Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 06-10-2023
Exécuté par bewas (13-10-2023 20:06:18)
Exécuté depuis C:\Users\bewas\Desktop
Microsoft Windows 10 Famille Langue unique Version 22H2 19045.3570 (X64) (2020-11-06 17:15:10)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-2137434348-4085527620-4071002930-500 - Administrator - Disabled)
bewas (S-1-5-21-2137434348-4085527620-4071002930-1001 - Administrator - Enabled) => C:\Users\bewas
DefaultAccount (S-1-5-21-2137434348-4085527620-4071002930-503 - Limited - Disabled)
Invité (S-1-5-21-2137434348-4085527620-4071002930-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2137434348-4085527620-4071002930-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.3.1.6 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824311644}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Antidote 8 (HKLM-x32\...\{09AAAB09-6DBA-4DD9-9865-54597D3FBCA8}) (Version: 8.04.1237 - Druide informatique inc.)
AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 6.8.0 - AOMEI International Network Limited.)
Assistant de téléchargement (HKLM-x32\...\{92154A3C-9BB7-49D7-A571-4EB6373FA5AD}) (Version: 6.65.13 - Druide informatique inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
calibre (HKLM-x32\...\{54B7D91C-A982-420A-84E5-245DCD036C17}) (Version: 4.15.0 - Kovid Goyal)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 6.16 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
Docs (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\5a84fc6633cf32fca7e8cbd3591a706f) (Version: 1.0 - Google\Chrome)
Enregistrement utilisateur de Canon MG3200 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3200 series) (Version: - Canon Inc.)
Feuilles de calcul (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\e9214df090c1201be0fa0a72f1412533) (Version: 1.0 - Google\Chrome)
Free Cam 8 (HKLM-x32\...\{80366841-A296-46DC-B85E-8D7ABF09B10A}) (Version: 8.7.27129 - iSpring Solutions Inc.)
GIMP 2.10.14 (HKLM\...\GIMP-2_is1) (Version: 2.10.14 - The GIMP Team)
Gmail (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\76d597ed51e028a33f0cef30963b1a78) (Version: 1.0 - Google\Chrome)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 117.0.5938.152 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 82.0.1.0 - Google LLC)
Google Drive (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\fdbe22999ff749529cd22756885b018c) (Version: 1.0 - Google\Chrome)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Internet Download Manager 6.36.7 (HKLM-x32\...\Internet Download Manager_is1) (Version: 6.36.7 - lrepacks.ru)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Microsoft .NET Framework 4.8 SDK (HKLM-x32\...\{949C0535-171C-480F-9CF4-D25C9E60FE88}) (Version: 4.8.03928 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 117.0.2045.60 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 117.0.2045.60 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.16827.20130 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28808 (HKLM-x32\...\{78079cc3-1f6e-47f6-b4d6-105f08b89409}) (Version: 14.26.28808.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.26.28808 (HKLM-x32\...\{12410e80-cba2-4479-8539-12de3513ff53}) (Version: 14.26.28808.1 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.26.28808 (HKLM\...\{31B12D0C-C856-4B64-A4FE-7E4C2F5BF8E4}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.26.28808 (HKLM\...\{EB5BE2A4-FB21-421C-9FA0-F7D7591B1B1F}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.26.28808 (HKLM-x32\...\{205CA6C8-5FF7-4270-A856-0AD21508147F}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.26.28808 (HKLM-x32\...\{4A336F95-FDA8-427B-8BFD-FB3001F1DE22}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.57.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.6.2037.624 - Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM\...\{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 112.0.2 (x64 fr)) (Version: 112.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.7 - Notepad++ Team)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Pilote graphique 537.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 537.13 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden
Opera Stable 102.0.4880.78 (HKLM-x32\...\Opera 102.0.4880.78) (Version: 102.0.4880.78 - Opera Software)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr)
Présentations (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\d75ffc50f527b9e59fc269f6c01d2b3d) (Version: 1.0 - Google\Chrome)
Python Launcher (HKLM-x32\...\{4E5F47AD-2588-4BE3-9DC2-0F9CD283A3DF}) (Version: 3.7.6860.0 - Python Software Foundation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Spotify (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Spotify) (Version: 1.1.88.612.gcc529952 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft)
Visuel intégré (HKLM-x32\...\{D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}) (Version: 1.0.0003 - Druide informatique inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare Video Converter Ultimate(Build 10.3.1.181) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.3.1.181 - Wondershare Software)
Yandex.Disk (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\YandexDisk2) (Version: 3.2.34.4962 - Yandex)
YouTube (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\8dd9da51c724130eba8d2ec6aa8b279e) (Version: 1.0 - Google\Chrome)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-19] (Canon Inc.)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-26] (Microsoft Corporation)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-13] (Microsoft Corporation)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-12-23] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6 [2023-09-22] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2023-07-20] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa [2023-09-26] (Apple Inc.) [Startup Task]
