Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-08-2022 Exécuté par carol (03-09-2022 20:25:32) Exécuté depuis D:\Users\carol\Desktop Microsoft Windows 11 Famille Version 21H2 22000.856 (X64) (2021-11-01 17:41:35) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1732813785-2882062131-2810007178-500 - Administrator - Disabled) carol (S-1-5-21-1732813785-2882062131-2810007178-1001 - Administrator - Enabled) => C:\Users\carol DefaultAccount (S-1-5-21-1732813785-2882062131-2810007178-503 - Limited - Disabled) Invité (S-1-5-21-1732813785-2882062131-2810007178-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1732813785-2882062131-2810007178-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: System Shield (Disabled - Up to date) {CFD1F43D-7501-B54F-88CE-D3F6D5EF8990} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) A.C.: H.Poirot - The First Cases (HKLM-x32\...\A.C.: H.Poirot - The First Cases_is1) (Version: - ) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 22.002.20191 - Adobe Systems Incorporated) Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Ateliers autonomes - CP 1.0.0 (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\{1fd5db85-b66c-501e-8dc3-c0fe91ba8bf9}) (Version: 1.0.0 - Pat) Audacity 3.1.3 (HKLM-x32\...\Audacity_is1) (Version: 3.1.3 - Audacity Team) Avast Premium Sécurité (HKLM\...\Avast Antivirus) (Version: 22.8.6030 - Avast Software) Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1206.2 - AVAST Software) Hidden CanoScan Toolbox Ver4.9 (HKLM-x32\...\{CA9BCD4D-B782-4637-8F1F-F9A328D3C244}) (Version: - ) Dazzle Video Capture DVC100 X64 Driver 1.09 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.09.0000 - Pinnacle) Hidden DazzleBDAX64 (HKLM-x32\...\{F28AD4BC-AE49-4735-9E50-64212BD2083B}) (Version: 1.06.0000 - Corel) Hidden Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 1.82 - NCH Software) Driver Booster 9 (HKLM-x32\...\Driver Booster_is1) (Version: 9.0.0 - IObit) Epic Games Launcher (HKLM-x32\...\{552310DB-28E3-4FD5-AF92-472667902DFA}) (Version: 1.1.291.0 - Epic Games, Inc.) Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden FormatFactory 5.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 5.4.0.0 - Free Time) Freezer 1.1.17 (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\6a8de3ec-77bc-5daa-a2f5-144fe44d3ebc) (Version: 1.1.17 - ) FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus) GigaTribe (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\{775b88a6-f44e-4c5f-afc2-1fea7b7c31b2}) (Version: 3.06.004 - D1FFER) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.13 - Google LLC) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 104.0.5112.102 - Google LLC) HiSuite (HKLM-x32\...\Hi Suite) (Version: 11.0.0.500 - Huawei Technologies Co., Ltd.) HL-1210W series (HKLM-x32\...\{75E38F04-1BAF-4054-A059-57F831688943}) (Version: 1.0.2.0 - Brother Industries, Ltd.) Intel(R) Chipset Device Software (HKLM\...\{C844CC39-BC28-46CA-8239-3F37D8FE2A59}) (Version: 10.1.17541.8066 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1808.12.0.1102 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{B4F59074-915E-4DFE-BFD6-1B415B37AE2F}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{ED204DD8-2982-4B22-B077-0F70024D5FEB}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{4B1DEC5C-ED0A-4DD1-ADB2-FD1117FF94D7}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.48.197.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden K-Lite Codec Pack 16.0.5 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 16.0.5 - KLCP) Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden Lenovo App Explorer (HKU\S-1-5-19\...\Host App Service) (Version: 0.273.2.542 - SweetLabs for Lenovo) <==== ATTENTION Lenovo App Explorer (HKU\S-1-5-20\...\Host App Service) (Version: 0.273.2.542 - SweetLabs for Lenovo) <==== ATTENTION Lenovo App Explorer (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\Host App Service) (Version: 0.273.3.880 - SweetLabs for Lenovo) <==== ATTENTION Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0137 - Lenovo) Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.13.14.0 - Lenovo Group Ltd.) Les Experts-Crime Scene Investigation-Morts programmées (HKLM-x32\...\{FC1C2427-5954-451C-9ED8-A92D48ED7E07}) (Version: 1.00.000 - Telltale Games) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden Malwarebytes version 4.5.13.208 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.13.208 - Malwarebytes) Maths au CP version 1.0.4.1 (HKLM-x32\...