Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 27-02-2022 Exécuté par kenny (03-03-2022 09:24:42) Exécuté depuis C:\Users\kenny\Downloads Microsoft Windows 11 Famille Version 21H2 22000.527 (X64) (2022-01-02 20:40:51) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-993065428-933369047-1668157295-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-993065428-933369047-1668157295-503 - Limited - Disabled) Invité (S-1-5-21-993065428-933369047-1668157295-501 - Limited - Disabled) kenny (S-1-5-21-993065428-933369047-1668157295-1001 - Administrator - Enabled) => C:\Users\kenny WDAGUtilityAccount (S-1-5-21-993065428-933369047-1668157295-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.011.20039 - Adobe Systems Incorporated) Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems) Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated) Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{AEEF33DD-E3B9-4049-B709-0E546C2B1AAB}) (Version: 20.25.401.14526 - Alcor Micro Corp.) Assistant d’installation de Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1285 - Microsoft Corporation) Assistant Support et récupération de Microsoft pour Office 365 (HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\7181b9498a4ee6aa) (Version: 16.0.2941.4 - Microsoft Corporation) ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.5.0 - ASUSTeK COMPUTER INC.) ASUS Hello (HKLM-x32\...\{D8CE1923-92A9-4036-817E-9E0D8AA2169B}) (Version: 1.1.4.0 - ASUSTeK COMPUTER INC.) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.) ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.18 - ASUS) ASUS Sync Drivers (HKLM\...\{086FE7AE-1622-4617-92B8-F54FAAB372D0}) (Version: 2.3.5715 - Screenovate Technologies Ltd.) ATK Package (ASUS Keyboard Hotkeys) (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0060 - ASUSTeK COMPUTER INC.) Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.8.13 - ICEpower a/s) bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.89 - Piriform) Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation) Étude pour l'amélioration du produit HP ENVY 5540 series (HKLM\...\{0EEAD7C7-75FC-400E-A25E-E0B763614A7A}) (Version: 40.11.1119.1786 - HP Inc.) FIFA 19 (HKLM-x32\...\{3391E07D-8484-4124-817E-FCBDA859FD62}) (Version: 1.0.61.54442 - Electronic Arts) FileZilla Client 3.54.1 (HKLM-x32\...\FileZilla Client) (Version: 3.54.1 - Tim Kosse) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 98.0.4758.102 - Google LLC) HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - ) HPDiagnosticCoreDll (HKLM-x32\...\{9262B08F-E183-4FED-A2BD-23FF1A84EB79}) (Version: 1.0.15.0 - Hewlett Packard) Intel(R) Chipset Device Software (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.5.2.1054 - Intel Corporation) Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1724.2 - Intel Corporation) Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden Logiciel de base du périphérique HP ENVY 5540 series (HKLM\...\{B23BAE85-485C-4616-9DCE-759C88627B75}) (Version: 40.11.1119.1786 - HP Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 98.0.1108.62 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 98.0.1108.62 - Microsoft Corporation) Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.14827.20198 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\OneDriveSetup.exe) (Version: 22.022.0130.0001 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\Teams) (Version: 1.5.00.4689 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{572E990E-67FD-4014-884C-A730BFC7E1D7}) (Version: 4.65.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.30.30704 (HKLM-x32\...\{4d8dcf8c-a72a-43e1-9833-c12724db736e}) (Version: 14.30.30704.0 - Microsoft Corporation) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.1.2 - Notepad++ Team) NVIDIA FrameView SDK 1.2.7321.30900954 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.2.7321.30900954 - NVIDIA Corporation) NVIDIA GeForce Experience 3.25.0.84 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.25.0.84 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote graphique 511.79 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 511.79 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20198 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14827.20198 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14827.20198 - Microsoft Corporation) Hidden OnePlus USB Drivers 1.00 (HKLM-x32\...\OnePlus USB Drivers 1.00) (Version: 1.00 - OnePlus, Inc) Origin (HKLM-x32\...\Origin) (Version: 10.5.110.50000 - Electronic Arts, Inc.) Package de pilotes Windows - Graphics Tablet (WinUsb) USBDevice (04/10/2014 8.33.30.0) (HKLM\...