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_1880.6.164.0_x64__8xx8rvfyw5nnt [2023-05-25] (Meta) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-08-29] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.727.100_x64__8wekyb3d8bbwe [2023-08-06] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-12] (Microsoft Studios) [MS Ad]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{11C9DD7B-CCF5-4502-90A1-FEE8889976D5}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{18224999-F24B-43ee-B697-9427587FDC9C}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{63ADB0D1-6DA0-46A2-89D0-E0CE44536E32}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{75EF3512-D401-4172-BA0F-00E000DCBCE4}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{78CE3579-0D34-413C-88C7-FE2855271688}\localserver32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe (YANDEX LLC -> Yandex)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{847202AE-CDE0-469A-AF10-8798E02DED83}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{8EEE3CD5-1F70-4B63-B19D-A5F1457761DB}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{9CE04609-A360-4266-9937-9D799E8D2D5A}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation]
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{C5F6CDD1-FB7B-4971-A53F-4B00757F756B}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ YandexDisk1 SyncDone] -> {C5F6CDD1-FB7B-4971-A53F-4B00757F756B} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk2 SyncProgress] -> {75EF3512-D401-4172-BA0F-00E000DCBCE4} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk3 SyncDisabled] -> {8EEE3CD5-1F70-4B63-B19D-A5F1457761DB} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk4 SyncError] -> {9CE04609-A360-4266-9937-9D799E8D2D5A} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk5 SyncPart] -> {63ADB0D1-6DA0-46A2-89D0-E0CE44536E32} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2019-10-28] (Notepad++ -> )
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\nvshext.dll [2023-08-16] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2137434348-4085527620-4071002930-1001: [Yandex.Disk.3] -> {847202AE-CDE0-469A-AF10-8798E02DED83} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ContextMenuHandlers4_S-1-5-21-2137434348-4085527620-4071002930-1001: [Yandex.Disk.3] -> {847202AE-CDE0-469A-AF10-8798E02DED83} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Docs.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Feuilles de calcul.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Présentations.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Modules chargés (Avec liste blanche) =============
2022-02-26 21:01 - 2021-06-22 15:41 - 000014336 _____ () [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\libamcbconsole.dll
2022-02-26 21:01 - 2015-05-21 15:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\vcomp.dll
2019-12-25 00:34 - 2012-03-28 19:01 - 000359936 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL
2020-01-31 00:04 - 2012-03-26 06:00 - 000392192 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMXLMB8.DLL
2020-04-18 07:50 - 2014-04-17 16:50 - 007470624 _____ (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] C:\Program Files (x86)\Druide\Antidote 8\Programmes32\libLing_8.dll
2020-04-18 07:50 - 2014-04-17 16:50 - 009029152 _____ (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] C:\Program Files (x86)\Druide\Antidote 8\Programmes64\libLing_8.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-12-24 23:42 - 2019-12-24 23:47 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\StartupApproved\StartupFolder: => "System.exe"
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\StartupApproved\Run: => "Lync"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{96D76A70-B137-447E-8E1C-8002B1825C6E}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{16CD13AE-31C4-48D1-8C85-DD84774AC5C6}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{C4A4558D-B89F-4FC7-828B-AC7F7912CC8C}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier
FirewallRules: [{A39DFFEE-5059-43ED-8D2E-F034DCBF5575}] => (Allow) F:\games\SteamLibrary\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [{E5FF7D8E-EA9D-4DF6-AC2E-565256E24CBE}] => (Allow) F:\games\SteamLibrary\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [UDP Query User{E072E343-557E-4660-8EC8-6B27AD35044E}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{07AEBACB-E915-4821-848A-BAA6DA9C654F}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{C1FC0DAF-72C2-4015-94B4-EBEB860FDEFD}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{9973D9B4-943D-41F0-8D2C-F152E3F1CFFB}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{98F53B79-D3C3-445F-8763-86A0EF8D99C9}] => (Allow) F:\games\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0487A8E7-8940-42C5-A872-8EF1E4907A1A}] => (Allow) F:\games\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{8498047C-9772-4006-8262-1D8032A6D66A}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{25EC5CD7-EE5F-43A3-8959-D2BAD32D458A}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{811705E9-9587-4A52-9989-7CDD1BAC3863}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{EA6DAA36-6EFB-4BE4-84BB-1EEF0CF8DABB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{9F404234-DDC5-4D32-8A32-DEB76BAE00D5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0214FFC5-3CAA-45B2-8991-0A42D1D2E991}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B39AC625-CD4D-4A17-85A7-19122421858F}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{502E29B4-F2EB-41AC-AA53-F5D9990FE0F9}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [UDP Query User{B4876DEF-D269-4E0C-A027-420A98017ECE}F:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{51C82DE3-EFAB-4E25-9435-FABF09A2D81B}F:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{A4C0D35E-098E-407E-8E87-4AE377D350B2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FC5D9AFB-BC2C-4B74-A7F9-E12F6B2AFD6F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{840AA6F9-19FF-4898-8475-FCE8FDB12F3C}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{CF163057-1239-4E6B-B582-995AF58DCECE}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4C2339C6-53EA-4CFC-9BCF-474A68140A41}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1EE2FFE7-3D06-404D-AE75-094ADE4C3407}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DCE13EFA-DFA4-43BF-9F21-0BDB52F9540C}] => (Allow) C:\Users\bewas\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{332D7C4A-BB99-4BD0-8523-A1FB411FC3CB}] => (Allow) C:\Users\bewas\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{D8047B56-A837-44E7-8D23-603018FB9C46}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E0BB18BA-58B3