Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 05.01.2024 01 Exécuté par Bernard (06-01-2024 20:05:01) Exécuté depuis C:\Users\Bernard\Desktop Microsoft Windows 10 Famille Version 22H2 19045.3803 (X64) (2020-06-12 16:13:54) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-1917571891-3703816493-1998226089-500 - Administrator - Disabled) Bernard (S-1-5-21-1917571891-3703816493-1998226089-1000 - Administrator - Enabled) => C:\Users\Bernard DefaultAccount (S-1-5-21-1917571891-3703816493-1998226089-503 - Limited - Disabled) Invité (S-1-5-21-1917571891-3703816493-1998226089-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-1917571891-3703816493-1998226089-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat Reader - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 23.008.20458 - Adobe Systems Incorporated) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden ASUS Xonar DG Audio Driver (HKLM\...\C-Media Oxygen HD Audio Driver) (Version: - ) comment faire apparaitre dans ma barre favoris mon adblock sur chrome - Recherche Google (HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\...\0e7c0e5655ddd8b6fa634f6643908c3f) (Version: 1.0 - Google\Chrome) Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation) Contrôle d’intégrité du PC Windows (HKLM\...\{DB3AADA3-0996-4427-87CC-8BA140012410}) (Version: 3.7.2204.15001 - Microsoft Corporation) Contrôle d’intégrité du PC Windows (HKLM\...\{DF8C3BDB-5439-431D-89FA-A45643F262C6}) (Version: 3.1.2109.29003 - Microsoft Corporation) D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden DriversCloud.com (64 bits) (HKLM\...\{29DC4128-CF89-49D9-A524-B4430F036F14}) (Version: 10.0.7.0 - Cybelsoft) Dropbox (HKLM-x32\...\Dropbox) (Version: 189.4.8427 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.817.1 - Dropbox, Inc.) Hidden Étude pour l'amélioration du produit HP ENVY 5000 series (HKLM\...\{6DAA0F43-EF82-40E5-BB56-E116B8DFE13A}) (Version: 44.3.2218.18109 - HP Inc.) FormatFactory 4.3.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.3.0.0 - Free Time) Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.200 - Google LLC) Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 85.0.34.0 - Google LLC) Google Password Manager (HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\...\55b02ab7973415b3d10d70e7e9e0b966) (Version: 1.0 - Google\Chrome) HP Dropbox Plugin (HKLM-x32\...\{C722A9DD-471B-4F25-9E7E-7DD112D1BC35}) (Version: 36.0.102.68541 - HP) HP EmailSMTP Plugin (HKLM-x32\...\{C3739212-3C21-4138-9607-C31F9EA8A514}) (Version: 43.0.0.0 - HP) HP FTP Plugin (HKLM-x32\...\{FC93D1CC-102B-4B59-92DA-30E0DE232FF6}) (Version: 43.0.0.0 - HP) HP Google Drive Plugin (HKLM-x32\...\{06505D9F-A3AD-4DC0-8119-8836BAD1938E}) (Version: 36.0.102.68541 - HP) HP OneDrive Plugin (HKLM-x32\...\{6ECCAD1A-2BD7-489C-8D43-68B69A2AA879}) (Version: 36.0.0.0 - HP) HP SharePoint Plugin (HKLM-x32\...\{0758DCDE-50A2-4D6D-B025-FBB2BF342743}) (Version: 43.0.0.0 - HP) Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1058 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{B0C54F01-3848-4B17-8A85-B97BFA48AD68}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Components (HKLM\...\{FBEE457C-4750-4506-92A4-13C298742EC5}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{9515A836-1BB3-40BA-AD09-61341192C110}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) ME UninstallLegacy (HKLM\...\{E9B9A1A5-6398-4C99-8FDE-10794F6505C5}) (Version: 1.0.1.0 - Intel Corporation) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4963 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.16.1063 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{9503AD68-6198-4081-9F57-1F346D7B58D4}) (Version: 14.8.16.1063 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x64 (HKLM\...\{C9552825-7BF2-4344-BA91-D3CD46F4C442}) (Version: 1.48.139.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.139.0 - Intel Corporation) Hidden Intel(R) Trusted Connect Services Client (HKLM-x32\...\{fd62de85-bda9-4280-a95b-fa2f86e0dc58}) (Version: 1.48.139.0 - Intel Corporation) Hidden Java 8 Update 361 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180361F0}) (Version: 8.0.3610.9 - Oracle Corporation) Java 8 Update 381 (HKLM-x32\...\{77924AE4-039E-4CA4-87B4-2F32180381F0}) (Version: 8.0.3810.9 - Oracle Corporation) Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Logiciel de base du périphérique HP ENVY 5000 series (HKLM\...\{E3056B51-FF3D-4BC0-A1D4-ED8C88EE8417}) (Version: 44.3.2218.18109 - HP Inc.) Malwarebytes version 4.6.8.311 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.8.311 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.91 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.91 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.250.1203.0001 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation) Microsoft VC++ redistributables repacked. (HKLM\...\{71BF1002-B718-495B-BEBD-8C8A691BD7BB}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft VC++ redistributables repacked. (HKLM-x32\...\{28A863CC-8393-4C41-B0FF-A814B96CD3CA}) (Version: 12.0.0.0 - Intel Corporation) Hidden Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 121.0 (x64 fr)) (Version: 121.