Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 16-06-2022 Exécuté par xavie (18-06-2022 12:02:43) Exécuté depuis C:\Users\xavie\Downloads Microsoft Windows 10 Professionnel Version 21H2 19044.1766 (X64) (2020-06-10 12:59:58) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-774505180-2724163677-2308238838-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-774505180-2724163677-2308238838-503 - Limited - Disabled) Invité (S-1-5-21-774505180-2724163677-2308238838-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-774505180-2724163677-2308238838-504 - Limited - Disabled) xavie (S-1-5-21-774505180-2724163677-2308238838-1001 - Administrator - Enabled) => C:\Users\xavie ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: ESET Security (Enabled - Up to date) {DF8BEACB-94C9-218A-73AD-A78362A8C516} AV: ESET Security (Enabled - Up to date) {89B55CC4-3881-78B2-11E2-479AE0371896} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 4K Video Downloader (HKLM\...\{E9B4998F-85C5-4694-B95F-2390B6E63756}) (Version: 4.20.4.4870 - Open Media LLC) 7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov) Acronis True Image (HKLM-x32\...\{5B755A36-60DF-40E9-B490-D8A93421D547}) (Version: 24.8.38600 - Acronis) Hidden Acronis True Image (HKLM-x32\...\{5B755A36-60DF-40E9-B490-D8A93421D547}Visible) (Version: 24.8.38600 - Acronis) Adobe Acrobat 7.0 Standard - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 7.0 Standard - English, Français, Deutsch) (Version: 7.0.0 - Adobe Systems) Adobe Photoshop 7.0 (HKLM-x32\...\Adobe Photoshop 7.0) (Version: 7.0 - Adobe Systems, Inc.) AI Suite 3 (HKLM-x32\...\{CD36E28B-6023-469A-91E7-049A2874EC13}) (Version: 3.00.52 - ASUSTeK Computer Inc.) AnyDesk (HKLM-x32\...\AnyDesk) (Version: ad 7.0.8 - AnyDesk Software GmbH) Assistant Migration Windows (HKLM-x32\...\{F1662C1F-BBF5-4215-93E2-0EA5332C00B2}) (Version: 2.2.0.0 - Apple Inc.) aTube Catcher version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) BudgetExpress 4 (HKLM-x32\...\BudgetExpress 4) (Version: 4.0.4 - i2s Finance Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.1.15.23 - Canon Inc.) Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version: - ) Canon MX490 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX490_series) (Version: 1.02 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 6.00 - Piriform) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) Contrôle d’intégrité du PC Windows (HKLM\...\{C2812DB5-E3F5-44FF-8EA0-8E03F1B61103}) (Version: 3.3.2110.22002 - Microsoft Corporation) Crésus Comptabilité (HKLM-x32\...\Cresus) (Version: 12.2.004 - Epsitec SA) cresus_synchro (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\cresus_synchro) (Version: 1.12.4 - Epsitec SA) CrystalDiskInfo 8.11.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.11.2 - Crystal Dew World) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.9.0.0644 - Disc Soft Ltd) Dragon NaturallySpeaking 13 (HKLM-x32\...\{33EA20FB-5389-4938-BA59-2BCD9BB68F41}) (Version: 13.00.000 - Nuance Communications Inc.) ESET Security (HKLM\...\{0C3F76CB-98AA-49B1-9B72-CD040E3E17E8}) (Version: 15.1.12.0 - ESET, spol. s r.o.) Excel (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\1fc5b090eab9aa41f8a2f5987367e6da) (Version: 1.0 - Excel) EZCast Lite (HKLM-x32\...\{64F1DC10-EEB2-47E4-A86E-F5E3E3A56BE8}) (Version: 1.3.1.122 - Actions-Micro) Gestionnaire pour appareils Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation) GIMP 2.10.28 (HKLM\...\GIMP-2_is1) (Version: 2.10.28 - The GIMP Team) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 59.0.3.0 - Google LLC) Google Earth Pro (HKLM\...\{DE181B35-ACEF-4DB0-86D9-731D5767ABB1}) (Version: 7.3.4.8642 - Google) Google Photos Backup (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\Google Photos Backup) (Version: 1.1.4.11 - Google, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 102.0.5005.115 - Google LLC) GVAO (HKLM-x32\...\GVAO2020.21) (Version: 2020.21 - GVAO Software) HP Imaging Device Functions 14.5 (HKLM\...\HP Imaging Device Functions) (Version: 14.5 - HP) HP Scanjet G4050 (HKLM\...\{27E19BA1-B30F-4E97-835B-1481803F54DC}) (Version: 14.5 - HP) HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard) Java 8 Update 311 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180311F0}) (Version: 8.0.3110.11 - Oracle Corporation) Logiciel Logitech Unifying 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) Logitech Options (HKLM\...\LogiOptions) (Version: 8.10.84 - Logitech) Logitech SetPoint 6.70 (HKLM\...\sp6) (Version: 6.70.55 - Logitech) Malwarebytes version 4.5.9.198 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.9.198 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 102.0.1245.41 - Microsoft Corporation) Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.15225.20204 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\Teams) (Version: 1.5.00.12969 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{4cadd82e-f9f2-4f69-bcfd-a0b929d8e6e2}) (Version: 14.0.23918.