Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27-12-2021 Exécuté par cwirig (28-12-2021 20:58:54) Exécuté depuis C:\Users\cwiri\OneDrive\Bureau Microsoft Windows 10 Professionnel Version 20H2 19042.1415 (X64) (2021-12-28 16:59:29) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-4127230893-2802441715-2022865999-500 - Administrator - Disabled) cwirig (S-1-5-21-4127230893-2802441715-2022865999-1001 - Administrator - Enabled) => C:\Users\cwiri DefaultAccount (S-1-5-21-4127230893-2802441715-2022865999-503 - Limited - Disabled) Invité (S-1-5-21-4127230893-2802441715-2022865999-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-4127230893-2802441715-2022865999-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 19.00 (HKLM-x32\...\7-Zip) (Version: 19.00 - Igor Pavlov) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.007.20099 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.1.298 - Adobe Systems Incorporated) Affinity Photo (HKLM\...\{3D0E1AE7-BFC3-4795-B518-02CD081FC1E9}) (Version: 1.10.3.1191 - Serif (Europe) Ltd) Affinity Publisher (HKLM\...\{9D32AB45-A458-44AA-8DC7-379D36F70AB0}) (Version: 1.10.4.1198 - Serif (Europe) Ltd) AIDA64 Extreme v6.20 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.20 - FinalWire Ltd.) AlterPDF 4.6 (HKLM-x32\...\AlterPDF_is1) (Version: - Alternative PDF Solutions) Angry IP Scanner (HKLM-x32\...\Angry IP Scanner) (Version: 3.7.2 - Angry IP Scanner) AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: - AOMEI International Network Limited.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23258 - Microsoft Corporation) Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team) Awesome Duplicate Photo Finder v. 1.2 (HKLM-x32\...\Awesome Duplicate Photo Finder_is1) (Version: - Duplicate-Finder.com) Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: 4.7.0 - Canon Inc.) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon Inkjet Printer Driver Add-On Module (HKLM\...\CANONIJINBOXADDON100) (Version: - ) Canon iX6800 series On-screen Manual (HKLM-x32\...\Canon iX6800 series On-screen Manual) (Version: 7.6.1 - Canon Inc.) Canon iX6800 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iX6800_series) (Version: - Canon Inc.) Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version: - ) Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.4 - Canon Inc.) Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.) Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - ) CanoScan LiDE 700F Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ9601) (Version: - ) CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.7128 - CDBurnerXP) Clementine (HKLM-x32\...\Clementine) (Version: 1.3.1 - Clementine) ColorMunki Display 1.1.4 (HKLM-x32\...\ColorMunki Display_is1) (Version: 1.1.4 - X-Rite) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) CutOut 2018 professional (HKLM\...\CutOut 2018 professional_is1) (Version: 2018 (27092017) - Franzis.de) CutOut 9 professional (HKLM-x32\...\{14B8F483-5712-4979-953F-D56F78CBCFEB}) (Version: 9.0 - Franzis) Hidden CutOut 9 professional (HKLM-x32\...\CutOut 9 professional 9.0) (Version: 9.0 - Franzis) darktable (HKLM\...\darktable) (Version: 2.4.4 - the darktable project) Driver Booster 8 (HKLM-x32\...\Driver Booster_is1) (Version: 8.2.0 - IObit) EaseUS Video Editor V1.6.8.53 (HKLM-x32\...\{160288F0-2C46-47E6-973D-F8F8D0577965}_is1) (Version: 1.6.8.53 - EaseUS) Enregistrement utilisateur de Canon iX6800 series (HKLM-x32\...\Enregistrement utilisateur de Canon iX6800 series) (Version: - ‭Canon Inc.) Epson Photo+ (HKLM-x32\...\{AB971A4E-F669-4E82-AFF0-3C34DF768553}) (Version: 3.3.0.0 - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{189DE071-E0BC-4BA5-8E34-83D5ED12600B}) (Version: 3.2.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{563B99D8-8895-4E3E-AE8D-15BE8C05F1C1}) (Version: 3.00.04 - SEIKO EPSON Corp.) Epson Software Updater (HKLM-x32\...