Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 19.04.2024 01 Exécuté par jmart (03-05-2024 19:49:39) Exécuté depuis C:\Users\jmart\Desktop Microsoft Windows 11 Famille Version 23H2 22635.3566 (X64) (2022-09-28 08:32:08) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-3503760368-3964584988-3366470604-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-3503760368-3964584988-3366470604-503 - Limited - Disabled) Invité (S-1-5-21-3503760368-3964584988-3366470604-501 - Limited - Disabled) jmart (S-1-5-21-3503760368-3964584988-3366470604-1001 - Administrator - Enabled) => C:\Users\jmart WDAGUtilityAccount (S-1-5-21-3503760368-3964584988-3366470604-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 24.001.20643 - Adobe) Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.11 - Adobe Systems Incorporated) Apple Mobile Device Support (HKLM\...\{95040521-FCB6-4D6B-A44D-089DBACD5494}) (Version: 17.0.0.24 - Apple Inc.) Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.) AppLogLibSetup (HKLM-x32\...\{52FB0C8F-DF05-4C61-AEB6-18C55F8C385F}) (Version: 1.0.3.0 - Brother Industries Ltd.) Hidden Assistant d’installation de Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.1401 - Microsoft Corporation) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BrLauncher (HKLM-x32\...\{88FCD471-DBBF-4A75-8066-ACACE05DE3CF}) (Version: 2.0.14.0 - Brother Industries Ltd.) Hidden BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden Brother iPrint&Scan (HKLM-x32\...\{9C9FD76C-DA62-48C3-9450-B5DBDA5E5484}) (Version: 10.7.0.24 - Brother Industries, Ltd.) Hidden Brother iPrint&Scan (HKLM-x32\...\{e06ff58b-3db9-4634-9545-fdbec7c2585f}) (Version: 10.7.0.24 - Brother Industries, Ltd.) Brother PCFax Driver (HKLM-x32\...\{79262B43-9E15-4732-A034-BFD29D9BD077}) (Version: 1.4.1.0 - Brother Industries Ltd.) Hidden Brother Printer Driver (HKLM-x32\...\{C51A701B-AECE-49B1-B130-1D60450EF585}) (Version: 7.1.0.0 - Brother Industries Ltd.) Hidden Brother Scanner Driver (HKLM-x32\...\{57AA5C19-0725-46C3-AD87-2318A029DCEE}) (Version: 1.0.34.1 - Brother Industries Ltd.) Hidden BrSupportTools (HKLM-x32\...\{C0439A0D-8A66-4BD0-A3E0-85C8E2920762}) (Version: 1.0.26.0 - Brother Industries Ltd.) Hidden calibre 64bit (HKLM\...\{5CE9A3A7-0901-4ED9-BD49-146891154898}) (Version: 7.9.0 - Kovid Goyal) ControlCenter4 (HKLM-x32\...\{9CE6D4F3-965F-4FA7-8431-4A4FDC7A01D9}) (Version: 4.6.23.1 - Brother Industries, Ltd.) Hidden ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden CyberGhost 8 (HKLM\...\CyberGhost 8) (Version: 8.4.5.13632 - CyberGhost S.R.L.) CyberGhost TUN (HKLM\...\{677232D6-72D6-4821-8CB5-47969B15D4DF}) (Version: 1.0 - CyberGhost S.R.L.) Hidden Désinstallation de l'imprimante EPSON ET-2810 Series (HKLM\...\EPSON ET-2810 Series) (Version: - Seiko Epson Corporation) DeviceDetect (HKLM-x32\...\{5FE4CE95-1B55-4632-A3F1-851B07936498}) (Version: 1.4.10.0 - Brother Industries Ltd.) Hidden DLNow 1.49 (HKLM-x32\...\DLNow) (Version: 1.49 - dlnowsoft.com) Doremi (HKLM-x32\...\Doremi) (Version: 10.2.0 - AmoyShare) DownloadHelper CoApp (HKLM-x32\...\DownloadHelper CoApp) (Version: 2.0.19.0 - ACLAP) Epson Event Manager (HKLM-x32\...\{8471B071-541A-4E39-80B6-77DB629288BB}) (Version: 3.11.77 - Seiko Epson Corporation) Epson Photo+ (HKLM-x32\...\{951BB68A-520D-44B7-B5FF-01140AECF27C}) (Version: 3.8.1.0 - Seiko Epson Corporation) Epson Printer Connection Checker (HKLM-x32\...\{DE32F90E-1A29-4D74-BCF1-E7DDB25D713A}) (Version: 3.4.0.0 - Seiko Epson Corporation) Epson Scan 2 (HKLM-x32\...\Epson Scan 2) (Version: - Seiko Epson Corporation) EPSON Scan OCR Component (HKLM-x32\...\{07D66914-87EB-440D-9B32-B1AAAA4440FB}) (Version: 3.00.04.01 - Seiko Epson Corporation) EPSON Scan PDF Extensions (HKLM-x32\...