\{49318C94-C6D0-4019-8AAD-4BD4F2E95372}_is1) (Version: 1.0.4.1 - ACCÈS Éditions) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 104.0.1293.70 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 104.0.1293.70 - Microsoft Corporation) Microsoft Office LTSC Standard 2021 - en-us (HKLM\...\Standard2021Volume - en-us) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Office LTSC Standard 2021 - fr-fr (HKLM\...\Standard2021Volume - fr-fr) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Office Standard 2019 - en-us (HKLM\...\Standard2019Retail - en-us) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Office Standard 2019 - fr-fr (HKLM\...\Standard2019Retail - fr-fr) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.166.0807.0002 - Microsoft Corporation) Microsoft Project Standard 2021 - en-us (HKLM\...\ProjectStd2021Volume - en-us) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Project Standard 2021 - fr-fr (HKLM\...\ProjectStd2021Volume - fr-fr) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\Teams) (Version: 1.4.00.35564 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{6A2A8076-135F-4F55-BB02-DED67C8C6934}) (Version: 4.67.0.0 - Microsoft Corporation) Microsoft VC++ redistributables repacked. (HKLM\...\{9F513024-FFAD-4466-8CF0-5348389196B8}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft VC++ redistributables repacked. (HKLM-x32\...\{C521A8D8-511F-43DF-B789-7DD0B3F7363B}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft Visio LTSC Standard 2021 - en-us (HKLM\...\VisioStd2021Volume - en-us) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Visio LTSC Standard 2021 - fr-fr (HKLM\...\VisioStd2021Volume - fr-fr) (Version: 16.0.14332.20358 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.29.30040 (HKLM-x32\...\{5c6cccca-61ec-4667-a8d9-e133a59a5a73}) (Version: 14.29.30040.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.29.30040 (HKLM-x32\...\{a8968509-65be-4c09-a460-fd1584b1cdbf}) (Version: 14.29.30040.0 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.29.30040 (HKLM\...\{B3FA5A71-A9C3-42B3-B567-F92C163F3F5B}) (Version: 14.29.30040 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.29.30040 (HKLM\...\{C56D2482-32F7-4CB7-AF41-4CC51EBCB17D}) (Version: 14.29.30040 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30040 (HKLM-x32\...\{EFC21A37-5640-4BE1-981A-2FD3EDA1D893}) (Version: 14.29.30040 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30040 (HKLM-x32\...\{3093CC12-EF27-4036-AD72-A759500271E9}) (Version: 14.29.30040 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 104.0.1 (x64 fr)) (Version: 104.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 65.0.1 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Nitro Pro (HKLM\...\{24424D5D-A4FC-4187-9F75-3B2F6C9CE330}) (Version: 13.46.0.937 - Nitro) NVIDIA GeForce Experience 3.19.0.107 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.107 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation) NVIDIA Pilote graphique 471.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.11 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20358 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20358 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14332.20281 - Microsoft Corporation) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenBoard (1.5.4.240) (HKLM-x32\...\{8CCA6AC7-BBF9-4DD2-8E70-A907E0FCA38F}}_is1) (Version: 1.5.4.240 - Open Education Foundation) OpenOffice 4.1.7 (HKLM-x32\...\{A9222889-1CDA-42BD-B11B-113E7C91C1C7}) (Version: 4.17.9800 - Apache Software Foundation) Pale Moon 29.0.1 (x64 en-US) (HKLM\...\Pale Moon 29.0.1 (x64 en-US)) (Version: 29.0.1 - Moonchild Productions) PhotoFiltre (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\PhotoFiltre) (Version: - ) SeaTools for Windows 1.4.0.7 (HKLM-x32\...\SeaTools for Windows) (Version: 1.4.0.7 - Seagate Technology) SHARP Driver Uninstall Tool (HKLM-x32\...\SHARP Driver Uninstall Tool) (Version: 1.1.1.32 - SHARP CORPORATION) Sherlock Holmes Chapter One (HKLM-x32\...\Sherlock Holmes Chapter One_is1) (Version: - ) SMART Lesson Activity Toolkit (HKLM-x32\...\{8AD57A09-153E-4F6D-A269-0AD8AC54B82A}) (Version: 2.0.7.0 - SMART Technologies ULC) SMART Notebook (HKLM-x32\...\{4350F5AF-AEBF-4914-BB1C-847AF59E9BEC}) (Version: 20.0.6017.1 - SMART Technologies ULC) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) TAP-Windows 9.21.1 (HKLM\...\TAP-Windows) (Version: 9.21.1 - ) TechSmith Screen Capture Codec (HKLM-x32\...\{84FE50F5-B0F3-4D18-8BE8-A4DEEE0C37AD}) (Version: 4.1.1.0 - TechSmith Corporation) Hidden The Game of Life 2 Sandy Shores (HKLM-x32\...