Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 12-12-2023 Exécuté par pasca (13-12-2023 12:00:32) Exécuté depuis C:\Users\pasca\Downloads Microsoft Windows 10 Famille Version 22H2 19045.3693 (X64) (2020-12-12 21:55:23) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3222279048-2337127582-1112110019-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3222279048-2337127582-1112110019-503 - Limited - Disabled) defaultuser100001 (S-1-5-21-3222279048-2337127582-1112110019-1012 - Limited - Enabled) Invité (S-1-5-21-3222279048-2337127582-1112110019-501 - Limited - Disabled) pasca (S-1-5-21-3222279048-2337127582-1112110019-1001 - Administrator - Enabled) => C:\Users\pasca WDAGUtilityAccount (S-1-5-21-3222279048-2337127582-1112110019-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402} FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Apple Application Support (32 bits) (HKLM-x32\...\{6CF0CAEE-54B6-4D84-A055-3AF110F189D3}) (Version: 8.4 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{8B127943-89E7-4691-A7A4-D05807920A84}) (Version: 8.4 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Avast Antivirus Gratuit (HKLM\...\Avast Antivirus) (Version: 23.11.6090 - Avast Software) Avast Secure Browser (HKLM-x32\...\Avast Secure Browser) (Version: 119.1.23320.200 - Auteurs de Avast Secure Browser) Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Canon Calibration Tool (HKLM-x32\...\CanonCalibrationTool) (Version: 1.4.0 - Canon Inc.) Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.) Canon IJ Network Scanner Selector EX2 (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX2) (Version: 2.0.0.19 - Canon Inc.) Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: 1.2.0.18 - Canon Inc.) Canon Inkjet Printer/Scanner/Télécopieur Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 6.4.0 - Canon Inc.) Canon MB5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MB5100_series) (Version: 1.02 - Canon Inc.) Canon MB5100 series On-screen Manual (HKLM-x32\...\Canon MB5100 series On-screen Manual) (Version: 7.8.0 - Canon Inc.) Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.) Canon Quick Utility Toolbox (HKLM-x32\...\Quick Toolbox) (Version: 2.4.0 - Canon Inc.) Canon Utilitaire de numérotation rapide 2 (HKLM-x32\...\Speed Dial Utility2) (Version: 2.2.1 - Canon Inc.) Canon Wi-Fi Connection Assistant (HKLM-x32\...\Wi-Fi Connection Assistant) (Version: 1.20.0 - Canon Inc.) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) CPU Guardian (HKLM-x32\...\CPU Guardian) (Version: 3.1.4 - CPU Guardian) ELAN Touchpad 18.2.15.7_X64_WHQL (HKLM\...\Elantech) (Version: 18.2.15.7 - ELAN Microelectronic Corp.) Energy Star (HKLM\...\{5CB22648-35F8-41BC-9C35-1E41FE6E12A5}) (Version: 1.1.1 - HP Inc.) Enregistrement utilisateur de Canon MB5100 series (HKLM-x32\...\Enregistrement utilisateur de Canon MB5100 series) (Version: - ‭Canon Inc.) Gmail (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\cfd450a0c54f30d178614356e8b9a673) (Version: 1.0 - Google\Chrome) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.71 - Google LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 84.0.13.0 - Google LLC) Google Photos (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\fc63cb43b1a8c8aaedd071d49594decf) (Version: 1.0 - Google\Chrome) HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.) HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.15.0 - HP Inc.) HP CoolSense (HKLM-x32\...\{10F0BF3E-DBDB-422A-8C12-B4D46711D7C8}) (Version: 2.22.2 - HP Inc.) HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.) HP ePrint SW (HKLM\...\{16311D0B-D57C-46F8-AE64-9D4D44227271}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{4C246A91-6BAE-450E-BDEA-70D01663DF43}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{78525DEA-1E62-429B-9CA4-A78F899A9F29}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM\...\{B2CFD444-5088-4ECC-A1F1-28620C082C36}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM-x32\...\{3D00C669-D447-4A04-AFDA-25E9E76E7873}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM-x32\...\{59649835-21FD-4523-9AB0-9E67ED77F0CA}) (Version: 5.5.22560 - HP Inc.) Hidden HP ePrint SW (HKLM-x32\...\{cdb5f70f-5107-4613-bf69-15de903b5b5d}) (Version: 5.5.22560 - HP Inc.) HP JumpStart Apps (HKLM-x32\...\HP JumpStart Apps) (Version: 7.0.32 - HP Inc.) HP JumpStart Bridge (HKLM-x32\...