-4C11-BF54-31E6FA12DD9D}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{F7207894-B6C1-48D0-B5BC-83D5D0060771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{8136D790-7C09-4870-B158-07B6102B4987}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{52BB189C-BCD3-423A-9032-63BB68CA9BBA}C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{B03640AE-69DB-448A-971C-EC75DD1765B8}C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5AE577D0-E7C7-426A-B98C-D2BAF79CE13D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2EFC0645-B35C-44FB-A2AE-040C2712EB6A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{090304B0-A770-44D5-BA12-9475471E76E1}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{72FC2AB3-00FF-4857-BBD3-7D9D7CD9CC39}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{7BBA52EC-6031-4909-BD83-36655D200F7C}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{4AFA8DB8-446C-4090-9A18-1C9C53ADAEAC}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{59614FC7-E46F-44E8-96AE-A2E5B7E811FC}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{8BBCE4E8-5BC1-4F30-8C59-A46E37AFC2D8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{C782BB46-4D95-4FE8-83D7-B77369738B53}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.91.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{3935F173-3F7C-4159-ACA4-7338C7CB5582}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{1841DB74-471C-4274-ADF8-CA269C88AB13}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{4B2333E1-25B3-49E1-881D-67B0F6AB61EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{62FFE695-94AD-4F6E-947D-37A73E896BBA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BF193023-74D9-4535-940B-1811D1F124AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{27FCEDF9-C656-44F8-9396-3157AA81B702}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E8C8BE82-E518-4BD8-99F8-B730B9242603}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA250C96-CB9A-46CF-B86D-FC8274577565}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B683A919-3733-420B-94D9-FF4471773E08}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0AF09C80-9836-44C2-A82D-2270DED2B359}] => (Allow) C:\Users\bewas\AppData\Local\Programs\Opera\102.0.4880.56\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{1649CD8F-8226-44FF-AC92-972335B914AF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{E02FFB91-4C4B-4F86-9C21-EDDFD54AC69D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{8569DBCC-E8BB-4691-8D8C-81100F3B3AAE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6259FCA2-F2DB-421A-BB43-72B4494CCD79}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{17247157-DA0E-4B37-A5E0-43901B9B05C5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DCB1D8B2-BE34-4C2D-AEA7-0B8E91F1A17C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2CEC454C-CA7F-46A1-AAF5-D0A9DDCEF522}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{9F8B3481-7399-48DD-93E2-3B9F0D7EAE65}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{4310AC5E-1511-43FB-9577-55DB48AF4E70}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF44A23A-C591-492B-A896-5A326F6B0046}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{189CCB2C-6887-4C25-927C-8AE13D2B87F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A45CF525-E7EE-40A6-A37F-032DE34F0615}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{173CD337-D15A-42DD-B9DE-0F46B2905A35}] => (Allow) C:\Users\bewas\AppData\Local\Programs\Opera\102.0.4880.78\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{63B4E77D-3D60-4163-AF2F-BA092CCE7607}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99305CCC-614B-47B5-9F61-2282F48960E6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Points de restauration =========================
12-10-2023 20:58:54 Programme d’installation pour les modules Windows
12-10-2023 21:52:03 Programme d’installation pour les modules Windows
12-10-2023 21:52:45 Programme d’installation pour les modules Windows
12-10-2023 22:17:48 Programme d’installation pour les modules Windows
12-10-2023 22:20:11 Programme d’installation pour les modules Windows
12-10-2023 22:45:26 Programme d’installation pour les modules Windows
12-10-2023 22:47:13 Programme d’installation pour les modules Windows
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (10/12/2023 11:25:37 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)
Error: (10/12/2023 10:58:32 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)
Error: (10/12/2023 10:43:49 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)
Error: (10/11/2023 10:38:53 PM) (Source: Wlclntfy) (EventID: 4005) (User: )
Description: Le processus d’ouverture de session de Windows s’est terminé de manière inattendue.
Error: (09/26/2023 09:41:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement.
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (09/26/2023 09:41:33 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {95c6a56f-b5df-4fb9-a6ff-914d4b7c4c1f}
Error: (09/17/2023 09:46:39 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (09/17/2023 09:46:39 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Erreurs système:
=============
Error: (10/12/2023 10:28:32 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Optimisation de livraison ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.
Error: (10/12/2023 10:28:19 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (10/12/2023 09:55:40 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Optimisation de livraison ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.
Error: (10/12/2023 09:43:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 21:38:32 le 12/10/2023 n’était pas prévu.
Error: (10/12/2023 09:10:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (10/12/2023 09:03:15 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000007e (0xffffffffc0000005, 0xfffff8077fc062bb, 0xffffa8075dcaef78, 0xffffa8075dcae7b0). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 7a883824-0530-49d5-ba9f-5cbdb118620e.
Error: (10/12/2023 08:58:32 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 21:43:25 le 26/09/2023 n’était pas prévu.
Error: (10/12/2023 08:58:21 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT)
Description: 3221225473Une erreur irrécupérable s’est produite pendant le traitement des données de restauration.
