Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 16.01.2024 Exécuté par bjorn (17-01-2024 17:26:57) Exécuté depuis C:\Users\bjorn\Downloads Microsoft Windows 11 Famille Version 23H2 22631.2506 (X64) (2023-08-30 16:02:51) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-725001297-651280177-732987190-500 - Administrator - Disabled) bjorn (S-1-5-21-725001297-651280177-732987190-1001 - Administrator - Enabled) => C:\Users\bjorn DefaultAccount (S-1-5-21-725001297-651280177-732987190-503 - Limited - Disabled) Invité (S-1-5-21-725001297-651280177-732987190-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-725001297-651280177-732987190-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 23.008.20458 - Adobe) Adobe After Effects 2024 (HKLM-x32\...\AEFT_24_1) (Version: 24.1 - Adobe Inc.) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587 - Adobe Inc.) Adobe Illustrator 2024 (HKLM-x32\...\ILST_28_1) (Version: 28.1 - Adobe Inc.) Adobe InDesign 2024 (HKLM-x32\...\IDSN_19_0_1) (Version: 19.0.1 - Adobe Inc.) Adobe Photoshop 2024 (HKLM-x32\...\PHSP_25_3_1) (Version: 25.3.1.241 - Adobe Inc.) Adobe Premiere Pro 2024 (HKLM-x32\...\PPRO_24_1) (Version: 24.1 - Adobe Inc.) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601053}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Applications recommandées Autodesk (HKLM-x32\...\{00A2237F-C1A4-4498-8B21-24CA66D8C756}) (Version: 3.4.1 - Autodesk) Archicad 27 R1 FRA (HKLM\...\Archicad 27.0 FRA FULL R1 1) (Version: 27.0.0.3001 - GRAPHISOFT SE) Assistant d’installation de Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.3630 - Microsoft Corporation) AutoCAD Open in Desktop (HKLM\...\{E03EC70C-079C-4B5D-86D1-75759A46ED71}) (Version: 1.0.27.0 - Autodesk) Autodesk App Manager (HKLM-x32\...\{8ECA94E8-BB0D-4E0C-AD18-817EA930E700}) (Version: 3.4.1 - Autodesk) Autodesk AutoCAD 2024 - Français (French) (HKLM\...\{3E58E777-D28C-3868-9F91-FEAB7C97C4AC}) (Version: 24.3.61.0 - Autodesk, Inc.) Autodesk AutoCAD 2024.1 Update (HKLM\...\{229144BB-E618-3F6E-9912-7CFB9D73EAB1}) (Version: 24.3.119.0 - Autodesk, Inc.) Autodesk Genuine Service (HKLM\...\{21DE6405-91DE-4A69-A8FB-483847F702C6}) (Version: 7.4.0.223 - Autodesk) Autodesk Identity Manager (HKLM\...\Autodesk Identity Manager) (Version: 1.10.4.0 - Autodesk) Autodesk Interoperability Engine Manager (HKLM\...\{412B8C29-F1BC-3791-A0BA-490A502077FA}) (Version: 1.1.0.28 - Autodesk.com) Hidden CodeMeter Runtime Kit v7.60c (HKLM\...\{93EA15BD-01D1-4BED-9191-2DD5AF0E076A}) (Version: 7.60.5625.503 - WIBU-SYSTEMS AG) Discord (HKU\S-1-5-21-725001297-651280177-732987190-1001\...\Discord) (Version: 1.0.9016 - Discord Inc.) Documentation Manager (HKLM\...\{C8ACA6BC-A7AF-4FAA-AE86-90E4AB2535C4}) (Version: 23.20.0.4 - Intel Corporation) Hidden DriversCloud.com (HKLM\...\{7C5A59CD-BF23-4E8B-9DAE-28A0ED02AE61}) (Version: 11.2.8.0 - Cybelsoft) Dynamic Application Loader Host Interface Service (HKLM\...\{718DCCA7-3102-42AB-BA3A-61D8BC7335B8}) (Version: 1.0.0.0 - Intel Corporation) Hidden Enregistrement Autodesk sur le Web et au format mobile (HKLM\...\{AC9D2EAD-0DA0-4E0B-8672-546F5B1E6E73}) (Version: 3.0.31 - Autodesk) Epic Games Launcher (HKLM-x32\...\{AEB35C6C-B6D4-4AA0-8452-DE699737B5F6}) (Version: 1.3.82.0 - Epic Games, Inc.) Epic Online Services (HKLM-x32\...\{35905844-0610-427D-86A0-2103FABE3D4D}) (Version: 2.0.42.0 - Epic Games, Inc.) Essential Mod Installer (HKLM\...\{CC46337A-A85B-41A1-81AF-F33229A353A6}) (Version: 2.0.5 - ModCore Inc) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 120.0.6099.224 - Google LLC) Graphisoft BIMx Desktop Viewer (HKLM\...\BIMx Viewer 2023 GEN FULL R1 1) (Version: 2023.4800.0 - GRAPHISOFT SE) GRAPHISOFT License Manager Tool (HKLM\...\License Manager Tool 20.0 FRA FULL R1 1) (Version: 20.0.0.4800 - GRAPHISOFT SE) Intel Driver && Support Assistant (HKLM-x32\...\{63B67EA4-4AE1-4A45-A67D-21318B4345EF}) (Version: 23.4.39.9 - Intel) Hidden Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{04D46EAF-2FB6-4F8A-B801-9B17CF7E6357}) (Version: 18.0.274 - Intel Corporation) Intel(R) Computing Improvement Program (HKLM\...\{4DF8D37E-055A-49B8-9317-305ECD1B9D1F}) (Version: 2.4.10654 - Intel Corporation) Intel(R) Management Engine Components (HKLM\...\{64997D80-D66F-40BC-A74E-CB86CCFEF1F0}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Management Engine Driver (HKLM\...\{FCE71A7D-BC6D-4FD5-917B-27430A0A7282}) (Version: 1.0.0.0 - Intel Corporation) Hidden Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000010-0230-1036-84C8-B8D95FA3C8C3}) (Version: 23.10.0.2 - Intel Corporation) Intel® Arc™ Control (HKLM\...\{AFFBB7E9-51F0-4A68-B6B6-DB7B13E5E372}) (Version: 1.74.5391.3 - Intel Corporation) Hidden Intel® Arc™ Control (HKLM-x32\...\{29da1471-6d4a-4198-af44-b83f9ba62651}) (Version: 1.74.5391.3 - Intel Corporation) Intel® Driver & Support Assistant (HKLM-x32\...\{d560d845-8ef7-44ce-ac75-b37a5972f414}) (Version: 23.4.39.9 - Intel) Intel® Software Installer (HKLM-x32\...\{acc5d32f-fbf7-4d75-8943-2f70e698123d}) (Version: 23.20.0.4 - Intel Corporation) Hidden Java 8 Update 391 (HKLM-x32\...\{71324AE4-039E-4CA4-87B4-2F32180391F0}) (Version: 8.0.3910.13 - Oracle Corporation) Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden League of Legends (HKU\S-1-5-21-725001297-651280177-732987190-1001\...