\{3FC961DB-BD36-4D8D-B276-0C456A2BB638}) (Version: 1.4.0.441 - HP Inc.) HP JumpStart Launch (HKLM-x32\...\{F213102E-FD30-4E22-AF73-4C682D65FFEE}) (Version: 1.4.441.0 - HP Inc.) HP Recovery Manager (HKLM-x32\...\{64BAA990-F1FC-4145-A7B1-E41FBBC9DA47}) (Version: 1.2.1510 - HP) Hidden HP Registration Service (HKLM-x32\...\{EBF2C31B-E9A1-4929-BE35-6EBECF286110}) (Version: 1.0.0.30 - HP Inc.) Hidden HP Support Solutions Framework (HKLM-x32\...\{9F79033A-84FC-4137-BCDC-C505246F78E1}) (Version: 12.18.34.21 - HP Inc.) HP System Event Utility (HKLM-x32\...\{5D308D1F-E37B-431A-8D35-67D16287467D}) (Version: 1.4.28 - HP Inc.) Intel(R) Chipset Device Software (HKLM\...\{06D1C401-447A-4182-B861-37F86A1ECF48}) (Version: 10.1.1.45 - Intel Corporation) Hidden Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.3.10205.4743 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1043 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{871689FB-5226-4641-8ED2-6FDAA2DF65C1}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{D9D63ED7-B857-450C-B46A-1371885084E5}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.8.1.1007 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{E99EAEDE-3206-45F1-89A4-CDB40E5AAEC9}) (Version: 15.8.1.1007 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{0C21BBE5-F4B4-42E2-AE4B-BE210BB1B8AB}) (Version: 30.100.1725.1 - Intel Corporation) Hidden Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation) Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{2b32b7d0-4f9f-47c8-adb7-807e6cb2fb75}) (Version: 1.47.715.0 - Intel Corporation) Hidden Intel(R) Virtual Buttons (HKLM-x32\...\1992736F-C90A-481C-B21B-EE34CAD07387) (Version: 1.1.1.22 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{E838A403-EEF2-45F8-8B82-0771685F0167}) (Version: 19.60.0 - Intel Corporation) Intel® Integrated Sensor Solution (HKLM-x32\...\{98970ddc-844d-4ec3-b93e-52f5f693b305}) (Version: 3.10.100.3429 - Intel Corporation) Intel® PROSet/Wireless WiFi Software (HKLM\...\{EF71AFFB-85B5-407C-A301-39EA25F98313}) (Version: 20.90.0.2270 - Intel Corporation) Hidden IRaMuTeQ 0.7 alpha 2 (HKLM-x32\...\{43C7751F-AC27-49A2-9392-AEA7BD20FA1F}_is1) (Version: 0.7 alpha 2 - Pierre Ratinaud) ISS_Drivers_x64 (HKLM\...\{9315B8DE-B183-4126-A69E-150B8ABF3690}) (Version: 3.10.100.3429 - Intel Corporation) Hidden iTunes (HKLM\...\{1AA704BF-FC77-4FC3-B2AB-BFBAA3D308E5}) (Version: 12.11.0.26 - Apple Inc.) Jeux WildTangent (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.1.1.19 - WildTangent) Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{a2167b7c-e567-4ae5-9c88-8e1349a01363}) (Version: 10.1.1.45 - Intel(R) Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.61 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.61 - Microsoft Corporation) Microsoft Office Famille et Étudiant 2016 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 16.0.17029.20068 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation) Microsoft Teams classic (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\Teams) (Version: 1.6.00.29964 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation) Microsoft VC++ redistributables repacked. (HKLM\...\{D736B443-AF61-4775-9488-DDF59F87BD1F}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft VC++ redistributables repacked. (HKLM-x32\...\{F102A269-3323-427C-914D-E5E71F61453D}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24123 (HKLM-x32\...\{206898cc-4b41-4d98-ac28-9f9ae57f91fe}) (Version: 14.0.24123.0 - Microsoft Corporation) Microsoft Visual C++ 2015 x64 Additional Runtime - 14.0.24123 (HKLM\...\{21134089-9B59-34C8-BE11-929D26AD5207}) (Version: 14.0.24123 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x64 Minimum Runtime - 14.0.24123 (HKLM\...\{FDBE9DB4-7A91-3A28-B27E-705EF7CFAE57}) (Version: 14.0.24123 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x86 Additional Runtime - 14.0.24123 (HKLM-x32\...\{03AC7A79-F8AF-38FC-9DA0-98DAB4F4B1CD}) (Version: 14.0.24123 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015 x86 Minimum Runtime - 14.0.24123 (HKLM-x32\...\{06AE3BCC-7612-39D3-9F3B-B6601D877D02}) (Version: 14.0.24123 - Microsoft Corporation) Hidden novaPDF 8 Printer Driver (HKLM\...\{78348298-772C-42B6-A670-7906495C30BB}) (Version: 8.9.950 - Softland) novaPDF 8 SDK COM (x64) (HKLM\...