\The Game of Life 2 Sandy Shores_is1) (Version: - ) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{1FD817A6-63E1-4519-BFD4-228DABB7AB6B}) (Version: 2.55.0.0 - Microsoft Corporation) Update Notifier (HKLM\...\{D737CAEF-0354-4382-A528-3C585CF5482E}) (Version: 3.0.0.50 - MAGIX Software GmbH) Hidden Update Notifier (HKLM\...\MX.{D737CAEF-0354-4382-A528-3C585CF5482E}) (Version: 3.0.0.50 - MAGIX Software GmbH) VdhCoApp 1.4.0 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper) Vers l'autonomie version 1.0.0.1 (HKLM-x32\...\{F682D7E9-1562-462A-8495-6F77C120A4A5}_is1) (Version: 1.0.0.1 - ACCÈS Éditions) Visual C++ 10.0 CRT (x64) (HKLM\...\{BFF61907-AA2D-3A26-8666-98D956A62ABC}) (Version: 10.0 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN) WhatsApp (HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\WhatsApp) (Version: 2.2218.8 - WhatsApp) WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH) Wondershare Helper Compact 2.6.0 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.6.0 - Wondershare) Packages: ========= Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3370.0_x64__8j3eq9eme6ctt [2021-07-29] (INTEL CORP) [Startup Task] Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-28] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.14.67.0_x64__rz1tebttyb220 [2022-07-09] (Dolby Laboratories) Dolby Audio -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAudio_3.20201.249.0_x64__rz1tebttyb220 [2019-03-03] (Dolby Laboratories) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation) Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.42152.0_x64__8wekyb3d8bbwe [2021-08-28] (Microsoft Corporation) Facebook -> C:\Program Files\WindowsApps\FACEBOOK.FACEBOOK_2021.927.1.0_neutral__8xx8rvfyw5nnt [2022-08-14] (Facebook Inc) Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-02-21] (Fitbit) Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2020-02-18] (INTEL CORP) Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.2.54.0_x64__5grkq8ppsgwt4 [2022-06-24] (LENOVO INC) [Startup Task] Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2207.2.0_x64__k1h2ywk1493x8 [2022-07-31] (LENOVO INC.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-11-01] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-11-01] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-07-26] (Microsoft Studios) [MS Ad] NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-11-01] (NVIDIA Corp.) Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.1.0_x64__nfy108tqq3p12 [2021-02-21] (Thumbmunkeys Ltd) Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-09-04] (Adobe Systems Incorporated) Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.3.181.0_x64__dt26b99r8h8gj [2019-08-15] (Realtek Semiconductor Corp) WinRAR -> C:\Program Files\WinRAR [2022-08-18] (0) Zip Extractor Pro -> C:\Program Files\WindowsApps\38526MediaLife.ZipPlus_2.0.4.0_x86__1crh1k73ty8mg [2020-07-25] (Media Life) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1732813785-2882062131-2810007178-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\carol\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21328.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncShell64.dll [2022-08-31] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Program Files\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier ContextMenuHandlers1: [Nitro.Pro.ShellExtension.Shim] -> {211B6F25-950C-49CD-AB86-A448EF85686A} => C:\Program Files\Common Files\Nitro\Nitro.Pro.ShellExtension.Shim.dll [2021-07-04] (Nitro Software, Inc. -> Nitro Software, Inc.) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> Pas de fichier ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-23] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncShell64.dll [2022-08-31] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [FormatFactoryShell] -> {A3888923-CFD3-4A6B-89BF-08E6B95716E8} => D:\Program Files\FormatFactory\ShellEx_108.dll [2020-08-04] (Free Time) [Fichier non signé] ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.166.0807.0002\FileSyncShell64.dll [2022-08-31] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvltsi.inf_amd64_ec5dbd6fe1e8a829\nvshext.dll [2021-11-18] (Nvidia Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-08-28] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-08-23] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2019-02-26] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2019-02-26] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\SysWOW64\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Fichier non signé] HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\SysWOW64\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Fichier non signé] HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\SysWOW64\alf2cd.acm [38912 2003-05-21] (NCT Company) [Fichier non signé] HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\SysWOW64\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Fichier non signé] HKLM\...