Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11.01.2024 Exécuté par acns (15-01-2024 16:08:19) Exécuté depuis C:\Users\acns\OneDrive\Bureau\probleme windows updates et autres Microsoft Windows 10 Professionnel Version 22H2 19045.3930 (X64) (2024-01-13 07:58:11) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) acns (S-1-5-21-94650286-2829628890-3860724237-1001 - Administrator - Enabled) => C:\Users\acns Administrateur (S-1-5-21-94650286-2829628890-3860724237-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-94650286-2829628890-3860724237-503 - Limited - Disabled) Invité (S-1-5-21-94650286-2829628890-3860724237-501 - Limited - Disabled) Stephanie (S-1-5-21-94650286-2829628890-3860724237-1003 - Administrator - Enabled) => C:\Users\Stephanie WDAGUtilityAccount (S-1-5-21-94650286-2829628890-3860724237-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: AVG Antivirus (Disabled - Up to date) {18A975F9-A60C-37D8-E30B-4BEF31AD3411} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov) Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.2183 - Microsoft Corporation) calibre (HKLM-x32\...\{81183F4B-3DA4-4486-879C-97812EE254F2}) (Version: 4.11.2 - Kovid Goyal) CurseForge (HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.241.1.1 - Overwolf app) CurseForge (HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.219.2.8820 - Overwolf app) CurseForge 0.241.1-15351 (HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\ca0e291c-abd4-5fc3-b6a0-3d4333eccbd7) (Version: 0.241.1-15351 - Overwolf) EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.96.0.5609 - Electronic Arts) Hidden EA app (HKLM-x32\...\{0039c49c-9658-4b8d-85d1-7efb5570ef86}) (Version: 13.96.0.5609 - Electronic Arts) EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS) FileZilla 3.63.2.1 (HKLM-x32\...\FileZilla Client) (Version: 3.63.2.1 - Tim Kosse) FormatFactory 3.00 (HKLM-x32\...\FormatFactory) (Version: 3.00 - Free Time) Gihosoft TubeGet version 9.0.70.0 (HKLM-x32\...\{222ECA2E-17A6-4914-922A-BABE02869072}_is1) (Version: 9.0.70.0 - HK GIHO CO., LIMITED) GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.87.5356 - GOM & Company) GooReader (HKLM-x32\...\{5AE9229A-6E2D-4D2C-9EB8-0A074DC53DC5}) (Version: 3 - GooReader) JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH) Les Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.103.315.1020 - Electronic Arts Inc.) LibreWolf (HKLM-x32\...\LibreWolf LibreWolf) (Version: 120.0.1-1 - LibreWolf) Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden Malwarebytes version 4.6.7.301 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.6.7.301 - Malwarebytes) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.133 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.133 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.) MiPony 3.2.2 (HKLM-x32\...\MiPony) (Version: 3.2.2 - ) Mozilla Firefox ESR (x64 fr) (HKLM\...\Mozilla Firefox 115.6.0 ESR (x64 fr)) (Version: 115.6.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 115.5.0 - Mozilla) OneBrowser (HKLM-x32\...\OneBrowser) (Version: 115.0.5790.171 - OneBrowser) OpenOffice 4.1.6 (HKLM-x32\...\{50D70A8D-0503-4AA6-97EF-09849E9FB520}) (Version: 4.16.9790 - Apache Software Foundation) Opera Stable 106.0.4998.41 (HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Opera 106.0.4998.41) (Version: 106.0.4998.41 - Opera Software) Opera Stable 99.0.4788.65 (HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Opera 99.0.4788.65) (Version: 99.0.4788.65 - Opera Software) OptaneDowngradeGuard (HKLM\...\{86B0E6C1-32E0-42CC-BC4F-BF3C0730CECB}) (Version: 18.0.0.0 - Intel Corporation) Hidden Overwolf (HKLM-x32\...\Overwolf) (Version: 0.240.0.6 - Overwolf Ltd.) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) PDF24 Creator 9.1.1 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: 9.1.1 - PDF24.org) PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation) QTTabBar ver 1043 (HKLM\...\{13016E80-C7E5-4610-B149-FA8381CEE008}) (Version: 0.9.0 - Quizo) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.188 - Realtek Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9239.1 - Realtek Semiconductor Corp.) Recovery Toolbox for RAR 3.0 (HKLM-x32\...\Recovery Toolbox for RAR_is1) (Version: - File Master LLC) RstDowngradeGuard (HKLM\...\{13C2A26E-7AD4-4D82-BB4F-DEA6E871B958}) (Version: 18.0.0.0 - Intel Corporation) Hidden Sims 4 Mod Manager version b1.0.9 (HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\{0A555FCD-A8E3-47F6-B776-033D8017BFDC}_is1) (Version: b1.0.9 - GameTimeDev) Sims 4 Mod Manager version b1.0.9 (HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\{0A555FCD-A8E3-47F6-B776-033D8017BFDC}_is1) (Version: b1.0.9 - GameTimeDev) Sims 4 Package Editor version 0.3.c (HKLM-x32\...\{84F38AF9-BF85-4897-8CAD-1633246C3686}_is1) (Version: 0.3.c - Keyi Zhang (Kuree)) Sims 4 Studio (HKLM-x32\...