\{28C66F35-69BF-4376-BC80-4D5F4808FF3C}) (Version: 4.6.1 - Seiko Epson Corporation) EPSON XP-2100 Series Printer Uninstall (HKLM\...\EPSON XP-2100 Series) (Version: - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc) FastStone Image Viewer 7.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 7.5 - FastStone Soft) Filter Forge 10.005 (HKLM\...\Filter Forge 10_is1) (Version: - Filter Forge, Inc.) FOCUS projects 4 (64-Bit) (HKLM\...\FOCUS_PROJECTS_4_2_EDC5B478_is1) (Version: 4.42 - Franzis Verlag GmbH) FOCUS projects 4 professional (64-Bit) (HKLM\...\FOCUS_PROJECTS_4_3_EDC5B478_is1) (Version: 4.42 - Franzis Verlag GmbH) FocusFixer (HKLM-x32\...\{028FC60D-92B4-4CE2-AA9D-0980AF5CFDFF}) (Version: 1.4.0001 - FixerLabs) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 96.0.4664.110 - Google LLC) HDR projects 7 (64-Bit) (HKLM\...\HDR_PROJECTS_7_2_3BF7CE82_is1) (Version: 7.23 - Franzis Verlag GmbH) Input Director v2.0 (HKLM-x32\...\Input Director) (Version: 2.0 - Imperative Software Pty Ltd) IPCameraHBP (HKLM-x32\...\{E4DE5B9F-8551-4F43-BD1B-85312DCC77E9}) (Version: 3.0.3.4 - hi) IPCameraSearchTool version 1.0.0.6 (HKLM-x32\...\{4EABBC6B-B00B-41E1-AA7E-88925CDA6BDE}_is1) (Version: 1.0.0.6 - NEO) Luminar 4 (HKLM\...\Luminar 4) (Version: 4.3.3.7895 - Skylum) Luminar AI (HKLM\...\Luminar AI) (Version: 1.5.1.8660 - Skylum) Macrium Reflect Free Edition (HKLM\...\{E10EA502-8814-4DA4-8989-A8B1B38600A5}) (Version: 7.3.5321 - Paramount Software (UK) Ltd.) Hidden Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 7.3 - Paramount Software (UK) Ltd.) Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes) Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation) Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.14026.20302 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.62 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14026.20302 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\Teams) (Version: 1.3.00.21759 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.26.28720 (HKLM-x32\...\{86380aef-fd23-4fc3-8723-a98ccad8f2c6}) (Version: 14.26.28720.3 - Microsoft Corporation) Molotov (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\Molotov) (Version: 4.4.4 - Molotov) Mon Carnet d'Adresses (HKLM-x32\...\Mon Carnet d'Adresses_is1) (Version: 2.0.0 - db2p) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.3.0 - Mozilla) Mozilla Thunderbird (x64 fr) (HKLM\...\Mozilla Thunderbird 91.3.0 (x64 fr)) (Version: 91.3.0 - Mozilla) MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation) Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{ADEF1F0B-635E-4041-B50F-A510C1B4D2C5}) (Version: 10.5.10400 - Nero AG) NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.14026.20302 - Microsoft Corporation) Hidden Opera Stable 82.0.4227.43 (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\Opera 82.0.4227.43) (Version: 82.0.4227.43 - Opera Software) Passcape Internet Explorer Password Recovery (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\PIEPR) (Version: - Passcape) Photolemur 3 (HKLM\...\{BA77CD07-C165-46EB-BE07-258E7D456E93}) (Version: 1.1.0.2443 - Skylum) Hidden Photolemur 3 (HKLM-x32\...\{442d1abc-2caa-4df0-939d-16a7274bc9f2}) (Version: 1.1.0.2443 - Skylum) PLDS OEM Content (HKLM-x32\...\{F3A02708-5138-4F72-907F-0546B5630C18}) (Version: 12.0.0004 - Nero AG) Hidden Portrait Professional 11.2 (HKLM-x32\...\PortraitProfessional11_is1) (Version: 11.2 - Anthropics Technology Ltd.) PrivaZer (HKLM-x32\...\PrivaZer) (Version: 4.0.24.0 - Goversoft LLC) Q-Dir (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\Q-Dir) (Version: - ) Repertoire (HKLM-x32\...\Repertoire) (Version: - ) Revo Uninstaller 2.1.7 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.7 - VS Revo Group, Ltd.) Snip (HKLM-x32\...