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 114.0.2 - Mozilla) MSVCRT (HKLM-x32\...\{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}) (Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT_amd64 (HKLM-x32\...\{D0B44725-3666-492D-BEF6-587A14BD9BD9}) (Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT110 (HKLM-x32\...\{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}) (Version: 16.4.1108.0727 - Microsoft) Hidden MSVCRT110_amd64 (HKLM\...\{E9FA781F-3E80-4399-825A-AD3E11C28C77}) (Version: 16.4.1109.0912 - Microsoft) Hidden OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation) Photo Common (HKLM-x32\...\{3751BF9B-5F23-4976-AA62-1BF4D791DCFE}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Photo Gallery (HKLM-x32\...\{07AAB66E-4718-422D-9218-4AFB3C922A71}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden PhotoFiltre 7 (HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\...\PhotoFiltre 7) (Version: - ) PowerpointImageExtractor (HKLM-x32\...\PowerpointImageExtractor_is1) (Version: V 1.2b (hxxp://alainlecomte.free.fr/Download.htm) - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.26.328.2018 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7841 - Realtek Semiconductor Corp.) Revo Uninstaller 2.2.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.0 - VS Revo Group, Ltd.) Skype version 8.110 (HKLM-x32\...\Skype_is1) (Version: 8.110 - Skype Technologies S.A.) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation) Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation) VLC media player (HKLM\...\VLC media player) (Version: 3.0.19 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.11 - VideoLAN) Windows Live (HKLM-x32\...\{B99F248C-B4B3-4D61-9FFC-AE59A1F13723}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) Windows Live Communications Platform (HKLM-x32\...\{41C61308-6CFD-4D54-AB6A-7136ED08A18E}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Installer (HKLM-x32\...\{659CB81C-B54E-4DF1-B618-F35777393A54}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Mail (HKLM-x32\...\{91EA0E43-82A0-4DE0-A46C-C7FCC4D989E6}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Mail (HKLM-x32\...\{B775C26B-EAA8-4A11-ACBF-76E52DF6B805}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Messenger (HKLM-x32\...\{98029AF9-D2BD-439A-8ED7-AA60E232A49D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Messenger (HKLM-x32\...\{E703613B-BDAB-433E-A66A-DE0263E3D35D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live MIME IFilter (HKLM\...\{25058321-C33E-496B-8915-6FD64D362CAF}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Photo Common (HKLM-x32\...\{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live PIMT Platform (HKLM-x32\...\{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE (HKLM-x32\...\{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (HKLM-x32\...\{D1893000-EA77-493C-8DDD-E262436E959B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform (HKLM-x32\...\{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (HKLM-x32\...\{33B992ED-B59B-4E25-9F3F-CF2D79BBA914}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Writer (HKLM-x32\...\{04BE4035-3C8E-4B48-BFB8-1655849C0C8B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Writer (HKLM-x32\...\{714E162E-CD4F-4F1B-8302-7F5179409C25}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Writer (HKLM-x32\...\{E21F3367-B1D2-4FFE-B8C2-6E46E0663560}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Live Writer Resources (HKLM-x32\...\{020C6D65-955A-4F76-882A-EC320CAF0103}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) Xilisoft MP3 Convertisseur (HKLM-x32\...\Xilisoft MP3 Convertisseur) (Version: 6.2.0.0331 - Xilisoft) Packages: ========= Adblock Plus -> C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-02-15] (eyeo GmbH) Adobe Acrobat Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC [2023-11-18] () All Video Player HD -> C:\Program Files\WindowsApps\22450.TotalVideoPlayer_2.3.0.0_x64__0aqw1zw0x2snt [2022-12-07] (韵华软件) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-23] (Microsoft Corporation) Dropbox -> C:\Program Files (x86)\Dropbox\Client\PackageAssets [2024-01-05] (Dropbox Inc.) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-12] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_150.1.1140.0_x64__v10z8vjag6ke6 [2023-11-13] (HP Inc.) Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x64__8wekyb3d8bbwe [2018-08-16] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1805.2.0_x86__8wekyb3d8bbwe [2018-08-16] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-05] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-05] (Microsoft Corporation) [MS Ad] Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.18.11020.0_x64__8wekyb3d8bbwe [2023-11-07] (Microsoft Studios) [MS Ad] WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2349.2.0_x64__cv1g1gvanyjgm [2023-12-16] (WhatsApp Inc.) [Startup Task] ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{041F9391-C79D-44EE-AA4E-AF4E029C4B47}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.112\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{1F9E0710-2073-435F-9C1B-F29946205947}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.152\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{2919A592-BF5E-4AF5-A658-84454D70841E}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.202\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{46406D82-6EC0-47CC-8A75-1F33C6DEDBBE}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.35.442\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{540C17A8-04F2-4B66-95D7-B2FEF9A19B54}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.35.422\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{5D44759C-CF3F-433D-9EA0-267E45577C77}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.212\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{69545769-8D02-4B07-A481-AD374CD8D5D1}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.132\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{6D264B70-DA18-401D-910C-B202D89670C6}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.32\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{75399D28-E622-4973-8752-BC0F7DC47AF3}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.122\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{85D8EE2F-794F-41F0-BB03-49D56A23BEF4}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.312\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{8B480070-D37D-4090-A063-7A429F849652}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.92\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{AE9899FA-E21F-4D91-BD1F-59BC10E56CA1}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.292\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{BE5C2E39-090F-46A2-AFAA-47540743B4FE}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.102\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{CA07EE63-A212-4373-AE82-FBF92FCA8DCC}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.242\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{CA8FA699-91CD-412F-9D13-9B1222F4370E}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.82\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{CA919489-0396-4164-A6E7-94CDED45A707}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.52\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{DA06AAE8-5748-4509-850F-17AA522F8372}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.272\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{DEDF773D-E27B-485E-8E7D-85C5B0EB5A67}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.72\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Bernard\Dropbox [2015-07-29 12:32] CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{E4949BE6-C9FF-4AFA-8672-6127D857418B}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.312\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.36.312\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{E9E7529D-7F09-410B-AF2A-CC154473B19C}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.35.452\psuser_64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-1917571891-3703816493-1998226089-1000_Classes\CLSID\{EF076C91-DC9E-43E3-84ED-3D219E065A4F}\InprocServer32 -> C:\Users\Bernard\AppData\Local\Google\Update\1.3.35.302\psuser_64.dll => Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-04] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.250.1203.0001\FileSyncShell64.dll [2023-12-15] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\85.0.34.0\drivefsext.dll [2024-01-04] (Google LLC -> Google, Inc.) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.69.0.dll [2023-12-18] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-03-04] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> ) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.) HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.) ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\comment faire apparaitre dans ma barre favoris mon adblock sur chrome - Recherche Google.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mlgfcockgogmkobonljbdoefabgljcdm ShortcutWithArgument: C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Password Manager.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kajebgjangihfbkjfejcanhanjmmbcfd ShortcutWithArgument: C:\Users\Bernard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Outlook (PWA).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=eigpmdhekjlgjgcppnanaanbdmnlnagl ShortcutWithArgument: C:\Users\Bernard\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default ==================== Modules chargés (Avec liste blanche) ============= 2020-10-19 00:27 - 2024-01-05 15:39 - 000027648 _____ () [Fichier non signé] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2018-05-16 17:09 - 2011-12-26 10:41 - 000348160 ____N (C-Media Electronics Inc.) [Fichier non signé] C:\Program Files\ASUS Xonar DGX Audio\CustomApp\cmdevice.dll 2018-05-16 17:02 - 2012-02-06 08:15 - 000122880 _____ (C-Media Electronics Inc.) [Fichier non signé] C:\Windows\System\HsSrv64.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/?gfe_rd=cr&ei=dxOpWO3XCIuBaKPdjtgM&gws_rd=ssl BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre-1.8\bin\ssv.