\142118DF51345EA02D2B1583E102C8FB95FD6D52) (Version: 04/10/2014 8.33.30.0 - Graphics Tablet) Package de pilotes Windows - OnePlus, Inc. (WinUSB) AndroidUsbDeviceClass (05/24/2012 6.0.0000.00000) (HKLM\...\99B3105288905B7B00A297FA05818A2F1D641E5D) (Version: 05/24/2012 6.0.0000.00000 - OnePlus, Inc.) PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden PDF-XChange Editor (HKLM\...\{292E1494-19E6-456B-B4A5-0418CAA26F1D}) (Version: 9.1.356.0 - Tracker Software Products (Canada) Ltd.) Hidden PDF-XChange Editor (HKLM-x32\...\{dfe99c19-edbd-4d93-ae19-76f8b67e3e00}) (Version: 9.1.356.0 - Tracker Software Products (Canada) Ltd.) ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden Pulse Application Launcher (HKLM-x32\...\{29E50328-E9AF-47D5-B50A-C038CC69560C}) (Version: 9.0.571 - Pulse Secure, LLC) Pulse Secure (HKLM\...\{FEC69636-ABCE-4E4F-B427-B80F3361FB64}) (Version: 9.1.12971 - Pulse Secure, LLC) Hidden Pulse Secure 9.1 (HKLM-x32\...\Pulse Secure 9.1) (Version: 9.1.12971 - Pulse Secure, LLC) Pulse Secure Setup Client (HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\Pulse_Setup_Client) (Version: 9.1.13.12971 - Pulse Secure, LLC) Pulse Secure Setup Client 64-bit Activex Control (HKLM\...\Pulse_Setup_Client Activex Control) (Version: 3.1.1.1 - Pulse Secure, LLC) Pulse Secure Setup Client Activex Control (HKLM-x32\...\Pulse_Setup_Client Activex Control) (Version: 3.1.1.1 - Pulse Secure, LLC) Pulse Secure Terminal Services Client (HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\Pulse_Term_Services) (Version: 9.0.1.63949 - Pulse Secure, LLC) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.19.627.2017 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9013.1 - Realtek Semiconductor Corp.) Skype Entreprise Basic 2016 - fr-fr (HKLM\...\SkypeforBusinessEntryRetail - fr-fr) (Version: 16.0.14827.20198 - Microsoft Corporation) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN) Windows Driver Package - ASUS (AsusPTPDrv) HIDClass (04/21/2017 11.0.0.16) (HKLM\...\7517F958DC823EE4C12050C16EFF05886960ABEF) (Version: 04/21/2017 11.0.0.16 - ASUS) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.10.0 - ASUSTeK COMPUTER INC.) WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\ZoomUMX) (Version: 5.9.6 (3799) - Zoom Video Communications, Inc.) Packages: ========= ASUS Battery Health Charging -> C:\Program Files\WindowsApps\B9ECED6F.ASUSBatteryHealthCharging_1.0.7.0_x86__qmba6cd70vzyy [2018-10-31] (ASUSTeK COMPUTER INC.) [Startup Task] ASUS Product Registration Program -> C:\Program Files\WindowsApps\B9ECED6F.ASUSProductRegistrationProgram_3.0.3.0_x86__qmba6cd70vzyy [2018-11-26] (ASUSTeK COMPUTER INC.) [Startup Task] ASUS Sync -> C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0 [2022-01-02] (Screenovate Technologies.) [Startup Task] Chronomètre + Compte à rebours -> C:\Program Files\WindowsApps\25342asdf3333.StoppuhrTimer_1.5.7.1000_x64__1xbryz0n7krfa [2020-03-31] (asdf3333) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-03-18] (Microsoft Corporation) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_1.23.4.0_x64__6rarf9sa4v8jt [2022-02-03] (Disney) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.11.277.0_x64__rz1tebttyb220 [2022-01-21] (Dolby Laboratories) eManual -> C:\Program Files\WindowsApps\B9ECED6F.eManual_2.0.3.0_x86__qmba6cd70vzyy [2018-11-26] (ASUSTeK COMPUTER INC.) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-04-27] (Microsoft Corporation) Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-28] (Microsoft Corporation) HP Scan and Capture -> C:\Program Files\WindowsApps\AD2F1837.HPScanandCapture_40.0.245.0_x64__v10z8vjag6ke6 [2021-04-27] (Hewlett-Packard Company) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_134.1.221.0_x64__v10z8vjag6ke6 [2022-01-27] (HP Inc.) Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2022-02-20] (Instagram) JW Library -> C:\Program Files\WindowsApps\WatchtowerBibleandTractSo.45909CDBADF3C_13.0.138.0_x64__5rz59y55nfz3e [2022-02-09] (Watchtower Bible and Tract Society of New York) LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2018-11-26] (LinkedIn) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-01-02] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-01-02] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.2180.0_x64__8wekyb3d8bbwe [2022-02-26] (Microsoft Studios) [MS Ad] Microsoft To Do -> C:\Program Files\WindowsApps\Microsoft.Todos_2.64.5521.0_x64__8wekyb3d8bbwe [2022-02-23] (Microsoft Corporation) [Startup Task] Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.962.0_x64__56jybvy8sckqj [2022-02-20] (NVIDIA Corp.) Splendid -> C:\Program Files\WindowsApps\B9ECED6F.Splendid_1.0.15.0_x64__qmba6cd70vzyy [2019-11-22] (ASUSTeK COMPUTER INC.) [Startup Task] Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0 [2022-02-18] (Spotify AB) [Startup Task] Telegram Desktop -> C:\Program Files\WindowsApps\TelegramMessengerLLP.TelegramDesktop_3.5.1.0_x64__t4vj0pshhgkwm [2022-02-07] (Telegram Messenger LLP) [Startup Task] Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2022.211.434.397_neutral__8wekyb3d8bbwe [2022-02-11] (Microsoft Corporation) Wunderlist: Liste des tâches -> C:\Program Files\WindowsApps\6Wunderkinder.Wunderlist_3.6.43.0_x64__b4cwydgxqx59r [2020-05-02] (6 Wunderkinder GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-993065428-933369047-1668157295-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\kenny\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21348.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-07-16] (Notepad++ -> ) ContextMenuHandlers1: [PDFXChange Editor Context menu] -> {2ACD35AB-F74A-4C20-AA9B-2DE80081626D} => C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x64.dll [2021-07-19] (TRACKER SOFTWARE PRODUCTS (CANADA) LIMITED -> Tracker Software Products (Canada) Ltd.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_fb9939a7d714d646\igfxDTCM.dll [2020-09-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_ce72d4a089c320b0\nvshext.dll [2022-02-10] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\kenny\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Modules chargés (Avec liste blanche) ============= 2011-09-05 18:05 - 2011-09-05 18:05 - 000336896 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\fr_FR\Acrobat Elements\ContextMenu64.fra 2022-01-19 19:42 - 2021-07-30 15:24 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Origin\LIBEAY32.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Origin\ssleay32.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\platforms\qwindows.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\Qt5Core.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\Qt5Gui.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\Qt5Network.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\Qt5WebSockets.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\Qt5Widgets.dll 2022-01-19 19:42 - 2021-07-30 15:24 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] D:\Origin\Qt5Xml.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Users\kenny\AppData\Local\ObfZSS7G:gvEo9amSTSWSdgJ50gXez3mUE0 [2034] ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-993065428-933369047-1668157295-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.bing.com/search?FORM=INCOH1&PC=IC05&PTAG=ICO-7ade236f HKU\S-1-5-21-993065428-933369047-1668157295-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus17win10.msn.com/?pc=ASTE SearchScopes: HKU\S-1-5-21-993065428-933369047-1668157295-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-10-31] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2011-09-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) DPF: HKLM {583C990C-2D38-410c-9A4A-0932D66A754F} hxxps://pulsesecure.net/dana-cached/sc/PulseSetupClient64.cab DPF: HKLM-x32 {8E375A63-C616-46F1-AC77-59DF78F3A826} hxxps://pulsesecure.net/dana-cached/sc/PulseSetupClient.cab Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-02-03] (Microsoft Corporation -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\sharepoint.com -> hxxps://jwsite-files.sharepoint.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-04-12 00:38 - 2021-07-23 15:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Android;C:\Program Files (x86)\Pulse Secure\VC142.CRT\X64\;C:\Program Files (x86)\Pulse Secure\VC142.CRT\X86\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR HKU\S-1-5-21-993065428-933369047-1668157295-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\kenny\Pictures\fond d'écran ilse.jpg DNS Servers: 10.60.16.23 - 10.60.21.56 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. Network Binding: ============= Ethernet 2: Juniper Network Service -> jnprns (disabled) Ethernet: Juniper Network Service -> jnprns (disabled) Wi-Fi: Juniper Network Service -> jnprns (disabled) ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0" HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher" HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager" HKLM\...\StartupApproved\Run32: => "Adobe ARM" HKLM\...\StartupApproved\Run32: => "PulseSecure" HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "HP ENVY 5540 series (NET)" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "Delete Cached Update Binary" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "Uninstall 18.240.1202.0004" HKU\S-1-5-21-993065428-933369047-1668157295-1001\...