\{E4C6B326-8218-4FC2-8B48-85A19DAB3AE4}) (Version: 1.03.02.01 - Seiko Epson Corporation) Epson ScanSmart (HKLM-x32\...\{1A1B60BB-F156-4F6D-AD79-8A096B67E9AB}) (Version: 3.7.10 - Seiko Epson Corporation) Epson Software Updater (HKLM-x32\...\{711E8536-AB71-4455-A6C4-357FDBBEBF91}) (Version: 4.6.7 - Seiko Epson Corporation) EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation) ePUBee DRM Removal (HKLM-x32\...\ePUBee DRM Removal) (Version: 3.1.5.2 - ePUBee Inc.) Free Video Editor 1.0.16 (HKLM-x32\...\{0E075EF3-6548-44EC-889A-99263CFDF349}_is1) (Version: 1.0.16 - Aiseesoft Studio) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 124.0.6367.119 - Google LLC) Google Earth Pro (HKLM\...\{3470AD08-85F2-4B1D-8487-FC4750732087}) (Version: 7.3.6.9796 - Google) HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden iCloud Outlook (HKLM\...\{2B18FDBD-1C9F-485B-ADB3-9957F9020D9C}) (Version: 14.2.0.122 - Apple Inc.) iTunes (HKLM\...\{88EF1CB0-199B-40F5-8142-320016E88382}) (Version: 12.13.1.3 - Apple Inc.) Kindle Comic Converter (HKLM\...\{7D279A59-C65E-4DA7-B165-56DD06596216}_is1) (Version: 5.5.2 - Ciro Mattia Gonano, Paweł Jastrzębski) LAV Filters 0.55.3 (HKLM-x32\...\lavfilters_is1) (Version: 0.55.3 - Hendrik Leppkes) Light Image Resizer 5.0.0.24 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.0.0.24 - ObviousIdea) Manuels EPSON (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.57.0.0 - Seiko Epson Corporation) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 125.0.2535.13 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 124.0.2478.67 - Microsoft Corporation) Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.17425.20176 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.17425.20176 - Microsoft Corporation) Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.081.0421.0001 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{AF47B488-9780-4AB5-A97E-762E28013CA6}) (Version: 5.71.0.0 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation) Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation) Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Movavi Video Converter 22.5.0 (HKLM\...\Movavi Video Converter_is1) (Version: 22.5.0 - Movavi) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 125.0.3 (x64 fr)) (Version: 125.0.3 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 102.4.1 - Mozilla) NetworkRepairTool (HKLM-x32\...\{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 - Brother Industries, Ltd.) Hidden Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.17425.20176 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.17425.20146 - Microsoft Corporation) Hidden PC-FAXReceive (HKLM-x32\...\{65D8385F-F858-4748-A7C2-676D04C2893E}) (Version: 1.8.402.0 - Brother Industries, Ltd.) Hidden PCFaxTx (HKLM-x32\...\{90338D66-4493-4DC3-A8C7-EB6FD5282B02}) (Version: 3.7.12.1 - Brother Industries Ltd.) Hidden Peugeot Update 1.3.1 (HKLM\...\{46cf01d6-a405-5b47-a44f-4dd61ad5f7c2}) (Version: 1.3.1 - PSA Automobiles SA) Peugeot Update 1.5.2 (HKLM\...\46cf01d6-a405-5b47-a44f-4dd61ad5f7c2) (Version: 1.5.2 - PSA Automobiles SA) PhotoFiltre (HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\...\PhotoFiltre) (Version: - ) PhotoFiltre 11.6.0 (HKLM\...\{562D5B35-6D7E-415D-8554-30A2D0146FE6}_is1) (Version: 11.5 - PhotoFiltre) Picture Colorizer (HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\...\{dc488a9f-83b6-45c3-805a-0b685e9a90e0}) (Version: 3.1.0 - ImageColorizer) RemoteSetup (HKLM-x32\...\{EB4D046E-28C1-4884-9129-47F41317E9B0}) (Version: 3.10.3.0 - Brother Industries Ltd.) Hidden ScannerUtilityInstaller (HKLM-x32\...\{D65C0754-7790-427F-AD73-D7C644260F57}) (Version: 1.19.9.1 - Brother) Hidden SoftwareUpdateNotification (HKLM-x32\...