\Riot Game league_of_legends.live) (Version: - Riot Games, Inc) Legion Arena (HKLM-x32\...\Legion Arena_is1) (Version: 1.9.0.26 - Lenovo Group Ltd.) Lenovo Now (HKLM-x32\...\Lenovo Now) (Version: 3.12.1.1 - Lenovo Group Ltd.) Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 4.0.49.0 - Lenovo Group Ltd.) Magic Bullet Suite (HKLM\...\Magic Bullet Suite v2023.0.0) (Version: - Maxon Computer GmbH) Maxon Cinema 4D 2023 (HKLM\...\Maxon Cinema 4D 2023) (Version: 2023 - Maxon) Maxon Cinema 4D 2024 (HKLM\...\Maxon Cinema 4D 2024) (Version: 2024 - Maxon) Microsoft .NET Host - 6.0.8 (x64) (HKLM\...\{6950FA03-8B88-4675-B685-FB21CA1762CC}) (Version: 48.35.45462 - Microsoft Corporation) Hidden Microsoft .NET Host - 7.0.7 (x64) (HKLM\...\{E914E975-A0B1-49F7-AB71-28DACD495C44}) (Version: 56.31.61636 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.8 (x64) (HKLM\...\{3C3CA326-3F1D-43B7-B0AD-CBC06B2DED5A}) (Version: 48.35.45462 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 7.0.7 (x64) (HKLM\...\{62A9DE14-DB7A-41D9-9D7E-ED494E6FCBAF}) (Version: 56.31.61636 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.8 (x64) (HKLM\...\{7CEA3ABF-FE24-42AF-ADE6-B4A3EE346743}) (Version: 48.35.45462 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 7.0.7 (x64) (HKLM\...\{ECCA3DB0-6DEF-42CD-A21A-F2F7B918FB59}) (Version: 56.31.61636 - Microsoft Corporation) Hidden Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.17126.20132 - Microsoft Corporation) Microsoft 365 Apps for enterprise - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.17126.20132 - Microsoft Corporation) Microsoft ASP.NET Core 6.0.8 - Shared Framework (x64) (HKLM-x32\...\{1182f806-658a-4241-9202-d43e13bf2719}) (Version: 6.0.8.22363 - Microsoft Corporation) Microsoft ASP.NET Core 6.0.8 Shared Framework (x64) (HKLM\...\{FA97D589-B37E-3B49-A8D2-4764029773FE}) (Version: 6.0.8.22363 - Microsoft Corporation) Hidden Microsoft ASP.NET Core 7.0.7 - Shared Framework (x64) (HKLM-x32\...\{4a749a1a-b799-41b4-a328-33a7b2355e76}) (Version: 7.0.7.23274 - Microsoft Corporation) Microsoft ASP.NET Core 7.0.7 Shared Framework (x64) (HKLM\...\{5ECA54B7-62F2-39EE-9514-31F7DFFFC968}) (Version: 7.0.7.23274 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 120.0.2210.133 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 120.0.2210.133 - Microsoft Corporation) Microsoft GameInput (HKLM-x32\...\{1F2B6AF3-C260-8666-5950-E3FEDBC851D6}) (Version: 10.1.22621.3036 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.246.1127.0002 - Microsoft Corporation) Microsoft OneNote - fr-fr (HKLM\...\OneNoteFreeRetail - fr-fr) (Version: 16.0.17126.20132 - Microsoft Corporation) Microsoft Teams classic (HKU\S-1-5-21-725001297-651280177-732987190-1001\...\Teams) (Version: 1.6.00.33862 - Microsoft Corporation) Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.23.33413 - Microsoft) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.38.33130 (HKLM-x32\...\{1de5e707-82da-4db6-b810-5d140cc4cbb3}) (Version: 14.38.33130.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.38.33130 (HKLM-x32\...\{2cfeba4a-21f8-4ea7-9927-c5a5c6f13cc9}) (Version: 14.38.33130.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.38.33130 (HKLM\...\{C31777DB-51C1-4B19-9F80-38EF5C1D7C89}) (Version: 14.38.33130 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.38.33130 (HKLM\...\{1CA7421F-A225-4A9C-B320-A36981A2B789}) (Version: 14.38.33130 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.38.33130 (HKLM-x32\...\{5CA9AE7B-2EFC-4F02-81CD-32ABE173C755}) (Version: 14.38.33130 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.38.33130 (HKLM-x32\...\{DF1B52DF-C88E-4DDF-956B-6E7A03327F46}) (Version: 14.38.33130 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM\...\{EB3983F9-3D60-456D-A11A-C1366C79AD3E}) (Version: 48.35.45540 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.8 (x64) (HKLM-x32\...\{ca35acb3-b442-44fb-924c-4448120bf689}) (Version: 6.0.8.31518 - Microsoft Corporation) Microsoft Windows Desktop Runtime - 7.0.7 (x64) (HKLM\...\{593F16DC-C2D3-4740-ABD4-A171B4E32B06}) (Version: 56.31.61651 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 7.0.7 (x64) (HKLM-x32\...\{e875fc20-9a37-4344-b046-0bb037cb2d57}) (Version: 7.0.7.32525 - Microsoft Corporation) Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation) msi_revit_importer (HKLM\...\{C96AD830-1E77-460E-8647-53B8D9DB2048}) (Version: 23.1.0724 - SketchUp) Hidden msi_scan_essentials_lo (HKLM\...\{1D832526-614E-4F86-8BCB-359C3E08169B}) (Version: 23.1.0724 - SketchUp) Hidden msi_scan_essentials_su (HKLM\...\{187AC53A-22B8-4211-90BD-7DC8FB9ABFEA}) (Version: 23.1.0724 - SketchUp) Hidden NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation) NVIDIA GeForce Experience 3.27.0.120 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.120 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation) NVIDIA Pilote graphique 546.33 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 546.33 - NVIDIA Corporation) NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.17126.20132 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.17126.20132 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.17126.20132 - Microsoft Corporation) Hidden Overwolf (HKLM-x32\...