Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 10-01-2022 01 Exécuté par luc (14-01-2022 21:36:50) Exécuté depuis C:\Users\luc\Downloads Microsoft Windows 10 Famille Version 21H2 19044.1348 (X64) (2021-12-08 21:29:45) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2994219239-2715993036-246446050-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2994219239-2715993036-246446050-503 - Limited - Disabled) Invité (S-1-5-21-2994219239-2715993036-246446050-501 - Limited - Disabled) luc (S-1-5-21-2994219239-2715993036-246446050-1001 - Administrator - Enabled) => C:\Users\luc WDAGUtilityAccount (S-1-5-21-2994219239-2715993036-246446050-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton 360 (Enabled - Up to date) {1122B19A-E671-38EC-8EAC-87048FD4528D} AV: Norton Security (Enabled - Up to date) {A2708B76-6835-6565-CB96-694212954A75} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton 360 (Enabled - Up to date) {AECE2126-F4E7-6909-11F2-1B69D1FBCBD0} AV: Norton 360 (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Norton Security (Enabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E} FW: Norton 360 (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1} FW: Norton 360 (Enabled) {96F5A003-BE88-6851-3AAD-B25C2F288CAB} FW: Norton 360 (Enabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) 8GadgetPack (HKLM-x32\...\{2C6DC07C-5D68-4E32-B6C6-EF5F24DA9FDF}) (Version: 33.0.0 - 8GadgetPack.net) Adblock Plus pour IE (32-bits et 64-bits) (HKLM\...\{40F6FB81-1B50-443B-A8E0-BC70E62CFB21}) (Version: 1.6 - Eyeo GmbH) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.005.20058 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated) Apple Application Support (32 bits) (HKLM-x32\...\{80B42CAA-28C0-4FBD-A46E-D61F45E2F9FC}) (Version: 7.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{466D00D0-E7DE-47C2-8FE5-54A8009F5850}) (Version: 7.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.) Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1375 - Microsoft Corporation) Bejeweled 3 (HKLM-x32\...\WTA-842226f6-c106-45a3-a8c9-66d31dbd306d) (Version: 2.2.0.98 - WildTangent) Hidden Cake Mania (HKLM-x32\...\WTA-e15cafbc-925f-41bf-80e3-c71db268737d) (Version: 2.2.0.98 - WildTangent) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.86 - Piriform) Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.1.177.0 - Microsoft Corporation) Chuzzle Deluxe (HKLM-x32\...\WTA-2823c5a4-698f-4fad-a303-3bfd6d18e570) (Version: 2.2.0.95 - WildTangent) Hidden Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Cradle of Rome 2 (HKLM-x32\...\WTA-c0837de3-9023-415a-a781-0b8fc4acb81e) (Version: 2.2.0.98 - WildTangent) Hidden D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden Ecran de veille AOL Photos (HKLM-x32\...\AOL YGP Screensaver) (Version: - ) Étude pour l'amélioration du produit HP Deskjet 3050A J611 series (HKLM\...\{3969E7E7-0538-4478-8F85-E22CF687630B}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc) Facebook (HKLM-x32\...\{8AE50893-3A87-4439-9A57-942ED43F7189}) (Version: 1.1.0004 - Hewlett-Packard) Farm Frenzy (HKLM-x32\...\WTA-98256a02-ad63-4936-94d2-686f92cb4870) (Version: 2.2.0.98 - WildTangent) Hidden Farmscapes (HKLM-x32\...\WTA-d8dc7f79-3ead-4f87-a6f2-81f2b43c16d3) (Version: 2.2.0.97 - WildTangent) Hidden FATE (HKLM-x32\...\WTA-9ccff31f-4944-47e8-a14d-8104ecbcdd9c) (Version: 2.2.0.97 - WildTangent) Hidden Final Drive Fury (HKLM-x32\...\WTA-2b7d3827-5815-4960-8e07-bbcc9ad364fb) (Version: 2.2.0.95 - WildTangent) Hidden Fishdom (TM) 2 (HKLM-x32\...\WTA-55d5e67a-2184-4fe6-86f6-8f09858443b7) (Version: 2.2.0.98 - WildTangent) Hidden Galerie de photos Windows Live (HKLM-x32\...\{488F0347-C4A7-4374-91A7-30818BEDA710}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Gestionnaire de téléchargements musicMe (HKLM-x32\...\{3308FA26-6DC2-40AD-A8BC-1DC0A2F00176}) (Version: 1.6.0 - ApachNetwork - musicMe) Google Earth Pro (HKLM\...\{9BFB06CD-3925-49E2-BAB7-EA695821CE4C}) (Version: 7.3.4.8248 - Google) Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 97.0.4692.71 - Google LLC) HP Calendar (HKLM-x32\...