\{DC8F19A6-7BE4-4274-9B07-763AFAB18506}) (Version: 8.9.950 - Softland) Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.17029.20068 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.17029.20000 - Microsoft Corporation) Hidden Outbyte PC Repair (HKLM-x32\...\{D5C6DB0C-BC43-4A77-9121-D1A07591F855}_is1) (Version: 1.1.6.62247 - Outbyte Computing Pty Ltd) R for Windows 3.3.0 (HKLM\...\R for Windows 3.3.0_is1) (Version: 3.3.0 - R Core Team) R for Windows 3.6.3 (HKLM\...\R for Windows 3.6.3_is1) (Version: 3.6.3 - R Core Team) R for Windows 4.0.3 (HKLM\...\R for Windows 4.0.3_is1) (Version: 4.0.3 - R Core Team) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8656 - Realtek Semiconductor Corp.) RStudio (HKLM-x32\...\RStudio) (Version: 1.3.1093 - RStudio) Skype version 8.71 (HKLM-x32\...\Skype_is1) (Version: 8.71 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\Spotify) (Version: 1.1.18.611.g9cc9bdc9 - Spotify AB) STATISTICA 13.3.721.1 64-bit (FR) (HKLM\...\{85c0de28-bc01-477d-ac28-4a423e157c6b}) (Version: 13.3.721.1 - TIBCO Software Inc.) Statistica PDF (HKLM\...\{3ECD0A45-0A6A-4467-9F5C-96EDA4E805E4}) (Version: 8.9.950 - Softland) TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.40.8 - TeamViewer) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation) UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN) Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.) Hidden Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.) WhatsApp (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\WhatsApp) (Version: 2.2306.9 - WhatsApp) WildTangent Helper (HKLM-x32\...\{A39303AB-4898-4F12-BAA0-0B8630F86DB4}) (Version: 5.0.0.331 - WildTangent) Hidden Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - ) Zoom (HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\...\ZoomUMX) (Version: 5.10.4 (5035) - Zoom Video Communications, Inc.) Packages: ========= Booking.com: Big savings on hotels in 96,000 destinations worldwide -> C:\Program Files\WindowsApps\PricelinePartnerNetwork.Booking.comBigsavingsonhot_2.0.5.0_x64__mgae2k3ys4ra0 [2021-02-12] (Priceline Partner Network) Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.2670.2.0_x64__kgqvnymyfvs32 [2023-12-07] (king.com) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.257.400.0_x64__kgqvnymyfvs32 [2023-12-07] (king.com) Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2022-01-18] (Canon Inc.) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-03] (Microsoft Corporation) Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.20.379.0_x64__rz1tebttyb220 [2023-12-07] (Dolby Laboratories) Dropbox - offre promotionnelle -> C:\Program Files\WindowsApps\C27EB4BA.DropboxOEM_23.4.21.0_x64__xbfy0k16fey96 [2023-12-07] (Dropbox Inc.) File Viewer Plus -> C:\Program Files\WindowsApps\SharpenedProductions.FileViewerPlus_3.3.4.0_x86__xkt78gamzntbr [2023-08-31] (Sharpened Productions) HP Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.HPAudioControl_1.2.141.0_x64__dt26b99r8h8gj [2019-03-13] (Realtek Semiconductor Corp) HP JumpStart -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStart_1.4.443.0_x86__v10z8vjag6ke6 [2018-01-24] (HP Inc.) HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.31.22.0_x64__v10z8vjag6ke6 [2023-11-13] (HP Inc.) Memory Trainer - Acupressure. -> C:\Program Files\WindowsApps\18958Dr.JakobBargak.5702AA5CA855_1.1.3.0_x64__jcd1jmawb7hem [2018-12-10] (Dr. Jakob Bargak) [MS Ad] Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1809.1.0_x64__8wekyb3d8bbwe [2020-12-12] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1809.1.0_x86__8wekyb3d8bbwe [2020-12-12] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-12-12] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-12-12] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-12-12] (Microsoft Corporation) [MS Ad] Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21027.539.0_x64__8wekyb3d8bbwe [2023-10-31] (Microsoft Corporation) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.) Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.920.900_x64__8wekyb3d8bbwe [2023-10-02] (Microsoft Corporation) Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-13] (Microsoft Studios) [MS Ad] Solitaire Français -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.4.14.0_x64__kx24dqmazqk8j [2022-10-16] (Random Salad Games LLC) WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2345.6.0_x64__cv1g1gvanyjgm [2023-11-16] (WhatsApp Inc.) [Startup Task] WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.84.0_x64__qt5r5pa5dyg8m [2021-03-03] (WildTangent Games) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-3222279048-2337127582-1112110019-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\pasca\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23270.