\StartupApproved\Run: => "Uninstall 18.240.1202.0004\amd64" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{8EB221A6-384C-4B18-98F3-4B0E8701FF47}] => (Allow) C:\Users\kenny\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{157FAF15-DA68-4020-A044-B11E111A4318}] => (Allow) C:\Users\kenny\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{4B8A9B85-2D53-473B-B50D-DF9C1A342A79}] => (Allow) C:\Users\kenny\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [UDP Query User{17A51050-358D-4796-B527-ED83A4CF1615}C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{2FFF2440-8772-41B6-AA20-4F9626D85B69}C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{F769D2DD-6CAD-44C8-AC1C-307B4B00C390}D:\program files (x86)\origin games\fifa 19\fifa19.exe] => (Allow) D:\program files (x86)\origin games\fifa 19\fifa19.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{1C07F320-783D-468E-9114-0A4A2B0B036F}D:\program files (x86)\origin games\fifa 19\fifa19.exe] => (Allow) D:\program files (x86)\origin games\fifa 19\fifa19.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C9818B02-1898-430D-8C1C-24C0F5200BDE}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{960FF8CC-1A00-4336-A7DB-A16D623BFF65}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{9FE6D626-0D42-4211-9A5E-D7A7A4E46D75}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0\app\ASUSSyncClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) [Fichier non signé] FirewallRules: [{0CD5A61B-0488-45CC-AA12-D024BA45C152}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0\app\ASUSSyncClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) [Fichier non signé] FirewallRules: [{4D81FDD2-639E-400F-A2AC-AF2DE8812AA7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [{A26D3D12-1F75-4013-B083-2B2F1561E4E9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation) FirewallRules: [UDP Query User{2A29830C-C709-4791-83E0-C46A924A84AC}D:\program files (x86)\origin games\fifa 19\fifa19.exe] => (Allow) D:\program files (x86)\origin games\fifa 19\fifa19.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [TCP Query User{94186BBF-0108-4C3E-BA35-E47316F2B0B0}D:\program files (x86)\origin games\fifa 19\fifa19.exe] => (Allow) D:\program files (x86)\origin games\fifa 19\fifa19.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C19F0264-041F-46FB-B288-0F8B79F6A7A7}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{8B11F78A-0D68-49BE-9409-5A3007BCCC6E}] => (Allow) LPort=5357 FirewallRules: [{06BDAC52-5C4D-44ED-97FE-4A699AC0CB4B}] => (Allow) C:\Program Files\HP\HP ENVY 5540 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{F54B7D4E-1A6F-4604-B95D-81AD0C9D4F3F}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16050.11029.20079.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C99352C9-F45B-4484-BEA9-70122E033AF4}] => (Allow) D:\Jeux Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [Fichier non signé] FirewallRules: [{D8D1A271-6579-48EB-A825-97C6DCCDC662}] => (Allow) D:\Jeux Steam\steamapps\common\No Man's Sky\Binaries\NMS.exe (Hello Games) [Fichier non signé] FirewallRules: [{1DF2AD42-C9B1-443B-9EB3-7087D7767349}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{05C56272-24B1-49DC-8B3D-66294917CAEF}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{E0495D7E-D464-45D7-AC49-E282E85FEBEF}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{B895C610-1646-442B-929F-42341C4F647C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{CEB2F0DE-1607-4083-8894-2D9ACFDF0AC0}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0\app\ASUSSyncClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) [Fichier non signé] FirewallRules: [{EE805C24-00B9-423D-B31E-887A4443ED4A}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0\app\ASUSSyncClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) [Fichier non signé] FirewallRules: [{8F4EEF19-1F68-4086-8B73-EE47AA4FE25C}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{32914092-EAE8-46E5-B720-E913A1941834}] => (Allow) D:\Program Files (x86)\Origin Games\FIFA 19\FIFASetup\fifaconfig.