\Drivers32: [msacm.lame] => C:\Windows\SysWOW64\lame.ax [245760 2005-08-01] () [Fichier non signé] HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\SysWOW64\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Fichier non signé] HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Fichier non signé] HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Fichier non signé] HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\SysWOW64\mpg4c32.dll [413760 2002-08-20] (Microsoft Corporation) [Fichier non signé] HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\SysWOW64\xvidvfw.dll [139264 2004-07-03] () [Fichier non signé] HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\SysWOW64\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Fichier non signé] HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\SysWOW64\vp6vfw.dll [447752 2019-02-26] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\SysWOW64\lagarith.dll [216064 2011-12-07] () [Fichier non signé] ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\carol\AppData\Local\Microsoft\Edge\User Data\Default\Web Applications\_crx__pjdbhocmhcegdgdakpgmoimpnkbandoc\Facebook.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=pjdbhocmhcegdgdakpgmoimpnkbandoc --app-url=hxxps://www.facebook.com/home.php?ref=homescreenpwa --app-launch-source=4 ShortcutWithArgument: C:\Users\carol\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\91083839f15d9f6a\Verslautonomie.lnk -> D:\Program Files\Vers l'autonomie\PC\Vers l'autonomie.exe (The NWJS Community) -> --user-data-dir="C:\Users\carol\AppData\Local\Verslautonomie\User Data" --profile-directory=Default --app-id=odkgpmlmkidbiaicngaedkmigffbcmja ==================== Modules chargés (Avec liste blanche) ============= 2021-04-07 16:02 - 2009-02-27 16:38 - 000139264 ____R () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2021-04-07 16:02 - 2018-01-18 15:39 - 000519168 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\BrMonitor.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000011776 _____ () [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\libEGL.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 002013696 _____ () [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\libGLESv2.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000739840 _____ () [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\QtQuick\Controls\qtquickcontrolsplugin.dll 2020-08-04 11:46 - 2020-08-04 11:46 - 000341504 _____ (Free Time) [Fichier non signé] D:\Program Files\FormatFactory\ShellEx_108.dll 2020-04-20 11:16 - 2020-04-20 11:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2020-04-20 11:16 - 2020-04-20 11:16 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2019-01-22 16:02 - 2019-01-22 16:02 - 000213504 _____ (simplitec GmbH) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\MrStyler_x64.dll 2018-12-20 09:03 - 2018-12-20 09:03 - 000290304 _____ (simplitec GmbH) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\MrTracker.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000045568 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\bearer\qgenericbearer.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000047616 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\bearer\qnativewifibearer.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000049664 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qdds.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000029696 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qgif.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000037376 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qicns.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000030208 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qico.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000459776 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qjp2.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000236544 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qjpeg.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000275456 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qmng.