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-3222279048-2337127582-1112110019-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\pasca\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-12-07] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-12-07] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-12-07] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-12-07] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\84.0.13.0\drivefsext.dll [2023-12-13] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_11444d601907b1cf\igfxDTCM.dll [2019-02-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2023-12-07] (Avast Software s.r.o. -> AVAST Software) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\pasca\OneDrive\Bureau\Google Drive.lnk -> C:\Program Files\Google\Drive File Stream\launch.bat () ShortcutWithArgument: C:\Users\pasca\OneDrive\Bureau\Google Photos.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=ncmjhecbjeaamljdfahankockkkdmedg ShortcutWithArgument: C:\Users\pasca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm ShortcutWithArgument: C:\Users\pasca\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Photos.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=ncmjhecbjeaamljdfahankockkkdmedg ShortcutWithArgument: C:\Users\pasca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Gmail.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 1" --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm ShortcutWithArgument: C:\Users\pasca\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Pascale (Personne 1) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Modules chargés (Avec liste blanche) ============= 2023-11-17 00:29 - 2023-11-17 00:29 - 000160768 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BRIDGECommon\d53ccbb0e1e291369afa37e0f8117f20\BRIDGECommon.ni.dll 2023-11-17 00:30 - 2023-11-17 00:30 - 000125440 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\BridgeExtension\187b3e1f568e00369f55ca7cea5a57ff\BridgeExtension.ni.dll 2023-11-17 00:31 - 2023-11-17 00:31 - 000395264 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CleanStartController\f7bdb1ab85574accbe13cd55dd29dd59\CleanStartController.ni.dll 2023-10-27 11:24 - 2023-10-27 11:24 - 000138240 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.IWs06dcaa36#\f5836eea869011d9f6291cf9b7052643\Interop.IWshRuntimeLibrary.ni.dll 2023-11-17 00:30 - 2023-11-17 00:30 - 000079872 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NativeInterop\9e5631737405baaddd859265f8c4c85e\NativeInterop.ni.dll 2023-11-17 00:31 - 2023-11-17 00:31 - 000145920 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Registratio4eabc192#\617b5c6f11698416610ca620bbdd07d3\RegistrationUtilities.ni.dll 2022-02-20 11:54 - 2015-09-15 16:07 - 000318464 _____ (CANON INC) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\scchmpm.dll 2022-02-20 11:54 - 2015-09-01 18:11 - 000194560 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnmpu2.dll 2022-02-20 11:54 - 2015-06-17 16:01 - 000008704 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_FRA.DLL 2022-02-20 11:54 - 2015-06-17 16:00 - 000104960 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\CNS2_IMG.dll 2022-02-20 11:54 - 2015-05-26 09:44 - 000141312 _____ (CANON INC.) [Fichier non signé] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX2\cnwidsd.dll 2023-11-17 00:31 - 2023-11-17 00:31 - 000134656 _____ (hardcodet.net) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Hardcodet.W6cab32f3#\562489fe2e8a01e25817b007e65cb586\Hardcodet.Wpf.TaskbarNotification.ni.dll 2023-11-17 00:30 - 2023-11-17 00:30 - 000136704 _____ (HP Inc.) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\CommonPortable\de194edc2e20b7cd85c2199090844e1e\CommonPortable.ni.dll 2023-11-17 00:32 - 2023-11-17 00:32 - 001701376 _____ (Mark Heath & Contributors) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\NAudio\70682e2150571a68aae7d9a0482fc465\NAudio.ni.dll 2020-04-21 21:02 - 2020-04-21 21:02 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\AppVIsvSubsystems32.dll 2020-04-21 21:02 - 2020-04-21 21:02 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\Root\Office16\c2r32.dll 2023-11-17 00:29 - 2023-11-17 00:29 - 002305536 _____ (Newtonsoft) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\5d63a1e47380a7a6ff6d9dc25d35c79a\Newtonsoft.Json.ni.dll 2023-11-17 00:32 - 2023-11-17 00:32 - 003062272 _____ (Newtonsoft) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\e42c61bfe47bc2942424bbd4ceb24181\Newtonsoft.Json.ni.dll 2017-06-06 19:02 - 2017-06-06 19:02 - 000018944 _____ (Softland) [Fichier non signé] C:\WINDOWS\System32\novamn8.dll 2023-11-17 00:31 - 2023-11-17 00:31 - 000793088 _____ (The Apache Software Foundation) [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\log4net\387fc48ebf5371705f8c2ab213b0bd32\log4net.ni.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp17win10.msn.com/?pc=HCTE BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\Statistica\Statistica 13\StaBHO.dll [2017-11-14] (TIBCO Software Inc. -> TIBCO Software Inc.) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2022-10-26] (HP Inc. -> HP Inc.) BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.) BHO-x32: STATISTICA Browser Helper -> {990A8747-93BF-4EF7-B72E-94A6884B98C2} -> C:\Program Files\Statistica\Statistica 13\Support\StaBHO.dll [2017-11-14] (TIBCO Software Inc. -> TIBCO Software Inc.) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2022-10-26] (HP Inc. -> HP Inc.) Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2023-12-07] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2017-09-29 14:46 - 2019-01-08 22:22 - 000000826 _____ C:\WINDOWS\system32\drivers\etc\hosts 2020-10-02 10:03 - 2022-01-25 16:50 - 000000445 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;%DDCPATH64% HKU\S-1-5-21-3222279048-2337127582-1112110019-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\pasca\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\IMG_8620.CR2 DNS Servers: 109.0.66.20 - 109.0.66.10 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{84476DD8-0B17-497A-B4B9-A0023163850D}] => (Allow) C:\Users\pasca\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{DD9A15A3-82A8-421C-9B49-402EABE20579}] => (Allow) C:\Users\pasca\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{91B79F4E-39CA-4A3C-86C8-3F2E58D71295}] => (Allow) C:\Users\pasca\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [UDP Query User{C1507C64-6DAB-4292-A47E-426469D9B423}C:\users\pasca\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\pasca\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{E7B27293-BC65-4F97-9061-8DB52DA92AD0}C:\users\pasca\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\pasca\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{C349F461-CC52-41EA-994C-126F7C69156A}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Pas de fichier FirewallRules: [{D2BEE3EB-E364-4444-968D-B18DD7694B3A}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Pas de fichier FirewallRules: [{13C5083D-742B-4942-BC2E-42E69EF04720}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> ) FirewallRules: [{0977303B-23B6-4509-8020-1087C8B533E0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{6D48AD13-2D31-4A56-AD78-E8CEB8970B3E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F0D5500D-0F47-48E0-94D8-D1C6EA8DA789}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{E4999B19-F17E-4FA4-A957-89467201E152}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{B3503657-639F-41D1-8C69-B4371B9CC60C}] => (Allow) LPort=8501 FirewallRules: [{45C2039E-1BD4-4DCE-ADD8-D44FB9892A76}] => (Allow) LPort=8501 FirewallRules: [TCP Query User{F8FD5C68-485C-4DED-A4F6-85EDDE00E0B2}C:\users\pasca\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\pasca\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{5E2835B6-8130-4AD2-BBB4-D6B37103C0F3}C:\users\pasca\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\pasca\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{6819522D-07A0-431F-B353-E825A28422AC}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{95AE58AC-65B5-4909-BEA4-3BA0789FF844}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{05610F76-0117-4B95-B878-7294811C9BE0}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{3CBDB99D-78EE-437B-97A4-6DD6D1F01BC1}] => (Allow) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{7557B1C8-1760-4DE6-9F9D-FEB16F725FA6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{7DFD926D-8FCD-4EC2-ABC2-35806658626F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{BD125199-2222-44EF-8DC0-FDF3D441C860}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{796472BA-713C-4EE9-AC2F-F33F46A7B401}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{75BEADA4-48C4-4A97-A1C8-C4D8208BE37E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{99B033DB-5411-4E71-B7DE-6BEC4EE3FD93}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C78F448C-8C00-443B-8FAA-E813ED866C44}] => (Allow) C:\Program