\{2B38E0FA-D8A5-4EBF-A018-E3C1C8E7A2E2}) (Version: 5.1.4245.23508 - Hewlett-Packard) HP Clock (HKLM-x32\...\{750E9D0F-B188-4A7E-ADD2-84B7ED7D32F6}) (Version: 5.1.4281.27332 - Hewlett-Packard) HP Deskjet 3050A J611 series Aide (HKLM-x32\...\{97DDCAB8-B770-4089-A10F-67568069D78A}) (Version: 140.0.2.2 - Hewlett Packard) HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent) HP LinkUp (HKLM-x32\...\{7E750542-55BC-4300-8B7B-AC2A762FB435}) (Version: 2.01.029 - Hewlett-Packard) HP Notes (HKLM-x32\...\{86BAB08A-5E66-4C53-82E3-C1E91673C7CA}) (Version: 5.1.4274.30382 - Hewlett-Packard) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12992 - HP Photo Creations) HP RSS (HKLM-x32\...\{452479C5-0118-48E9-AA69-0A7339F95FC8}) (Version: 5.1.4289.23799 - Hewlett-Packard) HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15430.4033 - Hewlett-Packard Company) HP Support Assistant (HKLM-x32\...\{54ECA61C-83AE-4EE3-A9F7-848155A33386}) (Version: 8.8.34.31 - HP Inc.) HP Support Solutions Framework (HKLM-x32\...\{2A6B6DA3-0A09-43E0-BBF1-B0A6EDBEE779}) (Version: 12.18.34.21 - HP Inc.) HP TouchSmart RecipeBox (HKLM-x32\...\{20714B53-FC73-4F9C-9687-49EB237D6FD7}) (Version: 3.0.3830.27730 - Hewlett-Packard) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) Insaniquarium Deluxe (HKLM-x32\...\WTA-ce8b7331-e44e-4b98-ad42-5aa223c87ec1) (Version: 2.2.0.97 - WildTangent) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation) Java 8 Update 111 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180111F0}) (Version: 8.0.1110.14 - Oracle Corporation) Jewel Match 3 (HKLM-x32\...\WTA-97e7470e-ca49-4a43-af89-5b64407223ad) (Version: 2.2.0.98 - WildTangent) Hidden Jewel Quest II (HKLM-x32\...\WTA-3c8c76de-6535-47bc-af80-64ff4bd986a1) (Version: 2.2.0.97 - WildTangent) Hidden Jewel Quest Solitaire 2 (HKLM-x32\...\WTA-2afd4be1-ae99-493d-b442-881ff3180eb4) (Version: 2.2.0.98 - WildTangent) Hidden Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Logiciel de base du périphérique HP Deskjet 3050A J611 series (HKLM\...\{2728177B-FBEC-415F-A9F5-83CD6CBD4816}) (Version: 28.0.1315.0 - Hewlett-Packard Co.) Magic Desktop (HKLM-x32\...\EasyBits Magic Desktop) (Version: 3.0 - EasyBits Software AS) Mahjongg Artifacts (HKLM-x32\...\WTA-d6e9821f-44f4-477c-be88-728cfb2f514c) (Version: 2.2.0.95 - WildTangent) Hidden Malwarebytes version 4.4.10.144 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.10.144 - Malwarebytes) Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 97.0.1072.55 - Microsoft Corporation) Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation) Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{E876418F-BE59-4D8C-B9A5-74B056B676FA}) (Version: 2.93.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) MonAlbumPhoto (HKLM-x32\...\MonAlbumPhoto_is1) (Version: 6.3.5.0 - MonAlbumPhoto) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 96.0 (x64 fr)) (Version: 96.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 96.0.0.8041 - Mozilla) Mozilla Thunderbird (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 91.5.0 (x86 fr)) (Version: 91.5.0 - Mozilla) MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Mystery of Mortlake Mansion (HKLM-x32\...\WTA-de7178c1-6b81-44b0-a074-118b8921d608) (Version: 2.2.0.98 - WildTangent) Hidden Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia) Nokia Suite (HKLM-x32\...\{88B6F9DE-C80F-4A70-ACF6-BEE933679170}) (Version: 3.8.54.0 - Nokia) Hidden Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia) Norton 360 (HKLM-x32\...\NGC) (Version: 22.21.11.46 - Symantec Corporation) Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation) Norton Utilities (HKLM\...\{36896A40-D958-486B-8A43-31A41E129FE2}) (Version: 21.4.4.356 - NortonLifeLock Inc) NVIDIA Logiciel système PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.25 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation) NVIDIA Pilote graphique 391.