Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-10-2022 Exécuté par lienh (12-10-2022 13:14:24) Exécuté depuis C:\Users\lienh\Desktop Microsoft Windows 10 Famille Version 21H2 19044.2006 (X64) (2021-09-29 06:39:21) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1027502620-2531674384-17670900-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-1027502620-2531674384-17670900-503 - Limited - Disabled) Invité (S-1-5-21-1027502620-2531674384-17670900-501 - Limited - Disabled) lienh (S-1-5-21-1027502620-2531674384-17670900-1001 - Administrator - Enabled) => C:\Users\lienh WDAGUtilityAccount (S-1-5-21-1027502620-2531674384-17670900-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 22.00 (x64) (HKLM\...\7-Zip) (Version: 22.00 - Igor Pavlov) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 22.003.20258 - Adobe) Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601032}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Amazon Kindle (HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\Amazon Kindle) (Version: 1.34.1.63103 - Amazon) Audacity 3.1.3 (HKLM-x32\...\Audacity_is1) (Version: 3.1.3 - Audacity Team) Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 22.9.6034 - Avast Software) Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.) Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.01 - Canon Inc.) CCleaner (HKLM\...\CCleaner) (Version: 6.04 - Piriform) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) CyberGhost 8 (HKLM\...\CyberGhost 8) (Version: 8.3.6.9681 - CyberGhost S.R.L.) CyberGhost TUN (HKLM\...\{677232D6-72D6-4821-8CB5-47969B15D4DF}) (Version: 1.0 - CyberGhost S.R.L.) Hidden Dropbox (HKLM-x32\...\Dropbox) (Version: 158.4.4564 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.639.1 - Dropbox, Inc.) Hidden Enregistrement utilisateur de Canon MG3500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3500 series) (Version: - ‭Canon Inc.) ExpressVPN (HKLM-x32\...\{E5B9C3E5-889C-4F22-A959-F4B8468D8835}) (Version: 7.12.1.4 - ExpressVPN) Hidden ExpressVPN (HKLM-x32\...\{ebd248cd-b3ef-4e14-b91a-d626fa5c392a}) (Version: 7.12.1.4 - ExpressVPN) GIMP 2.10.28 (HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\GIMP-2_is1) (Version: 2.10.28 - The GIMP Team) GrampsAIO64 (HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\GrampsAIO64 5.1.4) (Version: 5.1.4 - The Gramps project) gSyncit (HKLM\...\{DEC3D67C-1A28-4751-A651-8BC47F456204}) (Version: 5.5.189 - Fieldston Software) Harmony Assistant 64-bit (HKLM\...\Harmony Assistant 64-bit) (Version: 9.9.5c-x64 - Myriad SARL) HP Audio Switch (HKLM-x32\...\{0B1DA73D-0562-4DE1-B942-CEF286CF2EDD}) (Version: 1.0.211.0 - HP Inc.) HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.19.0 - HP) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) Inkscape (HKLM-x32\...\Inkscape) (Version: 1.1.1- - Inkscape) LibreOffice 7.1.6.2 (HKLM\...\{E2B2C7FD-9FBD-4661-BFEF-BB3B75D9A76D}) (Version: 7.1.6.2 - The Document Foundation) Malwarebytes version 4.5.15.215 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.15.215 - Malwarebytes) Melody Assistant (HKLM\...\Melody Assistant) (Version: 7.9.4e-x64 - Myriad SARL) Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.15629.20156 - Microsoft Corporation) Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.15629.20156 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 106.0.1370.37 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 106.0.1370.37 - Microsoft Corporation) Microsoft Office Home and Business 2019 - fr-fr (HKLM\...\HomeBusiness2019Retail - fr-fr) (Version: 16.0.15629.20156 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 22.196.0918.0001 - Microsoft Corporation) Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation) Microsoft Visual C++ 2019 X64 Additional Runtime - 14.28.29325 (HKLM\...\{26AF0C35-55EC-4025-8D83-349E8FB1419F}) (Version: 14.28.29325 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.28.29325 (HKLM\...\{7D0362D5-C699-4403-BC09-0C1DAD1D93AB}) (Version: 14.28.29325 - Microsoft Corporation) Hidden Minecraft Launcher (HKLM-x32\...\{733C3ACB-432D-4880-B0E1-660000D7974D}) (Version: 1.0.0.0 - Mojang) Movavi Video Suite 18 (HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\Movavi Video Suite 18) (Version: 18.4.0 - Movavi) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 105.0.3 (x64 fr)) (Version: 105.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 91.1.2 - Mozilla) Mozilla Thunderbird (x64 fr) (HKLM\...