmdZnID [26] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC SearchScopes: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR SearchScopes: HKU\S-1-5-21-1020524199-3411935137-1089394653-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-12-12] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Open-Shell\ClassicExplorer64.dll [2020-09-26] (Open-Shell) [Fichier non signé] BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Open-Shell\ClassicIEDLL_64.dll [2020-09-26] (Open-Shell) [Fichier non signé] BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-12-12] (Tonec Inc. -> Internet Download Manager, Tonec Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Open-Shell\ClassicExplorer32.dll [2020-09-26] (Open-Shell) [Fichier non signé] BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Open-Shell\ClassicIEDLL_32.dll [2020-09-26] (Open-Shell) [Fichier non signé] Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Open-Shell\ClassicExplorer64.dll [2020-09-26] (Open-Shell) [Fichier non signé] Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Open-Shell\ClassicExplorer32.dll [2020-09-26] (Open-Shell) [Fichier non signé] Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-11-01] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2020-11-16 19:39 - 2021-06-11 14:14 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost 2021-02-10 11:20 - 2021-02-18 17:02 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\WireGuard\;C:\Program Files\dotnet\ HKCU\Environment\\Path -> %USERPROFILE%\AppData\Local\Microsoft\WindowsApps HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\Control Panel\Desktop\\Wallpaper -> g:\img\couv. fcbk\28295-1920x1080.jpg DNS Servers: 77.88.8.7 - 77.88.8.3 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\StartupFolder: => "FxSound.lnk" HKLM\...\StartupApproved\Run: => "Malwarebytes Windows Firewall Control" HKLM\...\StartupApproved\Run32: => "NextDNS" HKLM\...\StartupApproved\Run32: => "KeyScrambler" HKLM\...\StartupApproved\Run32: => "HeimdalAgentLoader" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\StartupFolder: => "Moo0 Audio Recorder 1.49.lnk" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\StartupFolder: => "Synology Drive Client.lnk" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\StartupFolder: => "Synology Cloud Station Backup.lnk" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\StartupFolder: => "EZBlocker.lnk" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "EZBlocker" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "GUDelayStartup" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "Ghostpress" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "Amazon Photos" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "EZBlocker 2" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "QuiteRSS" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "Synology Chat" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "YogaDNS" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "EZBlocker3" HKU\S-1-5-21-1020524199-3411935137-1089394653-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{6108ECBF-A63C-4078-B8A2-ED2D457E8CD4}C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [UDP Query User{A50037E1-B9F7-43C3-800A-852D2FF8157C}C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [TCP Query User{08243D1F-6BC2-48F8-BD16-34EB3AA22ACE}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [UDP Query User{8C76F1B8-24DD-4D7B-A407-BD5795790C6D}C:\program files\google\chrome\application\chrome.exe] => (Allow) C:\program files\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [00014386-40fc-227a-3c98-28edf336e93f] => (Block) C:\Program Files (x86)\Youtube-DLG\youtube-dl-gui.exe () [Fichier non signé] FirewallRules: [00018bfe-2b2b-f3b8-0ad1-c675e36c628f] => (Block) C:\Users\jeann\AppData\Local\Programs\signal-desktop\Signal.exe (Signal Messenger, LLC -> Open Whisper Systems) FirewallRules: [0001d375-d513-6e97-edb3-b79ff6cf798d] => (Block) C:\Users\jeann\AppData\Local\WhatsApp\WhatsApp.exe (WhatsApp, Inc -> WhatsApp) FirewallRules: [0001838c-c57d-eab7-a559-f38861e64c9a] => (Block) C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\Antidote.exe => Pas de fichier FirewallRules: [{3EAAF05D-2B06-4180-8FED-8BB64ADF111C}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{20B2DE10-7B15-4D6D-9B78-6573D8F4CEC0}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{F4C20EA0-4286-4A7D-8925-4ADB13998A4D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1B9E5A73-93E3-4C2D-B25A-21CF81DF1556}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8F074F0C-FB77-4F37-8628-9CC05EF0034B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C6BEE201-2944-47EC-B57B-2D7ADF089C6A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{18B69997-C796-4DEB-A554-4AA46D4E9CE0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [fedcccd3-eb55-8e76-8354-b2bce3c7c332] => (Allow) C:\Users\jeann\OneDrive\Bureau\PatchMyPC.exe (Patch My PC, LLC -> Patch My PC, LLC) FirewallRules: [0001ccd3-eb55-8e76-8354-b2bce3c7c332] => (Block) C:\Users\jeann\OneDrive\Bureau\PatchMyPC.exe (Patch My