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24212 (HKLM-x32\...\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}) (Version: 14.0.24212.0 - Microsoft Corporation) Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.23918 (HKLM\...\{DFFEB619-5455-3697-B145-243D936DB95B}) (Version: 14.0.23918 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.23918 (HKLM\...\{7B50D081-E670-3B43-A460-0E2CDB5CE984}) (Version: 14.0.23918 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24212 (HKLM-x32\...\{844ECB74-9B63-3D5C-958C-30BD23F19EE4}) (Version: 14.0.24212 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24212 (HKLM-x32\...\{37B55901-995A-3650-80B1-BBFD047E2911}) (Version: 14.0.24212 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Molotov 4.5.0 (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\13767fb8-1090-5f10-9b1e-b497b7aff594) (Version: 4.5.0 - Molotov) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 101.0.1 (x64 fr)) (Version: 101.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 92.0.1 - Mozilla) Mozilla Thunderbird (x64 fr) (HKLM\...\Mozilla Thunderbird 91.10.0 (x64 fr)) (Version: 91.10.0 - Mozilla) MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation) NVIDIA Pilote 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation) NVIDIA Pilote graphique 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation) NVIDIA Stereoscopic 3D Driver (HKLM-x32\...\NVIDIAStereo) (Version: 7.17.13.7500 - NVIDIA Corporation) Hidden OCR Software by I.R.I.S. 14.5 (HKLM\...\HPOCR) (Version: 14.5 - HP) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15225.20150 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15225.20194 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15128.20178 - Microsoft Corporation) Hidden Outlook (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\6b0f23e57a39ebfbf2814acb1a24293d) (Version: 1.0 - Outlook) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Revo Uninstaller 2.3.8 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.3.8 - VS Revo Group, Ltd.) Skype Meetings App (HKLM-x32\...\{BC1D9E47-8927-4AA1-A891-7763BC2475B7}) (Version: 16.2.0.511 - Microsoft Corporation) Skype version 8.83 (HKLM-x32\...\Skype_is1) (Version: 8.83 - Skype Technologies S.A.) SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.4.0.32771 - Microsoft Corporation) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.28.9 - TeamViewer) TechPowerUp GPU-Z (HKLM-x32\...\{8B0F211E-5846-4FB2-B0B9-4EB31546FDF9}}_is1) (Version: - TechPowerUp) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0-2) (Version: 1.0.61.0 - LunarG, Inc.) Hidden Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.7.0 - Azureus Software, Inc.) WD Backup (HKLM-x32\...\{2d518703-86c4-46c8-99c1-f3789dd3ecd0}) (Version: 1.9.7435.38388 - Western Digital Technologies, Inc.) WD Backup (HKLM-x32\...\{5491B486-8812-4202-AB8C-865AB636ACF0}) (Version: 1.9.7435.38388 - Western Digital Technologies, Inc) Hidden WD Desktop App 2.1.0.324 (HKLM-x32\...\{cb395f8f-3f97-4959-a1e8-e381a746d71b}) (Version: 2.1.0.324 - Western Digital Corporation) Hidden WD Desktop App 2.1.0.324 (x64) (HKLM\...\{CA7F7232-526E-41BD-971A-47BE28C18516}) (Version: 2.1.0.324 - Western Digital Corporation) Hidden WD Discovery (HKLM-x32\...\WDDiscovery) (Version: 4.3.361 - Western Digital Technologies, Inc.) WD SES Driver Setup (HKLM-x32\...\{924A274D-38B6-4930-8859-F3F51CFA8DDD}) (Version: 1.1.0.25 - Western Digital) Hidden Webshots 5.7.1 (HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\76ab6133-57d2-5ec6-9e77-757d0cb1f6ef) (Version: 5.7.1 - Webshots) Webshots Desktop (HKLM-x32\...\Webshots Desktop_is1) (Version: - AGCM) Webshots Toolbar (HKLM-x32\...\Webshots Toolbar) (Version: - ) WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) WinZip 26.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2413F}) (Version: 26.0.15033 - Corel Corporation) Youtube Downloader HD v. 3.0 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com) Packages: ========= AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.51091.0_x64__8wekyb3d8bbwe [2022-05-07] (Microsoft Corporation) Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.82.1.0_x64__kgqvnymyfvs32 [2022-06-08] (king.com) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-09-21] (Microsoft Corporation) Cool File Viewer -> C:\Program Files\WindowsApps\20815shootingapp.AirFileViewer_1.4.14.0_x86__xcg28tkrsnqww [2021-10-10] (Cool File Viewer) Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-05-07] (Microsoft Corporation) Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.82.2.0_x64__kgqvnymyfvs32 [2022-06-03] (king.com) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_136.1.269.0_x64__v10z8vjag6ke6 [2022-05-03] (HP Inc.) Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_1530.18.110.0_x64__8xx8rvfyw5nnt [2022-06-14] (Meta) [Startup Task] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-06-11] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-06-11] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.5310.0_x64__8wekyb3d8bbwe [2022-06-07] (Microsoft Studios) [MS Ad] PowerPoint -> C:\Program Files\WindowsApps\powerpoint.office.com-8D456796_1.0.0.0_neutral__sxc7ffma4ybfy [2022-04-11] (powerpoint.office.com) Word -> C:\Program Files\WindowsApps\word.office.com-CECA1A7F_1.0.0.1_neutral__jc2kecmnkxwqc [2021-11-03] (word.office.com) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-774505180-2724163677-2308238838-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\xavie\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.22117.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-774505180-2724163677-2308238838-1001_Classes\CLSID\{3E3AD4BD-346A-460A-80E8-90699B75C00B}\InprocServer32 -> C:\Users\xavie\AppData\Local\Microsoft\SkypeForBusinessPlugin\16.2.0.511\GatewayActiveX-x64.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-774505180-2724163677-2308238838-1001_Classes\CLSID\{69545769-8D02-4B07-A481-AD374CD8D5D1}\InprocServer32 -> C:\Users\xavie\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll (Google LLC -> Google LLC) CustomCLSID: HKU\S-1-5-21-774505180-2724163677-2308238838-1001_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\xavie\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll (Google LLC -> Google LLC) CustomCLSID: HKU\S-1-5-21-774505180-2724163677-2308238838-1001_Classes\CLSID\{CB2B673F-D441-4CD4-AFBE-DC4037CA4220}\InprocServer32 -> C:\Program Files\WinZip\adxloader64.WinZipExpressForOffice.dll (Corel Corporation -> ) CustomCLSID: HKU\S-1-5-21-774505180-2724163677-2308238838-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\xavie\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll (Google LLC -> Google LLC) SSODL: WDFSMountNotificator-wdfsconnect2017 - {E942AD2C-0328-4D8C-99E3-1C520B331C52} - C:\Windows\system32\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Fichier non signé] SSODL-x32: WDFSMountNotificator-wdfsconnect2017 - {E942AD2C-0328-4D8C-99E3-1C520B331C52} - C:\Windows\SysWOW64\wdfsconnectMntNtf2017.dll (Western Digital Technologies, Inc.) [Fichier non signé] ShellServiceObjects: Virtual Storage Mount Notification -> {E942AD2C-0328-4D8C-99E3-1C520B331C52} => C:\Windows\system32\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Fichier non signé] ShellServiceObjects-x32: Virtual Storage Mount Notification -> {E942AD2C-0328-4D8C-99E3-1C520B331C52} => C:\Windows\SysWOW64\wdfsconnectMntNtf2017.dll [2017-11-10] (Western Digital Technologies, Inc.) [Fichier non signé] ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay01] -> {4F8A325E-9DAF-44B8-A825-1A14DFA0FA78} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay02] -> {0176BDDE-B59A-4A1E-808B-CAD461415CCA} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay03] -> {B65909D1-57AF-41F5-AB94-BEB733F62B35} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay04] -> {C6C2397D-8238-4332-8935-86C39C7C165F} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay05] -> {E7B3BCF9-0386-4B5F-AE6A-91B9F1423973} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ WDDesktopIconOverlay06] -> {564EA121-D9DA-485D-82C2-C2ED7BFCCEAD} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_8_38600.dll [2021-12-23] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_8_38600.dll [2021-12-23] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_8_38600.dll [2021-12-23] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64_24_8_38600.dll [2021-12-23] (Acronis International GmbH -> ) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1-x32: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat Elements\ContextMenu.dll [2004-12-14] (Adobe Systems Inc.) [Fichier non signé] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2022-04-02] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers1: [WDDesktopContextMenu] -> {6bb2ba55-fdbb-3249-9bb5-65f3603e8826} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2022-03-03] (Corel Corporation -> WinZip Computing) ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2022-04-02] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\DTShl64.dll [2018-10-17] (AVB Disc Soft, SIA -> Disc Soft Ltd) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-17] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd) ContextMenuHandlers4: [WDDesktopContextMenu] -> {6bb2ba55-fdbb-3249-9bb5-65f3603e8826} => C:\Program Files\WD Desktop App\kda.DLL [2021-11-26] (Western Digital Technologies, Inc. -> Western Digital Corporation) ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2022-03-03] (Corel Corporation -> WinZip Computing) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\59.0.3.0\drivefsext.dll [2022-06-08] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Security\shellExt.dll [2022-04-02] (ESET, spol. s r.o. -> ESET) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-05-17] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2022-04-06] (Piriform Software Ltd -> Piriform Software Ltd) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2022-03-03] (Corel Corporation -> WinZip Computing) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Fichier non signé] HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Fichier non signé] ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\xavie\Desktop\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ShortcutWithArgument: C:\Users\xavie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Excel.