\Mozilla Thunderbird 91.10.0 (x64 fr)) (Version: 91.10.0 - Mozilla) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 8.1.4 - Notepad++ Team) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15629.20156 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15629.20118 - Microsoft Corporation) Hidden Paramètres de la caméra Logitech (HKLM-x32\...\LogiUCDPP) (Version: 2.12.20.0 - Logitech Europe S.A.) PDF Studio 2019 (HKLM\...\6369-4025-4987-0336) (Version: 2019.2.1 - Qoppa Software) PDFTK Builder 3.10.0 (HKLM-x32\...\PDFTK Builder_is1) (Version: - ) PDFtoMusic (HKLM\...\PDFtoMusic) (Version: 1.7.3 - Myriad SARL) QGIS 3.10.4 'A Coruña' (HKLM\...\QGIS 3.10) (Version: 3.10.4 - QGIS Development Team) Scribus 1.4.8 (64bit) (HKLM\...\Scribus 1.4.8) (Version: 1.4.8 - The Scribus Team) SlavonicBible 6.0 (HKLM-x32\...\SlavonicBible_is1) (Version: - ) Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.21111.5 - Samsung Electronics Co., Ltd.) Hidden Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.21111.5 - Samsung Electronics Co., Ltd.) SyncBackFree (HKLM-x32\...\SyncBackFree_is1) (Version: 9.5.45.0 - 2BrightSparks) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{82BD0A1C-815F-487F-9AE7-CE73DA413CFF}) (Version: 4.91.0.0 - Microsoft Corporation) Visual C++ 9.0 Runtime for Dragon NaturallySpeaking 64bit (x64) (HKLM\...\{4A5A427F-BA39-4BF0-7777-9A47FBE60C9F}) (Version: 11.0.200 - Nuance Communications Inc.) XnView 2.50.2 (HKLM-x32\...\XnView_is1) (Version: 2.50.2 - Gougelet Pierre-e) Zoom (HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\ZoomUMX) (Version: 5.11.11 (8425) - Zoom Video Communications, Inc.) Zotero (HKLM-x32\...\Zotero 5.0.96.3 (x86 en-US)) (Version: 5.0.96.3 - Corporation for Digital Scholarship) Packages: ========= .Clocks -> C:\Program Files\WindowsApps\25510Hereafter2.dotClocks_1.2.25.0_x64__j2gmvb2kv935w [2022-01-01] (Hereafter2) [Startup Task] AV1 Video Extension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.52074.0_x64__8wekyb3d8bbwe [2022-08-29] (Microsoft Corporation) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-09-29] (Canon Inc.) Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3408.0_x64__8j3eq9eme6ctt [2022-04-21] (INTEL CORP) [Startup Task] Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-12-08] (Microsoft Corporation) HP Audio Center -> C:\Program Files\WindowsApps\AD2F1837.HPAudioCenter_1.29.257.0_x64__v10z8vjag6ke6 [2022-04-09] (HP Inc.) HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.3.0_x64__v10z8vjag6ke6 [2022-10-04] (HP Inc.) HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.53.0_x64__v10z8vjag6ke6 [2022-10-11] (HP Inc.) HP QuickDrop -> C:\Program Files\WindowsApps\AD2F1837.HPQuickDrop_2.5.10921.0_x64__v10z8vjag6ke6 [2022-07-20] (HP Inc.) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_139.2.289.0_x64__v10z8vjag6ke6 [2022-09-22] (HP Inc.) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.20.22.0_x64__v10z8vjag6ke6 [2022-08-29] (HP Inc.) HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6 [2022-08-29] (HP Inc.) Intel® Optane™ Memory and Storage Management -> C:\Program Files\WindowsApps\AppUp.IntelOptaneMemoryandStorageManagement_18.1.1032.0_x64__8j3eq9eme6ctt [2022-08-29] (INTEL CORP) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-10-03] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-10-03] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.14.9130.0_x64__8wekyb3d8bbwe [2022-09-18] (Microsoft Studios) [MS Ad] Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_52.10801.429.0_x64__8wekyb3d8bbwe [2022-08-29] (Microsoft Corporation) myHP -> C:\Program Files\WindowsApps\AD2F1837.myHP_6.52219.341.0_x64__v10z8vjag6ke6 [2022-08-30] (HP Inc.) [Startup Task] Solitaire Français -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.4.13.0_x64__kx24dqmazqk8j [2022-09-21] (Random Salad Games LLC) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1027502620-2531674384-17670900-1001_Classes\CLSID\{227C9E8F-71A1-4B23-9076-682A1A8EAAED}\localserver32 -> "c:\program files\macrium\common\reflectmonitor.exe" -ToastActivated => Pas de fichier CustomCLSID: HKU\S-1-5-21-1027502620-2531674384-17670900-1001_Classes\CLSID\{412959F4-5CA6-4B99-9264-35986B358D59}\InprocServer32 -> C:\Program Files\Mozilla Firefox\notificationserver.dll (Mozilla Corporation -> Mozilla Foundation) CustomCLSID: HKU\S-1-5-21-1027502620-2531674384-17670900-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\lienh\Desktop\Thomas\Dropbox [2021-09-29 14:42] ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_21802104c9b3e45d\OptaneShellExt.dll [2021-04-01] (Intel(R) Rapid Storage Technology -> ) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-10-01] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-10-01] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2021-08-21] (Notepad++ -> ) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-10-01] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-10-01] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-10-12] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\windows\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_21802104c9b3e45d\OptaneShellExt.dll [2021-04-01] (Intel(R) Rapid Storage Technology -> ) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\22.196.0918.0001\FileSyncShell64.dll [2022-10-11] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.55.0.dll [2022-09-27] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-06-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Avast Software\Avast\ashShell.dll [2022-10-01] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-10-12] (Malwarebytes Inc. -> Malwarebytes) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LastPass.lnk -> C:\Program Files (x86)\Online Services\LastPass\WizLink.exe () -> hxxp://js.redirect.hp.com/jumpstation?bd=lastpass&c=*&locale=*&pf=*&s=*&tp=edge ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ver. d'essai.lnk -> C:\Program Files (x86)\Online Services\Adobe\WizLink.exe () -> hxxp://js.redirect.hp.com/jumpstation?type=103&RedeemCode=3zG8Xnoh8zBRdCOPTgiOZnZtl%2fFaT%2bczjSdCyhfGxF6pMEn5vnsWsWq3aHNA1rr6MT6Awd0Aj8bOxgQYSYF6lge8amz32yK0q9ofVqlUzWAdRyFCfmDBbNSWeUF9zpVIIZepA%2bcTfPXmxY4BMhj1KCU8oajCf8yGj5MCkyZXlDc%3d ==================== Modules chargés (Avec liste blanche) ============= 2021-09-30 12:08 - 2013-01-24 16:24 - 000359936 _____ (CANON INC.) [Fichier non signé] C:\windows\System32\CNMN6PPM.DLL 2022-06-22 16:24 - 2022-06-15 15:00 - 000094720 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll 2021-06-28 03:56 - 2021-06-28 03:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems64.dll] C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll 2021-06-28 03:56 - 2021-06-28 03:56 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R64.dll] C:\Program Files\Microsoft Office\root\Office16\c2r64.dll 2022-10-08 17:22 - 2022-10-08 17:22 - 003087360 _____ (Newtonsoft) [Fichier non signé] C:\windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\671c485afb1dd0df9939c4c77a79c65d\Newtonsoft.Json.ni.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:0FF263E8 [352] AlternateDataStreams: C:\Users\lienh\Desktop\Tâches boulot.doc:com.dropbox.attributes [168] AlternateDataStreams: C:\Users\lienh\Desktop\tâches privées.doc:com.dropbox.attributes [168] AlternateDataStreams: C:\Users\lienh\Desktop\tâches privées.doc:com.dropbox.attrs [58] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2022-08-17] (HP Inc. -> HP Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-08-29] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2022-08-17] (HP Inc. -> HP Inc.) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-29] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\windows\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-1027502620-2531674384-17670900-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\lienh\Desktop\Thomas\Informatique\img3.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "Delete Cached Standalone Update Binary" HKLM\...\StartupApproved\Run: => "Delete Cached Update Binary" HKLM\...\StartupApproved\Run32: => "ExpressVPNNotificationService" HKLM\...\StartupApproved\Run32: => "Dropbox" HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\StartupApproved\Run: => "HPSEU_Host_Launcher" HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\StartupApproved\Run: => "movavi_suite_agent" HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\StartupApproved\Run: => "gSyncit" HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\StartupApproved\Run: => "ISUSPM" HKU\S-1-5-21-1027502620-2531674384-17670900-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_A828087FE4260C5D4448D0B59729BE1E" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{389E8853-4F33-4FF8-B1A9-9927906FD906}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe => Pas de fichier FirewallRules: [{68F8B2D9-2F5F-4C3A-BCC9-01727E93A0E0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{59A78B73-C10F-4349-A038-FD6CBFA7AB8C}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{6C3396F5-2491-41DB-9DDC-7DE641DFA9DB}] => (Allow) C:\Users\lienh\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{7A6EFA4F-CAD1-46FE-9080-B9BA9734513B}] => (Allow) C:\Users\lienh\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{1F54C901-A444-4ECE-A47D-F277CE269A1C}] => (Allow) C:\Users\lienh\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{C00D901A-4E43-4D25-88BA-DBFE9D0D44AA}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{60369682-B859-43E8-95C7-BC418FEC6472}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{597A9B3D-8502-49A9-9838-019EB045568A}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{9E9EED2A-2131-4069-AD98-601101CDB938}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{4F49878F-75B9-4E8E-ADBD-F1184362A0B1}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{0CCABFDB-0A75-475F-94FE-CBB06BFA95B9}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{E5EF812B-41DC-480E-BD1E-10851216721E}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{58E53B35-420E-4268-8E42-C5EA2AABF2B9}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{33D6161F-F691-4658-8323-5DD204ABC7C2}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A4765098-9547-4B35-A2C9-DF490E44B32B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{6D172F42-C7F6-49D7-BD07-B7AD197EBC86}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{A3378ADE-08EA-4175-96E5-A41F0D57B1F8}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{ED8A1FD0-A9DE-4D05-A08E-AB96327DD71B}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{3B80FEC1-ADE3-49F9-8583-3D0F028F0D41}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{43EE84C6-4764-478E-8441-1FF09B742F1C}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{8B7B9ECC-2A16-4253-BA7B-9826CFC28E51}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{6E408ED2-0247-42AB-9E66-F6ECD2E238BF}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{D8760393-56CD-4D24-BE73-0C93BF53EC46}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{4EF898DA-687F-4E69-BB7F-D9B37A86EE33}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{A3FC6B53-D0EA-4B4A-9BFE-EAC4F9D43E9E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{DC48F467-539C-4FF9-A380-F5A7A08DFFDB}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{D9EA3E61-45BA-4C7F-BDE4-AF7673BDE565}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{64210F48-A576-460E-BB90-E229884D925E}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{C5BA2970-81F5-4830-B197-32B69C7FAF8C}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{FE69FC32-069A-440A-AE2B-74E299DA48C0}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{373801D8-7039-47A4-9ECF-CB8D7125FDA5}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{FD4356C0-772F-4A41-AE71-7D02182B6D16}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{9D2022A7-F7D1-42AB-BE43-449A4ABE7D85}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{FE50E278-E350-4A57-941B-000ACAAA6ECA}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{03D1035D-6E20-4D25-A27A-00C301AB42C2}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{F9085749-17A8-4291-A8BA-4C76DE573E7C}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{3562ECF8-103B-4885-A5F7-843279084C51}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{638E925C-226E-4B48-B6EE-C43106EF8AF8}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\HP.Omen.OmenCommandCenter.exe (HP Inc. -> HP Inc.) FirewallRules: [{C22C2A8A-33A6-4635-B341-1A1D328CE39A}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (HP Inc. -> HP Inc.) FirewallRules: [{9FBF4298-CC0B-460B-98C7-F1154DEE3427}] => (Allow) C:\Program Files\WindowsApps\AD2F1837.OMENCommandCenter_1101.2205.2.0_x64__v10z8vjag6ke6\win32\OmenCommandCenterBackground.exe (HP Inc. -> HP Inc.) FirewallRules: [{4EEB6E2D-9FEF-4818-9BC6-B3C824E1500C}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{D59FA1FB-F080-42D8-95B8-B7C72489D766}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [TCP Query User{08682780-F6FF-409A-8C33-3CF547072518}C:\users\lienh\desktop 2\enfants\matthias\ecole\logiciels\edupython\app\python.exe] => (Allow) C:\users\lienh\desktop 2\enfants\matthias\ecole\logiciels\edupython\app\python.exe (Python Software Foundation) [Fichier non signé] FirewallRules: [UDP Query User{3EF01AB6-B7A2-462B-8491-2A00485D2580}C:\users\lienh\desktop 2\enfants\matthias\ecole\logiciels\edupython\app\python.exe] => (Allow) C:\users\lienh\desktop 2\enfants\matthias\ecole\logiciels\edupython\app\python.exe (Python Software Foundation) [Fichier non signé] FirewallRules: [{D3C81CA3-5CF1-45AA-BB8E-79078F573A71}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{FAEC5D50-6E3F-4A90-8E87-229936A600BD}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{B21A95EA-12F7-4469-8573-34B03290D15D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A2A21463-725E-4AF8-B319-F1A7FEB07D67}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1817928D-85D2-4DB9-B92A-FC9BEF5CF967}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{155BD682-4C59-40B8-9075-13E558A58DA1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{0D6DE812-926F-4380-A450-BA6C31B92A37}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{B6D49843-928E-4521-87C6-BB0E68077C9D}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{CB387640-47C9-4807-B44F-4D5A49456CAB}] => (Block) C:\Program