PC, LLC -> Patch My PC, LLC) FirewallRules: [TCP Query User{1149691F-830E-4633-9004-4CAD3E10713C}C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [UDP Query User{52391597-A7C9-49B0-BA93-633779722434}C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe] => (Allow) C:\program files\windowsapps\spotifyab.spotifymusic_1.170.610.0_x86__zpdnekdrzrea0\spotify.exe => Pas de fichier FirewallRules: [{49D427AB-EDFC-4D92-912F-E4B46707FF77}] => (Allow) C:\Users\jeann\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{87635127-7B1F-4914-883A-CF1D161747CA}] => (Allow) C:\Users\jeann\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{15CF1ACA-2A77-4951-9E3B-3C917046072C}] => (Allow) C:\Users\jeann\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{0286572A-DDE2-4483-99EB-90FD663235FF}] => (Allow) C:\Users\jeann\OneDrive\Bureau\Captvty 3 Alpha\Captvty.exe () [Fichier non signé] FirewallRules: [{292BC82B-7A8A-4D9D-9BC7-6CC8CF05FB1E}] => (Allow) G:\APP@PORT\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé] FirewallRules: [{B3FDC2F1-A8AC-469F-98DC-CF4DB2D9AACA}] => (Allow) G:\APP@PORT\qBittorrent\qbittorrent.exe (The qBittorrent Project) [Fichier non signé] FirewallRules: [{C61A563E-4A64-4635-8341-0E73247BAE2A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{4FFDA86D-63CD-412B-BA16-53B231FFC373}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{8DE9C7C0-FBB4-49CE-8129-A3538102248B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{BCF8FBAF-923E-4F65-B6B0-57C792451D01}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{A03B486D-7D86-418C-9D88-DC991A6B8E13}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{8DE69536-5FC0-47AE-8A41-458929C95E04}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{3C946C1A-8047-48F8-86AC-D5BCFB415D48}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C00290A5-81FE-4BC4-B384-2822B0EE3E39}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{AC648BB3-D525-44F3-B6AE-F2D2F7C854D7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{0957BA08-CFA9-4B02-B0CB-897C3DDBBD53}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7B46A898-0829-4C72-9D98-13E956035F3C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{B804D98F-E3BD-41CE-B801-A0A8B9D5B993}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.172.439.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{430A92EA-D966-4971-AAD8-0D099A6C4D14}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{BE26F355-C0F2-415C-A3EA-3DAAC5EBF1D1}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{16329DD5-8006-47C6-94F2-AEB0FF03B3DA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{06A8A093-BD19-4F9D-93CE-00A5B5B42EDA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{A8ADE583-1EDC-4C97-8AD1-91FECC6CC008}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{3DF7AEA7-9775-4F47-884E-596EE8345A07}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{817EDC16-49EF-45A4-9E52-600368D80DF5}] => (Allow) C:\Program Files\WindowsApps\AmazonMobileLLC.AmazonMusic_8.8.2.0_x86__kc6t79cpj4tp0\Amazon Music Helper.exe (Amazon.com Services LLC) [Fichier non signé] FirewallRules: [{3DDE7DAD-B064-4B98-888A-957BAFCF52CB}] => (Allow) C:\Program Files\WindowsApps\AmazonMobileLLC.AmazonMusic_8.8.2.0_x86__kc6t79cpj4tp0\Amazon Music Helper.exe (Amazon.com Services LLC) [Fichier non signé] ==================== Points de restauration ========================= 17-11-2021 10:10:58 Point de contrôle planifié 18-11-2021 18:04:21 [IDS_MSI_ERROR_1715] 21-11-2021 15:25:41 [IDS_MSI_ERROR_1717] 21-11-2021 15:58:49 Installed Intel(R) Wireless Bluetooth(R) ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: TAP-Windows Adapter V9 Description: TAP-Windows Adapter V9 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: tap0901 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: TAP-Windows Adapter V9 #2 Description: TAP-Windows Adapter V9 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: tap0901 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/21/2021 04:32:30 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme explorer.exe version 10.0.19041.1348 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 2258 Heure de début : 01d7deecbcfa6cfe Heure d'arrêt : 8056 Chemin d'accès à l'application : C:\Windows\explorer.exe ID de rapport : d7c5066b-c97f-4427-8e82-f8c3082b8e7f Nom complet du package défectueux : ID de l'application relative à un package défectueux : Type de blocage : Unknown Error: (11/21/2021 04:26:41 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: AUTORITE NT) Description: Windows ne peut pas décharger votre fichier Registre. La mémoire utilisée par le Registre n’a pas été libérée. Ce problème est souvent causé par des services qui s’exécutent sous un compte d’utilisateur. Essayez de configurer les services pour qu’ils s’exécutent sous le compte LocalService ou NetworkService. DÉTAIL - Accès refusé. Error: (11/21/2021 04:26:41 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1512) (User: AUTORITE NT) Description: Windows ne peut pas décharger votre fichier Registre. La mémoire utilisée par le Registre n’a pas été libérée. Ce