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=leffmjdabcgaflkikcefahmlgpodjkdm ShortcutWithArgument: C:\Users\xavie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outlook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=bjhmmnoficofgoiacjaajpkfndojknpb ShortcutWithArgument: C:\Users\xavie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml ==================== Modules chargés (Avec liste blanche) ============= 2022-03-08 16:35 - 2022-02-18 14:18 - 027004928 _____ () [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Programs\webshots\resources\app.asar.unpacked\node_modules\sharp\build\Release\libvips-42.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 000344064 _____ () [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Programs\webshots\resources\app.asar.unpacked\node_modules\sharp\build\Release\libvips-cpp.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 000523776 _____ () [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Programs\webshots\resources\app.asar.unpacked\node_modules\sharp\build\Release\sharp.node 2022-06-18 11:54 - 2022-06-18 11:54 - 000149504 _____ () [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Temp\053f8cea-347a-4568-bceb-d7937e92dfe6.tmp.node 2022-06-18 11:54 - 2022-06-18 11:54 - 000592896 _____ () [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Temp\adbd8779-4f05-4bae-8cc1-152bffdac0ae.tmp.node 2022-06-18 11:54 - 2022-06-18 11:54 - 001095680 _____ () [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Temp\e70dbe56-4cdb-4345-8dfa-bd17972aed2e.tmp.node 2020-06-10 15:38 - 2019-03-22 22:45 - 000147456 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll 2020-06-10 15:40 - 2019-05-22 17:30 - 000882688 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll 2020-06-10 15:40 - 2019-05-22 17:30 - 000991744 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll 2020-06-10 15:40 - 2019-06-19 14:14 - 000986624 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll 2020-06-10 15:40 - 2019-05-22 17:30 - 000948224 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll 2020-06-10 15:40 - 2019-05-22 17:30 - 001556480 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\EPU.dll 2020-06-10 15:38 - 2019-06-14 10:33 - 001163776 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll 2020-06-10 15:38 - 2019-05-13 16:44 - 005843732 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll 2020-06-10 15:38 - 2019-05-13 16:44 - 000208896 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll 2020-06-10 15:38 - 2019-05-13 16:44 - 000681984 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\UIImprovmentHelper.dll 2020-06-10 15:39 - 2017-09-19 10:12 - 000684032 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\PhoneCtrlAPI.dll 2020-06-10 15:39 - 2017-09-19 10:12 - 000459776 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\WiFiGO_HookKey.dll 2020-06-10 15:39 - 2017-09-19 10:12 - 000253952 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\WiFile\pngio.dll 2020-06-10 15:39 - 2017-09-19 10:12 - 000753664 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\WiMoveHelp.dll 2020-06-10 15:39 - 2017-12-25 10:44 - 001567744 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\WiFiGO.dll 2020-06-10 15:40 - 2019-05-14 10:45 - 006065152 ____R () [Fichier non signé] C:\Program Files (x86)\ASUS\AsusFanControlService\2.00.77\libprotobufd.dll 2020-06-10 15:38 - 2019-03-28 09:20 - 000242176 ____R () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\4.00.38\cpuutil.dll 2020-06-10 15:39 - 2019-05-22 11:31 - 000065536 ____R () [Fichier non signé] C:\Program Files (x86)\ASUS\VGA COM\2.00.04\Exeio.dll 2020-06-10 15:39 - 2019-05-22 11:31 - 001774592 ____R () [Fichier non signé] C:\Program Files (x86)\ASUS\VGA COM\2.00.04\Vender.dll 2020-06-10 15:39 - 2017-09-19 10:12 - 000195584 _____ () [Fichier non signé] C:\Program Files (x86)\InstallShield Installation Information\{924FB30F-AA59-453D-A921-39810BDD29C1}\CloudAPI\CloudAPI.dll 2022-03-11 11:10 - 2022-03-11 11:10 - 001987072 _____ () [Fichier non signé] C:\Program Files (x86)\Western Digital\Discovery\Current\ffmpeg.dll 2022-03-11 11:10 - 2022-03-11 11:10 - 000117248 _____ () [Fichier non signé] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libegl.dll 2022-03-11 11:10 - 2022-03-11 11:10 - 002250240 _____ () [Fichier non signé] C:\Program Files (x86)\Western Digital\Discovery\Current\swiftshader\libglesv2.dll 2020-11-15 01:10 - 2020-11-15 01:10 - 000144896 _____ () [Fichier non signé] C:\Program Files\Common Files\Logishrd\LAClient\libssh2.dll 2020-11-15 01:10 - 2020-11-15 01:10 - 000077824 _____ () [Fichier non signé] C:\Program Files\Common Files\Logishrd\LAClient\zlib.dll 2021-07-26 03:54 - 2021-07-26 03:54 - 002637985 _____ () [Fichier non signé] C:\Program Files\WD Desktop App\libfusewdfs.