\{DE935EF7-6CE4-471E-9C73-0AE1A2E7D0D6}) (Version: 0.1.5119.0 - Microsoft) Hidden Snip (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\{525d439e-e22a-4221-8fd1-25b845fe0038}) (Version: 0.1.5119.0 - Microsoft Corporation) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 2.5.2 - Krzysztof Kowalczyk) SyncBack (HKLM-x32\...\SyncBack_is1) (Version: - 2BrightSparks) SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 10.1.8.0 - 2BrightSparks) Teams Machine-Wide Installer (HKLM-x32\...\{39AF0813-FA7B-4860-ADBE-93B9B214B914}) (Version: 1.3.0.21759 - Microsoft Corporation) TeamViewer (HKLM\...\TeamViewer) (Version: 15.21.4 - TeamViewer) TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp) Topaz A.I. Gigapixel (HKLM\...\{FA14B265-83B7-4DA4-B831-97C03A1EFA7A}) (Version: 4.1.2 - Topaz Labs) Hidden Topaz A.I. Gigapixel (HKLM\...\Topaz A.I. Gigapixel 4.1.2) (Version: 4.1.2 - Topaz Labs) Topaz A.I. Gigapixel 4.2.2 (HKLM\...\Topaz A.I. Gigapixel_is1) (Version: 4.2.2 - lrepacks.ru) Topaz Adjust AI 1.0.5 (HKLM\...\Topaz Adjust AI_is1) (Version: 1.0.5 - lrepacks.ru) Topaz DeNoise AI 1.2.1 (HKLM\...\Topaz DeNoise AI_is1) (Version: 1.2.1 - lrepacks.ru) Topaz JPEG to RAW AI 2.2.1 (HKLM\...\Topaz JPEG to RAW AI_is1) (Version: 2.2.1 - lrepacks.ru) Topaz Mask AI (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\{0e31ae21-1647-416f-ac30-86af7dc5d352}) (Version: 1.0.5 - Topaz Labs, LLC) Topaz Sharpen AI 1.3.1 (HKLM\...\Topaz Sharpen AI_is1) (Version: 1.3.1 - lrepacks.ru) Topaz Studio 2 2.0.4 (HKLM\...\Topaz Studio 2_is1) (Version: 2.0.4 - lrepacks.ru) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{6753CC12-A884-47B2-9270-F5CD31B6F256}) (Version: 2.67.0.0 - Microsoft Corporation) Hidden Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{0746492E-47B6-4251-940C-44462DFD74BB}) (Version: 2.55.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden web control version 3.0.4.3 (HKLM-x32\...\{3D8D219C-0362-457F-B847-2FC07C2BE520}_is1) (Version: 3.0.4.3 - ) WhatsApp (HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\WhatsApp) (Version: 2.2106.10 - WhatsApp) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) WinRAR 5.91 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH) WinZip 25.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2412D}) (Version: 25.0.14245 - Corel Corporation) XnView 2.49.4 (HKLM-x32\...\XnView_is1) (Version: 2.49.4 - Gougelet Pierre-e) X-Rite Device Services Manager (HKLM-x32\...\{37B72A11-BBB8-4E7C-B7A5-4743CB799520}) (Version: 2.4.1 - X-Rite) Packages: ========= B.tv -> C:\Program Files\WindowsApps\BouyguesTelecom.B.tv_4.83.1.0_x64__zffmaw26y6va6 [2021-11-01] (Bouygues Telecom) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-11-01] (Canon Inc.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-08-06] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_132.1.257.0_x64__v10z8vjag6ke6 [2021-11-02] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-05] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-05] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.10270.0_x64__8wekyb3d8bbwe [2021-11-01] (Microsoft Studios) [MS Ad] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\cwiri\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20130.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{444c3d34-4024-4c6f-a9da-b47eed58ceb6}\localserver32 -> C:\Program Files\Skylum\Luminar AI\Luminar AI.exe (Skylum Software USA, Inc. -> Skylum) CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{99D4803D-D443-B6CC-6994-02E0D24693BE}\InprocServer32 -> pas de chemin du fichier CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{B1B98D0D-9FE4-906E-BB87-785E7470E350}\InprocServer32 -> pas de chemin du fichier CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> ) CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\cwiri\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20130.