Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-10-2023 Exécuté par Geralex (19-10-2023 19:48:39) Exécuté depuis C:\Users\Geralex\Desktop Microsoft Windows 11 Professionnel Version 22H2 22621.2428 (X64) (2023-03-03 11:59:26) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2468335770-3642458589-78257044-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2468335770-3642458589-78257044-503 - Limited - Disabled) Geralex (S-1-5-21-2468335770-3642458589-78257044-1005 - Administrator - Enabled) => C:\Users\Geralex Invité (S-1-5-21-2468335770-3642458589-78257044-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2468335770-3642458589-78257044-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 21.07 (x64) (HKLM\...\7-Zip) (Version: 21.07 - Igor Pavlov) Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.06 - Adobe Systems) Apowersoft Gestionnaire de Smartphone version 2.8.9 (HKLM-x32\...\{4A00E3C4-2D0F-4AE7-9F2A-74870BE09EF8}_is1) (Version: 2.8.9 - APOWERSOFT LIMITED) Autodesk (HKLM\...\{79246670-A508-4902-A6C8-7EA13BF6EB56}) (Version: 1.0.0 - Autodesk) Autodesk Genuine Service (HKLM\...\{E5AB199F-1837-453E-8A48-DC6366310F15}) (Version: 7.3.0.222 - Autodesk) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Calendes Version 4.2 (HKLM-x32\...\Calendes_is1) (Version: - Olivier RAVET) CoolutilsConverter (HKLM-x32\...\Coolutils Converter_is1) (Version: - Softplicity, Inc.) Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.112 - ALPS ELECTRIC CO., LTD.) Désinstaller l'imprimante EPSON SX110 Series (HKLM\...\EPSON SX110 Series) (Version: - SEIKO EPSON Corporation) Epson Event Manager (HKLM-x32\...\{4B22C430-7EA8-4534-8358-376FD900B953}) (Version: 3.10.0042 - Seiko Epson Corporation) EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - ) ePUB to PDF Converter (HKLM-x32\...\ePUB to PDF Converter) (Version: 2.1.0.10 - Epubor Inc.) Genius PDF (HKLM-x32\...\{CF360EF6-65B1-47B3-AF23-5F8626108585}_is1) (Version: 2.1 - LiquidPsi Software) Herramientas de corrección de Microsoft Office 2016: español (HKLM\...\{90160000-001F-0C0A-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden hide.me ovpn-dco (HKLM\...\{87204ADF-3210-47DB-8D0B-8F8F6B872DC2}) (Version: 0.9.3.0 - hide.me) hide.me TAP-Windows6 (HKLM\...\{FCFCDF8A-2F07-4850-A489-33475E73A9D1}) (Version: 9.26.0.0 - hide.me) hide.me VPN 3.16.1 (HKLM-x32\...\{0E00BDA5-7998-4889-BE4B-39A4BBD2EDFB}_is1) (Version: 3.16.1 - eVenture Limited) HP ePrint SW (HKLM\...\{78525DEA-1E62-429B-9CA4-A78F899A9F29}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{B2CFD444-5088-4ECC-A1F1-28620C082C36}) (Version: 5.5.22560 - HP Inc.) Hidden Java 8 Update 371 (64-bit) (HKLM\...\{71124AE4-039E-4CA4-87B4-2F64180371F0}) (Version: 8.0.3710.11 - Oracle Corporation) Malwarebytes version 4.6.2.281 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.2.281 - Malwarebytes) Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden Microsoft ASP.NET Core 6.0.8 - Shared Framework (x64) (HKLM-x32\...\{1182f806-658a-4241-9202-d43e13bf2719}) (Version: 6.0.8.22363 - Microsoft Corporation) Microsoft ASP.NET Core 6.0.8 Shared Framework (x64) (HKLM\...\{FA97D589-B37E-3B49-A8D2-4764029773FE}) (Version: 6.0.8.22363 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 118.0.2088.46 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 118.0.2088.46 - Microsoft Corporation) Microsoft Excel MUI (French) 2016 (HKLM\...\{90160000-0016-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Groove MUI (French) 2016 (HKLM\...\{90160000-00BA-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office 32-bit Components 2016 (HKLM\...\{90160000-00C1-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Korrekturhilfen 2016 – Deutsch (HKLM\...\{90160000-001F-0407-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office OSM MUI (French) 2016 (HKLM\...\{90160000-00E1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office OSM UX MUI (French) 2016 (HKLM\...\{90160000-00E2-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Proofing (French) 2016 (HKLM\...\{90160000-002C-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2016 - English (HKLM\...\{90160000-001F-0409-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Proofing Tools 2016 - اللغة العربية (HKLM\...\{90160000-001F-0401-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Shared 32-bit MUI (French) 2016 (HKLM\...\{90160000-00C1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Shared MUI (French) 2016 (HKLM\...\{90160000-006E-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Standard 2016 (HKLM\...