problème est souvent causé par des services qui s’exécutent sous un compte d’utilisateur. Essayez de configurer les services pour qu’ils s’exécutent sous le compte LocalService ou NetworkService. DÉTAIL - Accès refusé. Error: (11/21/2021 04:26:41 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (11/21/2021 04:26:41 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (11/21/2021 04:26:41 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (11/21/2021 04:26:41 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (11/21/2021 04:06:41 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Rainmeter.exe, version : 4.5.3.3546, horodatage : 0x614da5dd Nom du module défaillant : Rainmeter.dll, version : 4.5.3.3546, horodatage : 0x614da5dc Code d’exception : 0xc000041d Décalage d’erreur : 0x000d4dc0 ID du processus défaillant : 0xa74 Heure de début de l’application défaillante : 0x01d7d969bd8626a1 Chemin d’accès de l’application défaillante : G:\APP@PORT\Rainmeter\Rainmeter.exe Chemin d’accès du module défaillant: G:\APP@PORT\Rainmeter\Rainmeter.dll ID de rapport : 6fceca96-0bb9-4257-a244-0549d4cc33bc Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (11/21/2021 04:27:03 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \SystemRoot\SysWow64\DRIVERS\VBoxMouse.sys Error: (11/21/2021 04:26:58 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: \SystemRoot\SysWow64\DRIVERS\VBoxMouse.sys Error: (11/21/2021 04:26:57 PM) (Source: VBoxNetLwf) (EventID: 12) (User: ) Description: Le pilote a détecté une erreur de pilote interne sur \Device\VBoxNetLwf. Error: (11/21/2021 04:26:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HL6D1TG) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/21/2021 04:26:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HL6D1TG) Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/21/2021 04:26:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HL6D1TG) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/21/2021 04:26:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HL6D1TG) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/21/2021 04:26:36 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HL6D1TG) Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2021-11-21 09:35:20 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {D7AE5EA1-09B9-476E-81E5-4F4C4AA1E391} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-11-20 09:50:27 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {69F68DD1-D860-45DF-A9A3-A00C43D685A0} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-11-19 09:55:36 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {7ADD1091-EA8C-46F1-9DE0-7B76FB9870B5} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-11-18 10:16:24 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {C1E94C6A-56E2-46E0-840C-5A01AE775B40} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2021-11-17 15:09:04 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/PiriformBundler&threatid=311950&enterprise=0 Nom : PUABundler:Win32/PiriformBundler ID : 311950 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : containerfile:_G:\LOGICIELS\128\ccsetup565.exe; file:_D:\bckp usb (128 GB-déc. 2020)\LOGS\64\dfsetup221.exe; file:_G:\LOGICIELS\128\ccsetup565.exe; file:_G:\LOGICIELS\128\ccsetup565.exe->(nsis-instdata) Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.353.1134.0, AS: 1.353.1134.0, NIS: 1.353.1134.0 Version du moteur : AM: 1.1.18700.4, NIS: 1.1.18700.4 Event[0]: Date: 2021-11-14 16:07:46 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.353.974.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.18700.4 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =============== Date: 2021-11-21 08:44:53 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\WaaSMedicAgent.exe) attempted to load \Device\HarddiskVolume5\Program Files (x86)\KeyCryptSDK\KeyCrypt64(1).dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: LENOVO 4QCN51WW(V2.15) 11/19/2019 Carte mère: LENOVO LNVNB161216 Processeur: Intel(R) Core(TM) i3-7100U CPU @ 2.40GHz Pourcentage de mémoire utilisée: 93% Mémoire physique - RAM - totale: 8058.39 MB Mémoire physique - RAM - disponible: 530.12 MB Mémoire virtuelle totale: 28538.39 MB Mémoire virtuelle disponible: 16524.04 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:475.8 GB) (Free:255.69 GB) NTFS Drive d: (LENOVO) (Fixed) (Total:931.39 GB) (Free:90.69 GB) NTFS Drive e: (Google Drive) (Fixed) (Total:15 GB) (Free:10.32 GB) FAT32 Drive g: (SAMSUNG128) (Removable) (Total:119.5 GB) (Free:8.16 GB) exFAT \\?\Volume{ec245b2a-b064-4325-b360-e2d275c95887}\ (Récupération) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS \\?\Volume{4283fc26-4c2e-4e99-a677-933f0ac76582}\ () (Fixed) (Total:0.54 GB) (Free:0.09 GB) NTFS \\?\Volume{8fa0ae47-030a-4ccc-8d40-7e6e5296a0f9}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 476.9 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: A5572AB2) Partition: GPT. ========================================================== Disk: 2 (Protective MBR) (Size: 119.5 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================