\{870AA913-0774-4ED0-B144-BC2C0CBE4BA0}_is1) (Version: 3.1.6.3 - Sims 4 Studio) Sims 4 Tray Importer (S4TI) 1.22.8.0 (HKLM-x32\...\{8665A9CC-9652-4F31-907A-DE2E7A8E8E97}_is1) (Version: 1.22.8.0 - TeameeVo) Soda PDF Desktop 14 View Module (HKLM\...\{C876F116-C121-4BE6-901D-9D07379221DC}) (Version: 14.0.219.19516 - Avanquest Software) Hidden SoftwareUpdater 1.19.1220.69 (HKLM-x32\...\{84DEE841-D842-45F5-A638-CDE2C38E0A48}_is1) (Version: 1.19.1220.69 - eSupport.com, Inc.) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation) Vivaldi (HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\Vivaldi) (Version: 6.5.3206.53 - Vivaldi Technologies AS.) Vivaldi (HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Vivaldi) (Version: 6.1.3035.302 - Vivaldi Technologies AS.) Windows Updates Downloader (HKLM-x32\...\Windows Updates Downloader) (Version: 2.50 Build 1002 - Supremus Corporation) WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH) WinZip 25.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C2412D}) (Version: 25.0.14245 - Corel Corporation) WPS Office (11.2.0.11537) (HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\Kingsoft Office) (Version: 11.2.0.11537 - Kingsoft Corp.) Packages: ========= Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-26] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-26] (Microsoft Corporation) [MS Ad] PDF Reader - Afficher, Annoter, Partager -> C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.23.3.0_x64__jhretta7p24aw [2024-01-15] (Kdan Mobile Software Ltd.) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-94650286-2829628890-3860724237-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\acns\AppData\Local\Kingsoft\WPS Office\12.2.0.13193\office6\kwpsmenushellext64.dll => Pas de fichier CustomCLSID: HKU\S-1-5-21-94650286-2829628890-3860724237-1001_Classes\CLSID\{4EF0D66C-0E84-45A9-8A55-77C4F716623C}\localserver32 -> C:\Users\acns\AppData\Local\Vivaldi\Application\6.5.3206.53\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS) CustomCLSID: HKU\S-1-5-21-94650286-2829628890-3860724237-1001_Classes\CLSID\{e6fa1994-d1b2-4ad1-8004-b0d62a79d209}\InprocServer32 -> C:\Program Files\LibreWolf\notificationserver.dll (Mozilla Foundation) [Fichier non signé] ShellExecuteHooks: QTTabBarLib.ExplorerProcessCaptor - {D2BF470E-ED1C-487F-AAAA-2BD8835EB6CE} - C:\Windows\System32\mscoree.dll [383488 2019-12-07] (Microsoft Windows -> Microsoft Corporation) ShellExecuteHooks-x32: Pas de nom - {D2BF470E-ED1C-487F-AAAA-2BD8835EB6CE} - -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OptaneIconOverlay] -> {A3AF6F6C-8BED-3D93-8B5D-33427B5D38E9} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> ) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [PeContextMenuExtension] -> {098A124A-AA1C-38C8-A65E-D1199A14516A} => C:\Program Files (x86)\Common Files\Wondershare\PDFelement\AddIns\PEShellExt_x64.dll [2020-04-16] (Wondershare Technology Co.,Ltd -> Wondershare) ContextMenuHandlers1: [SodaPDFDesktop14_ManagerExt] -> {3E46159C-FAA8-4497-B758-1252B9FD82F4} => C:\Program Files\Soda PDF Desktop 14\context-menu.dll [2022-08-05] (Avanquest Software (7270356 Canada Inc) -> Avanquest Software) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-08-19] (Corel Corporation -> WinZip Computing) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => -> Pas de fichier ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-09] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Pas de fichier ContextMenuHandlers3: [OptaneContextMenu] -> {AD7EBB13-617D-3270-8FA8-46583499C4FB} => C:\WINDOWS\System32\DriverStore\FileRepository\iastorpinningcomponent.inf_amd64_59691a4ee8d947dd\OptaneShellExt.dll [2021-10-12] (Intel Corporation -> ) ContextMenuHandlers3: [STShellMenu] -> {F32C83B9-DF1D-42AD-9741-C52909703957} => -> Pas de fichier ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers4: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-08-19] (Corel Corporation -> WinZip Computing) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2023-05-09] (Malwarebytes Inc. -> Malwarebytes) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6: [WinZip] -> {E0D79304-84BE-11CE-9641-444553540000} => C:\Program Files\WinZip\wzshls64.dll [2020-08-19] (Corel Corporation -> WinZip Computing) ContextMenuHandlers1_S-1-5-21-94650286-2829628890-3860724237-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\acns\AppData\Local\Kingsoft\WPS Office\12.2.0.13193\office6\kwpsmenushellext64.dll -> Pas de fichier ContextMenuHandlers4_S-1-5-21-94650286-2829628890-3860724237-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\acns\AppData\Local\Kingsoft\WPS Office\12.2.0.13193\office6\kwpsmenushellext64.dll -> Pas de fichier ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [VIDC.XFR1] => xfcodec64.dll HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2023-03-01] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2023-03-01] (Electronic Arts -> On2.com) HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Fichier non signé] ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\acns\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 3" ShortcutWithArgument: C:\Users\acns\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\53b77523eaecddc1\Profil 1 - Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory="Profile 3" ==================== Modules chargés (Avec liste blanche) ============= 2022-07-19 14:41 - 2021-08-30 07:53 - 000122504 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\EnsHelper.