Files\Avast Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{ADB729D0-E7F8-4718-A40A-B4127B344047}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.37\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) ==================== Points de restauration ========================= 05-10-2022 15:53:57 Windows Update 07-10-2022 13:29:45 Programme d’installation pour les modules Windows 12-10-2022 11:22:46 ZHPcleaner 12-10-2022 11:28:58 AdwCleaner_BeforeCleaning_12/10/2022_11:28:57 ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=26, ID d’auteur=0, ID de fournisseur=0, Type de fournisseur=0 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=25, ID d’auteur=0, ID de fournisseur=0, Type de fournisseur=0 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=13, ID d’auteur=0, ID de fournisseur=0, Type de fournisseur=0 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=55, ID d’auteur=311, ID de fournisseur=0, Type de fournisseur=0 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=50, ID d’auteur=311, ID de fournisseur=0, Type de fournisseur=0 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=254, ID d’auteur=311, ID de fournisseur=14122, Type de fournisseur=1 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=23, ID d’auteur=311, ID de fournisseur=0, Type de fournisseur=0 Error: (10/12/2022 10:48:49 AM) (Source: Microsoft-Windows-EapHost) (EventID: 2002) (User: AUTORITE NT) Description: Opération ignorée : échec de la validation de Eap method DLL path. Erreur : ID de type=21, ID d’auteur=311, ID de fournisseur=0, Type de fournisseur=0 Erreurs système: ============= Error: (10/12/2022 11:29:13 AM) (Source: Service Control Manager) (EventID: 7032) (User: ) Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Exécuter le programme de récupération configuré) après la fin inattendue du service WildTangentHelper, mais cette action a échoué en raison de l’erreur suivante : Le fichier spécifié est introuvable. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Graphics Command Center Service s’est terminé de façon inattendue pour la 1ème fois. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Content Protection HDCP Service s’est terminé de façon inattendue pour la 1ème fois. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service DbxSvc s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Dynamic Application Loader Host Interface Service s’est terminé de façon inattendue pour la 1ème fois. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Sound Research SECOMN Service s’est terminé de façon inattendue pour la 1ème fois. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service HP Analytics service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (10/12/2022 11:29:08 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Microsoft Office Click-to-Run Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. CodeIntegrity: =============== Date: 2022-10-12 11:38:34 Description: Windows blocked file \Device\HarddiskVolume3\Windows\System32\scrobj.dll which has been disallowed for protected processes. Date: 2022-10-12 11:36:52 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements. Date: 2022-10-12 11:36:29 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: AMI F.04 04/06/2021 Carte mère: HP 8860 Processeur: 11th Gen Intel(R) Core(TM) i7-11700 @ 2.50GHz Pourcentage de mémoire utilisée: 37% Mémoire physique - RAM - totale: 16098.37 MB Mémoire physique - RAM - disponible: 10102.39 MB Mémoire virtuelle totale: 18530.37 MB Mémoire virtuelle disponible: 12040.27 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:476.13 GB) (Free:196.11 GB) (Model: NVMe INTEL SSDPEKNW512G8H) NTFS Drive e: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:76.1 GB) (Model: TOSHIBA External USB 3.0 USB Device) NTFS \\?\Volume{37764580-931e-49a9-87be-877d3d612fdd}\ (Windows RE tools) (Fixed) (Total:0.53 GB) (Free:0.06 GB) NTFS \\?\Volume{10b82e64-b926-41f0-8f4b-8711a6b870e7}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.19 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 476.9 GB) (Disk ID: 01B96500) Partition: GPT. ========================================================== Disk: 1 (Size: 465.8 GB) (Disk ID: 592F9DC5) Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================