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000023552 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qsvg.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000022528 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qtga.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000351744 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qtiff.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000021504 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qwbmp.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000374784 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\imageformats\qwebp.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 001212928 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\platforms\qwindows.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 005500416 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Core.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 005804544 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Gui.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 001064448 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Network.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 003189248 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Qml.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 002928128 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Quick.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000310784 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Svg.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 005446144 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\Qt5Widgets.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000015360 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\QtQuick.2\qtquick2plugin.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000072192 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\QtQuick\Layouts\qquicklayoutsplugin.dll 2018-06-14 13:18 - 2018-06-14 13:18 - 000015360 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\Common Files\MAGIX Services\Update Notifier\QtQuick\Window.2\windowplugin.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKU\S-1-5-21-1732813785-2882062131-2810007178-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-1732813785-2882062131-2810007178-1001 -> {385E6F7E-0F8A-41DC-BC0C-5C75638629F4} URL = hxxp://www.recherche-fr.com/search?q={searchTerms} SearchScopes: HKU\S-1-5-21-1732813785-2882062131-2810007178-1001 -> {AC249D85-7A2E-46A4-A3CF-43A13A21B1F8} URL = BHO: NitroPDF.IE.Sharepoint -> {3BFAE61D-4A6D-4467-9E5E-FE5293D10F9F} -> C:\Program Files\Nitro\Pro\13\npnitroie.dll [2021-07-04] (Nitro Software, Inc. -> Nitro Software, Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-05-28] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: NitroPDF.IE.Sharepoint -> {3BFAE61D-4A6D-4467-9E5E-FE5293D10F9F} -> C:\Program Files (x86)\Nitro\Pro\13\npnitroie.dll [2021-07-04] (Nitro Software, Inc. -> Nitro Software, Inc.) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-13] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-04-12 01:38 - 2022-08-12 12:59 - 000003452 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 75.126.120.203 127.0.0.1 46.4.58.71 127.0.0.1 46.4.62.150 127.0.0.1 46.4.28.80 127.0.0.1 platform.wondershare.com127.0.0.1 license.piriform.com 127.0.0.1 www.license.piriform.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 www.wondershare.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 www.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 www.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 cbs.wondershare.com 127.0.0.1 www.cbs.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 www.wondershare.com 127.0.0.1 platform.wondershare.com 127.0.0.1 activation.cyberlink.com 127.0.0.1 platform.wondershare.com 2021-03-28 13:33 - 2021-03-28 13:38 - 000000443 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\carol\AppData\Local\Packages\Microsoft.ZuneMusic_8wekyb3d8bbwe\LocalState\ImageCache\20\wXF7apCn9YDsFanCHaOpQVSpKt5fUS0MXLL30uzcQ DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe" HKLM\...\StartupApproved\Run32: => "SMART Tray Tools" HKLM\...