\{90160000-0012-0000-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Office Standard 2016 (HKLM\...\Office16.STANDARD) (Version: 16.0.4266.1001 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2468335770-3642458589-78257044-1005\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation) Microsoft OneNote MUI (French) 2016 (HKLM\...\{90160000-00A1-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Outlook MUI (French) 2016 (HKLM\...\{90160000-001A-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft PowerPoint MUI (French) 2016 (HKLM\...\{90160000-0018-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Publisher MUI (French) 2016 (HKLM\...\{90160000-0019-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft Update Health Tools (HKLM\...\{AF47B488-9780-4AB5-A97E-762E28013CA6}) (Version: 5.71.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.34.31931 (HKLM-x32\...\{6ba9fb5e-8366-4cc4-bf65-25fe9819b2fc}) (Version: 14.34.31931.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.34.31931 (HKLM-x32\...\{C2662EFF-06E6-4FD1-9D6D-FDCA91025757}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.34.31931 (HKLM-x32\...\{AB1BDF73-7393-42CE-812D-9A90918814D5}) (Version: 14.34.31931 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation) Microsoft Word MUI (French) 2016 (HKLM\...\{90160000-001B-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) Molotov 4.6.0 (HKU\S-1-5-21-2468335770-3642458589-78257044-1005\...\13767fb8-1090-5f10-9b1e-b497b7aff594) (Version: 4.6.0 - Molotov) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 118.0.2 (x64 fr)) (Version: 118.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 110.0.1 - Mozilla) Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: - Notepad++ Team) Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM\...\{90160000-001F-040C-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden SoftPerfect WiFi Guard version 1.0.7 (HKLM\...\{38AFD787-4D2E-4442-92D2-7739F5F92CF4}_is1) (Version: 1.0.7 - SoftPerfect) SricamPC version 2.4 (HKLM-x32\...\{56BAA41B-F3C4-41A4-9CD6-047B311FBF35}_is1) (Version: 2.4 - ShenZhen Sricctv Technology Co., Ltd.) Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM\...\{90160000-001F-0413-1000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden TweakNow WinSecret Plus! for Windows 11 and 10 (HKU\S-1-5-21-2468335770-3642458589-78257044-1005\...\TweakNow WinSecret Plus! for Windows 11 and 10_is1) (Version: 4.9.0 - TweakNow.com) Ulead PhotoImpact 8 Trial (HKLM-x32\...\InstallShield_{3D960387-76B3-4758-BAF7-D156B14A032F}) (Version: 8.0 - Ulead System) VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN) Windows 11 Manager (HKLM\...\{26975BEB-9EDD-4AB8-88B3-256AF399C55C}) (Version: 1.2.0 - Yamicsoft) Hidden Windows 11 Manager (HKU\S-1-5-21-2468335770-3642458589-78257044-1005\...\Windows 11 Manager 1.2.0) (Version: 1.2.0 - Yamicsoft) Windscribe (HKLM-x32\...\{fa690e90-ddb0-4f0c-b3f1-136c084e5fc7}_is1) (Version: 2.2 Build 10 - Windscribe Limited) WinHTTrack Website Copier 3.49-2 (x64) (HKLM\...\WinHTTrack Website Copier_is1) (Version: 3.49.2 - HTTrack) WinRAR 5.40 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.0 - win.rar GmbH) Packages: ========= All Video Player HD -> C:\Program Files\WindowsApps\22450.TotalVideoPlayer_2.3.0.0_x64__0aqw1zw0x2snt [2023-10-18] (韵华软件) Flower (dark) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Flowerdark_1.0.0.0_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corp.) Flower (light) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Flowerlight_2.0.0.0_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corp.) Microsoft.Photos.MediaEngineDLC -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-10-18] (Microsoft Corporation) Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-10-11] (Microsoft Corporation) Planets (dark) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Planetsdark_1.0.0.0_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corp.) Planets (light) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Planetslight_1.0.0.0_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corp.) Power Automate -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.502.261.0_x64__8wekyb3d8bbwe [2023-10-18] (Microsoft Corporation) Sunset (dark) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Sunsetdark_1.0.0.0_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corp.) Sunset (light) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Sunsetlight_1.0.0.0_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corp.) Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-10-11] (Microsoft Corporation) Windows Package Manager Source (winget) -> C:\Program Files\WindowsApps\Microsoft.Winget.Source_2023.1004.1845.144_neutral__8wekyb3d8bbwe [2023-10-18] (Microsoft Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2468335770-3642458589-78257044-1005_Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32 -> => Pas de fichier CustomCLSID: HKU\S-1-5-21-2468335770-3642458589-78257044-1005_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> pas de chemin du fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers1: [OpenXX{55088221-77F2-4174-9D48-7C3720DCB357}] -> {55088221-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX64.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers1-x32: [OpenXX{55088222-77F2-4174-9D48-7C3720DCB357}] -> {55088222-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [OpenXX{55088221-77F2-4174-9D48-7C3720DCB357}] -> {55088221-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX64.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers2-x32: [OpenXX{55088222-77F2-4174-9D48-7C3720DCB357}] -> {55088222-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-07-20] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [OpenXX{55088221-77F2-4174-9D48-7C3720DCB357}] -> {55088221-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX64.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers3-x32: [OpenXX{55088222-77F2-4174-9D48-7C3720DCB357}] -> {55088222-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [OpenXX{55088221-77F2-4174-9D48-7C3720DCB357}] -> {55088221-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX64.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers4-x32: [OpenXX{55088222-77F2-4174-9D48-7C3720DCB357}] -> {55088222-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2017-03-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [OpenXX{55088221-77F2-4174-9D48-7C3720DCB357}] -> {55088221-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX64.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers5-x32: [OpenXX{55088222-77F2-4174-9D48-7C3720DCB357}] -> {55088222-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2021-12-26] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.) ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2018-05-02] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-07-20] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [OpenXX{55088221-77F2-4174-9D48-7C3720DCB357}] -> {55088221-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX64.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers6-x32: [OpenXX{55088222-77F2-4174-9D48-7C3720DCB357}] -> {55088222-77F2-4174-9D48-7C3720DCB357} => C:\Softs'Ium\Shell\OpenXX.dll [2022-11-10] () [Fichier non signé] ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-08-15] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Geralex\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --load-extension="C:\Users\Public\Microsoft\Edge\User Data\Default\Extension\aaepppeaablkmqepldbqnqjapdbninpj\4.5.7._0" ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --load-extension="C:\Users\Public\Microsoft\Edge\User Data\Default\Extension\mmblqniljcfarrenmopbfkeniqlkaqdj\7.7.3._0" ==================== Modules chargés (Avec liste blanche) ============= 2023-03-03 13:55 - 2022-10-23 13:46 - 000030208 _____ () [Fichier non signé] C:\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsTerminal_1.15.2875.0_x64__8wekyb3d8bbwe\PackagedCom\OpenConsoleProxy.dll 2022-11-10 13:00 - 2022-11-10 13:00 - 000215040 _____ () [Fichier non signé] C:\Softs'Ium\Shell\OpenXX64.dll 2012-09-23 20:43 - 2012-09-23 20:43 - 000010240 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra 2023-04-19 14:19 - 2021-12-26 16:00 - 000093696 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [179] AlternateDataStreams: C:\ProgramData\TEMP:B755D674 [180] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-2468335770-3642458589-78257044-1005\Software\Classes\.scr: AutoCADScriptFile => ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = SearchScopes: HKU\S-1-5-21-2468335770-3642458589-78257044-1005 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre-1.8\bin\ssv.dll [2023-03-17] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre-1.8\bin\jp2ssv.dll [2023-03-17] (Oracle America, Inc. -> Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) BHO-x32: Pas de nom -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> Pas de fichier BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2013-12-20] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems, Incorporated -> Adobe Systems Incorporated) Handler: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2023-09-21 18:21 - 2023-09-21 18:21 - 000001502 _____ C:\Windows\system32\drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 activate.adobe.com 127.0.0.1 lm.licenses.