\Overwolf) (Version: 0.241.0.10 - Overwolf Ltd.) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Porofessor.gg (HKU\S-1-5-21-725001297-651280177-732987190-1001\...\Overwolf_pibhbkkgefgheeglaeemkkfjlhidhcedalapdggh) (Version: 2.7.312 - Overwolf app) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 11.16.1123.2023 - Realtek) SketchUp 2023 (HKLM\...\{a6b24dd3-d0cb-88bd-a339-374e72f5f5f5}) (Version: 23.1.340.117 - SketchUp) Hidden SketchUp 2023 (HKLM-x32\...\{5a2cfe94-23d3-11ed-861d-0242ac120017}) (Version: 23.1.340 - Trimble, Inc.) SketchUp Language Pack [fr] (HKLM\...\{4ce3a660-8376-a159-10c6-2bcc2fc28245}) (Version: 23.1.340 - SketchUp) Hidden Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Teams Machine-Wide Installer (HKLM-x32\...\{731F6BAA-A986-45A4-8936-7C3AAAAA760B}) (Version: 1.6.0.18681 - Microsoft Corporation) UE Prerequisites (x64) (HKLM\...\{C4175120-313E-467B-AAA7-825979CBAEE7}) (Version: 1.0.20.0 - Epic Games, Inc.) Hidden UE Prerequisites (x64) (HKLM-x32\...\{b24cae82-bb64-4ad2-820a-dc2c4031c914}) (Version: 1.0.20.0 - Epic Games, Inc.) Hidden Unreal Datasmith Exporter for Archicad (HKLM\...\{7CC9F0B9-C06C-4E0A-A744-A5C878A1693A}) (Version: 5.3.2.0 - Epic Games, Inc.) UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.) WibuKey Setup (WibuKey Remove) (HKLM\...\{00060000-0000-1004-8002-0000C06B5161}) (Version: Version 6.40 of 2016-Dec-22 (Build 2402) (Setup) - WIBU-SYSTEMS AG) WinRAR 6.23 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH) X-Rite Color Assistant 2.24.2 (HKLM-x32\...\{6DCFB107-4604-4AA8-BEA6-CC80BCF0B3E4}_is1) (Version: 2.24.2 - X-Rite, Inc) YouTube (HKU\S-1-5-21-725001297-651280177-732987190-1001\...\4208f9b8e30c99f94c2580678ad3d896) (Version: 1.0 - Google\Chrome) Packages: ========= Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2023-09-21] (Adobe Systems Incorporated) Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC [2024-01-04] () Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2023-08-30] (Adobe Systems Incorporated) AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5287.0_x64__8j3eq9eme6ctt [2023-12-16] (INTEL CORP) [Startup Task] Blender -> C:\Program Files\WindowsApps\BlenderFoundation.Blender_4.0.2.0_x64__ppwjx1n5r4v9t [2023-12-06] (Blender Foundation) Bluetooth® Profile Pack -> C:\Program Files\WindowsApps\Microsoft.BluetoothProfilePack_0.23082.3.0_x64__8wekyb3d8bbwe [2024-01-16] (Microsoft Corporation) Disney+ -> C:\Program Files\WindowsApps\Disney.37853FC22B2CE_2023.11.13.0_neutral__6rarf9sa4v8jt [2024-01-13] (Disney) Disney+ -> C:\Program Files\WindowsApps\www.disneyplus.com-29AE268E_2023.8.31.1_neutral__gcze62ayd7e3t [2024-01-13] (www.disneyplus.com) Dolby Vision -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyVisionHDR_2.20301.388.0_x64__rz1tebttyb220 [2023-11-10] (Dolby Laboratories) FMAPOControl2 -> C:\Program Files\WindowsApps\4505Fortemedia.FMAPOControl2_2.1.31.0_x64__4pejv7q2gmsnr [2023-12-30] (Fortemedia) Journal -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJournal_1.23306.1292.0_x64__8wekyb3d8bbwe [2023-12-30] (Microsoft Corporation) Lenovo Companion -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2312.17.0_x64__k1h2ywk1493x8 [2023-12-18] (LENOVO INC.) Lenovo Hotkeys -> C:\Program Files\WindowsApps\E0469640.LenovoUtility_4.5.109.0_x64__5grkq8ppsgwt4 [2024-01-16] (LENOVO INC) [Startup Task] Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_2020.15.225.0_x64__8xx8rvfyw5nnt [2024-01-08] (Meta) [Startup Task] Microsoft Sonia (Natural) - English (United Kingdom) -> C:\Program Files\WindowsApps\MicrosoftWindows.Voice.en-GB.Sonia.1_1.0.3.0_x64__cw5n1h2txyewy [2023-12-05] (Microsoft Windows) Microsoft Teams (work or school) -> C:\Program Files\WindowsApps\MSTeams_23335.219.2592.8659_x64__8wekyb3d8bbwe [2024-01-08] (Microsoft) [Startup Task] Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21027.539.0_x64__8wekyb3d8bbwe [2023-10-30] (Microsoft Corporation) Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-08-30] (Microsoft Corporation) Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-30] (Microsoft Corporation) Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-10-28] (Microsoft Corporation) Minecraft Launcher -> C:\Program Files\WindowsApps\Microsoft.4297127D64EC6_1.7.2.0_x64__8wekyb3d8bbwe [2023-12-21] (Microsoft Studios) Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.9.22.0_x64__w2gh52qy24etm [2023-10-18] (A-Volute) Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2023-08-30] (Netflix, Inc.) NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-12-13] (NVIDIA Corp.) Pantone Color of the Year 2022 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.PantoneColoroftheYear2022_1.0.0.0_neutral__8wekyb3d8bbwe [2023-08-31] (Microsoft Corp.) Power Automate -> C:\Program Files\WindowsApps\Microsoft.PowerAutomateDesktop_11.2312.164.0_x64__8wekyb3d8bbwe [2023-12-19] (Microsoft Corporation) [Startup Task] Power Automate -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.900.374.0_x64__8wekyb3d8bbwe [2024-01-12] (Microsoft Corporation) Speech Pack - English (United Kingdom) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.en-GB.1_1.0.7.0_x64__cw5n1h2txyewy [2023-12-05] (Microsoft