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 000024200 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\fsclog.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 000203912 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libssh2.dll 2022-07-19 14:41 - 2021-08-30 07:53 - 000093320 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\register.dll 2022-07-19 14:41 - 2021-08-30 07:53 - 000467080 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\wpnr.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 000455816 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\MSVCP140.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 000081032 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\VCRUNTIME140.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 000438408 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> The curl library, hxxps://curl.se/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libcurl.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 002533000 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libcrypto-1_1.dll 2022-07-19 14:41 - 2021-08-20 05:51 - 000541320 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\ENS\libssl-1_1.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51 [190] AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [274] AlternateDataStreams: C:\ProgramData\TEMP:C5760A8B [132] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank Toolbar: HKLM - QT Command Bar - {d2bf470e-ed1c-487f-a666-2bd8835eb6ce} - C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Toolbar: HKLM - QT Command Bar 2 - {d2bf470e-ed1c-487f-a777-2bd8835eb6ce} - C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) Toolbar: HKLM - QTTabBar - {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - C:\WINDOWS\system32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\download.microsoft.com -> hxxp://download.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\download.windowsupdate.com -> hxxp://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\download.windowsupdate.com -> hxxps://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\hola.org -> hxxp://hola.org IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\microsoft.com -> hxxp://ntservicepack.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\ntservicepack.microsoft.com -> hxxp://ntservicepack.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\update.microsoft.com -> hxxp://update.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\update.microsoft.com -> hxxps://update.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\webcompanion.com -> hxxp://webcompanion.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\windows.com -> hxxp://wustat.windows.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\windowsupdate.com -> hxxp://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\windowsupdate.com -> hxxps://download.windowsupdate.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\windowsupdate.microsoft.com -> hxxp://windowsupdate.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\ws.microsoft.com -> hxxp://ws.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\ws.microsoft.com -> hxxps://ws.microsoft.com IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\wustat.windows.com -> hxxp://wustat.windows.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\1-2005-search.com -> www.1-2005-search.com Il y a 12683 plus de sites. IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\hola.org -> hxxp://hola.org IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\localhost -> localhost IE trusted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\webcompanion.com -> hxxp://webcompanion.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\007guard.com -> install.007guard.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\008i.com -> 008i.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\008k.com -> www.008k.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\00hq.com -> www.00hq.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\010402.com -> 010402.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\01i.info -> 01i.info IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0411dd.com -> 0411dd.