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 adobe.activate.com127.0.0.1 www.easeus.com 127.0.0.1 track.easeus.com 127.0.0.1 66.39.112.91 127.0.0.1 216.92.151.227 127.0.0.1 216.92.61.7 127.0.0.1 update.easeus.com ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> %SystemRoot%\system32\WBEM;%SystemRoot%\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32\WBEM;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\ProgramData\chocolatey\bin;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Program Files\dotnet\;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps;C:\Users\Geralex\AppData\Local\Microsoft\WindowsApps; HKU\S-1-5-21-2468335770-3642458589-78257044-1005\Control Panel\Desktop\\Wallpaper -> C:\Users\Geralex\Pictures\Photos iphone fond decrean\IMG_8863.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AdskLicensingService => 2 MSCONFIG\Services: ApHidMonitorService => 2 MSCONFIG\Services: Bonjour Service => 2 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: FlexNet Licensing Service => 2 MSCONFIG\Services: FlexNet Licensing Service 64 => 2 MSCONFIG\Services: hmevpnsvc => 2 MSCONFIG\Services: MozillaMaintenance => 3 MSCONFIG\Services: WindscribeService => 2 MSCONFIG\Services: WsAppService => 2 ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{2063D32E-9636-470D-B9C9-7D3B4F50BAE9}] => (Block) C:\Softs'Ium\CCleaner\CCleaner64.exe (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd) FirewallRules: [{AB569D06-33ED-4D86-BD17-64A138694F6A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{BE3786BF-906B-4E42-8E5F-CBB84EE551E0}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{AC3E1CE9-9883-47B2-A921-713AFB5326EB}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{34C4F044-55A2-47B8-8E8A-A763F5542BE2}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [TCP Query User{3BE5BF1E-EC0D-47AB-80FE-20380FA1F2CF}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{F7462217-E1A0-4A4B-B657-D334AB03D04B}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{7892E725-6358-4AA7-A377-9439800B92F1}C:\program files (x86)\sricampc\sricampc.exe] => (Allow) C:\program files (x86)\sricampc\sricampc.exe (TODO: ) [Fichier non signé] FirewallRules: [UDP Query User{8864960F-C3CB-424B-8E83-88CF480BB2C3}C:\program files (x86)\sricampc\sricampc.exe] => (Allow) C:\program files (x86)\sricampc\sricampc.exe (TODO: ) [Fichier non signé] FirewallRules: [{E45B7F8C-D47B-488B-B14C-3E3108966332}] => (Allow) C:\Windows\System32\SppExtComObjHook.dll () [Fichier non signé] FirewallRules: [TCP Query User{97CC4904-C116-49DF-8747-4237FBCD00B1}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe (Apowersoft Ltd -> Apowersoft) FirewallRules: [UDP Query User{221E8EA2-93C4-46EA-B4EA-F7577A35231E}C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe] => (Allow) C:\program files (x86)\apowersoft\apowersoft phone manager\apowersoft phone manager.exe (Apowersoft Ltd -> Apowersoft) FirewallRules: [{7D89F415-5831-465B-907A-244C8851460B}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{A88BBE67-4240-4713-9D96-942E7D3F6C8A}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) FirewallRules: [{AF1E344B-CBEA-4126-96DB-0C98420E1321}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe (Autodesk, Inc. -> Autodesk, Inc.) [Fichier non signé] FirewallRules: [{98CA5E03-7C36-46CA-8116-E8A57BC68F00}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe (Flexera Software LLC -> Flexera) FirewallRules: [{6F84DDCB-DCA5-45C9-BA7A-CC06D40D6D17}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe (Autodesk, Inc. -> Autodesk, Inc.) [Fichier non signé] FirewallRules: [{C728207F-E7B1-46D6-BF9D-7C51C9CBA1E8}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe (Flexera Software LLC -> Flexera) FirewallRules: [{9F883F15-5746-45B0-A481-0B453541C9D1}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe (Autodesk, Inc. -> Autodesk, Inc.) [Fichier non signé] FirewallRules: [{831DD661-4192-4F34-BD28-7A78B52F9A67}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe (Flexera Software LLC -> Flexera) FirewallRules: [{56EF03DE-46AE-4EB3-B7E6-E68E1F0403A8}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\adskflex.exe (Autodesk, Inc. -> Autodesk, Inc.) [Fichier non signé] FirewallRules: [{9DC2521B-EDD5-40EF-9731-B86E86C4AC4E}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\Network License Manager\lmgrd.exe (Flexera Software LLC -> Flexera) FirewallRules: [{0B9FB5E6-FAA9-4CB0-89A4-D08ACF0F7CEF}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\uninstall.