\{013A706A-C8FA-4F56-8641-B8C792BB3CEE}) (Version: 1.0.18.0 - Brother Industries, Ltd.) Hidden StatusMonitor (HKLM-x32\...\{1F4C40FC-9C25-450C-9F77-0AE71CA0DB64}) (Version: 1.22.14.0 - Brother Industries, Ltd.) Hidden TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - ) UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden Video Download Capture V6.2.7 (HKLM-x32\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.2.7 - APOWERSOFT LIMITED) Video to Video (HKLM-x32\...\{7F95A744-78DA-4AED-A8F0-A0AF330B8411}_is1) (Version: - Media Converters) VLC media player (HKLM\...\VLC media player) (Version: 3.0.20 - VideoLAN) VPN by RAV (HKLM\...\ReasonLabs-VPN) (Version: 2.9.3 - Reason Cybersecurity Inc.) WinRAR 6.02 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) Packages: ========= Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-04-30] (Adobe Systems Incorporated) Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC [2024-04-30] () AMD Radeon Software -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDRadeonSoftware_10.21.30024.0_x64__0a9344xs7nr4m [2024-02-03] (Advanced Micro Devices Inc.) [Startup Task] AppleInc.iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_15.0.215.0_x64__nzyj5cx40ttqa [2024-02-14] (Apple Inc.) [Startup Task] Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2022-01-13] (Microsoft Corporation) Dev Home -> C:\Program Files\WindowsApps\Microsoft.Windows.DevHome_0.1300.477.0_x64__8wekyb3d8bbwe [2024-04-24] (Microsoft Corporation) DTS Audio Processing -> C:\Program Files\WindowsApps\DTSInc.DTSAudioProcessing_1.10.15.0_x64__t5j2fzbtdg37r [2023-08-30] (DTS, Inc.) Facebook -> C:\Program Files\WindowsApps\www.facebook.com-1C2D851A_1.0.0.0_neutral__n468xs7erp6tc [2024-03-29] (www.facebook.com) Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-09-17] (Microsoft Corp.) Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.21110.548.0_x64__8wekyb3d8bbwe [2024-02-29] (Microsoft Corporation) Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.0.91.0_x64__8wekyb3d8bbwe [2024-02-09] (Microsoft Corporation) Microsoft.Windows.AI.Copilot.Provider -> C:\Program Files\WindowsApps\Microsoft.Windows.AI.Copilot.Provider_1.0.7.0_neutral__8wekyb3d8bbwe [2024-04-13] (Microsoft Corporation) Microsoft.WindowsAppRuntime.CBS -> C:\WINDOWS\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2024-04-27] (Microsoft Corporation) MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24041.33.0_x64__cw5n1h2txyewy [2024-05-02] (Microsoft Windows) [Startup Task] MyASUS -> C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.12.0_x64__qmba6cd70vzyy [2024-04-23] (ASUSTeK COMPUTER INC.) Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2024.11050.2002.0_x64__8wekyb3d8bbwe [2024-05-03] (Microsoft Corporation) [Startup Task] Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.29.256.0_x64__dt26b99r8h8gj [2024-01-12] (Realtek Semiconductor Corp) WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2417.4.0_x64__cv1g1gvanyjgm [2024-05-03] (WhatsApp Inc.) [Startup Task] WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.119.156.0_x64__8wekyb3d8bbwe [2024-05-02] (Microsoft Corp.) WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_5001.119.156.0_x64__8wekyb3d8bbwe [2024-05-02] (Microsoft Corp.) Windows Copilot Frame MSIX Pack -> C:\Program Files\WindowsApps\MicrosoftWindows.Client.CopilotFrame_30.9303.10.10_x64__cw5n1h2txyewy [2024-04-11] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2024-04-27] (Microsoft Windows) Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.LKG_cw5n1h2txyewy [2024-04-27] (Microsoft Windows) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-05-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-05-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-05-03] (Adobe Inc. -> ) ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-05-03] (Adobe Inc. -> ) ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.081.0421.0001\FileSyncShell64.dll [2024-05-02] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-05-30] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-05-03] (Adobe Inc. -> ) ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Inc.) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.) HKLM\...\Drivers32: [VIDC.FMVC] => C:\Windows\SysWOW64\fmcodec.dll [77824 2008-08-18] (Fox Magic Software) [Fichier non signé] ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\jmart\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Jamil - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ==================== Modules chargés (Avec liste blanche) ============= 2016-11-25 11:18 - 2016-11-25 11:18 - 000139264 _____ () [Fichier non signé] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2018-07-25 17:06 - 2021-08-20 18:32 - 000542720 _____ () [Fichier non signé] C:\Program Files (x86)\Browny02\BrMonitor.dll 2021-02-01 21:49 - 2021-02-01 21:49 - 000010240 _____ () [Fichier non signé] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\fr_fr\AcroTray.fra 2022-01-13 13:44 - 2018-11-12 12:25 - 000091648 _____ () [Fichier non signé] C:\WINDOWS\system32\BrNetSti.dll 2022-01-13 13:44 - 2018-03-15 18:54 - 000143360 _____ () [Fichier non signé] C:\WINDOWS\system32\BrSNMP64.dll 2024-03-31 02:17 - 2024-03-31 02:17 - 000022016 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra 2022-01-29 15:00 - 2022-01-29 15:00 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\AppvIsvSubsystems32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\AppvIsvSubsystems32.dll 2022-01-29 15:00 - 2022-01-29 15:00 - 000000000 ____L (Microsoft Corporation) [symlink -> C:\Program Files\Common Files\Microsoft Shared\ClickToRun\C2R32.dll] C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll 2023-08-08 20:59 - 2023-08-08 20:59 - 000242688 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\epnsm.dll 2023-08-08 20:59 - 2023-08-08 20:59 - 000057856 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\EPNWPSHDevFinder.DLL 2023-08-08 20:59 - 2023-08-08 20:59 - 000291328 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\Event Manager\LcMgr.dll 2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 ____S (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= (Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.) HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\Software\Classes\regfile: <==== ATTENTION HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\Software\Classes\.reg: => <==== ATTENTION HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\Software\Classes\.bat: => <==== ATTENTION HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\Software\Classes\.cmd: => <==== ATTENTION ==================== Internet Explorer (Avec liste blanche) ========== BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Incorporated) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Incorporated) BHO-x32: Pas de nom -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> Pas de fichier BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Incorporated) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Incorporated) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2024-03-31] (Adobe Inc. -> Adobe Systems Incorporated) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2024-04-05] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 11:14 - 2024-04-30 16:27 - 000001846 __RSH C:\WINDOWS\system32\drivers\etc\hosts 0.0.0.0 r3zj0yju1q.adobe.io 0.0.0.0 cd536oo20y.adobe.io 0.0.0.0 7m31guub0q.adobe.io 0.0.0.0 3ca52znvmj.adobe.io 0.0.0.0 8ncdzpmmrg.adobe.io 0.0.0.0 ic.adobe.io 0.0.0.0 m59b4msyph.adobe.io 0.0.0.0 7g2gzgk9g1.adobe.io 127.0.0.1 activate.