Windows Defender:
================
Date: 2023-08-16 22:20:19
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {B9C1F4C4-D9A7-46FA-9007-6C3050850325}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-13 22:52:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {D79660A4-7351-49B4-BD71-9AA9B8368EC5}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-07 23:30:30
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {6CB20CF9-99EC-434F-B0CB-32A4BEC05BDC}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-02 00:41:52
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {1C5AE122-D8A5-47BF-BA24-19018D168301}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-07-31 22:47:43
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {531293E6-15CC-4B77-9313-13574DB73A97}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]:
Date: 2023-07-17 23:51:43
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente.
Veille de sécurité tentée : Actuelle
Code d’erreur : 0x80501102
Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support.
Version de la veille de sécurité : 1.393.638.0;1.393.638.0
Version du moteur : 1.1.23060.1005
CodeIntegrity:
===============
Date: 2023-10-12 22:40:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-10-12 20:58:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-08-29 23:36:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-08-13 23:24:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume5\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
Date: 2023-08-07 23:29:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-18 23:00:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 00:48:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-15 23:30:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 1.60 08/21/2019
Carte mère: Micro-Star International Co., Ltd. MAG Z390 TOMAHAWK (MS-7B18)
Processeur: Intel(R) Core(TM) i7-9700KF CPU @ 3.60GHz
Pourcentage de mémoire utilisée: 32%
Mémoire physique - RAM - totale: 16318.48 MB
Mémoire physique - RAM - disponible: 10988.45 MB
Mémoire virtuelle totale: 18750.48 MB
Mémoire virtuelle disponible: 11368.92 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:222.94 GB) (Free:45.99 GB) (Model: KINGSTON SA400S37240G) NTFS
Drive d: (Google Drive) (Fixed) (Total:100 GB) (Free:43.69 GB) (Model: ST1000DM010-2EP102) FAT32
Drive f: () (Fixed) (Total:931.51 GB) (Free:260.68 GB) (Model: ST1000DM010-2EP102) NTFS
\\?\Volume{a38b6c2a-57a8-4860-99b7-18658bc9dba8}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{a341416d-e869-46a9-9fba-79b5487c0e3d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt =======================
Exécuté par bewas (13-10-2023 20:06:18)
Exécuté depuis C:\Users\bewas\Desktop
Microsoft Windows 10 Famille Langue unique Version 22H2 19045.3570 (X64) (2020-11-06 17:15:10)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-2137434348-4085527620-4071002930-500 - Administrator - Disabled)
bewas (S-1-5-21-2137434348-4085527620-4071002930-1001 - Administrator - Enabled) => C:\Users\bewas
DefaultAccount (S-1-5-21-2137434348-4085527620-4071002930-503 - Limited - Disabled)
Invité (S-1-5-21-2137434348-4085527620-4071002930-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2137434348-4085527620-4071002930-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.3.1.6 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824311644}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Antidote 8 (HKLM-x32\...\{09AAAB09-6DBA-4DD9-9865-54597D3FBCA8}) (Version: 8.04.1237 - Druide informatique inc.)
AOMEI Backupper (HKLM-x32\...\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1) (Version: 6.8.0 - AOMEI International Network Limited.)
Assistant de téléchargement (HKLM-x32\...\{92154A3C-9BB7-49D7-A571-4EB6373FA5AD}) (Version: 6.65.13 - Druide informatique inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
calibre (HKLM-x32\...\{54B7D91C-A982-420A-84E5-245DCD036C17}) (Version: 4.15.0 - Kovid Goyal)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 6.16 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.11.0.1001 - Disc Soft Ltd)
Docs (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\5a84fc6633cf32fca7e8cbd3591a706f) (Version: 1.0 - Google\Chrome)
Enregistrement utilisateur de Canon MG3200 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3200 series) (Version: - Canon Inc.)
Feuilles de calcul (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\e9214df090c1201be0fa0a72f1412533) (Version: 1.0 - Google\Chrome)
Free Cam 8 (HKLM-x32\...\{80366841-A296-46DC-B85E-8D7ABF09B10A}) (Version: 8.7.27129 - iSpring Solutions Inc.)