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{F378B9FA-3077-4A98-B818-41A733C442AC}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\uninstall.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{BAABED48-E93A-43B0-B228-782BC887D841}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAgent\AdskLicensingAgent.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{7DD8DE6F-6B38-4B46-B52C-8C33EDDFBC51}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAgent\AdskLicensingAgent.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{957CF1FA-97FD-4E78-8343-3F2EE7613F22}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAgent\CER\senddmp.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{DA7ED098-32BE-4B5A-99C3-49573B2C91FB}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAgent\CER\senddmp.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{681ABFD1-38C8-44EF-A192-AD1AC849DAE0}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAnalyticsClient\ADPClientService.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{EF894870-5A6C-4BDC-96E7-B0C375EFD155}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAnalyticsClient\ADPClientService.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{755AF4E4-09D6-4CBE-BFF9-0D9FC52F8491}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAnalyticsClient\AdskLicensingAnalyticsClient.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{8B9792D3-CF7A-4882-A92E-706479D99B07}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingAnalyticsClient\AdskLicensingAnalyticsClient.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{54F9CA26-D341-4E87-800B-AF7CD0EA600D}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingService\AdskLicensingService.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{E57B92DB-232E-4A85-BF34-0FCDA7CACADA}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\AdskLicensingService\AdskLicensingService.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{038D1B8C-A638-4AF4-99CA-58D574F8478F}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\helper\AdskLicensingInstHelper.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{6D52ADB1-59C0-4835-9CA6-657F1C682DC9}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\12.1.0.7121\helper\AdskLicensingInstHelper.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{F2BEEE26-C236-440C-95DE-33DB47686B69}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent\AdskLicensingAgent.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{2F25A153-E597-4ED2-90C1-BD0E0F84F817}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent\AdskLicensingAgent.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{B11CB83D-E7D2-49D8-BCA2-7057809A17E9}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent\CER\senddmp.exe (Autodesk, Inc -> Autodesk, Inc.) FirewallRules: [{64A53F1E-D02B-4EC0-AB9F-6FD095DE503E}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAgent\CER\senddmp.exe (Autodesk, Inc -> Autodesk, Inc.) FirewallRules: [{79EFC254-873B-48AD-B2AB-DA7A96791481}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAnalyticsClient\ADPClientService.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{F9EE64AD-AB35-4A21-9673-7A1AF0EB3748}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAnalyticsClient\ADPClientService.exe (Autodesk, Inc. -> Autodesk, Inc.) FirewallRules: [{F4605BF8-228B-4BC0-BA81-C8065D99D31C}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAnalyticsClient\AdskLicensingAnalyticsClient.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{167A9AC8-4408-4635-AEB5-6DC6796718F9}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingAnalyticsClient\AdskLicensingAnalyticsClient.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{9A752C91-0C7C-4ED9-94DF-6DB6CA98258A}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{7ACF95E7-574F-4759-9A2A-4BD2F9090D47}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\AdskLicensingService\AdskLicensingService.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{36D8C378-2793-46FC-8F06-625E40A1F6BC}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\helper\AdskLicensingInstHelper.