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 activate.wip4.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 helpexamples.com 127.0.0.1 hlrcv.stage.adobe.com 127.0.0.1 license.adobe.com 127.0.0.1 licenses.adobe.com 127.0.0.1 lm.licenses.adobe.com 127.0.0.1 lmlicenses.wip4.adobe.com 127.0.0.1 lm-prd-da1.licenses.adobe.com 127.0.0.1 na1r.services.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 practivate-da1.adobe.com 127.0.0.1 uds.licenses.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 localhost 2022-02-11 15:27 - 2022-02-11 15:27 - 000000514 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics 192.168.137.183 BRX125BAD9C672C.mshome.net # 2022 2 5 18 13 27 32 788 192.168.137.1 LAPTOP-53S2Q0BF.mshome.net # 2027 2 3 10 13 27 32 788 ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Smart Projects\IsoBuster;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Calibre2\ HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.0.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-3503760368-3964584988-3366470604-1001\...\StartupApproved\Run: => "HP ENVY 5000 (NET)" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{A25349DB-3416-42F4-AB9A-89ECF30747D4}] => (Allow) C:\program files\calibre2\calibre.exe (Kovid Goyal -> ) FirewallRules: [{7A444D9E-92CC-4EA7-BA04-C03DBC69D6D3}] => (Allow) C:\program files\calibre2\calibre.exe (Kovid Goyal -> ) FirewallRules: [UDP Query User{3422FC03-48D6-47D3-A763-612B92867CE9}C:\program files\calibre2\calibre.exe] => (Allow) C:\program files\calibre2\calibre.exe (Kovid Goyal -> ) FirewallRules: [TCP Query User{0012F3EC-7930-43C4-B76B-B1C415B66558}C:\program files\calibre2\calibre.exe] => (Allow) C:\program files\calibre2\calibre.exe (Kovid Goyal -> ) FirewallRules: [UDP Query User{3C75EC71-E0D2-4E74-99ED-2A2F4AFF210A}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [TCP Query User{2AB8E19B-D923-4E90-A96B-ACAB1BEBBFD1}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN) FirewallRules: [{F4218740-FB29-4A4E-B8AF-F199615A536B}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [Fichier non signé] FirewallRules: [{87622CC4-1C77-483B-895C-158A82E7F9BD}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [Fichier non signé] FirewallRules: [{73879B6A-9ED2-4835-8A46-E1FB5D57DB1E}] => (Allow) LPort=54925 FirewallRules: [{CB333F52-B21B-4657-B192-73CCB6BA7AF8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{7065CDF8-64D4-4735-822A-4197D3D50632}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{BD61927A-EADA-4F83-8F61-6CD05B686B1D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft Ltd -> Apowersoft) FirewallRules: [{8F4BEA5E-0424-47CA-A8F8-1AED8A1A2B2D}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft Ltd -> Apowersoft) FirewallRules: [{74D55281-DABB-49BA-88AB-D7BBC19A126B}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe (Apowersoft Ltd -> ) FirewallRules: [{5351A723-80BA-4B3F-A5B4-0FC75059CF7E}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Download Capture 6\rtmpsrv.exe (Apowersoft Ltd -> ) FirewallRules: [TCP Query User{8148B400-9C2B-477B-A122-6AA969EB6A3D}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{65BD12ED-6E20-453C-84F7-56C3C1B18C43}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3EB2FFBC-2F6F-49AB-AA89-75BA8C5B777D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{4B3802E7-C6D2-4CB9-8416-29CFA1C6C61B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{DFB2F7F4-DF76-4265-B732-205620826853}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{0F2996B2-7CF5-456F-8E92-81AD0AC0A7E1}] => (Allow) LPort=54950 