GIMP 2.10.14 (HKLM\...\GIMP-2_is1) (Version: 2.10.14 - The GIMP Team)
Gmail (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\76d597ed51e028a33f0cef30963b1a78) (Version: 1.0 - Google\Chrome)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 117.0.5938.152 - Google LLC)
Google Drive (HKLM\...\{6BBAE539-2232-434A-A4E5-9A33560C6283}) (Version: 82.0.1.0 - Google LLC)
Google Drive (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\fdbe22999ff749529cd22756885b018c) (Version: 1.0 - Google\Chrome)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Internet Download Manager 6.36.7 (HKLM-x32\...\Internet Download Manager_is1) (Version: 6.36.7 - lrepacks.ru)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Microsoft .NET Framework 4.8 SDK (HKLM-x32\...\{949C0535-171C-480F-9CF4-D25C9E60FE88}) (Version: 4.8.03928 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 117.0.2045.60 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 117.0.2045.60 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.16827.20130 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.199.0924.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BB052C53-34CB-42DE-AF41-66FDFCEEC868}) (Version: 3.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.26.28808 (HKLM-x32\...\{78079cc3-1f6e-47f6-b4d6-105f08b89409}) (Version: 14.26.28808.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.26.28808 (HKLM-x32\...\{12410e80-cba2-4479-8539-12de3513ff53}) (Version: 14.26.28808.1 - Microsoft Corporation)
Microsoft Visual C++ 2019 X64 Additional Runtime - 14.26.28808 (HKLM\...\{31B12D0C-C856-4B64-A4FE-7E4C2F5BF8E4}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X64 Minimum Runtime - 14.26.28808 (HKLM\...\{EB5BE2A4-FB21-421C-9FA0-F7D7591B1B1F}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Additional Runtime - 14.26.28808 (HKLM-x32\...\{205CA6C8-5FF7-4270-A856-0AD21508147F}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.26.28808 (HKLM-x32\...\{4A336F95-FDA8-427B-8BFD-FB3001F1DE22}) (Version: 14.26.28808 - Microsoft Corporation) Hidden
Microsoft Visual Studio Code (User) (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\{771FD6B0-FA20-440A-A002-3B3BAC16DC50}_is1) (Version: 1.57.1 - Microsoft Corporation)
Microsoft Visual Studio Installer (HKLM\...\{6F320B93-EE3C-4826-85E0-ADF79F8D4C61}) (Version: 2.6.2037.624 - Microsoft Corporation)
Microsoft Web Deploy 4.0 (HKLM\...\{BBCDB523-F5B7-4E53-A911-C85191E3BDF0}) (Version: 10.0.2606 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.2.1 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 112.0.2 (x64 fr)) (Version: 112.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.8.7 - Notepad++ Team)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA Pilote graphique 537.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 537.13 - NVIDIA Corporation)
NVIDIA USBC Driver 1.50.831.832 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_USBC) (Version: 1.50.831.832 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16827.20130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.6701.1029 - Microsoft Corporation) Hidden
Opera Stable 102.0.4880.78 (HKLM-x32\...\Opera 102.0.4880.78) (Version: 102.0.4880.78 - Opera Software)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.2.1 - pdfforge)
PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr)
Présentations (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\d75ffc50f527b9e59fc269f6c01d2b3d) (Version: 1.0 - Google\Chrome)
Python Launcher (HKLM-x32\...\{4E5F47AD-2588-4BE3-9DC2-0F9CD283A3DF}) (Version: 3.7.6860.0 - Python Software Foundation)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.27.272 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.6.5 - Rockstar Games)
Spotify (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\Spotify) (Version: 1.1.88.612.gcc529952 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Update for Windows 10 for x64-based Systems (KB5001716) (HKLM\...\{7B63012A-4AC6-40C6-B6AF-B24A84359DD5}) (Version: 8.93.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft)
Visuel intégré (HKLM-x32\...\{D6A48C7F-A0F8-46A5-A1ED-F45A62FE93BF}) (Version: 1.0.0003 - Druide informatique inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
Windows SDK AddOn (HKLM-x32\...\{E6F877A1-2F65-4BF0-87B6-A4071B7663D3}) (Version: 10.1.0.0 - Microsoft Corporation)
WinRAR 6.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.21.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare Video Converter Ultimate(Build 10.3.1.181) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.3.1.181 - Wondershare Software)
Yandex.Disk (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\YandexDisk2) (Version: 3.2.34.4962 - Yandex)
YouTube (HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\8dd9da51c724130eba8d2ec6aa8b279e) (Version: 1.0 - Google\Chrome)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-19] (Canon Inc.)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-26] (Microsoft Corporation)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-13] (Microsoft Corporation)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-12-23] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6 [2023-09-22] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.21.0_neutral__8xx8rvfyw5nnt [2023-07-20] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa [2023-09-26] (Apple Inc.) [Startup Task]
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_1880.6.164.0_x64__8xx8rvfyw5nnt [2023-05-25] (Meta) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-11-22] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-16] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-08-29] (NVIDIA Corp.)
Outlook for Windows -> C:\Program Files\WindowsApps\Microsoft.OutlookForWindows_1.2023.727.100_x64__8wekyb3d8bbwe [2023-08-06] (Microsoft Corporation)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.17.10050.0_x64__8wekyb3d8bbwe [2023-10-12] (Microsoft Studios) [MS Ad]