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0511zfhl.com -> 0511zfhl.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\05p.com -> 05p.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0632qyw.com -> 0632qyw.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0calories.net -> 0calories.net IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0cj.net -> 0cj.net IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\0scan.com -> www.0scan.com IE restricted site: HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\1-2005-search.com -> www.1-2005-search.com Il y a 12683 plus de sites. ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-07-06 15:10 - 2024-01-14 15:52 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-94650286-2829628890-3860724237-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\acns\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\snapchat-864433144 (2).jpg HKU\S-1-5-21-94650286-2829628890-3860724237-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: avast => 2 MSCONFIG\Services: avastm => 3 MSCONFIG\Services: AvastSecureBrowserElevationService => 3 MSCONFIG\Services: Backupper Service => 2 MSCONFIG\Services: DCIService => 2 MSCONFIG\Services: hola_svc => 2 MSCONFIG\Services: Origin Client Service => 3 MSCONFIG\Services: Origin Web Helper Service => 2 HKLM\...\StartupApproved\StartupFolder: => "WinZip Préchargeur.lnk" HKLM\...\StartupApproved\Run: => "Durum" HKLM\...\StartupApproved\Run: => "Terrell" HKLM\...\StartupApproved\Run: => "Donofrio" HKLM\...\StartupApproved\Run: => "WinZip UN" HKLM\...\StartupApproved\Run: => "hola" HKLM\...\StartupApproved\Run: => "BraveVpnWireguardService" HKLM\...\StartupApproved\Run: => "Fortect" HKLM\...\StartupApproved\Run32: => "Prepayment" HKLM\...\StartupApproved\Run32: => "Bullwinkle" HKLM\...\StartupApproved\Run32: => "PDFPrint" HKLM\...\StartupApproved\Run32: => "Vacationers" HKLM\...\StartupApproved\Run32: => "Avira SystrayStartTrigger" HKLM\...\StartupApproved\Run32: => "SDTray" HKLM\...\StartupApproved\Run32: => "Lightshot" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\StartupFolder: => "boisseau.lnk" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\StartupFolder: => "boisseauboisseau.lnk" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "84QZ65ML0WWZKWM" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "KFPNFGQHY0WJW52" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "CM2LECA19YE43UP" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "JD1YHU94BIBBBJO" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "5PUBM9O8IFINT52" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "OF2MQGQLND1VPRV" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "6137RI74LRPQS0J" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "98TQA3WVIHQ0NP5" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "C752EYJMAKUXBFD" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "epicure" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Willey" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Thrust" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Niehaus" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Ica" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "878071" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "VersionRecover" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "ofra" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "632897" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "87113" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "39346" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "YoutubeDownloader_upd" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Resists" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Hotdog" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "OONPDUBM8VNKX2Y" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "J1JWNXDC4S3D9CX" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "H888UCTH16KKBKJ" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_E33921E5E92838DF6771E43C0E67D32A" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-94650286-2829628890-3860724237-1001\...