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre-1.8\bin\jp2ssv.dll [2023-06-14] (Oracle America, Inc. -> Oracle Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2018-05-16 14:09 - 2018-05-16 14:08 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Bernard\AppData\Local\Microsoft\Windows\Themes\Photo 350 (2)\DesktopBackground\{8258cb89-870e-4aee-8488-27caa3c048eb}.jpg DNS Servers: 212.27.40.240 - 212.27.40.241 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\...\StartupApproved\Run: => "GoogleDriveSync" HKU\S-1-5-21-1917571891-3703816493-1998226089-1000\...\StartupApproved\Run: => "OneDrive" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{81DF90E6-EFA7-44AA-AB77-3F3C32ED11DE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{119B1A21-F4B7-4721-9265-626354513A74}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{00C2053E-11D3-4C65-84B6-07523A57BE96}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe => Pas de fichier FirewallRules: [TCP Query User{817DE723-503A-46FD-823C-3CD2E9B5BA78}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe => Pas de fichier FirewallRules: [{4A1D83B4-7D56-4030-8831-95F499C40B02}] => (Allow) C:\Program Files\HP\HP ENVY 5000 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{B8859202-8F18-4A5F-8787-5A4DB8375D2C}] => (Allow) LPort=5357 FirewallRules: [{65E0584E-2E18-499D-AADA-9A46E896C3E1}] => (Allow) C:\Program Files\HP\HP ENVY 5000 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [UDP Query User{421F58A9-1F00-4F0B-9E54-1189EB032B49}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{7E53B9B8-85BC-49CC-9FDD-D91B70D6698F}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{EE136E6B-24AD-4370-A863-BC5B4262764E}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{2C00CFE2-A563-4866-87DE-60C5DFBFDE11}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{D6547F81-E5F3-418E-A167-19E26BCC6DBF}] => (Allow) LPort=1900 FirewallRules: [{9AA85841-4AB2-48C4-9EC1-CDC4595FAAED}] => (Allow) LPort=2869 FirewallRules: [{3E4C2CF1-2B0D-4719-B88A-A161B71FFED1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{7D749C80-4514-4BAC-B07C-7B688836929A}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) FirewallRules: [{BAE5A561-75BD-43BA-B409-F3A430D3BAE2}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Fichier non signé] FirewallRules: [TCP Query User{AC1AC6B6-691C-4A90-92FB-9DC47A6DCF5F}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [UDP Query User{A7A41D0B-37A7-45EF-9FEF-04A14768EC8D}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C2BF04C8-DFD5-4A4F-8822-F3172A7EFCAF}] => (Allow) C:\Users\Bernard\AppData\Local\Temp\7zS1E70\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{D56A518B-6FAC-4EB1-884A-7633CB98C451}] => (Allow) C:\Users\Bernard\AppData\Local\Temp\7zS1E70\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{535EA602-DD4F-417B-A604-E3946D64ACE4}] => (Allow) C:\Users\Bernard\AppData\Local\Temp\7zS1583\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{2474E09F-648E-4075-8E4D-A03807795C25}] => (Allow) C:\Users\Bernard\AppData\Local\Temp\7zS1583\HPDiagnosticCoreUI.exe => Pas de fichier FirewallRules: [{C7A6B0A6-7D4F-414F-AF5F-17C9AC0A9DED}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AB6902AC-BE39-4211-9CAB-54260551CED4}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{A078A718-3E7A-4C89-A228-AADC04D464B4}] => (Allow) C:\Users\Bernard\AppData\Local\Temp\7zS4B36\HP.EasyStart.exe (HP Inc. -> HP) FirewallRules: [{6DDDED03-0217-4C0D-9F7B-BF461B5E5030}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{DCFB53FC-65A9-4344-AC0B-A62370221D8C}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{3910317F-B15C-4E3E-95B4-E0D73F114E81}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{19440437-8700-49F8-9C95-7ED16F396E0C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{487B4515-0A4F-4F6F-AEB7-BEBE7BA8070C}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.91\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{D311EBFF-EA90-45C1-BE45-A50CC9C5CAAC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{160940D4-074B-4F9A-8060-10A8780DCFE2}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{B6DF5ABA-7303-4B4E-A5D2-BF925EE16D38}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) ==================== Points de restauration ========================= 14-12-2023 10:15:26 Programme d’installation pour les modules Windows 03-01-2024 16:24:47 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/06/2024 12:15:36 PM) (Source: Wlclntfy) (EventID: 4005) (User: ) Description: Le processus d’ouverture de session de Windows s’est terminé de manière inattendue. Error: (01/05/2024 05:53:58 AM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Error: (01/05/2024 05:53:58 AM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Error: (01/05/2024 05:51:53 AM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Error: (01/05/2024 05:51:53 AM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Error: (01/03/2024 04:12:57 PM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Error: (01/03/2024 04:12:57 PM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Error: (01/03/2024 04:11:35 PM) (Source: DbxSvc) (EventID: 281) (User: ) Description: CertFindCertificateInStore failed with: (-2146885628) Impossible de trouver l’objet ou la propriété. Erreurs système: ============= Error: (01/06/2024 