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems) ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [InputDirectorShellIntegration] -> {C7BBD19B-D769-42AF-99B6-E6FE8568CD30} => C:\Program Files (x86)\Input Director\ShellIntegrator64.dll [2020-08-22] (Imperative Software Pty Ltd -> ) ContextMenuHandlers1: [PeContextMenuExtension] -> {098A124A-AA1C-38C8-A65E-D1199A14516A} => C:\Program Files (x86)\Common Files\Wondershare\PDFelement\AddIns\PEShellExt_x64.dll [2020-10-23] (Wondershare Technology Co.,Ltd -> Wondershare) ContextMenuHandlers1: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-11-01] (Goversoft LLC -> ) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-08-19] (Corel Corporation -> WinZip Computing) ContextMenuHandlers2: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-11-01] (Goversoft LLC -> ) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers3: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-11-01] (Goversoft LLC -> ) ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [InputDirectorShellIntegration] -> {C7BBD19B-D769-42AF-99B6-E6FE8568CD30} => C:\Program Files (x86)\Input Director\ShellIntegrator64.dll [2020-08-22] (Imperative Software Pty Ltd -> ) ContextMenuHandlers4: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-11-01] (Goversoft LLC -> ) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-08-19] (Corel Corporation -> WinZip Computing) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Pas de fichier ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-08-27] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [PrivaZer] -> {7691BE2F-3D79-AADE-9C87-4D6EBCC76682} => C:\Program Files (x86)\PrivaZer\PrivaMenu6.dll [2021-11-01] (Goversoft LLC -> ) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-08-19] (Corel Corporation -> WinZip Computing) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\cwiri\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\LPEF - Camera Simulator.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=acngkdhajijgnolblpcgpepjgoedlpjg ==================== Modules chargés (Avec liste blanche) ============= 2013-06-21 14:03 - 2013-06-21 14:03 - 002633728 _____ () [Fichier non signé] C:\Program Files (x86)\X-Rite\Devices\colormunki\colormunki.dll 2015-07-13 10:33 - 2015-07-13 10:33 - 001592832 _____ () [Fichier non signé] C:\Program Files (x86)\X-Rite\Devices\rm200\GoldenEye.dll 2021-12-28 17:51 - 2021-12-28 17:51 - 000065536 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll 2016-09-14 14:31 - 2016-09-14 14:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll 2014-12-02 09:59 - 2014-12-02 09:59 - 001502208 _____ (X-Rite Inc.) [Fichier non signé] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1iO.dll 2014-12-02 09:59 - 2014-12-02 09:59 - 003962368 _____ (X-Rite Inc.) [Fichier non signé] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Pro.dll 2015-04-02 14:59 - 2015-04-02 14:59 - 002359296 _____ (X-Rite) [Fichier non signé] C:\Program Files (x86)\X-Rite\Devices\i1isis\EyeOne_iSis.dll 2014-11-05 10:05 - 2014-11-05 10:05 - 001019392 _____ (X-Rite) [Fichier non signé] C:\Program Files (x86)\X-Rite\Devices\i1pro\i1Fun.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll => Pas de fichier BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-08-22] (Microsoft Corporation -> Microsoft Corporation) BHO: Pas de nom -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> Pas de fichier BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll => Pas de fichier BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-22] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-22] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\008k.com -> 008k.