\StartupApproved\Run: => "XperiaCompanionAgent" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\StartupFolder: => "boisseau.lnk" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\StartupFolder: => "boisseauboisseau.lnk" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "uTorrent" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "84QZ65ML0WWZKWM" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "KFPNFGQHY0WJW52" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "CM2LECA19YE43UP" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "JD1YHU94BIBBBJO" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "5PUBM9O8IFINT52" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "OF2MQGQLND1VPRV" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "6137RI74LRPQS0J" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "98TQA3WVIHQ0NP5" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "C752EYJMAKUXBFD" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "epicure" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Willey" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Thrust" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Niehaus" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Ica" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "878071" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "VersionRecover" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "ofra" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Opera Browser Assistant" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "632897" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "87113" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "39346" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "YoutubeDownloader_upd" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Resists" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Hotdog" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "OONPDUBM8VNKX2Y" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "J1JWNXDC4S3D9CX" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "H888UCTH16KKBKJ" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Web Companion" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_E33921E5E92838DF6771E43C0E67D32A" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Opera GX Browser Assistant" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-94650286-2829628890-3860724237-1003\...\StartupApproved\Run: => "XperiaCompanionAgent" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{51F0C432-CB02-43A3-A131-03D08C29FF2E}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{4637F279-868E-459D-A0BC-BF3B99D71377}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{1035C185-EE76-40F5-B022-6A7EE41A554A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{EC203114-B373-49E9-99F7-0F02B856AA9F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{0F623BCE-AF46-405A-84C2-1B1110D69A52}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{DFF041BA-732A-4879-A609-746E0EDF5059}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C6A5248E-53AB-40A9-86BF-AFB2B8C390F3}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{C64566A4-165D-4BD2-B4B9-0F80255A6728}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{DC066C06-B34B-44D3-8A70-6413EAE00C3C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{7758ACEB-26AA-4FCB-8B2E-FA0C958300E8}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts) FirewallRules: [{E19B6D87-6CBF-4495-8FF5-11173EF42458}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts) ==================== Points de restauration ========================= 14-01-2024 18:07:44 Programme d’installation pour les modules Windows ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: Souris Microsoft PS/2 Description: Souris Microsoft PS/2 Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: i8042prt Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/15/2024 02:34:11 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (01/15/2024 12:48:27 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (01/15/2024 12:47:09 PM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (01/15/2024 12:44:22 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante FreemakeUtilsService.exe, version : 1.0.0.0, horodatage : 0x6014f4f1 Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.3930, horodatage : 0x640b6fb9 Code d’exception : 0xe0434352 Décalage d’erreur : 0x0013fa72 ID du processus défaillant : 0xc8c Heure de début de l’application défaillante : 0x01da47a8175b3ceb Chemin d’accès de l’application défaillante : C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll ID de rapport : 0e6d45ca-4178-41b0-93b5-e73e067fd7b4 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/15/2024 12:44:10 PM) (Source: .NET Runtime) (EventID: 1026) (User: ) Description: Application : FreemakeUtilsService.exe Version du Framework : v4.0.30319 Description : le processus a été arrêté en raison d'une exception non gérée. Informations sur l'exception : System.IO.FileNotFoundException à FreemakeUtilsService.Program.Main(System.String[]) Error: (01/15/2024 08:15:20 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (01/15/2024 08:03:42 AM) (Source: SecurityCenter) (EventID: 17) (User: ) Description: Security Center n'a pas pu valider l'appelant. Erreur %1. Error: (01/14/2024 06:15:15 PM) (Source: Software Protection Platform Service) (EventID: 16385) (User: ) Description: Échec de la planification du redémarrage du service de protection logicielle à 2123-12-21T17:15:12Z. Code d’erreur : 0x80070020. Erreurs