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000144896 _____ () [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\libssh2.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000077824 _____ () [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\zlib.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 002690560 _____ () [Fichier non signé] C:\Users\xavie\AppData\Local\Programs\webshots\ffmpeg.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 000441344 _____ () [Fichier non signé] C:\Users\xavie\AppData\Local\Programs\webshots\libegl.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 008018432 _____ () [Fichier non signé] C:\Users\xavie\AppData\Local\Programs\webshots\libglesv2.dll 2004-12-14 03:27 - 2004-12-14 03:27 - 000019456 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat 7.0\Distillr\AcroTray.DEU 2004-12-14 03:25 - 2004-12-14 03:25 - 000019968 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat 7.0\Distillr\acrotray.fra 2020-06-10 15:38 - 2019-03-22 22:45 - 000108544 _____ (ASUS) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsAcpi.dll 2020-06-10 15:38 - 2022-06-18 11:53 - 000035072 _____ (ASUSTeK Computer Inc. -> ) [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\4.00.38\PEbiosinterface32.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000676864 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\asacpiEx.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000221184 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsMultiLang.dll 2020-06-10 15:40 - 2019-05-22 17:30 - 000221184 _____ (ASUSTeK Computer Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\DIP4\AsMultiLang.dll 2020-06-10 15:39 - 2017-09-19 10:12 - 003147776 _____ (ASUSTek COMPUTER INC.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\asusnatnl.dll 2020-06-10 15:39 - 2019-05-22 11:31 - 000106496 ____R (ASUSTek Computer Inc.,) [Fichier non signé] C:\Program Files (x86)\ASUS\VGA COM\2.00.04\EIO.DLL 2020-06-10 15:39 - 2017-09-19 10:12 - 000327680 _____ (AWIND Inc.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\MirrorOpServiceSender.dll 2020-11-09 11:21 - 2021-12-26 16:00 - 000093696 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2022-04-11 15:20 - 2022-04-11 15:20 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2022-04-11 15:20 - 2022-04-11 15:20 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2020-12-23 11:41 - 2017-10-27 18:06 - 000760032 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI.dll 2020-12-23 11:41 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll 2020-12-23 11:41 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll 2020-11-15 01:10 - 2020-11-15 01:10 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Fichier non signé] C:\Program Files\Common Files\Logishrd\LAClient\LIBCURL.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000355840 _____ (The cURL library, hxxp://curl.haxx.se/) [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBCURL.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 001619968 _____ (The GLib developer community) [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Programs\webshots\resources\app.asar.unpacked\node_modules\sharp\build\Release\libglib-2.0-0.dll 2022-03-08 16:35 - 2022-02-18 14:18 - 000363520 _____ (The GLib developer community) [Fichier non signé] \\?\C:\Users\xavie\AppData\Local\Programs\webshots\resources\app.asar.unpacked\node_modules\sharp\build\Release\libgobject-2.0-0.dll 2019-03-25 20:30 - 2019-03-25 20:30 - 025338368 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icudt54.dll 2019-03-25 20:30 - 2019-03-25 20:30 - 002056704 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icuin54.dll 2019-03-25 20:30 - 2019-03-25 20:30 - 001425408 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icuuc54.dll 2020-11-15 01:10 - 2020-11-15 01:10 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\Common Files\Logishrd\LAClient\LIBEAY32.dll 2020-11-15 01:10 - 2020-11-15 01:10 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files\Common Files\Logishrd\LAClient\SSLEAY32.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 002286747 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\LIBEAY32.dll 2019-10-21 14:56 - 2019-10-21 14:56 - 000416627 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\SSLEAY32.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000078336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qgifd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000102400 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qicnsd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000079360 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qicod.