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{E97DB77E-6F21-4914-842D-EE23E60505DD}] => (Block) C:\Program Files (x86)\Common Files\Autodesk Shared\AdskLicensing\Current\helper\AdskLicensingInstHelper.exe (Autodesk, Inc. -> Autodesk) FirewallRules: [{1866AFD9-AAE6-4B0E-812F-31E5538C0100}] => (Allow) LPort=5357 FirewallRules: [{7D365668-31D2-40F2-8707-E5D3AE25680A}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\118.0.2088.46\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DC1CC27B-21B8-439F-852E-D9760BF04DBA}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7EF914A0-8E8B-45CE-B68A-8131BBFED583}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{9E1297AC-8B7B-4283-88F8-4A116834F093}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{15FCC4D5-E54A-45B5-BA7D-D7439923257D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{94140215-2861-433A-B96A-A5EC4F16E2DB}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{41EA70E9-41AF-4F83-8E0D-F71852C507FB}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) ==================== Points de restauration ========================= 17-10-2023 10:02:33 Point de contrôle planifié 19-10-2023 11:43:30 ZHPcleaner ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Lecteur de carte à puce Microsoft Usbccid (WUDF) Description: Lecteur de carte à puce Microsoft Usbccid (WUDF) Class Guid: {50dd5230-ba8a-11d1-bf5d-0000f805f530} Manufacturer: Microsoft Service: WUDFRd Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: Contrôleur PCI de communications simplifiées Description: Contrôleur PCI de communications simplifiées Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Broadcom USH Description: Broadcom USH Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: DW5550 Description: DW5550 Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (10/19/2023 03:43:49 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: ) Description: Event-ID 2 Error: (10/19/2023 12:14:50 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (10/19/2023 12:14:50 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (10/18/2023 06:23:55 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: Une erreur non spécifiée s’est produite au cours de la restauration du système : (ZHPcleaner). Informations supplémentaires : 0x800705aa. Error: (10/18/2023 05:16:39 PM) (Source: System Restore) (EventID: 8210) (User: ) Description: Une erreur non spécifiée s’est produite au cours de la restauration du système : (Point de contrôle planifié). Informations supplémentaires : 0x800705aa. Error: (10/18/2023 04:59:03 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Error: (10/18/2023 04:59:03 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours. ] Error: (10/18/2023 04:59:03 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours. . Erreurs système: ============= Error: (10/19/2023 07:50:46 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : Hewlett-Packard - USB - 12/12/2014 12:00:00 AM - 35.0.56.52825. Error: (10/19/2023 05:12:37 PM) (Source: DCOM) (EventID: 10001) (User: DELL-GERALEX) Description: Impossible de démarrer un serveur DCOM : AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca en tant que Non disponible/Non disponible. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:AD2F1837.HPPrinterControl.AppXg27tfcrjvepe7p6m0w5zs7c77x5b4hhe.mca Error: (10/19/2023 05:12:31 PM) (Source: DCOM) (EventID: 10001) (User: DELL-GERALEX) Description: Impossible de démarrer un serveur DCOM : AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca en tant que Non disponible/Non disponible. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:AD2F1837.HPPrinterControl.AppXg27tfcrjvepe7p6m0w5zs7c77x5b4hhe.mca Error: (10/19/2023 05:12:29 PM) (Source: DCOM) (EventID: 10001) (User: DELL-GERALEX) Description: Impossible de démarrer un serveur DCOM : AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca en tant que Non disponible/Non disponible. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:AD2F1837.HPPrinterControl.AppXg27tfcrjvepe7p6m0w5zs7c77x5b4hhe.mca Error: (10/19/2023 05:12:27 PM) (Source: DCOM) (EventID: 10001) (User: DELL-GERALEX) Description: Impossible de démarrer un serveur DCOM : AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6!AD2F1837.HPPrinterControl.AppX3pygpm0xnrdftm5n1tftckhgsgz4zqvb.mca en tant que Non disponible/Non disponible. L’erreur « 2147942402 » s’est produite lors du démarrage de la commande : "C:\Windows\system32\backgroundTaskHost.exe" -ServerName:AD2F1837.HPPrinterControl.AppXg27tfcrjvepe7p6m0w5zs7c77x5b4hhe.mca Error: (10/19/2023 04:32:58 PM) (Source: Ntfs) (EventID: 55) (User: AUTORITE NT) Description: Une défaillance a été détectée dans la structure du système de fichiers sur le volume F:. La table MFT (Master File Table) contient un enregistrement de fichier endommagé. Le numéro de référence du fichier est 0x300000000e692. Le nom du fichier est «  ». Error: (10/19/2023 04:32:07 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORITE NT) Description: \\?