12:37:26 PM) (Source: DCOM) (EventID: 10010) (User: BERNARD-PC) Description: Le serveur {60A90A2F-858D-42AF-8929-82BE9D99E8A1} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/06/2024 05:51:54 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : Hewlett-Packard - USB - 2/10/2017 12:00:00 AM - 44.1.2402.1741. Error: (01/05/2024 03:39:51 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 07:06:24 le ‎05/‎01/‎2024 n’était pas prévu. Error: (01/05/2024 03:39:38 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Error: (01/05/2024 05:46:25 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 15:45:28 le ‎04/‎01/‎2024 n’était pas prévu. Error: (01/05/2024 05:46:08 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT) Description: 3221225684Une erreur irrécupérable s’est produite pendant le traitement des données de restauration. Error: (01/04/2024 10:35:05 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : Hewlett-Packard - USB - 2/10/2017 12:00:00 AM - 44.1.2402.1741. Error: (01/04/2024 04:02:36 PM) (Source: DCOM) (EventID: 10010) (User: BERNARD-PC) Description: Le serveur Microsoft.Windows.ContentDeliveryManager_10.0.19041.3636_neutral_neutral_cw5n1h2txyewy!App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Windows Defender: ================ Date: 2024-01-06 18:33:34 Description: L'apport de modification par C:\Program Files (x86)\OpenOffice 4\program\soffice.bin à %userprofile%\Documents\ a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2024-01-06T17:33:34.493Z Utilisateur : Bernard-PC\Bernard Chemin d'accès : %userprofile%\Documents\ Nom du processus : C:\Program Files (x86)\OpenOffice 4\program\soffice.bin Version de la veille de sécurité : 1.403.1737.0 Version du moteur : 1.1.23110.2 Version du produit : 4.18.23110.3 Date: 2024-01-06 11:33:54 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {7AB41288-5228-46BF-8C80-98A6057EFAD2} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-06 08:08:06 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {77BECA89-A888-4F0B-8F6B-CECC595C9F2C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse personnalisée Utilisateur : Bernard-PC\Bernard Date: 2024-01-03 21:49:36 Description: L'apport de modification par C:\Program Files (x86)\OpenOffice 4\program\soffice.bin à %userprofile%\Documents\ a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2024-01-03T20:49:36.577Z Utilisateur : BERNARD-PC\Bernard Chemin d'accès : %userprofile%\Documents\ Nom du processus : C:\Program Files (x86)\OpenOffice 4\program\soffice.bin Version de la veille de sécurité : 1.403.1588.0 Version du moteur : 1.1.23110.2 Version du produit : 4.18.23110.3 Date: 2023-12-12 19:12:07 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {95910CCE-324B-4300-91F5-8F76DA295C4C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0]: Date: 2023-01-04 11:20:12 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.381.1691.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.19900.2 Code d’erreur : 0x80070102 Description de l’erreur : Dépassement du délai d’attente. CodeIntegrity: =============== Date: 2023-08-22 16:40:57 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-07-03 14:22:40 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\77.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-06-19 17:02:07 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\76.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-05-05 18:59:22 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\74.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-05-01 08:32:11 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\74.0.2.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-03-31 18:48:50 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\72.0.3.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-03-19 04:20:42 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume2\Program Files\Google\Drive File Stream\72.0.2.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements. Date: 2023-02-27 05:54:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. 0804 01/06/2014 Carte mère: ASUSTeK COMPUTER INC. H81M-PLUS Processeur: Intel(R) Core(TM) i3-4150 CPU @ 3.50GHz Pourcentage de mémoire utilisée: 84% Mémoire physique - RAM - totale: 3965.47 MB Mémoire physique - RAM - disponible: 599.14 MB Mémoire virtuelle totale: 7421.47 MB Mémoire virtuelle disponible: 1749.41 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:214.55 GB) (Free:94.12 GB) (Model: Samsung SSD 840 EVO 250GB) NTFS Drive d: (Sauvegarde documents) (Fixed) (Total:17.72 GB) (Free:11.02 GB) (Model: Samsung SSD 840 EVO 250GB) NTFS Drive g: (Google Drive) (Fixed) (Total:15 GB) (Free:11.32 GB) (Model: Samsung SSD 840 EVO 250GB) FAT32 \\?\Volume{57eca2ec-352b-11e5-bdec-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS \\?\Volume{833a61df-0000-0000-0000-40a935000000}\ () (Fixed) (Total:0.51 GB) (Free:0.08 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: 833A61DF) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=214.5 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=527 MB) - (Type=27) Partition 4: (Not Active) - (Size=17.7 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================