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{A201B5A1-79C3-46A1-85EA-9F5943612272}] => (Allow) C:\Users\kenny\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [TCP Query User{212618D6-F60A-4037-AB12-D297F8D5BAC3}C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{50A00776-5DE3-4175-862B-82E82101D62D}C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\kenny\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{72936ABD-E923-4F4E-9660-C6E182539D1E}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0\app\ASUSSyncClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) [Fichier non signé] FirewallRules: [{C117BB08-4CD5-450D-B1B6-4AAC912428D0}] => (Allow) C:\Program Files\WindowsApps\ScreenovateTechnologies.AsusVirtoo_2.4.8064.0_x64__0vhbc3ng4wbp0\app\ASUSSyncClient.exe (SCREENOVATE TECHNOLOGIES LTD. -> Screenovate Technologies Ltd.) [Fichier non signé] FirewallRules: [{D7E4D3E2-45C4-4A9A-BF8E-7BF410940767}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DAF107CD-1D1C-455B-9C11-0A37D8207191}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{3CA612D8-D71F-4EB9-BDF5-80AE7B5D3B26}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{073685B1-D3FB-48FD-B8C4-7649F421C6F7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D738C64A-46BB-43E5-8134-4B8897E9207D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C79E3C39-7EC5-4DDE-AD88-8C6251482DE1}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{9BEF2ECF-AC20-41D3-A588-EDC8026C222B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{0AAB816A-B6AE-41F6-880A-B80F150774BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{8B6B98C3-9A9B-42C7-BD1F-B25F93025B92}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{8BB7C795-2195-4264-B86F-8E79C42DF14D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{1BA61D05-1018-4D77-9ECF-945B27D8298A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation) FirewallRules: [{BB24959B-AF60-4209-BA57-87861A34DEF3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4AE0C16F-83AD-4662-912A-6CC96C88D353}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4826B9C6-FC55-4417-A2BD-19C7BB965738}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{7EACFF6F-3F8C-4426-AB20-4DBB47C8BD93}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.80.194.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1269503B-7EBB-445C-A9D7-33D709E7639C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{90F644F7-A474-405C-BFFA-099B1D9A1FAD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{87AE21C4-4F5D-44C8-843C-79124C9571D5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{55532989-ED75-4108-91D7-1F4D57E203D9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4BFEB1EC-93B1-4AE7-9732-BAABF879B69F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{26E04308-8208-41F5-B296-575DB76FF0BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{70FD08D6-DE95-4EDF-911A-EA83715DF453}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{4F7EFA03-0E2E-4E6E-8FD5-FDECB7280336}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{92DE655E-3334-437C-9366-8F649393D9CF}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.179.763.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{EACB6A0F-F2CB-4CA1-9754-A589441F84FA}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\98.0.1108.62\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F6365671-F965-441D-BAEA-427FCDF8E0FD}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22042.700.1195.9062_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DD2C1501-2F4A-4D58-94D2-24A914F1DD10}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22042.700.1195.9062_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FDF56477-91D7-4A07-A4E6-B45619FECB04}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe => Pas de fichier FirewallRules: [{F55FCB40-B680-48B2-A718-D386B8B75296}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe => Pas de fichier ==================== Points de restauration ========================= 19-02-2022 12:17:00 Point de contrôle planifié 20-02-2022 18:47:21 Programme d’installation pour les modules Windows 28-02-2022 09:47:19 Point de contrôle planifié 03-03-2022 00:08:46 Installed DriversCloud.com ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (03/03/2022 12:20:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante FreemakeUtilsService.exe, version : 1.0.0.0, horodatage : 0x5e78488f Nom du module défaillant : KERNELBASE.dll, version : 10.0.22000.527, horodatage : 0xc2abc35e Code d’exception : 0xe0434352 Décalage d’erreur : 0x0013ece2 ID du processus défaillant : 0x1270 Heure de début de l’application défaillante : 0x01d82e8c145ab64d Chemin d’accès de l’application défaillante : C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 86976144-721e-4efc-abac-39a752c0cc6f Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (03/03/2022 12:20:18 AM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : FreemakeUtilsService.