FirewallRules: [{93587297-BEC2-4FCC-A693-FE6B268F8F78}] => (Allow) LPort=54955 FirewallRules: [{00A23627-6A2B-4382-8841-2E568B401725}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{60BA85C0-A06C-46AB-93F2-0EB43C5142AF}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe (SEIKO EPSON CORPORATION -> Seiko Epson Corporation) FirewallRules: [{9646BA01-B763-4AB2-9AB4-269871B255D3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{82994BC5-9E69-49D1-A448-5C86D55530CE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{633CBE17-01C0-47A1-9050-00143AC8ED05}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{38C79A04-F109-4335-AD7A-F7CB3B7B7451}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{8F814026-1EAD-472D-B289-63CCF97A9AC2}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{65E9DA1C-7109-465D-B581-7027974C4B1C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{CE080242-B2E2-432E-B090-DB8B881B1998}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8BE7981D-8BB8-458A-B578-1CFDF5CF9B12}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.12.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) FirewallRules: [{522400C1-253B-48AC-BDD3-4D178541638A}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.12.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) FirewallRules: [{1794D173-2409-45B3-A4FB-55FF678D65BC}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.12.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) FirewallRules: [{7BD47CD3-90B2-4532-ABCC-E3921EF2504D}] => (Allow) C:\Program Files\WindowsApps\B9ECED6F.ASUSPCAssistant_4.0.12.0_x64__qmba6cd70vzyy\MyASUS\AsusMyASUS.exe (38BC0208-0916-4E44-909B-E6832F47CDE7 -> ASUSTeK COMPUTER INC.) FirewallRules: [{BEC3C66B-7B5D-436F-BFC1-C08180008E02}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{FCC9FE43-7D8C-4672-B9B3-8029B4705BB2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{AFFF8BB7-8BCA-4681-A128-06BAE38F28A4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{F9466691-B764-4259-9549-76E8331A5A29}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.118.3205.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{447DEBC6-CC3E-439E-9C79-E5C88C6DB1B4}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\124.0.2478.67\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{FF8D9055-D8D9-4A66-874C-812A38A1EEEA}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{E608BDFC-7DE9-48FB-A188-7DF98923D727}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef\AcroCEF.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [{D4A195C8-3108-436B-8636-C09EAD34CC25}] => (Block) C:\Program Files\Adobe\Acrobat DC\Acrobat\acrocef_1\AcroCEF.exe (Adobe Inc. -> Adobe Systems Incorporated) FirewallRules: [TCP Query User{24C869C2-19B9-471A-91BD-7F87054314E3}C:\program files\adobe\adobe photoshop 2024\photoshop.exe] => (Allow) C:\program files\adobe\adobe photoshop 2024\photoshop.exe => Pas de fichier FirewallRules: [UDP Query User{74BD110B-51DB-4493-A876-B5B0F7E61640}C:\program files\adobe\adobe photoshop 2024\photoshop.exe] => (Allow) C:\program files\adobe\adobe photoshop 2024\photoshop.exe => Pas de fichier FirewallRules: [{D7035E11-D841-40D6-B771-D8FE97FBBB63}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{8272A82D-F981-4EA4-8E89-DBD5B604CD79}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24060.3102.2733.5911_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5BEF8855-BF02-4C74-A495-702ADE64095D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{96423F76-8315-47A7-ABCF-5E53C9967FDA}] => (Allow) C:\WINDOWS\System32\DriverStore\FileRepository\asussci2.inf_amd64_07d00c3f6cf68f6e\ASUSSwitch\AsusSwitchNetMDNS.exe (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) ==================== Points de restauration ========================= 26-04-2024 13:21:30 Windows Update 29-04-2024 13:00:57 Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 30-04-2024 13:07:35 Installed Adobe Acrobat 9 Pro - English, Français, Deutsch. 