\StartupApproved\Run32: => "zenvpn" HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\StartupApproved\StartupFolder: => "GigaTribe.lnk" HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\StartupApproved\StartupFolder: => "Envoyer * OneNote.lnk<*>" HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\StartupApproved\Run: => "GigaTribe" HKU\S-1-5-21-1732813785-2882062131-2810007178-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{1D1868ED-3DF3-40A7-9188-04BB1743EA35}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{62B1A52D-C82F-4A6A-8EBF-175B4883B3EC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A0C7F136-FF34-4FE2-801C-EB0EC17E93A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{EE0964CE-D4CB-4C03-B126-BAFB1E38CDD0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C2B8A60D-CD9F-4A4E-9AD3-DE1653BF1C75}] => (Allow) C:\Program Files\Pale Moon\palemoon.exe (Mark Straver -> Moonchild Productions) FirewallRules: [{1A454547-C109-4BAC-AA98-59CBC72A285F}] => (Allow) C:\Program Files\Pale Moon\palemoon.exe (Mark Straver -> Moonchild Productions) FirewallRules: [UDP Query User{A2C90FF1-BF74-4234-96FF-6B3C7D440AB9}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{17DA2EA5-E88A-46B6-AFE7-26E65EF6DF38}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [UDP Query User{E7E1F7C9-97DF-4B63-A600-6DD34D31A8A9}C:\users\carol\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\carol\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{6ABB5F03-F9EF-4D15-9BE7-40FA5981E754}C:\users\carol\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\carol\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{09835903-2B18-457D-880C-2CA22887D83B}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC) FirewallRules: [{62C9FA08-F664-402E-A099-594B0F9672B2}] => (Allow) C:\Program Files (x86)\SMART Technologies\Education Software\Notebook.exe (SMART Technologies ULC -> SMART Technologies ULC) FirewallRules: [UDP Query User{9FAEA7E1-4174-4C1B-BA1A-004A6BCC09AA}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{7BA8B06E-5F3D-49B7-A8A1-7F20F7E76051}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{2E5E0F74-42BF-4D37-869B-B9C47DC7BB5F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{C30946A4-4A73-41B9-A517-F12A16D5F131}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{8AD0BCC3-FF68-478F-81AF-F9F395646584}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{A20A09D1-9032-4510-A007-EB51D114462C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{92E1DD84-38AD-41E7-ADFE-4E4E4407E0DF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11231.20174.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{70527982-17F0-4DE0-B2B5-5A634F00FE29}] => (Allow) C:\Program Files (x86)\GigaTribe\GigaTribe.exe (Gigatribe -> D1FFER) FirewallRules: [{DB688E63-3701-4520-8FE5-AF00E3DA601C}] => (Allow) C:\Program Files (x86)\GigaTribe\GigaTribe.exe (Gigatribe -> D1FFER) FirewallRules: [TCP Query User{9A0AEF5A-44F1-4C4D-9846-841AF02671C5}C:\users\carol\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\carol\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [UDP Query User{2B3E95E8-3991-4507-9804-589C9A6446C4}C:\users\carol\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\carol\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{85B68032-16BF-4651-B321-E6C3A9F32C8F}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{F6EE6992-A94A-45C9-8258-5B7317A712A5}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{397042A0-49B4-4028-A9EE-82878AA43C7F}] => (Allow) D:\Program Files\FormatFactory\FormatFactory.exe (暇光软件科技(上海)有限公司 -> Free Time Co., Ltd.) [Fichier non signé] FirewallRules: [{649B9123-ACF2-468A-8D47-C502D53738E2}] => (Allow) C:\Program Files (x86)\GigaTribe\GigaTribe.exe (Gigatribe -> D1FFER) FirewallRules: [{29AD16E4-DE1A-4DBC-A219-3E174670C9E6}] => (Allow) C:\Program Files (x86)\GigaTribe\GigaTribe.exe (Gigatribe -> D1FFER) FirewallRules: [{1BDF1D5D-E517-466A-83E8-B724A9B0237C}] => (Allow) C:\Program Files\Common Files\MAGIX Services\Update Notifier\QMxNetworkSync.exe (MAGIX Software GmbH -> MAGIX) FirewallRules: [{D0AA6A75-F15F-42FF-AEE0-54A0C20F305D}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22168.200.1405.7434_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0B176577-E846-41B8-9076-7AB7FB0C8EC1}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_22168.200.1405.7434_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{36F7BF38-4770-4074-9AB2-14482B75BED2}] => (Allow) LPort=57209 FirewallRules: [{8C5FA274-DCB9-4EC7-BEF9-6031C87FC8FC}] => (Allow) LPort=57210 FirewallRules: [{0CC4E262-59C9-4662-AD22-6C35AADE8E3A}] => (Allow) LPort=57211 FirewallRules: [{3E141FFC-460D-48B1-9517-4E1875DC9B8C}] => (Allow) LPort=57212 FirewallRules: [{586B876B-01D5-40B3-AD5F-77176485E70D}] => (Allow) LPort=57213 FirewallRules: [{F2D07543-2BDE-4AA8-9745-6CA4D27F39B5}] => (Allow) LPort=57214 FirewallRules: [{7320174F-39B6-4826-B4AC-8B77B170ED5D}] => (Allow) LPort=57215 