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{11C9DD7B-CCF5-4502-90A1-FEE8889976D5}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{18224999-F24B-43ee-B697-9427587FDC9C}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{63ADB0D1-6DA0-46A2-89D0-E0CE44536E32}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{75EF3512-D401-4172-BA0F-00E000DCBCE4}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{78CE3579-0D34-413C-88C7-FE2855271688}\localserver32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk2.exe (YANDEX LLC -> Yandex)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{847202AE-CDE0-469A-AF10-8798E02DED83}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{8EEE3CD5-1F70-4B63-B19D-A5F1457761DB}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{9CE04609-A360-4266-9937-9D799E8D2D5A}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\AgentAntidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] [Fichier en cours d'utilisation]
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37C}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 8\Programmes64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-2137434348-4085527620-4071002930-1001_Classes\CLSID\{C5F6CDD1-FB7B-4971-A53F-4B00757F756B}\InprocServer32 -> C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveCloudOverlayIconHandler] -> {A8E52322-8734-481D-A7E2-27B309EF8D56} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveMirrorBlacklistedOverlayIconHandler] -> {51EF1569-67EE-4AD6-9646-E726C3FFC8A2} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDrivePinnedOverlayIconHandler] -> {CFE8B367-77A7-41D7-9C90-75D16D7DC6B6} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveProgressOverlayIconHandler] -> {C973DA94-CBDF-4E77-81D1-E5B794FBD146} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ShellIconOverlayIdentifiers: [ YandexDisk1 SyncDone] -> {C5F6CDD1-FB7B-4971-A53F-4B00757F756B} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk2 SyncProgress] -> {75EF3512-D401-4172-BA0F-00E000DCBCE4} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk3 SyncDisabled] -> {8EEE3CD5-1F70-4B63-B19D-A5F1457761DB} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk4 SyncError] -> {9CE04609-A360-4266-9937-9D799E8D2D5A} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ YandexDisk5 SyncPart] -> {63ADB0D1-6DA0-46A2-89D0-E0CE44536E32} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files\Notepad++\NppShell_06.dll [2019-10-28] (Notepad++ -> )
ContextMenuHandlers1: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2019-11-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.199.0924.0001\FileSyncShell64.dll [2023-10-11] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [DriveFS 28 or later] -> {EE15C2BD-CECB-49F8-A113-CA1BFC528F5B} => C:\Program Files\Google\Drive File Stream\82.0.1.0\drivefsext.dll [2023-10-11] (Google LLC -> Google, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_d3828c822366e497\nvshext.dll [2023-08-16] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-02-16] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-2137434348-4085527620-4071002930-1001: [Yandex.Disk.3] -> {847202AE-CDE0-469A-AF10-8798E02DED83} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
ContextMenuHandlers4_S-1-5-21-2137434348-4085527620-4071002930-1001: [Yandex.Disk.3] -> {847202AE-CDE0-469A-AF10-8798E02DED83} => C:\Users\bewas\AppData\Roaming\Yandex\YandexDisk2\3.2.34.4962\YandexDisk3ShellExt-1511.dll [2023-10-06] (YANDEX LLC -> Яндекс)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Docs.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Feuilles de calcul.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Présentations.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\bewas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
==================== Modules chargés (Avec liste blanche) =============
2022-02-26 21:01 - 2021-06-22 15:41 - 000014336 _____ () [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\libamcbconsole.dll
2022-02-26 21:01 - 2015-05-21 15:32 - 000068784 _____ (Aomei Technology Co., Limited -> Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\vcomp.dll
2019-12-25 00:34 - 2012-03-28 19:01 - 000359936 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL
2020-01-31 00:04 - 2012-03-26 06:00 - 000392192 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMXLMB8.DLL
2020-04-18 07:50 - 2014-04-17 16:50 - 007470624 _____ (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] C:\Program Files (x86)\Druide\Antidote 8\Programmes32\libLing_8.dll
2020-04-18 07:50 - 2014-04-17 16:50 - 009029152 _____ (Druide informatique inc. -> Druide informatique inc.) [Fichier non signé] C:\Program Files (x86)\Druide\Antidote 8\Programmes64\libLing_8.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-01-21] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-02-17] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-10-12] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-12-24 23:42 - 2019-12-24 23:47 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\StartupApproved\StartupFolder: => "System.exe"
HKU\S-1-5-21-2137434348-4085527620-4071002930-1001\...\StartupApproved\Run: => "Lync"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{96D76A70-B137-447E-8E1C-8002B1825C6E}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{16CD13AE-31C4-48D1-8C85-DD84774AC5C6}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{C4A4558D-B89F-4FC7-828B-AC7F7912CC8C}] => (Allow) C:\Users\bewas\AppData\Roaming\Zoom\bin\Zoom.exe => Pas de fichier
FirewallRules: [{A39DFFEE-5059-43ED-8D2E-F034DCBF5575}] => (Allow) F:\games\SteamLibrary\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [{E5FF7D8E-EA9D-4DF6-AC2E-565256E24CBE}] => (Allow) F:\games\SteamLibrary\steamapps\common\Might & Magic Heroes VII\Binaries\Win64\MMH7Game-Win64-Shipping.exe (Limbic Entertainment GmbH -> Ubisoft, Inc.)