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\00hq.com -> 00hq.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\0scan.com -> 0scan.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\1-se.com -> 1-se.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\1001movie.com -> 1001movie.com IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\1001night.biz -> 1001night.biz IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\100gal.net -> 100gal.net IE restricted site: HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\100sexlinks.com -> 100sexlinks.com Il y a 4788 plus de sites. ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2015-07-30 23:42 - 2015-07-30 23:39 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdobeUpdateService => 2 MSCONFIG\Services: AdvancedSystemCareService14 => 2 MSCONFIG\Services: AdvancedSystemCareService8 => 2 MSCONFIG\Services: AGMService => 2 MSCONFIG\Services: AGSService => 2 MSCONFIG\Services: Backupper Service => 2 MSCONFIG\Services: CleanupPSvc => 2 MSCONFIG\Services: EpsonScanSvc => 2 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: InputDirector => 2 MSCONFIG\Services: MacriumService => 3 MSCONFIG\Services: MyEpson Portal Service => 3 MSCONFIG\Services: NAUpdate => 3 MSCONFIG\Services: NeroBackItUpBackgroundService2022 => 2 MSCONFIG\Services: NvContainerLocalSystem => 2 MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2 MSCONFIG\Services: PasscapeLoader64 => 3 MSCONFIG\Services: PIEPRLoader => 3 MSCONFIG\Services: SU10Guard => 2 MSCONFIG\Services: TeamViewer => 2 MSCONFIG\Services: VIAKaraokeService => 2 MSCONFIG\Services: xrdd.exe => 2 HKLM\...\StartupApproved\StartupFolder: => "ColorMunki Display Tray.lnk" HKLM\...\StartupApproved\StartupFolder: => "XRGamma.lnk" HKLM\...\StartupApproved\StartupFolder: => "WinZip Preloader.lnk" HKLM\...\StartupApproved\Run: => "CanonSolutionMenu" HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run: => "WinZip FAH" HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "TuneupUI.exe" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "EPPCCMON" HKLM\...\StartupApproved\Run32: => "ArcSoft Connection Service" HKLM\...\StartupApproved\Run32: => "CanonQuickMenu" HKLM\...\StartupApproved\Run32: => "CanonSolutionMenu" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "SecurityHealth" HKLM\...\StartupApproved\Run32: => "InputDirector" HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run32: => "Nero BackItUp" HKLM\...\StartupApproved\Run32: => "DriveSpan" HKLM\...\StartupApproved\Run32: => "DataCollectionAgentController" HKLM\...\StartupApproved\Run32: => "EEventManager" HKLM\...\StartupApproved\Run32: => "EPPCCMON" HKLM\...\StartupApproved\Run32: => "MouseDriver" HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\StartupFolder: => "LlJLJdGm.lnk" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\StartupFolder: => "Luminar AI.lnk" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "Advanced SystemCare" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "DesktopNoteOK" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000000" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000001" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "EPLTarget\P0000000000000002" HKU\S-1-5-21-4127230893-2802441715-2022865999-1001\...