\Volume{0364984c-0000-0000-0000-90163a000000}\Device\HarddiskVolume123 Error: (10/19/2023 04:31:59 PM) (Source: Microsoft-Windows-Ntfs) (EventID: 98) (User: AUTORITE NT) Description: F:\Device\HarddiskVolume113 Windows Defender: ================ Date: 2023-10-18 14:56:51 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {7E828F1F-444F-4A82-BE3B-58FE678254CC} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-10-17 09:45:51 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {F3CE400C-ED5F-4832-82B9-4E4280A7327A} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-10-11 16:32:05 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {C4962BF3-3621-4A6A-94CB-F7B1D1647781} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-10-11 16:17:24 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {4AF53B0B-BA80-4658-811A-11ACF3D45C9F} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2023-10-09 15:51:25 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {5E1808D1-91A1-404E-84EA-D02662D83E79} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0] Date: 2023-09-27 11:39:17 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/crack&threatid=2147734096&enterprise=0 Nom : HackTool:Win32/crack ID : 2147734096 Gravité : Élevée Catégorie : Outil Utilisateur : DELL-GERALEX\Geralex Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.397.1638.0, AS: 1.397.1638.0 Version du moteur : 1.1.23080.2005 Date: 2023-09-27 11:37:52 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/crack&threatid=2147734096&enterprise=0 Nom : HackTool:Win32/crack ID : 2147734096 Gravité : Élevée Catégorie : Outil Utilisateur : DELL-GERALEX\Geralex Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.397.1638.0, AS: 1.397.1638.0 Version du moteur : 1.1.23080.2005 Date: 2023-09-27 11:36:32 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/crack&threatid=2147734096&enterprise=0 Nom : HackTool:Win32/crack ID : 2147734096 Gravité : Élevée Catégorie : Outil Utilisateur : DELL-GERALEX\Geralex Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.397.1638.0, AS: 1.397.1638.0 Version du moteur : 1.1.23080.2005 Date: 2023-09-27 11:36:07 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/crack&threatid=2147734096&enterprise=0 Nom : HackTool:Win32/crack ID : 2147734096 Gravité : Élevée Catégorie : Outil Utilisateur : DELL-GERALEX\Geralex Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.397.1638.0, AS: 1.397.1638.0 Version du moteur : 1.1.23080.2005 Date: 2023-09-27 11:35:43 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la restauration d’un élément en quarantaine. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/crack&threatid=2147734096&enterprise=0 Nom : HackTool:Win32/crack ID : 2147734096 Gravité : Élevée Catégorie : Outil Utilisateur : DELL-GERALEX\Geralex Code d’erreur : 0x80508014 Description de l’erreur : Impossible de restaurer l’élément en quarantaine. Version de la veille de sécurité : AV: 1.397.1638.0, AS: 1.397.1638.0 Version du moteur : 1.1.23080.2005 CodeIntegrity: =============== Date: 2023-10-19 16:51:47 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume1\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2023-10-19 13:46:05 Description: Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume1\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: Dell Inc. A22 09/12/2018 Carte mère: Dell Inc. 01MCMN Processeur: Intel(R) Core(TM) i5-2540M CPU @ 2.60GHz Pourcentage de mémoire utilisée: 87% Mémoire physique - RAM - totale: 3977.05 MB Mémoire physique - RAM - disponible: 506.07 MB Mémoire virtuelle totale: 8073.05 MB Mémoire virtuelle disponible: 4529.06 MB ==================== Lecteurs ================================ Drive c: (Arium-11-PRO-202211) (Fixed) (Total:232.88 GB) (Free:79.5 GB) (Model: FUJITSU MJA2250BH G2) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)] Drive d: (128Go 2) (Removable) (Total:119.02 GB) (Free:0.36 GB) exFAT ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 00040991) Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS) ========================================================== Disk: 1 (Protective MBR) (Size: 119.1 GB) (Disk ID: 00000000) Partition: GPT. ==================== Fin de Addition.txt =======================