FirewallRules: [UDP Query User{E072E343-557E-4660-8EC8-6B27AD35044E}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{07AEBACB-E915-4821-848A-BAA6DA9C654F}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{C1FC0DAF-72C2-4015-94B4-EBEB860FDEFD}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{9973D9B4-943D-41F0-8D2C-F152E3F1CFFB}F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe] => (Allow) F:\games\steamlibrary\steamapps\common\red dead redemption 2\rdr2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{98F53B79-D3C3-445F-8763-86A0EF8D99C9}] => (Allow) F:\games\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0487A8E7-8940-42C5-A872-8EF1E4907A1A}] => (Allow) F:\games\SteamLibrary\steamapps\common\Red Dead Redemption 2\PlayRDR2.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{8498047C-9772-4006-8262-1D8032A6D66A}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{25EC5CD7-EE5F-43A3-8959-D2BAD32D458A}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{811705E9-9587-4A52-9989-7CDD1BAC3863}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{EA6DAA36-6EFB-4BE4-84BB-1EEF0CF8DABB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{9F404234-DDC5-4D32-8A32-DEB76BAE00D5}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0214FFC5-3CAA-45B2-8991-0A42D1D2E991}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{B39AC625-CD4D-4A17-85A7-19122421858F}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [{502E29B4-F2EB-41AC-AA53-F5D9990FE0F9}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD PROJEKT SPÓŁKA AKCYJNA -> CD Projekt Red)
FirewallRules: [UDP Query User{B4876DEF-D269-4E0C-A027-420A98017ECE}F:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [TCP Query User{51C82DE3-EFAB-4E25-9435-FABF09A2D81B}F:\games\call of duty modern warfare\modernwarfare.exe] => (Allow) F:\games\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{A4C0D35E-098E-407E-8E87-4AE377D350B2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{FC5D9AFB-BC2C-4B74-A7F9-E12F6B2AFD6F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [UDP Query User{840AA6F9-19FF-4898-8475-FCE8FDB12F3C}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{CF163057-1239-4E6B-B582-995AF58DCECE}C:\users\bewas\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\bewas\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4C2339C6-53EA-4CFC-9BCF-474A68140A41}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1EE2FFE7-3D06-404D-AE75-094ADE4C3407}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{DCE13EFA-DFA4-43BF-9F21-0BDB52F9540C}] => (Allow) C:\Users\bewas\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{332D7C4A-BB99-4BD0-8523-A1FB411FC3CB}] => (Allow) C:\Users\bewas\AppData\Roaming\uTorrent\uTorrent.exe => Pas de fichier
FirewallRules: [{D8047B56-A837-44E7-8D23-603018FB9C46}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{E0BB18BA-58B3-4C11-BF54-31E6FA12DD9D}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{F7207894-B6C1-48D0-B5BC-83D5D0060771}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{8136D790-7C09-4870-B158-07B6102B4987}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{52BB189C-BCD3-423A-9032-63BB68CA9BBA}C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{B03640AE-69DB-448A-971C-EC75DD1765B8}C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe] => (Allow) C:\users\bewas\appdata\roaming\utorrent\updates\3.5.5_45838.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{5AE577D0-E7C7-426A-B98C-D2BAF79CE13D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2EFC0645-B35C-44FB-A2AE-040C2712EB6A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{090304B0-A770-44D5-BA12-9475471E76E1}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{72FC2AB3-00FF-4857-BBD3-7D9D7CD9CC39}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{7BBA52EC-6031-4909-BD83-36655D200F7C}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{4AFA8DB8-446C-4090-9A18-1C9C53ADAEAC}] => (Allow) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.8.0\ABService.exe (AOMEI International Network Limited -> AOMEI International Network Limited)
FirewallRules: [{59614FC7-E46F-44E8-96AE-A2E5B7E811FC}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{8BBCE4E8-5BC1-4F30-8C59-A46E37AFC2D8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.90.3407.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{C782BB46-4D95-4FE8-83D7-B77369738B53}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.91.3404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe => Pas de fichier
FirewallRules: [{3935F173-3F7C-4159-ACA4-7338C7CB5582}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{1841DB74-471C-4274-ADF8-CA269C88AB13}] => (Allow) F:\games\SteamLibrary\steamapps\common\The Witcher 3\REDprelauncher.exe (GOG sp. z o.o -> GOG.com)
FirewallRules: [{4B2333E1-25B3-49E1-881D-67B0F6AB61EA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{62FFE695-94AD-4F6E-947D-37A73E896BBA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{BF193023-74D9-4535-940B-1811D1F124AD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{27FCEDF9-C656-44F8-9396-3157AA81B702}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{E8C8BE82-E518-4BD8-99F8-B730B9242603}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EA250C96-CB9A-46CF-B86D-FC8274577565}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B683A919-3733-420B-94D9-FF4471773E08}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0AF09C80-9836-44C2-A82D-2270DED2B359}] => (Allow) C:\Users\bewas\AppData\Local\Programs\Opera\102.0.4880.56\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{1649CD8F-8226-44FF-AC92-972335B914AF}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{E02FFB91-4C4B-4F86-9C21-EDDFD54AC69D}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{8569DBCC-E8BB-4691-8D8C-81100F3B3AAE}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{6259FCA2-F2DB-421A-BB43-72B4494CCD79}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\iTunes.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{17247157-DA0E-4B37-A5E0-43901B9B05C5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{DCB1D8B2-BE34-4C2D-AEA7-0B8E91F1A17C}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{2CEC454C-CA7F-46A1-AAF5-D0A9DDCEF522}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{9F8B3481-7399-48DD-93E2-3B9F0D7EAE65}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12129.10001.1009.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (5BD5593D-A41B-4F89-884E-B4F3E0FBAA75 -> Apple Inc.)
FirewallRules: [{4310AC5E-1511-43FB-9577-55DB48AF4E70}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DF44A23A-C591-492B-A896-5A326F6B0046}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{189CCB2C-6887-4C25-927C-8AE13D2B87F8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A45CF525-E7EE-40A6-A37F-032DE34F0615}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.105.3214.0_x64__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{173CD337-D15A-42DD-B9DE-0F46B2905A35}] => (Allow) C:\Users\bewas\AppData\Local\Programs\Opera\102.0.4880.78\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{63B4E77D-3D60-4163-AF2F-BA092CCE7607}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.60\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99305CCC-614B-47B5-9F61-2282F48960E6}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Points de restauration =========================
12-10-2023 20:58:54 Programme d’installation pour les modules Windows
12-10-2023 21:52:03 Programme d’installation pour les modules Windows
12-10-2023 21:52:45 Programme d’installation pour les modules Windows
12-10-2023 22:17:48 Programme d’installation pour les modules Windows
12-10-2023 22:20:11 Programme d’installation pour les modules Windows
12-10-2023 22:45:26 Programme d’installation pour les modules Windows
12-10-2023 22:47:13 Programme d’installation pour les modules Windows
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (10/12/2023 11:25:37 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)
Error: (10/12/2023 10:58:32 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)
Error: (10/12/2023 10:43:49 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur (F:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)
Error: (10/11/2023 10:38:53 PM) (Source: Wlclntfy) (EventID: 4005) (User: )
Description: Le processus d’ouverture de session de Windows s’est terminé de manière inattendue.