\StartupApproved\Run: => "Advanced SystemCare 8" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [UDP Query User{389FC25A-723E-4855-AA63-DA42CB084D1B}C:\users\cwiri\onedrive\bureau\les crèches\anydesk.exe] => (Allow) C:\users\cwiri\onedrive\bureau\les crèches\anydesk.exe => Pas de fichier FirewallRules: [TCP Query User{7CDE8850-EE1C-4BC0-84B5-B7F1074DD546}C:\users\cwiri\onedrive\bureau\les crèches\anydesk.exe] => (Allow) C:\users\cwiri\onedrive\bureau\les crèches\anydesk.exe => Pas de fichier FirewallRules: [{44455C75-D4F9-4FCE-955B-9CE9C92EB6EC}] => (Allow) C:\Users\cwiri\AppData\Local\Programs\Opera\82.0.4227.33\opera.exe => Pas de fichier FirewallRules: [{360E65CE-DA18-40C6-9DBD-A1B1EDD2BC5A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{79854BA7-3978-43B1-B474-90E074DC3E4C}] => (Allow) C:\Users\cwiri\AppData\Local\Programs\Opera\82.0.4227.23\opera.exe => Pas de fichier FirewallRules: [{D852CFBA-C5E1-4584-BE40-99888F6413CB}] => (Allow) LPort=5454 FirewallRules: [{33D768FD-ACC4-43F7-80BC-A9AE88C12604}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{820C7B4E-3F11-4E21-AD7A-D5206AF6FA3E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{110FBD9C-6F2B-424D-8C5E-76C014BBE05A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{D6D914D4-9642-4F0E-BBB0-966AFD70C9CF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.77.97.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [UDP Query User{866FB962-76E3-43AB-9822-4B2D2A10C55E}C:\users\cwiri\appdata\local\programs\opera\opera.exe] => (Block) C:\users\cwiri\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{C698BEC3-7066-4403-BE42-6E59A22687C3}C:\users\cwiri\appdata\local\programs\opera\opera.exe] => (Block) C:\users\cwiri\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [UDP Query User{DDA786FD-DB04-4186-807A-AD5CF4533321}C:\users\cwiri\appdata\local\programs\opera\opera.exe] => (Block) C:\users\cwiri\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [TCP Query User{AF769822-80D4-4269-971F-FFF7E6C8BB79}C:\users\cwiri\appdata\local\programs\opera\opera.exe] => (Block) C:\users\cwiri\appdata\local\programs\opera\opera.exe (Opera Software AS -> Opera Software) FirewallRules: [{AB3D2837-96CE-47C1-9CED-B5B4E33A19B2}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{D608CABA-0423-4713-9DBB-24850A969122}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BF3E3664-052B-409E-B322-30C5EA41339C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{6ACB6316-766D-460E-8997-A7A1FC9D2501}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{85FA5155-1251-4E7C-AF35-CFAD27539C92}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{26128A54-78AB-4C9C-9D84-74AF293101C8}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{EC62AA78-842D-4A39-A197-E465AC48E566}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{EC4CF133-A313-45A2-9371-1BD68B1C309F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{99CFFBB5-D01E-469B-BD88-78A631E4304F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B680350F-9B6B-4003-BC82-8613AF7DEE66}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.5.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{FD847131-8C84-47AF-99BE-E7BF63BEF999}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.5.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{A31D516C-E9AC-4D3D-902A-D0A5BCD31CD7}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.5.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{72DF4B6B-C66D-4328-A107-FAB627AD5EDD}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper 6.5.1\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited) FirewallRules: [{46C9F8BE-C7BD-4153-9208-541893A2C1A7}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS) FirewallRules: [{FD168BCD-24F9-4FD9-9B13-EABBB874F7D7}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe (Apowersoft Ltd -> EaseUS) FirewallRules: [{5B0EB7BC-F583-4977-8B6D-BF35F60044D2}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [{6B52FFC4-8E51-4B67-A929-B8FD62823EDA}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.) FirewallRules: [UDP Query User{FD819788-191D-4228-888A-C46802089A1C}C:\program files (x86)\ipcamerasearchtool\searchtool.exe] => (Block) C:\program files (x86)\ipcamerasearchtool\searchtool.exe () [Fichier non signé] FirewallRules: [TCP Query User{7AD2B3B7-FA71-4589-9755-F58650B47246}C:\program files (x86)\ipcamerasearchtool\searchtool.exe] => (Block) C:\program