Windows) Speech Pack - French (France) -> C:\Program Files\WindowsApps\MicrosoftWindows.Speech.fr-FR.1_1.0.6.0_x64__cw5n1h2txyewy [2023-08-31] (Microsoft Windows) Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0 [2023-12-08] (Spotify AB) [Startup Task] WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2401.3.0_x64__cv1g1gvanyjgm [2024-01-16] (WhatsApp Inc.) [Startup Task] Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-10-28] (Microsoft Corporation) Windows HDR Calibration -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsHDRCalibration_1.0.152.0_x64__8wekyb3d8bbwe [2023-10-05] (Microsoft Corp.) WinRAR -> C:\Program Files\WinRAR [2023-09-12] (win.rar GmbH) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Windows -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{04271989-C4D2-8EF8-6545-BE60D2A75965} -> [OneDrive - Ynov] => C:\Users\bjorn\OneDrive - Ynov [2023-08-30 16:35] CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-3FAF429C3FC8} -> [Creative Cloud Files] => C:\Users\bjorn\Creative Cloud Files [2023-08-30 11:43] CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{169B5B8E-E315-41C7-9574-66FC7E530D10}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\bjorn\AppData\Local\Microsoft\TeamsMeetingAddin\1.23.33413\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{345D3165-3889-4694-AB75-A91A27B217E8}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{6a27a1a9-7be8-1491-04ca-ee68a211c258}\localserver32 -> "C:\Program Files\Google\Play Games\current\service\Service.exe" -ToastActivated => Pas de fichier CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\bjorn\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{8B4929F8-076F-4AEC-AFEE-8928747B7AE3}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{AA46BA8A-9825-40FD-8493-0BA3C4D5CEB5}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{AF18D91C-A699-4578-ADC6-972F3BA007F0}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2024\acad.exe (Autodesk, Inc. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\bjorn\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2024\fr-FR\acadficn.dll (Autodesk Asia Pte. Ltd. -> Autodesk, Inc.) CustomCLSID: HKU\S-1-5-21-725001297-651280177-732987190-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-28] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2023-10-30] (Autodesk, Inc. -> Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-28] (Adobe Inc. -> ) ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2023-10-30] (Autodesk, Inc. -> Autodesk) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.246.1127.0002\FileSyncShell64.dll [2023-12-16] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvltsi.inf_amd64_0adc7c076738dad1\nvshext.dll [2023-12-08] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-11-28] (Adobe Inc. -> ) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Inc.) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== ==================== Modules chargés (Avec liste blanche) ============= 2023-08-30 16:15 - 2023-12-13 15:18 - 000634880 _____ (Microsoft Corporation) [Fichier non signé] C:\Windows\SYSTEM32\gameplatformservices.dll 2023-10-19 21:08 - 2023-10-19 21:08 - 002973696 _____ (SQLite Development Team) [Fichier non signé] C:\Program Files\Intel\SUR\QUEENCREEK\x64\sqlite3.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\Windows:CM_be7995bdfc8d8ab791fbfefa187c3875a89ccddaea42f3929155d8af0adee7c6 [26] AlternateDataStreams: C:\Windows\tracing:? [16] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\McInst.exe:B3972C507D [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk:BE32D07BC5 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk:B96E9B8455 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Legion Arena.lnk:20903A5BF7 [3442] AlternateDataStreams: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote.lnk:60EC9648C0 [3442] AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [7926] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" ==================== Association (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-725001297-651280177-732987190-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1" ==================== Internet Explorer (Avec liste blanche) ========== SearchScopes: HKU\S-1-5-21-725001297-651280177-732987190-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre-1.8\bin\ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre-1.8\bin\jp2ssv.dll [2023-10-04] (Oracle America, Inc. -> Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-01-02] (Adobe Inc. -> Adobe Systems Incorporated) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-01-09] (Microsoft Corporation -> Microsoft Corporation) Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation) Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation) Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2022-05-07] (Lenovo -> Microsoft Corporation) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-725001297-651280177-732987190-1001\...\sharepoint.com -> hxxps://auvencecom-files.sharepoint.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%INTEL_DEV_REDIST%redist\intel64_win\compiler;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\ HKU\S-1-5-21-725001297-651280177-732987190-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\bjorn\OneDrive - Ynov\Fonds d'écrans et PFP\8WOOSH.jpg DNS Servers: 10.188.