Error: (09/26/2023 09:41:43 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x8007001f, Un périphérique attaché au système ne fonctionne pas correctement.
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (09/26/2023 09:41:33 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {95c6a56f-b5df-4fb9-a6ff-914d4b7c4c1f}
Error: (09/17/2023 09:46:39 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (09/17/2023 09:46:39 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Erreurs système:
=============
Error: (10/12/2023 10:28:32 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Optimisation de livraison ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.
Error: (10/12/2023 10:28:19 PM) (Source: DCOM) (EventID: 10005) (User: AUTORITE NT)
Description: DCOM a reçu l’erreur « 1115 » lors de la tentative de démarrage du service wuauserv avec les arguments « Non disponible » pour exécuter le serveur :
{E60687F7-01A1-40AA-86AC-DB1CBF673334}
Error: (10/12/2023 09:55:40 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Optimisation de livraison ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.
Error: (10/12/2023 09:43:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 21:38:32 le 12/10/2023 n’était pas prévu.
Error: (10/12/2023 09:10:52 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone.
Error: (10/12/2023 09:03:15 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000007e (0xffffffffc0000005, 0xfffff8077fc062bb, 0xffffa8075dcaef78, 0xffffa8075dcae7b0). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 7a883824-0530-49d5-ba9f-5cbdb118620e.
Error: (10/12/2023 08:58:32 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 21:43:25 le 26/09/2023 n’était pas prévu.
Error: (10/12/2023 08:58:21 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: AUTORITE NT)
Description: 3221225473Une erreur irrécupérable s’est produite pendant le traitement des données de restauration.
Windows Defender:
================
Date: 2023-08-16 22:20:19
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {B9C1F4C4-D9A7-46FA-9007-6C3050850325}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-13 22:52:33
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {D79660A4-7351-49B4-BD71-9AA9B8368EC5}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-07 23:30:30
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {6CB20CF9-99EC-434F-B0CB-32A4BEC05BDC}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-08-02 00:41:52
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {1C5AE122-D8A5-47BF-BA24-19018D168301}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2023-07-31 22:47:43
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {531293E6-15CC-4B77-9313-13574DB73A97}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]:
Date: 2023-07-17 23:51:43
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité et va tenter de rétablir une version précédente.
Veille de sécurité tentée : Actuelle
Code d’erreur : 0x80501102
Description de l’erreur : Un problème inattendu s’est produit. Installez toutes les mises à jour disponibles, puis essayez de redémarrer le programme. Pour plus d’informations sur l’installation des mises à jour, voir Aide et support.
Version de la veille de sécurité : 1.393.638.0;1.393.638.0
Version du moteur : 1.1.23060.1005
CodeIntegrity:
===============
Date: 2023-10-12 22:40:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23090.2008-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-10-12 20:58:45
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-08-29 23:36:55
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23070.1004-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-08-13 23:24:01
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\ImmersiveControlPanel\SystemSettings.exe) attempted to load \Device\HarddiskVolume5\Program Files\Google\Drive File Stream\79.0.2.0\crashpad_handler.exe that did not meet the Microsoft signing level requirements.
Date: 2023-08-07 23:29:40
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.9-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-18 23:00:25
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-06-08 00:48:37
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.23050.3-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2023-05-15 23:30:16
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\ProgramData\Microsoft\Windows Defender\Platform\4.18.2304.8-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 1.60 08/21/2019
Carte mère: Micro-Star International Co., Ltd. MAG Z390 TOMAHAWK (MS-7B18)
Processeur: Intel(R) Core(TM) i7-9700KF CPU @ 3.60GHz
Pourcentage de mémoire utilisée: 32%
Mémoire physique - RAM - totale: 16318.48 MB
Mémoire physique - RAM - disponible: 10988.45 MB
Mémoire virtuelle totale: 18750.48 MB
Mémoire virtuelle disponible: 11368.92 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:222.94 GB) (Free:45.99 GB) (Model: KINGSTON SA400S37240G) NTFS
Drive d: (Google Drive) (Fixed) (Total:100 GB) (Free:43.69 GB) (Model: ST1000DM010-2EP102) FAT32
Drive f: () (Fixed) (Total:931.51 GB) (Free:260.68 GB) (Model: ST1000DM010-2EP102) NTFS
\\?\Volume{a38b6c2a-57a8-4860-99b7-18658bc9dba8}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
\\?\Volume{a341416d-e869-46a9-9fba-79b5487c0e3d}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 223.6 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Fin de Addition.txt =======================