Files (x86)\Canon\Quick Utility Toolbox\cnqtbapp.exe (Canon Inc. -> CANON INC.) FirewallRules: [{D144E4D3-70AA-4BF7-AC22-A4F7419BFDB9}] => (Allow) C:\Program Files (x86)\Canon\Wi-Fi Connection Assistant\cnwidadr2.exe (Canon Inc. -> CANON INC.) FirewallRules: [{E477C9DA-6A7A-4D70-A3E2-EDA4DA7A230F}] => (Allow) C:\Program Files (x86)\Canon\Wi-Fi Connection Assistant\cnwiddsu\cnwiddsu2.exe (Canon Inc. -> CANON INC.) FirewallRules: [{A84C24C8-AA82-4F64-8D13-4FD5BE960D97}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{F803A1D6-2A3A-4124-942F-AB46B731605D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{45267A67-B3A7-4A63-BC85-CBE098B570F4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{5A602C33-C446-497C-8B40-FC8D1632040F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH) FirewallRules: [{67102101-ACF7-4ECB-8DB8-50E13C41AE1C}] => (Allow) C:\Program Files (x86)\AVAST Software\Browser\Application\AvastBrowser.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{58017A69-4526-49B8-B16F-C9FC6320ED74}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{1580E8D3-9BBA-41C1-8396-7640B3E97E33}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{14386176-D9FB-40AD-938B-A21A3A788C51}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{139B15C4-5368-405F-8777-56DAA14FDAC3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.109.3209.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6695A4C3-75D0-42E3-8084-0772D5BF5740}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.61\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{A434BD11-4100-4761-9B63-AB6B2354AA67}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:118.01 GB) (Free:17.46 GB) (15%) ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (12/12/2023 03:55:53 PM) (Source: SideBySide) (EventID: 78) (User: ) Description: La création du contexte d’activation a échoué pour « C:\Users\pasca\AppData\Roaming\Zoom\bin\Zoom.exe ». Erreur dans le fichier de manifeste ou de stratégie «  » à la ligne . Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_a863d714867441db.manifest. Composant 2 : C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.3636_none_60b6a03d71f818d5.manifest. Error: (12/12/2023 09:31:00 AM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.IO.IOException: Le processus ne peut pas accéder au fichier 'C:\Windows\Temp\signtool.exe', car il est en cours d'utilisation par un autre processus. à System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) à System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost) à System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy) à System.IO.FileStream..ctor(String path, FileMode mode) à _HPCommRecovery.Tools.Signtool.ExtractSignTool() à _HPCommRecovery.Tools.Signtool.Verify(String arg) à _HPCommRecovery.HPAHAgent.CallAgent() à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) à _HPCommRecovery.HPAHLogger.NewSession() à _HP.... Error: (12/10/2023 08:44:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante HPWMISVC.exe, version : 1.4.25.0, horodatage : 0x5964d21e Nom du module défaillant : wbemprox.dll_unloaded, version : 10.0.19041.3636, horodatage : 0xd8cdf744 Code d’exception : 0xc00001a5 Décalage d’erreur : 0x00003dfb ID du processus défaillant : 0x3e94 Heure de début de l’application défaillante : 0x01da29b5244e1bc5 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe Chemin d’accès du module défaillant: wbemprox.dll ID de rapport : 47a41d2c-e1a4-40af-b785-2168a8f97d9b Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (12/10/2023 08:14:31 AM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.IO.IOException: Le processus ne peut pas accéder au fichier 'C:\Windows\Temp\signtool.exe', car il est en cours d'utilisation par un autre processus. à System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) à