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0" HKLM\...\StartupApproved\Run: => "Riot Vanguard" HKLM\...\StartupApproved\Run: => "Autodesk Access" HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "TeamsMachineInstaller" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "Autodesk Genuine Service " HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "EpicGamesLauncher" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Opera GX Stable" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_D4C9B2FE6E7EE63741854B70815FAC3E" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Discord" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "LenovoVantageToolbar" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "RiotClient" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Overwolf" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Opera GX Browser Assistant" HKU\S-1-5-21-725001297-651280177-732987190-1001\...\StartupApproved\Run: => "Opera Browser Assistant" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{ED633B82-BF28-48D4-AC83-461EED52E393}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{72994A12-B8BE-4C63-81CA-8B18FFCFBAC2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{A1BADCB5-E31B-47E9-9F24-8D5D7EF064FE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{C477420E-A764-4B7C-87CE-D28D20CFAFFE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{1C25B2CA-978F-4524-853C-561B22EE6F5A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C4EFC222-F62C-422E-A274-6FF3E429FF8B}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{957102AE-0A4C-4009-AB87-127DC0B6B42F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6B10D9F9-9016-47DF-93D8-D225C5E873CE}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{1F9A11AC-31D0-4C22-BB61-C88EB930EB43}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{00C7677D-6BC5-4160-AF16-3962DB300D30}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{96E7E2E7-395C-4F11-870F-FCED2E12B8CA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation) FirewallRules: [{4C316142-DA8D-4973-A469-789EB5C0CCE0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé] FirewallRules: [{0D31B6FA-FBCA-4A3E-BB3E-0D4B61223AC3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé] FirewallRules: [{B8F3C34F-C941-4100-A69B-C72ACB57EA55}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{611A0296-7152-497C-BEC2-A354668D07EF}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{8E482BC1-F6BA-45A7-99A2-3C5ADC019ED4}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{D74D0F5A-4265-406C-8C90-796D490D9591}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CmWebAdmin.exe (WIBU-SYSTEMS AG -> WIBU-SYSTEMS AG) FirewallRules: [{E759BBBF-02AE-420D-9418-6237ABB79FD9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => Pas de fichier FirewallRules: [TCP Query User{5B921C8A-C704-41EB-A7E6-13111222D760}C:\riot games\riot client\riotclientservices.exe] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [UDP Query User{349C9ECD-7EBC-42A1-912A-6244C66C8DA8}C:\riot games\riot client\riotclientservices.exe] => (Block) C:\riot games\riot client\riotclientservices.exe (Riot Games, Inc. -> Riot Games, Inc.) FirewallRules: [TCP Query User{E45E92DD-26EC-4F57-AD8E-171ED47E0A7C}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [UDP Query User{29C1141B-B9D0-46EF-932E-CD9BF4EE92BB}C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe] => (Allow) C:\program files\epic games\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC -> Psyonix, LLC) FirewallRules: [TCP Query User{8042432E-5FF5-4665-88A2-5C089AD9FE54}C:\program files\epic games\twinmotion2023.1trial\twinmotion\binaries\win64\twinmotion-win64-shipping.exe] => (Allow) C:\program files\epic games\twinmotion2023.1trial\twinmotion\binaries\win64\twinmotion-win64-shipping.exe => Pas de fichier FirewallRules: [UDP Query User{F61DF6FF-FB20-4695-8CBE-7CA2C011E155}C:\program files\epic games\twinmotion2023.1trial\twinmotion\binaries\win64\twinmotion-win64-shipping.exe] => (Allow) C:\program files\epic games\twinmotion2023.1trial\twinmotion\binaries\win64\twinmotion-win64-shipping.exe => Pas de fichier FirewallRules: [{C6D213B8-10D7-495F-80E8-E5959D2204F8}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Tools\Launcher.exe => Pas de fichier FirewallRules: [{6C649702-ECD7-4443-A46F-2646EBCA7E9B}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Warframe.x64.exe => Pas de fichier FirewallRules: [{B1390E75-057A-4AC9-8C1D-92EB8589E25E}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Warframe.x64.exe => Pas de fichier FirewallRules: [{DBB18E16-CA5A-4A45-A851-8B9507F2BB61}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Tools\RemoteCrashSender.exe => Pas de fichier FirewallRules: [{A39C1F6E-405D-4DC3-A9EF-8A6F00C9A350}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Tools\Launcher.exe => Pas de fichier FirewallRules: [{56A6482D-6F28-4E7C-9229-1C8FDA99D785}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Warframe.x64.exe => Pas de fichier FirewallRules: [{53C632B7-E7A1-41A2-B8D3-7367F32E6E15}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Warframe.x64.exe => Pas de fichier FirewallRules: [{17BAF123-0120-44F1-9B85-22A80F130BCD}] => (Allow) C:\Program Files\Epic Games\Warframe\Downloaded\Tools\RemoteCrashSender.exe => Pas de fichier FirewallRules: [TCP Query User{288073C5-A680-4242-834B-4AFD3953E531}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [UDP Query User{6F07AF02-6F7D-4375-A69F-1165417369C3}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.) FirewallRules: [TCP Query User{B6C187E0-3EC7-4915-AF91-A8DEAA8314CB}C:\users\bjorn\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\bjorn\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [UDP Query User{E2410C21-DD88-42F0-A813-509B490E8218}C:\users\bjorn\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe] => (Allow) C:\users\bjorn\appdata\local\packages\microsoft.4297127d64ec6_8wekyb3d8bbwe\localcache\local\runtime\java-runtime-gamma\windows-x64\java-runtime-gamma\bin\javaw.exe FirewallRules: [{C3B2082D-1CEB-4FB5-BF1A-4D98692991B9}] => (Allow) C:\Users\bjorn\Downloads\ianygo.exe => Pas de fichier FirewallRules: [{F3969857-DFA6-41D2-8B12-DAE3622B6C5B}] => (Allow) C:\Users\bjorn\Downloads\ianygo.exe => Pas de fichier FirewallRules: [TCP Query User{E38F2E10-89E7-4471-9BF7-BBA3B7BDF3BF}C:\program files (x86)\tenorshare\tenorshare ianygo\tenorshare ianygo.exe] => (Allow) C:\program files (x86)\tenorshare\tenorshare ianygo\tenorshare ianygo.exe => Pas de fichier FirewallRules: [UDP Query User{1385E025-1D9C-4A0E-B67E-DD3341D52B11}C:\program files (x86)\tenorshare\tenorshare ianygo\tenorshare ianygo.exe] => (Allow) C:\program files (x86)\tenorshare\tenorshare ianygo\tenorshare ianygo.exe => Pas de fichier FirewallRules: [TCP Query User{22A26D28-3221-496E-8BE9-7B4CDBC1067F}C:\users\bjorn\appdata\local\programs\opera\opera.exe] => (Block) C:\users\bjorn\appdata\local\programs\opera\opera.exe => Pas de fichier FirewallRules: [UDP Query User{825D547C-27AE-42A9-8888-554F22020E39}C:\users\bjorn\appdata\local\programs\opera\opera.exe] => (Block) C:\users\bjorn\appdata\local\programs\opera\opera.exe => Pas de fichier FirewallRules: [{AEC2CFE2-FEEB-4BA0-9043-F8954D597B66}] => (Block) C:\Program Files\Graphisoft\Archicad 27\Archicad.exe (GRAPHISOFT SE) [Fichier non signé] FirewallRules: [{991F92AA-5CAE-45F6-A227-B5DC9315AD98}] => (Block) C:\Program Files\Graphisoft\Archicad 27\Archicad Starter.exe (GRAPHISOFT SE) [Fichier non signé] FirewallRules: [{35A51C91-9F0E-464D-A250-4C4581FF915D}] => (Block) C:\Program Files\Graphisoft\Archicad 27\Cineware\Cineware.exe (MAXON Computer GmbH -> MAXON Computer GmbH) FirewallRules: [{227B27B0-51AE-4721-9AAD-AC10BF2CC1D7}] => (Block) C:\Program Files\Graphisoft\Archicad 27\BIMxUploader.exe (GRAPHISOFT SE) [Fichier non signé] FirewallRules: [{89F32A1A-B2F6-4991-A6EF-4C6D24A9A957}] => (Block) C:\Program Files\Graphisoft\Archicad 27\OverwatchServer.exe (GRAPHISOFT SE) [Fichier non signé] FirewallRules: [{FB1FF559-B2FF-4EAA-A116-ACC0B6B0941C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{30DC6534-F690-4423-ACE1-74B552F79DCD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{541024D2-3379-4BCC-B1C4-10A69EF0D100}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{9F0A63CF-5FE1-418B-9E70-55456C780FCD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation) FirewallRules: [{224F2A74-0C64-4139-9F5A-1AF90C33A20D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{525194CC-BA57-4C49-A35F-8D6772D1CADE}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{81016FDB-9AF1-49D6-9757-0DB34E04E26E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{948B7D93-2F6C-43FF-B102-F3AFD546DA88}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{A908FFB3-1EAA-4A92-96DE-8D81AFB18CF5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{D96FFE38-E144-4DB3-9A0D-C9710863C0D8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{FDCB36B0-3CC2-4328-82A8-8E4E695F3858}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{14D220F2-B3C6-4156-B47A-C0AFC57E05AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{4C993071-23BC-40FC-BFF7-D894D6E340E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{CDFAC982-AA1B-4B36-9F05-63BB51FC13F9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd) FirewallRules: [{58653051-3E9A-4E39-98F5-3F5A4470FD5C}] => (Allow) C:\Program Files\MuMuVMMVbox\Hypervisor\MuMuVMMHeadless.exe => Pas de fichier FirewallRules: [{AE06D4C8-4951-4E24-A899-77422096FD9A}] => (Allow) C:\Program Files\MuMuVMMVbox\Hypervisor\MuMuVMMSVC.exe => Pas de fichier FirewallRules: [{C7C60952-6A21-420A-8FAD-BD7FBF5F82AE}] => (Allow) C:\Program Files\Netease\MuMuPlayerGlobal-12.0\shell\MuMuPlayer.exe => Pas de fichier FirewallRules: [{AB3147C6-FFF6-4F4A-AA80-3F0D6E3B6E6D}] => (Allow) C:\Program Files\Netease\MuMuPlayerGlobal-12.0\shell\MuMuMultiPlayer.exe => Pas de fichier FirewallRules: [{88480646-0C07-4336-AB79-0CEFDADBCDC5}] => (Allow) C:\Program Files\Netease\MuMuPlayerGlobal-12.0\shell\MuMuManager.exe => Pas de fichier FirewallRules: [TCP Query User{F342C6D9-608F-493E-A4F7-37964438541A}C:\program files\epic games\twinmotioncommunity2023.2\twinmotion\binaries\win64\twinmotioncookededitor-win64-shipping.exe] => (Allow) C:\program files\epic