files (x86)\ipcamerasearchtool\searchtool.exe () [Fichier non signé] FirewallRules: [UDP Query User{8E59A022-DE3D-47B6-881B-0A9268AC58EA}C:\program files (x86)\ipcamerahbp\p2pclient.exe] => (Allow) C:\program files (x86)\ipcamerahbp\p2pclient.exe () [Fichier non signé] FirewallRules: [TCP Query User{9809521D-598E-4FFE-9848-5B7DB26BE976}C:\program files (x86)\ipcamerahbp\p2pclient.exe] => (Allow) C:\program files (x86)\ipcamerahbp\p2pclient.exe () [Fichier non signé] FirewallRules: [{BF8697A7-7324-4E6C-B9C0-D553AE6F6141}] => (Allow) C:\Program Files (x86)\Input Director\IDConfig.exe (Imperative Software Pty Ltd -> Imperative Software Pty Ltd) FirewallRules: [{A2BA8A5F-BCAC-4BD9-8362-9C8699993400}] => (Allow) C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe (Imperative Software Pty Ltd -> ) FirewallRules: [{41B2C1B4-DF7B-417D-9472-05167DD95F52}] => (Allow) C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe (Imperative Software Pty Ltd -> ) FirewallRules: [{3AA66F33-8B47-473E-9E15-4E807B5E7652}] => (Allow) C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe (Imperative Software Pty Ltd -> ) FirewallRules: [{B706DE83-AFE1-4C18-B988-4BEC56ED999D}] => (Allow) C:\Program Files (x86)\Input Director\InputDirectorSessionHelper.exe (Imperative Software Pty Ltd -> ) FirewallRules: [{615375A6-001F-4AE9-8A2A-4E18244BCAEC}] => (Allow) C:\Program Files (x86)\Input Director\InputDirector.exe (Imperative Software Pty Ltd -> Imperative Software Pty Ltd) FirewallRules: [{B9F332C1-896E-4A4B-A592-7D5D3810EFFF}] => (Allow) C:\Program Files (x86)\Input Director\InputDirector.exe (Imperative Software Pty Ltd -> Imperative Software Pty Ltd) FirewallRules: [{DE4250EE-CD52-4C7C-BA1E-C86410A37E00}] => (Allow) C:\Program Files (x86)\Input Director\InputDirector.exe (Imperative Software Pty Ltd -> Imperative Software Pty Ltd) FirewallRules: [{C773D0E7-689E-42F1-A770-C8BA2B6BA127}] => (Allow) C:\Program Files (x86)\Input Director\InputDirector.exe (Imperative Software Pty Ltd -> Imperative Software Pty Ltd) FirewallRules: [UDP Query User{2288F704-C948-4364-AB7D-29D1118FF046}C:\program files (x86)\ipcamerasearchtool\searchtool.exe] => (Allow) C:\program files (x86)\ipcamerasearchtool\searchtool.exe () [Fichier non signé] FirewallRules: [TCP Query User{E22B2731-ED3D-4999-8ACF-762FEADF32B7}C:\program files (x86)\ipcamerasearchtool\searchtool.exe] => (Allow) C:\program files (x86)\ipcamerasearchtool\searchtool.exe () [Fichier non signé] FirewallRules: [UDP Query User{D30420A3-D43B-4247-8A2D-A138C3B36724}C:\program files (x86)\ipcamerahbp\p2pclient.exe] => (Allow) C:\program files (x86)\ipcamerahbp\p2pclient.exe () [Fichier non signé] FirewallRules: [TCP Query User{E39DE390-624D-459A-8529-E33A9BBFA266}C:\program files (x86)\ipcamerahbp\p2pclient.exe] => (Allow) C:\program files (x86)\ipcamerahbp\p2pclient.exe () [Fichier non signé] FirewallRules: [UDP Query User{8E1CCC5E-24C2-42A7-A4D0-D8D7C25169A3}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [TCP Query User{3883E05C-A72A-48BB-BEF0-00A537CCEF79}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:221.36 GB) (Free:83.57 GB) (38%) ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (12/28/2021 07:31:08 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (C:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/28/2021 07:16:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur \\?\Volume{623efa7b-0000-0000-0090-4c2300000000}\ car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/28/2021 07:16:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur CPA + Crevaux (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/28/2021 07:16:32 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/28/2021 06:42:56 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur \\?