System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost) à System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy) à System.IO.FileStream..ctor(String path, FileMode mode) à _HPCommRecovery.Tools.Signtool.ExtractSignTool() à _HPCommRecovery.Tools.Signtool.Verify(String arg) à _HPCommRecovery.HPAHAgent.CallAgent() à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) à _HPCommRecovery.HPAHLogger.NewSession() à _HP.... Error: (12/08/2023 09:59:12 AM) (Source: HP Comm Recovery) (EventID: 0) (User: ) Description: Le service n'a pas réussi à gérer PowerEvent. L'erreur qui s'est produite était : System.IO.IOException: Le processus ne peut pas accéder au fichier 'C:\Windows\Temp\signtool.exe', car il est en cours d'utilisation par un autre processus. à System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) à System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy, Boolean useLongPath, Boolean checkHost) à System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize, FileOptions options, String msgPath, Boolean bFromProxy) à System.IO.FileStream..ctor(String path, FileMode mode) à _HPCommRecovery.Tools.Signtool.ExtractSignTool() à _HPCommRecovery.Tools.Signtool.Verify(String arg) à _HPCommRecovery.HPAHAgent.CallAgent() à _HPCommRecovery.AppSession..ctor(DateTime Current, String LogPath) à _HPCommRecovery.HPAHLogger.NewSession() à _HP.... Error: (12/07/2023 09:16:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 29884515 Error: (12/07/2023 09:16:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 29884515 Error: (12/07/2023 09:16:44 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Erreurs système: ============= Error: (12/13/2023 10:30:32 AM) (Source: BugCheck) (EventID: 1001) (User: ) Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x00000050 (0xffffa60c849227e0, 0x0000000000000000, 0xfffff804492f30b9, 0x0000000000000002). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 7e20d09c-0d2b-41aa-9bea-c8f4effdd808. Error: (12/13/2023 10:29:53 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 10:28:44 le ‎13/‎12/‎2023 n’était pas prévu. Error: (12/13/2023 10:19:45 AM) (Source: googledrivefs31092) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (12/12/2023 03:04:20 PM) (Source: googledrivefs31092) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (12/12/2023 09:31:57 AM) (Source: googledrivefs31092) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (12/11/2023 09:18:05 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-KKIACVQ) Description: Le serveur {5F7F3F7B-1177-4D4B-B1DB-BC6F671B8F25} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/11/2023 09:08:57 PM) (Source: googledrivefs31092) (EventID: 2) (User: ) Description: The driver version of the disk does not match. Error: (12/10/2023 08:20:13 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Hôte de synchronisation_430c6fe. CodeIntegrity: =============== Date: 2023-12-13 10:32:28 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements. Date: 2023-12-13 10:31:30 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2001.10-0\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: Insyde F.55 06/08/2020 Carte mère: HP 830F Processeur: Intel(R) Core(TM) i5-7200U CPU @ 2.50GHz Pourcentage de mémoire utilisée: 86% Mémoire physique - RAM - totale: 3968.66 MB Mémoire physique - RAM - disponible: 536.23 MB Mémoire virtuelle totale: 9088.66 MB Mémoire virtuelle disponible: 2449.13 MB ==================== Lecteurs ================================ Drive c: (Windows) (Fixed) (Total:118.01 GB) (Free:17.46 GB) (Model: SanDisk SD8SN8U-128G-1006) NTFS Drive d: (DATA) (Fixed) (Total:915.53 GB) (Free:909.25 GB) (Model: ST1000LM035-1RK172) NTFS Drive e: (RECOVERY) (Fixed) (Total:15.98 GB) (Free:1.88 GB) (Model: ST1000LM035-1RK172) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive g: (Google Drive) (Fixed) (Total:100 GB) (Free:16.59 GB) (Model: SanDisk SD8SN8U-128G-1006) FAT32 \\?\Volume{7ff2aa2e-bb87-4200-aea6-14da05e7044d}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.43 GB) NTFS \\?\Volume{0fa7839c-ff6c-4a82-988b-7421215aedb8}\ () (Fixed) (Total:0.25 GB) (Free:0.17 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: A50E1C7D) Partition: GPT. ========================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: 9E00E634) Partition: GPT. ==================== Fin de Addition.txt =======================