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.IO.FileNotFoundException à FreemakeUtilsService.Program.Main(System.String[]) Error: (03/03/2022 12:19:45 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (03/03/2022 12:19:45 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (03/03/2022 12:19:45 AM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (03/03/2022 12:19:45 AM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (03/03/2022 12:18:59 AM) (Source: DSAService) (EventID: 1003) (User: ) Description: DSAService.exe:OnStart Exception: System.ArgumentException: invalid directory handle||Nom du paramètre : value|| à DSAServiceCore.Controllers.Computer.SettingsController.SetDsaDirectory(String value)|| à Intel.DSA.Service.Service.OnStartTask() Error: (02/27/2022 07:27:16 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme identity_helper.exe version 98.0.1108.62 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 50c8 Heure de début : 01d82c078b6524bb Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Program Files (x86)\Microsoft\Edge\Application\98.0.1108.62\identity_helper.exe ID de rapport : 1e6554a2-4147-4f11-a5e8-956c6f99c5e1 Nom complet du package défectueux : Microsoft.MicrosoftEdge.Stable_98.0.1108.56_neutral__8wekyb3d8bbwe ID de l'application relative à un package défectueux : App Type de blocage : Quiesce Erreurs système: ============= Error: (03/03/2022 09:16:32 AM) (Source: Server) (EventID: 2505) (User: ) Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{3A71852F-1885-4244-9219-B28531B35FBE} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer. Error: (03/03/2022 09:16:32 AM) (Source: Server) (EventID: 2505) (User: ) Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{3A71852F-1885-4244-9219-B28531B35FBE} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer. Error: (03/03/2022 12:20:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Freemake Improver n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (03/03/2022 12:20:21 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Freemake Improver. Error: (03/02/2022 11:20:43 PM) (Source: Server) (EventID: 2505) (User: ) Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{D48A74BE-89F3-4C6D-A5FB-C42E6F3A02B9} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer. Error: (03/02/2022 11:20:25 PM) (Source: Server) (EventID: 2505) (User: ) Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{3A71852F-1885-4244-9219-B28531B35FBE} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer. Error: (03/02/2022 09:21:58 PM) (Source: Server) (EventID: 2505) (User: ) Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{D48A74BE-89F3-4C6D-A5FB-C42E6F3A02B9} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer. Error: (03/02/2022 09:21:33 PM) (Source: Server) (EventID: 2505) (User: ) Description: Le serveur n’a pas pu se lier au transport \Device\NetBT_Tcpip_{3A71852F-1885-4244-9219-B28531B35FBE} car un autre ordinateur du réseau porte le même nom. Le serveur n’a pas pu démarrer. Windows Defender: ================ Date: 2022-03-02 10:54:11 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {B53B9A67-305F-4994-BAA8-B753FA2C3CB1} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-03-01 12:43:14 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {E4FF133F-0518-459A-9CEB-75B103E93BB8} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-02-28 09:35:24 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {1B43791A-5B25-4020-93BF-1698CE90F6BA} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse complète Utilisateur : AUTORITE NT\Système Date: 2022-02-28 09:35:19 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {C4E3CB36-D21C-4778-833D-0FCB89932BC6} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse complète Utilisateur : AUTORITE NT\Système Date: 2022-02-28 09:35:14 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {41DEA905-7AD3-4ECB-A531-68B8AE847B39} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse complète Utilisateur : AUTORITE NT\Système  ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. X705UDR.317 04/17/2019 Carte mère: ASUSTeK COMPUTER INC. X705UDR Processeur: Intel(R) Core(TM) i7-8550U CPU @ 1.80GHz Pourcentage de mémoire utilisée: 41% Mémoire physique - RAM - totale: 16270.52 MB Mémoire physique - RAM - disponible: 9580.64 MB Mémoire virtuelle totale: 18702.52 MB Mémoire virtuelle disponible: 10195.59 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:475.89 GB) (Free:320.25 GB) NTFS Drive d: (DATA) (Fixed) (Total:1863.02 GB) (Free:1525.95 GB) NTFS \\?\Volume{ddcdb402-a174-4a7d-a646-bbebd11cb015}\ (RECOVERY) (Fixed) (Total:0.78 GB) (Free:0.3 GB) NTFS \\?\Volume{0345fea2-1f01-4f37-af35-40b0e4e7bff2}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 1863 GB) (Disk ID: 8F014BA6) Partition: GPT. ========================================================== Disk: 1 (Size: 476.9 GB) (Disk ID: CEE9DCE1) Partition: GPT. ==================== Fin de Addition.txt =======================