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000668160 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qjpegd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000062976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qsvgd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000062464 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qtgad.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000654848 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qtiffd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000060416 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qwbmpd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000927744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\imageformats\qwebpd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 003420672 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\platforms\qwindowsd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 010995712 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Cored.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 011535360 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Guid.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000568320 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Svgd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 009089024 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Widgetsd.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000312832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\Qt5Xmld.dll 2020-06-10 15:38 - 2019-03-22 22:45 - 000303616 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files (x86)\ASUS\AI Suite III\AsPowerBar\styles\qwindowsvistastyled.dll 2020-06-10 15:39 - 2019-05-22 11:31 - 000193536 ____R (TODO: ) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\ASUS\VGA COM\2.00.04\AsusGpuTweak.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:0FF263E8 [168] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-774505180-2724163677-2308238838-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.webshots.com/r/internal/start/client/RAND HKU\S-1-5-21-774505180-2724163677-2308238838-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie BHO: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking13\Program\x64\dgnriaie_x64.dll [2014-11-04] (Nuance Communications, Inc. -> Nuance Communications, Inc.) BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO-x32: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-04-11] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Dragon Web Extension For Internet Explorer -> {609C0837-8DD3-4F9B-AAC5-446F36BC0353} -> C:\Program Files (x86)\Nuance\NaturallySpeaking13\Program\dgnriaie.dll [2014-11-04] (Nuance Communications, Inc. -> Nuance Communications, Inc.) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\ssv.dll [2021-11-21] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: AcroIEToolbarHelper Class -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated) [Fichier non signé] BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\jp2ssv.dll [2021-11-21] (Oracle America, Inc. -> Oracle Corporation) Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2004-12-14] (Adobe Systems Incorporated) [Fichier non signé] Toolbar: HKLM-x32 - Webshots Toolbar - {C17590D2-ECB4-4b15-8820-F58798DCC118} - C:\Program Files (x86)\Webshots\WSToolbar4IE.dll [2008-08-15] (Webshots.com) [Fichier non signé] Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-05-29] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\ HKU\S-1-5-21-774505180-2724163677-2308238838-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\xavie\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run: => "WinZip FAH" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "DNS7reminder" HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount" HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\StartupApproved\Run: => "ISUSPM" HKU\S-1-5-21-774505180-2724163677-2308238838-1001\...\StartupApproved\Run: => "FreeCall" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{F1670391-1023-4CBF-9116-1F60CF9D8AFF}C:\programdata\logishrd\logioptions\software\current\logioptionsmgr.exe] => (Block) C:\programdata\logishrd\logioptions\software\current\logioptionsmgr.