games\twinmotioncommunity2023.2\twinmotion\binaries\win64\twinmotioncookededitor-win64-shipping.exe (Epic Games, Inc -> Epic Games) FirewallRules: [UDP Query User{84CD55C1-BB63-46B6-80D6-053B70225B08}C:\program files\epic games\twinmotioncommunity2023.2\twinmotion\binaries\win64\twinmotioncookededitor-win64-shipping.exe] => (Allow) C:\program files\epic games\twinmotioncommunity2023.2\twinmotion\binaries\win64\twinmotioncookededitor-win64-shipping.exe (Epic Games, Inc -> Epic Games) FirewallRules: [{319DFB2B-752E-4E24-9688-C7C7F513749A}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23335.219.2592.8659_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{C55D4A39-430A-4CB6-AC08-CEB8CDDD11AC}] => (Allow) C:\Program Files\WindowsApps\MSTeams_23335.219.2592.8659_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5FBD9D12-4937-4747-82BE-B5EBD4378305}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23335.205.2559.726_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{956F9EF4-2CD8-4B80-BAFA-65BB6C8B15B7}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23335.205.2559.726_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B50D5313-ADE7-4CB7-A73C-7944CA106574}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.133\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{6B244A77-2D91-4C8E-BD22-BEF1E6F92996}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{E2D901AA-FD64-4E73-9D30-5901293B3D40}] => (Allow) C:\Program Files\Cybelsoft\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft) FirewallRules: [{DC21A3DE-7352-430F-B601-3D2DE63C7859}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{3C0706BF-490A-49A1-A55F-6DF37DBA24EC}] => (Allow) C:\Program Files (x86)\Overwolf\0.240.0.6\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{A8C9BBD1-3EE7-4DC9-BF69-7CC162A018AA}] => (Allow) C:\Program Files (x86)\Overwolf\0.240.0.6\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{4705B885-A2AD-467E-9463-3B86D1CDC060}] => (Block) C:\Program Files (x86)\Overwolf\0.240.0.6\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{BE6C7DAD-397F-41E8-97F8-4DD8E537D4C4}] => (Block) C:\Program Files (x86)\Overwolf\0.240.0.6\OverwolfBrowser.exe => Pas de fichier FirewallRules: [{5933CF03-CC2F-4F73-9E3C-DC7C6E75E3AC}] => (Allow) C:\Program Files (x86)\Overwolf\0.241.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) FirewallRules: [{DF423A42-AB57-4FEC-B462-86011DD38EA9}] => (Allow) C:\Program Files (x86)\Overwolf\0.241.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD) DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server ==================== Points de restauration ========================= 16-01-2024 02:43:16 Windows Update 16-01-2024 02:43:21 Windows Update 16-01-2024 18:43:13 Installed Intel(R) Wireless Bluetooth(R) ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/17/2024 04:08:49 PM) (Source: Application Error) (EventID: 1000) (User: LEGION) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 15.20.0.0, horodatage : 0x659ffb0b Nom du module défaillant : ntdll.dll, version : 10.0.22621.2506, horodatage : 0xbced4b82 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x6700 Heure de début de l’application défaillante : 0x0x1da49571345c267 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : bee7d472-a124-469c-88ed-8d979216a573 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/17/2024 04:08:13 PM) (Source: Application Error) (EventID: 1000) (User: LEGION) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 15.20.0.0, horodatage : 0x659ffb0b Nom du module défaillant : ntdll.dll, version : 10.0.22621.2506, horodatage : 0xbced4b82 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x66b0 Heure de début de l’application défaillante : 0x0x1da4956fdabfebc Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 80d6e3f6-2a3b-4842-90dc-9639a0cbc27e Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/17/2024 03:38:00 PM) (Source: Application Error) (EventID: 1000) (User: LEGION) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 15.20.0.0, horodatage : 0x659ffb0b Nom du module défaillant : ntdll.dll, version : 10.0.22621.2506, horodatage : 0xbced4b82 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x5e58 Heure de début de l’application défaillante : 0x0x1da4952c4fd47c9 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 1732350b-acd7-432a-aad9-8a32b800f027 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/17/2024 01:40:25 PM) (Source: ESRV_SVC_QUEENCREEK) (EventID: 2) (User: ) Description: Event-ID 2 Error: (01/16/2024 07:28:42 PM) (Source: Application Error) (EventID: 1000) (User: LEGION) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 15.20.0.0, horodatage : 0x659ffb0b Nom du module défaillant : ntdll.dll, version : 10.0.22621.2506, horodatage : 0xbced4b82 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x2028 Heure de début de l’application défaillante : 0x0x1da48a9d4e23e3a Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 4557942a-378a-4e07-8b82-cd9b1190e946 Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/16/2024 07:28:27 PM) (Source: Application Error) (EventID: 1000) (User: LEGION) Description: Nom de l’application défaillante EpicGamesLauncher.exe, version : 15.20.0.0, horodatage : 0x659ffb0b Nom du module défaillant : ntdll.dll, version : 10.0.22621.2506, horodatage : 0xbced4b82 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000033aca ID du processus défaillant : 0x0x4040 Heure de début de l’application défaillante : 0x0x1da48a9cbf263b2 Chemin d’accès de l’application défaillante : C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll ID de rapport : 6e9bf83e-4ce4-40a8-a271-ac5a2846a0dc Nom complet du package défaillant : ID de l’application relative au package défaillant : Error: (01/16/2024 06:46:36 PM) (Source: VSS) (EventID: 13) (User: ) Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.] Error: (01/16/2024 06:46:36 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.. Erreurs système: ============= Error: (01/17/2024 02:17:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070020 : 2024-01 Mise à jour cumulative pour Windows 11 Version 23H2 pour les systèmes x64 (KB5034123). Error: (01/17/2024 01:59:36 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x8024200b : 2024-01 Mise à jour cumulative pour .NET Framework 3.5 pour et 4.8.1 pour Windows 11, version 23H2 pour les systèmes x64 (KB5033920). Error: (01/17/2024 01:49:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Energy Server Service queencreek s’est terminé de façon inattendue pour la 1ème fois. Error: (01/17/2024 01:41:56 PM) (Source: DCOM) (EventID: 10010) (User: LEGION) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/17/2024 01:40:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Energy Server Service queencreek s’est terminé de façon inattendue pour la 1ème fois. Error: (01/16/2024 07:37:32 PM) (Source: DCOM) (EventID: 10010) (User: LEGION) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/16/2024 07:29:10 PM) (Source: DCOM) (EventID: 10010) (User: LEGION) Description: Le serveur Windows.Gaming.GameBar.PresenceServer.Internal.PresenceWriter ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/16/2024 06:59:02 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070020 : 2024-01 Mise à jour cumulative pour Windows 11 Version 23H2 pour les systèmes x64 (KB5034123). Windows Defender: ================ Date: 2024-01-15 12:41:30 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {EE4BCD74-B677-4743-9246-E8169222F52A} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-15 12:28:09 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {0FAFD61D-2CAF-40FD-BD23-4E59D6A7EBA0} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-13 17:28:23 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {2F6F7BE2-6C2A-45FF-BB92-5CC0D5C6195B} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-12 16:18:08 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {27E41A7C-2CC0-459F-BDC8-4E607C823ED4} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-01-10 16:06:36 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {E166484E-F1D2-4FBF-A24C-9058331DDD83} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Event[0] Date: 2023-09-02 23:17:14 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.397.156.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.23080.2005 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. Date: 2023-09-02 19:48:29 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.397.156.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.23080.2005 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =============== Date: 2024-01-17 17:19:17 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.133\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\AudioDevProps2.dll that did not meet the Microsoft signing level requirements. Date: 2024-01-17 15:36:42 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Microsoft\EdgeWebView\Application\120.0.2210.133\msedgewebview2.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvspcap64.dll that did not meet the Microsoft signing level requirements. Date: 2024-01-17 14:42:13 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.226.1187.0_x64__zpdnekdrzrea0\Spotify.exe) attempted to load \Device\HarddiskVolume3\ProgramData\A-Volute\A-Volute.Nahimic\Modules\Scheduled\x64\AudioDevProps2.dll that did not meet the Microsoft signing level requirements. Date: 2024-01-17 14:02:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23110.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_a1efc3cac97d05d2\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Infos Mémoire =========================== BIOS: LENOVO M2CN29WW 09/23/2023 Carte mère: LENOVO LNVNB161216 Processeur: 13th Gen Intel(R) Core(TM) i7-13700H Pourcentage de mémoire utilisée: 48% Mémoire physique - RAM - totale: 16108.05 MB Mémoire physique - RAM - disponible: 8221.79 MB Mémoire virtuelle totale: 25324.05 MB Mémoire virtuelle disponible: 12329.2 MB ==================== Lecteurs ================================ Drive c: (Windows-SSD) (Fixed) (Total:474.72 GB) (Free:126.07 GB) (Model: Micron MTFDKBA512TFH) NTFS \\?\Volume{0b7eab07-c598-4017-9377-7e28fc80f794}\ (WINRE_DRV) (Fixed) (Total:1.95 GB) (Free:1.17 GB) NTFS \\?\Volume{86ae095e-948d-4b6f-a6cb-bdddda9ab948}\ (SYSTEM_DRV) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32 ==================== MBR & Table des partitions ==================== ==================== Fin de Addition.txt =======================