\Volume{623efa7b-0000-0000-0090-4c2300000000}\ car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/28/2021 06:42:55 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur CPA + Crevaux (E:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/28/2021 06:01:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SearchProtocolHost.exe, version : 7.0.19041.1387, horodatage : 0x9b7f8efa Nom du module défaillant : SearchProtocolHost.exe, version : 7.0.19041.1387, horodatage : 0x9b7f8efa Code d’exception : 0xc000cf18 Décalage d’erreur : 0x000000000002a660 ID du processus défaillant : 0x2738 Heure de début de l’application défaillante : 0x01d7fc0c5c06bea1 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\SearchProtocolHost.exe Chemin d’accès du module défaillant: C:\WINDOWS\system32\SearchProtocolHost.exe ID de rapport : 228c16bb-7cdc-4b00-87e7-6dadf744e396 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/28/2021 06:01:53 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante SearchProtocolHost.exe, version : 7.0.19041.1387, horodatage : 0x9b7f8efa Nom du module défaillant : SearchProtocolHost.exe, version : 7.0.19041.1387, horodatage : 0x9b7f8efa Code d’exception : 0xc000cf18 Décalage d’erreur : 0x000000000002a660 ID du processus défaillant : 0x2738 Heure de début de l’application défaillante : 0x01d7fc0c5c06bea1 Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\SearchProtocolHost.exe Chemin d’accès du module défaillant: C:\WINDOWS\system32\SearchProtocolHost.exe ID de rapport : f4ce4899-f9a3-4a7e-822d-f707c0567d67 Nom complet du package défaillant : ID de l’application relative au package défaillant : Erreurs système: ============= Error: (12/28/2021 08:47:20 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 08:47:16 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 08:42:44 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 08:42:40 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 07:16:23 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 07:16:19 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 07:15:47 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. Error: (12/28/2021 07:15:39 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1301 08/27/2010 Carte mère: ASUSTeK Computer INC. P7P55D-E Processeur: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz Pourcentage de mémoire utilisée: 43% Mémoire physique - RAM - totale: 16382.05 MB Mémoire physique - RAM - disponible: 9296.19 MB Mémoire virtuelle totale: 19710.05 MB Mémoire virtuelle disponible: 9843.07 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:221.36 GB) (Free:83.57 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: () (Fixed) (Total:931.51 GB) (Free:555.86 GB) NTFS Drive e: (CPA + Crevaux) (Fixed) (Total:465.76 GB) (Free:58.84 GB) NTFS Drive f: (ESD-USB) (Removable) (Total:31.99 GB) (Free:27.39 GB) FAT32 Drive g: (CCSA_X64FRE_FR-FR_DV5) (CDROM) (Total:3.91 GB) (Free:0 GB) UDF \\?\Volume{623efa7b-0000-0000-0090-4c2300000000}\ () (Fixed) (Total:0.55 GB) (Free:0.09 GB) NTFS \\?\Volume{623efa7b-0000-0000-0000-c09d37000000}\ () (Fixed) (Total:0.55 GB) (Free:0.08 GB) NTFS \\?\Volume{623efa7b-0000-0000-0000-50c137000000}\ () (Fixed) (Total:0.55 GB) (Free:0.15 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 3B0CDBA3) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (Size: 465.8 GB) (Disk ID: 06920691) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 623EFA7B) Partition 1: (Active) - (Size=565 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=221.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=568 MB) - (Type=27) Partition 4: (Not Active) - (Size=562 MB) - (Type=27) ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 500 GB) (Disk ID: 7F654BC9) Partition 1: (Active) - (Size=32 GB) - (Type=0C) ==================== Fin de Addition.txt =======================