système: ============= Error: (01/15/2024 04:06:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Browser n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (01/15/2024 04:06:36 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser. Error: (01/15/2024 04:06:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Browser n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (01/15/2024 04:06:36 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser. Error: (01/15/2024 04:06:36 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Browser n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (01/15/2024 04:06:36 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser. Error: (01/15/2024 03:41:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Browser n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (01/15/2024 03:41:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser. Windows Defender: ================ Date: 2024-01-14 20:09:34 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0 Nom : HackTool:Win32/AutoKMS ID : 2147685180 Gravité : Élevée Catégorie : Outil Chemin : rootcert:_F81F111D0E5AB58D396F7BF525577FD30FDC95AA Origine de la détection : Inconnu Type de détection : Concret Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la veille de sécurité : AV: 1.403.2141.0, AS: 1.403.2141.0, NIS: 1.403.2141.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Date: 2024-01-14 20:09:34 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=VirTool:Win32/DefenderTamperingRestore&threatid=2147741622&enterprise=0 Nom : VirTool:Win32/DefenderTamperingRestore ID : 2147741622 Gravité : Grave Catégorie : Outil Chemin : regkeyvalue:_hklm\software\policies\microsoft\windows defender\real-time protection\\DisableBehaviorMonitoring Origine de la détection : Inconnu Type de détection : Concret Source de détection : Système Utilisateur : AUTORITE NT\Système Nom du processus : Unknown Version de la veille de sécurité : AV: 1.403.2141.0, AS: 1.403.2141.0, NIS: 1.403.2141.0 Version du moteur : AM: 1.1.23110.2, NIS: 1.1.23110.2 Date: 2024-01-14 19:52:58 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {82459556-EFF7-4574-B691-2F7281D4E071} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-14 19:42:27 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {9235C960-4D3D-49ED-98A1-4DCDE342729C} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-14 17:42:55 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {44FF2B69-A4E1-496D-9A9C-259AB30524C4} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0]: Date: 2024-01-14 17:00:34 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.305.2973.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16500.1 Code d’erreur : 0x80072efd Description de l’erreur : Impossible d’établir une connexion avec le serveur Date: 2024-01-14 17:00:33 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.305.2973.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Logiciel anti-espion Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16500.1 Code d’erreur : 0x80072efd Description de l’erreur : Impossible d’établir une connexion avec le serveur Date: 2024-01-14 17:00:33 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.305.2973.0 Source de mise à jour : Centre de protection Microsoft contre les logiciels malveillants Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\SERVICE RÉSEAU Version actuelle du moteur : Version précédente du moteur : 1.1.16500.1 Code d’erreur : 0x80072efd Description de l’erreur : Impossible d’établir une connexion avec le serveur CodeIntegrity: =============== Date: 2024-01-15 15:24:31 Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files (x86)\Microsoft\Edge\Application\msedge.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\360\Total Security\safemon\SafeWrapper.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: Acer P01-B2 05/28/2010 Carte mère: Acer Veriton M480G Processeur: Pentium(R) Dual-Core CPU E5800 @ 3.20GHz Pourcentage de mémoire utilisée: 61% Mémoire physique - RAM - totale: 4061.13 MB Mémoire physique - RAM - disponible: 1579.64 MB Mémoire virtuelle totale: 16061.13 MB Mémoire virtuelle disponible: 13129.48 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:299.45 GB) (Free:195.82 GB) (Model: SAMSUNG HD103SI) NTFS Drive e: () (Fixed) (Total:630.93 GB) (Free:133.75 GB) (Model: SAMSUNG HD103SI) NTFS \\?\Volume{000d40fe-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.54 GB) (Free:0.5 GB) NTFS \\?\Volume{000d40fe-0000-0000-0000-30ff4a000000}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 000D40FE) Partition 1: (Active) - (Size=549 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=299.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=597 MB) - (Type=27) Partition 4: (Not Active) - (Size=630.9 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================