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [UDP Query User{26D33738-31B8-426C-8C4D-3C633C70308E}C:\programdata\logishrd\logioptions\software\current\logioptionsmgr.exe] => (Block) C:\programdata\logishrd\logioptions\software\current\logioptionsmgr.exe (Logitech Inc -> Logitech, Inc.) FirewallRules: [{06D744C6-3A98-408A-9A49-2C66B8005E91}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{1CB1DE16-0939-42F8-829C-1BCC5F9CDFF9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{5174734B-61D0-4A90-8387-8573B85CBF3F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> ) FirewallRules: [{9DBCAABE-1439-49B7-9104-68BF2F7BE5DF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH) FirewallRules: [{EB0FE7EC-1B79-4919-A478-8A8F67FD16F5}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> ) FirewallRules: [{ADFA919E-D16A-40CB-A6C4-EADF88DB455B}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> ) FirewallRules: [{0479432C-D31D-4AB6-8749-09BBAB88CABD}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> ) FirewallRules: [{AE32115C-6488-4551-AE23-EC5D54ACDB1C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> ) FirewallRules: [{55B6CA01-0C73-4B88-972F-9D968C29AFE9}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> ) FirewallRules: [{EEF208BC-EFAB-4D3D-B181-CC6F08E1CC5F}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> ) FirewallRules: [{6950B2F8-C14B-4F92-B32E-8AC6359590DF}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> ) FirewallRules: [{D40F953E-74CB-4AEA-B5E3-3C682112AA11}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH) FirewallRules: [{0190580E-E038-4DFC-8B7C-116FB56FC7FE}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> ) FirewallRules: [{91CD6ACB-C232-4AE3-8C7C-C28BE703DD25}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> ) FirewallRules: [{C15DBD61-CECE-4B45-B170-EE97CF68AFE0}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> ) FirewallRules: [{FCCD0630-745D-4D35-92BC-92D32BECC3EF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> ) FirewallRules: [{3BA59A8E-99B0-4454-B732-ADF05B5DC7BC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> ) FirewallRules: [{B8DD92A6-7213-4652-9F1F-89C88406C743}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E8E0B157-17B3-49CB-A88C-976B103FE4CE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6137887A-3B70-4BD9-88BB-C89A965C914E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{7C241CA9-175E-4DD4-89E4-000F35B5D200}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{AB13D6C8-032E-42F1-B1BD-E0CF37096BFB}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{4F667152-5952-4674-ACCD-B6FBFF48084F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{979ADFC4-BE85-4731-B654-9FBB1B778200}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6ADAA929-E0C7-4ADF-BE65-42B6823EBC75}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{E193CCFF-236E-49C9-AE9A-7BC5DB6C345D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{04258062-BE3D-435A-AAED-9E34B94171B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.83.3409.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{4C48AFD1-FB6F-4F6B-B690-1937EB1C8A8F}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{093E4795-CACA-42E6-873B-2F91DF974364}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{3B3A5EF8-E005-4290-8337-98FFD8F2A66A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{439E609F-8AC2-4C55-98E4-18578D5EB3AF}] => (Allow) C:\Program Files\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{CC630FC3-F4F3-495C-AA19-DED7371F438D}] => (Allow) C:\Program Files\Vuze\Azureus.exe (Azureus Software, Inc. -> Azureus Software, Inc) FirewallRules: [{D53BB0DE-A45F-4490-BB86-6F5CFB93BA01}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{71A7B19B-9A22-41B9-A2F6-87A6E9116062}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{3883AF15-BD6E-4156-AEA0-13DE49D80F14}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{AF8F5B67-1221-4091-9706-129A95EDD5D0}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{654A166E-E93D-4AD3-BC13-6F65800B3FF1}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{1C7D4AA8-C861-4F45-9968-6FF059BFCE4D}] => (Allow) C:\Program Files (x86)\AnyDesk\AnyDesk.exe (philandro Software GmbH -> AnyDesk Software GmbH) FirewallRules: [{0A90D741-6170-4213-8A71-776566F7BF7C}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [{41E705E8-7CCE-4F23-ACD0-A291C02AA496}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\File Transfer\Wi-Fi GO! AssistTool\File Transfer Server.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [{BEDBCDB1-D286-4F73-B7A5-5A066A8926F2}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\ASUSDMS.exe => Pas de fichier FirewallRules: [{E12AE48C-3725-4297-820A-3373BA2C520D}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\ASUSDMS.exe => Pas de fichier ==================== Points de restauration ========================= ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Contrôleur de codage/décodage PCI Description: Contrôleur de codage/décodage PCI Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (06/18/2022 11:54:00 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname Xavier.local already in use; will try Xavier-2.local instead Error: (06/18/2022 11:54:00 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister 4 Xavier.local. Addr 192.168.1.13 Error: (06/18/2022 11:54:00 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.13:5353 16 Xavier.local. AAAA 2A01:CB1D:8C91:2500:8067:BDC6:DD02:25DF Error: (06/18/2022 11:53:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 16 Xavier.local. AAAA FE80:0000:0000:0000:8067:BDC6:DD02:25DF Error: (06/18/2022 11:53:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.13:5353 