FirewallRules: [{43AD95BA-C078-4F40-9237-BE396873BDD9}] => (Allow) LPort=57216 FirewallRules: [{669A5C81-94DF-45FA-B27C-780FEDA4815C}] => (Allow) LPort=57217 FirewallRules: [{EA5C64EB-5004-412F-B974-16F1AC2FE350}] => (Allow) LPort=57218 FirewallRules: [{92F093F0-2737-4E6C-8223-A9EEC910D5C3}] => (Allow) LPort=57209 FirewallRules: [{FC448AB3-13F9-4CE0-BF4E-C38E418629F3}] => (Allow) LPort=57210 FirewallRules: [{5F2AFA6D-9A42-47FB-B1ED-AE5A1FA567BC}] => (Allow) LPort=57211 FirewallRules: [{11E6DE4F-C441-4536-939C-88009A68E8AD}] => (Allow) LPort=57212 FirewallRules: [{412F8D5E-D6E4-4871-A2E2-2EEA4BAA1739}] => (Allow) LPort=57213 FirewallRules: [{44755550-61B1-4CB4-A00E-EB48AA559FE5}] => (Allow) LPort=57214 FirewallRules: [{09EF2C12-96B2-4BD9-9A22-FE4A4FB534B6}] => (Allow) LPort=57215 FirewallRules: [{93FC316C-D159-4555-8925-58A3AB06AA3A}] => (Allow) LPort=57216 FirewallRules: [{02F72BEF-A9F5-4F94-B735-A314C439205C}] => (Allow) LPort=57217 FirewallRules: [{BA43D207-1AF8-4155-AD48-CF376DEB3296}] => (Allow) LPort=57218 FirewallRules: [{BC6DDB1E-4076-4986-A7AA-D591A0B7CA4A}] => (Allow) LPort=23007 FirewallRules: [{5F0E144A-EEF9-4B4D-87DF-E3E16BE4ED68}] => (Allow) LPort=23008 FirewallRules: [{D2713FCD-1B31-4FBC-AD48-1E4B5C89976F}] => (Allow) LPort=33009 FirewallRules: [{93052FDD-5921-41D6-9D1B-11029382148F}] => (Allow) LPort=33010 FirewallRules: [{5073D0D2-5954-4DA7-B056-2E4B30DD36F5}] => (Allow) LPort=33011 FirewallRules: [{FA14CEEE-0EDC-4AE0-A959-15C88571D048}] => (Allow) LPort=43012 FirewallRules: [{B659750F-D397-4782-AF76-58EE3C6172AE}] => (Allow) LPort=43013 FirewallRules: [{EB342D69-915F-4098-829F-EF7A9CC2EEF1}] => (Allow) LPort=53014 FirewallRules: [{962A8038-BC8F-425E-BB0F-DBF5F3301B00}] => (Allow) LPort=53015 FirewallRules: [{5C0753C9-6B35-4B26-92A4-ADA244C9966E}] => (Allow) LPort=53016 FirewallRules: [{70AF8299-32E9-4E77-B00F-E2CCD9EC416B}] => (Allow) LPort=23007 FirewallRules: [{74EC279A-2AD2-4663-A988-A867B4344217}] => (Allow) LPort=23008 FirewallRules: [{3A05C9AB-361E-4072-83DE-73FD1ACD66D4}] => (Allow) LPort=33009 FirewallRules: [{FE8507F1-C455-411A-BFD2-FF1D19C93465}] => (Allow) LPort=33010 FirewallRules: [{B3E2D2B3-FB70-42B7-BC4D-ECD27FDEB746}] => (Allow) LPort=33011 FirewallRules: [{308624CF-EDD8-440D-B4A2-95D67468049A}] => (Allow) LPort=43012 FirewallRules: [{2DB8A972-BB06-42D0-8B58-B4B9D203BCA8}] => (Allow) LPort=43013 FirewallRules: [{5B234C1E-8D59-4526-86B6-51EEA355D300}] => (Allow) LPort=53014 FirewallRules: [{2E64A926-37C4-4723-BD7D-8C780A8D6CE5}] => (Allow) LPort=53015 FirewallRules: [{88EE3EA7-8042-4D56-B7B5-862D484F3924}] => (Allow) LPort=53016 FirewallRules: [{FC331A78-429D-4753-BE85-C548EB3BFE24}] => (Allow) LPort=50053 FirewallRules: [{5A8EDB40-F4BE-4FB6-A516-5F3F402BB7EC}] => (Allow) LPort=50053 FirewallRules: [{0797B046-9C49-41C2-BC98-E91C625F4E1F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{C8D46766-8CD4-46E7-8E2A-F2E18C8C0CE7}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{E66E5B2D-05C3-467D-9087-121BC0919515}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{2E685423-7DC9-45D6-9B59-563E1B2D17C5}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{A31A278F-2735-4A18-9E71-87C64806041F}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{93EDEC27-0106-4CDB-A121-800BC1DF1A82}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> ) FirewallRules: [{7D590F1E-6366-4493-A2C8-D6C51F289DDD}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{E14A0004-B1F6-469E-9113-E60E30657C0B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{C5C94ADA-C202-4978-A183-B7474374C31D}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\104.0.1293.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= 30-08-2022 22:02:49 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Périphérique scanneur SCSI Description: Périphérique scanneur SCSI Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Manufacturer: Microsoft Service: scsiscan Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (09/01/2022 10:31:39 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (09/01/2022 10:31:39 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (09/01/2022 10:31:39 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (09/01/2022 10:31:39 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (08/31/2022 11:00:03 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (08/31/2022 11:00:03 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (08/29/2022 06:37:42 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Windows\System32\svchost.exe, PID : 9772, PID ProfSvc : 1632. Error: (08/29/2022 06:37:42 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: AUTORITE NT) Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Windows\System32\svchost.exe, PID : 9772, PID ProfSvc : 1632. Erreurs système: ============= Error: (09/03/2022 08:04:21 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORITE NT) Description: F:\Device\HarddiskVolume73 Error: (09/03/2022 07:55:50 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-PRNJ6FJI) Description: Le serveur {ED1D0FDF-4414-470A-A56D-CFB68623FC58} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/03/2022 09:19:06 AM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/03/2022 09:17:09 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service LMS n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (09/03/2022 09:17:06 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service WaaSMedicSvc s’est arrêté avec l’erreur : Le module spécifié est introuvable. Error: (09/02/2022 06:33:11 PM) (Source: DCOM) (EventID: 10010) (User: AUTORITE NT) Description: Le serveur {72566E27-1ABB-4EB3-B4F0-EB431CB1CB32} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (09/02/2022 06:31:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service LMS n’a pas pu démarrer en raison de l’erreur : Le fichier spécifié est introuvable. Error: (09/02/2022 06:31:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service WaaSMedicSvc s’est arrêté avec l’erreur : Le module spécifié est introuvable. Windows Defender: ================ Date: 2022-08-18 15:31:49 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:MSIL/RelineStealer.FO!MTB&threatid=2147818354&enterprise=0 Nom : Trojan:MSIL/RelineStealer.FO!MTB ID : 2147818354 Gravité : Grave Catégorie : Cheval de Troie Chemin : file:_C:\ProgramData\89050030528399376089.exe Origine de la détection : Ordinateur local Type de détection : Chemin rapide Source de détection : Protection en temps réel Utilisateur : LAPTOP-PRNJ6FJI\carol Nom du processus : D:\Users\carol\Desktop\mbar\mbar.exe Version de la veille de sécurité : AV: 1.373.545.0, AS: 1.373.545.0, NIS: 1.373.545.0 Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2 Date: 2022-08-18 15:31:22 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=PUABundler:Win32/DriverPack&threatid=311940&enterprise=0 Nom : PUABundler:Win32/DriverPack ID : 311940 Gravité : Faible Catégorie : Logiciel potentiellement non désiré Chemin : file:_C:\Users\carol\AppData\Roaming\DRPSu\PROGRAMS\DriverPack-Alice.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-PRNJ6FJI\carol Nom du processus : D:\Users\carol\Desktop\mbar\mbar.exe Version de la veille de sécurité : AV: 1.373.545.0, AS: 1.373.545.0, NIS: 1.373.545.0 Version du moteur : AM: 1.1.19500.2, NIS: 1.1.19500.2 Date: 2022-08-18 14:19:55 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {9E6A3927-3752-4595-BC85-DDFFD79BB52B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-08-18 12:32:18 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {4E4BECD2-66B7-48FD-8D0D-7FEDD34B3292} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2022-08-18 11:30:04 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {21E3AFFD-B989-4310-8FB9-E3EB7C3BE0C9} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système  CodeIntegrity: =============== Date: 2022-09-03 17:26:30 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2022-09-03 10:18:08 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Avast Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2022-09-03 09:18:17 Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume5\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: LENOVO 7ZCN37WW 11/27/2020 Carte mère: LENOVO LNVNB161216 Processeur: Intel(R) Core(TM) i5-8300H CPU @ 2.30GHz Pourcentage de mémoire utilisée: 66% Mémoire physique - RAM - totale: 8066.3 MB Mémoire physique - RAM - disponible: 2662.31 MB Mémoire virtuelle totale: 16258.3 MB Mémoire virtuelle disponible: 8688.65 MB ==================== Lecteurs ================================ Drive c: (Windows-SSD) (Fixed) (Total:118 GB) (Free:31.05 GB) (Model: RPFTJ128PDD2EWX) NTFS Drive d: (Data) (Fixed) (Total:931.5 GB) (Free:351.23 GB) (Model: ST1000LM035-1RK172) NTFS \\?\Volume{85d78bde-ad2a-4608-ab50-57813fd4dbba}\ (WINRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.48 GB) NTFS \\?\Volume{64280050-1be9-431e-bf7e-813d80c350b6}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: 387CDA5D) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: ECEC74C7) Partition: GPT. ==================== Fin de Addition.txt =======================