30-04-2024 14:16:35 Removed Adobe Acrobat 9 Pro - English, Français, Deutsch. 30-04-2024 16:09:00 Installed Adobe Acrobat 9 Pro - English, Français, Deutsch. 30-04-2024 16:53:38 Removed Adobe Acrobat 9 Pro - English, Français, Deutsch. 03-05-2024 17:09:05 Revo Uninstaller's restore point - Adobe Creative Cloud 03-05-2024 17:12:06 Revo Uninstaller's restore point - Adobe Creative Cloud 03-05-2024 17:13:28 Revo Uninstaller's restore point - Adobe Creative Cloud 03-05-2024 17:16:09 Revo Uninstaller's restore point - Revo Uninstaller 2.4.5 ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Wait Workflow Commands request from device. Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Start Broadcast Receiver Server... Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Start Server... Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Start Server... Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Host.AddressList[1]: 127.0.0.1 Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Host.AddressList[0]: fe80::9526:936c:ab70:f38a%16 Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: Host.AddressList.Length: 2 Error: (05/03/2024 07:32:44 PM) (Source: WorkflowAppControl) (EventID: 32767) (User: ) Description: La valeur ne peut pas être null. Nom du paramètre : ipString Erreurs système: ============= Error: (05/03/2024 07:34:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (05/03/2024 07:34:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate). Error: (05/03/2024 07:32:44 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Publication des ressources de découverte de fonctions s’est arrêté avec l’erreur : %%2147952449 = L’adresse demandée n’est pas valide dans son contexte. Error: (05/03/2024 07:27:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (05/03/2024 07:27:30 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate). Error: (05/03/2024 07:25:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Publication des ressources de découverte de fonctions s’est arrêté avec l’erreur : %%2147952449 = L’adresse demandée n’est pas valide dans son contexte. Error: (05/03/2024 07:25:09 PM) (Source: DCOM) (EventID: 10010) (User: LAPTOP-53S2Q0BF) Description: Le serveur {CE6AF8E5-3A75-4AF5-BD59-C42E7228B4F4} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (05/03/2024 07:24:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service CCleaner Performance Optimizer Service s’est terminé de façon inattendue pour la 1ème fois. Windows Defender: ================ Date: 2024-05-03 13:56:01 Description: L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin. ID de l’analyse : {BEAB9C79-47CC-4B09-90B4-66870F0F7A23} Type de l’analyse : Logiciel anti-programme malveillant Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\Système Date: 2024-05-02 14:06:03 Description: Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable. Pour plus d’informations, reportez-vous aux éléments suivants : https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Crack!MTB&threatid=2147745913&enterprise=0 Nom : HackTool:Win32/Crack!MTB ID : 2147745913 Gravité : Élevée Catégorie : Outil Chemin : file:_D:\Photoshop 2024 25 6 0 433\Logiciel\Photoshop\Adobe 2024\packages\setup.exe Origine de la détection : Ordinateur local Type de détection : Concret Source de détection : Protection en temps réel Utilisateur : LAPTOP-53S2Q0BF\jmart Nom du processus : C:\Windows\explorer.exe Version de la veille de sécurité : AV: 1.409.637.0, AS: 1.409.637.0, NIS: 1.409.637.0 Version du moteur : AM: 1.1.24030.4, NIS: 1.1.24030.4 Date: 2024-04-30 16:12:35 Description: L'apport de modification par C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2024-04-30T14:12:35.909Z Utilisateur : LAPTOP-53S2Q0BF\jmart Chemin d'accès : %userprofile%\Documents Nom du processus : C:\Program Files (x86)\Common Files\Adobe\Updater6\Adobe_Updater.exe Version de la veille de sécurité : 1.409.602.0 Version du moteur : 1.1.24030.4 Version du produit : 4.18.24030.9 Date: 2024-04-30 14:12:57 Description: L'apport de modification par C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2024-04-30T12:12:57.877Z Utilisateur : LAPTOP-53S2Q0BF\jmart Chemin d'accès : %userprofile%\Documents Nom du processus : C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe Version de la veille de sécurité : 1.409.602.0 Version du moteur : 1.1.24030.4 Version du produit : 4.18.24030.9 Date: 2024-04-30 14:12:14 Description: L'apport de modification par C:\Program Files\Adobe\Adobe Photoshop 2024\Photoshop.exe à %userprofile%\Documents a été bloqué par l'Accès contrôlé aux dossiers. Heure de la détection : 2024-04-30T12:12:14.200Z Utilisateur : LAPTOP-53S2Q0BF\jmart Chemin d'accès : %userprofile%\Documents Nom du processus : C:\Program Files\Adobe\Adobe Photoshop 2024\Photoshop.exe Version de la veille de sécurité : 1.409.602.0 Version du moteur : 1.1.24030.4 Version du produit : 4.18.24030.9 Event[0] Date: 2023-03-29 18:18:17 Description: Antivirus Microsoft Defender moteur a été arrêté en raison d’une erreur inattendue. Type d’échec : Incident Code d’exception : 0xc0000008 Ressource : Code du moteur : 16422 Date: 2023-03-01 16:46:59 Description: Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité. Nouvelle version de la veille de sécurité : Version précédente de la veille de sécurité : 1.383.847.0 Source de mise à jour : Serveur Microsoft Update Type de veille de sécurité : Anti-virus Type de mise à jour : Complet Utilisateur : AUTORITE NT\Système Version actuelle du moteur : Version précédente du moteur : 1.1.20000.2 Code d’erreur : 0x80240438 Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. CodeIntegrity: =============== Date: 2024-05-03 19:50:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements. Date: 2024-05-03 19:49:55 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. Date: 2024-05-03 19:46:13 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\lsass.exe) attempted to load \Device\HarddiskVolume3\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements. ==================== Infos Mémoire =========================== BIOS: American Megatrends International, LLC. X513UA.311 10/26/2021 Carte mère: ASUSTeK COMPUTER INC. X513UA Processeur: AMD Ryzen 7 5700U with Radeon Graphics Pourcentage de mémoire utilisée: 40% Mémoire physique - RAM - totale: 15755.72 MB Mémoire physique - RAM - disponible: 9453.43 MB Mémoire virtuelle totale: 18187.72 MB Mémoire virtuelle disponible: 10042.71 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:952.33 GB) (Free:702.6 GB) (Model: WDC PC SN530 SDBPNPZ-1T00-1002) NTFS \\?\Volume{3433b0a9-bd1f-47c6-87ee-2650c7dc30e0}\ (RECOVERY) (Fixed) (Total:1.07 GB) (Free:0.24 GB) NTFS \\?\Volume{b91bcd2a-9d6d-443c-956d-5b562412db9f}\ (MYASUS) (Fixed) (Total:0.19 GB) (Free:0.13 GB) FAT32 \\?\Volume{0aa11f69-b51c-40f6-9d05-7e242df8d05f}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.21 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 953.9 GB) (Disk ID: 309C23FD) Partition: GPT. ==================== Fin de Addition.txt =======================