16 Xavier.local. AAAA 2A01:CB1D:8C91:2500:8067:BDC6:DD02:25DF Error: (06/18/2022 11:53:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Resetting to Probing: 4 Xavier.local. Addr 192.168.1.13 Error: (06/18/2022 11:53:59 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: mDNSCoreReceiveResponse: Received from 192.168.1.13:5353 16 Xavier.local. AAAA 2A01:CB1D:8C91:2500:8067:BDC6:DD02:25DF Error: (06/18/2022 11:41:39 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Local Hostname Xavier.local already in use; will try Xavier-2.local instead Erreurs système: ============= Error: (06/18/2022 11:55:59 AM) (Source: DCOM) (EventID: 10010) (User: XAVIER) Description: Le serveur {373E19B5-76AA-46D5-93A9-2E39A99B39B2} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/18/2022 11:55:53 AM) (Source: WcesComm) (EventID: 2) (User: ) Description: Échec du démarrage du service de connectivité de l'appareil Windows Mobile 2003 du fait de l'échec de CreateSemaphore(0x80070005) (voir les données pour connaître le code d'échec). Error: (06/18/2022 11:53:59 AM) (Source: WcesComm) (EventID: 2) (User: ) Description: Échec du démarrage du service de connectivité de l'appareil Windows Mobile 2003 du fait de l'échec de CreateSemaphore(0x80070005) (voir les données pour connaître le code d'échec). Error: (06/18/2022 11:53:25 AM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORITE NT) Description: C:\Device\HarddiskVolume33 Error: (06/18/2022 11:53:44 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 11:41:24 le ‎18/‎06/‎2022 n’était pas prévu. Error: (06/18/2022 11:53:22 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Error: (06/18/2022 11:43:39 AM) (Source: DCOM) (EventID: 10010) (User: XAVIER) Description: Le serveur {373E19B5-76AA-46D5-93A9-2E39A99B39B2} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (06/18/2022 11:43:33 AM) (Source: WcesComm) (EventID: 2) (User: ) Description: Échec du démarrage du service de connectivité de l'appareil Windows Mobile 2003 du fait de l'échec de CreateSemaphore(0x80070005) (voir les données pour connaître le code d'échec). Windows Defender: ================ Date: 2020-10-28 08:53:30 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {9AEEB1F7-41C1-4C9A-9C9D-C5208A774170} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2020-10-28 08:48:14 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {0517468C-8805-4278-A10D-9313737A771C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2022-06-18 12:02:51 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-06-18 12:01:10 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\ESET\ESET Security\ekrn.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-06-18 11:56:17 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 1820 09/12/2019 Carte mère: ASUSTeK COMPUTER INC. TUF B450-PLUS GAMING Processeur: AMD Ryzen 5 3600 6-Core Processor Pourcentage de mémoire utilisée: 43% Mémoire physique - RAM - totale: 16312.57 MB Mémoire physique - RAM - disponible: 9280.43 MB Mémoire virtuelle totale: 21944.57 MB Mémoire virtuelle disponible: 13665.68 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:476.32 GB) (Free:353.26 GB) (Model: Samsung SSD 850 PRO 512GB) NTFS Drive d: (Documents PERSO) (Fixed) (Total:886.44 GB) (Free:683.82 GB) (Model: WDC WDS200T2B0A-00SM50) NTFS Drive e: (Documents PRO) (Fixed) (Total:488.28 GB) (Free:323.37 GB) (Model: WDC WDS200T2B0A-00SM50) NTFS Drive f: (Données Sensibles) (Fixed) (Total:488.28 GB) (Free:66.61 GB) (Model: WDC WDS200T2B0A-00SM50) NTFS Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:10.8 GB) (Model: Samsung SSD 850 PRO 512GB) FAT32 Drive h: (My Book) (Fixed) (Total:2794.49 GB) (Free:1254.82 GB) (Model: WD My Book 1230 USB Device) NTFS Drive i: (My Book ) (Fixed) (Total:3726.02 GB) (Free:2595.84 GB) (Model: WD My Book 25ED USB Device) NTFS Drive j: (Sauvegarde) (Fixed) (Total:7452 GB) (Free:6604.59 GB) (Model: WD My Book 25ED USB Device) exFAT Drive k: (My Book) (Fixed) (Total:2794.52 GB) (Free:1969.98 GB) (Model: WD My Book 25DA USB Device) NTFS Drive r: (Disque ) (Fixed) (Total:931.51 GB) (Free:931.38 GB) (Model: SAMSUNG HD103SJ) NTFS Drive s: (ARSENE_LUPIN_S1_DVD1) (CDROM) (Total:7.21 GB) (Free:0 GB) UDF \\?\Volume{2f0c5fe3-acf6-4a24-a032-ee6a82bdbb09}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS \\?\Volume{8f2bdc27-02f3-49fa-bed8-4407f814d4e7}\ () (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 476.9 GB) (Disk ID: 6200FE29) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1A1FCD76) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 3 (Size: 2794.5 GB) (Disk ID: 16F2A91F) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 4. ========================================================== Disk: 5 (Size: 3726 GB) (Disk ID: 16F2A91F) Partition: GPT. ========================================================== Disk: 6 (Size: 7452 GB) (Disk ID: 16F2A91F) Partition: GPT. ==================== Fin de Addition.txt =======================