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.25 - NVIDIA Corporation) opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden Package de pilotes Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia) PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia) Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.) Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-28160c6b-bf57-46dc-8ff1-6bb59d05e49a) (Version: 2.2.0.98 - WildTangent) Hidden Polar Bowler (HKLM-x32\...\WTA-da95cdff-eb23-4a59-ba47-a93c912a3b72) (Version: 2.2.0.97 - WildTangent) Hidden Ranch Rush 2 - Premium Edition (HKLM-x32\...\WTA-086fa05d-7b51-4683-b0f8-c2ae7db524be) (Version: 2.2.0.98 - WildTangent) Hidden RealPlayer Basic (HKLM-x32\...\RealPlayer 6.0) (Version: - ) Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5119 - CyberLink Corp.) Hidden Scratch 2 Offline Editor (HKLM-x32\...\{0C26944B-94CF-F315-D5E3-2E7186A3CCF9}) (Version: 255.0.4 - Massachusetts Institute of Technology) Hidden Scratch 2 Offline Editor (HKLM-x32\...\edu.media.mit.Scratch2Editor) (Version: 456.0.4 - Massachusetts Institute of Technology) SFR - Kit de connexion (HKLM-x32\...\SFR_Kit) (Version: 11.5.2.1 - SFR) SFR - Media Center (HKLM-x32\...\SFR_Media Center) (Version: 10.4.29.0 - SFR) TI USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{355FBD67-5A4F-44DA-86A1-56EEC4C20EC0}) (Version: 1.12.18.0 - Texas Instruments Inc.) TI USB3 Host Driver (HKLM-x32\...\{355FBD67-5A4F-44DA-86A1-56EEC4C20EC0}) (Version: 1.12.18.0 - Texas Instruments Inc.) Hidden TomTom HOME (HKLM-x32\...\{46AE471A-1389-4300-B20D-263F2290CA6F}) (Version: 2.10.4 - Nom de votre société) TomTom HOME 2.20.8.1298 (HKLM\...\TomTom HOME) (Version: 2.20.8.1298 - TomTom) TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.) TomTom Sports Connect (HKLM-x32\...\TomTom Sports Connect) (Version: 3.3.9.0 - TomTom International B.V.) Torchlight (HKLM-x32\...\WTA-c45aa203-6d81-4065-beea-0ee8217a65ce) (Version: 2.2.0.98 - WildTangent) Hidden Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden Virtual Families (HKLM-x32\...\WTA-4cd10476-78ec-45e4-920d-882759d4d273) (Version: 2.2.0.98 - WildTangent) Hidden Virtual Villagers 4 - The Tree of Life (HKLM-x32\...\WTA-34b68ae4-09f6-45ec-8c1d-ca0f7d659201) (Version: 2.2.0.98 - WildTangent) Hidden Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN) Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden Wedding Dash (HKLM-x32\...\WTA-abbf76ee-1104-40ee-ab79-feccfff2a484) (Version: 2.2.0.95 - WildTangent) Hidden WildTangent Games App (HP Games) (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-hp) (Version: 4.0.5.36 - WildTangent) Hidden Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Zuma's Revenge (HKLM-x32\...\WTA-4e89b08e-d510-45e9-ab78-247b2023a1c4) (Version: 2.2.0.98 - WildTangent) Hidden Packages: ========= AdGuard AdBlocker -> C:\Program Files\WindowsApps\Adguard.AdguardAdBlocker_3.3.8.0_neutral__m055xr0c82818 [2020-02-11] (Performix) Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-02-10] (Autodesk Inc.) Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.157.400.0_x86__kgqvnymyfvs32 [2020-02-11] (king.com) Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-07-27] (Microsoft Corporation) Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-12-08] (Microsoft Corporation) Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-12-05] (Microsoft Corporation) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_110.1.671.0_x64__v10z8vjag6ke6 [2020-02-11] (HP Inc.) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-05] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-05] (Microsoft Corporation) [MS Ad] Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.35.20273.0_x64__8wekyb3d8bbwe [2020-02-11] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2020-02-11] (Microsoft Studios) [MS Ad] MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.34.20074.0_x64__8wekyb3d8bbwe [2020-02-11] (Microsoft Corporation) [MS Ad] MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2020-02-11] (Microsoft Corporation) [MS Ad] MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.34.20074.0_x64__8wekyb3d8bbwe [2020-02-11] (Microsoft Corporation) [MS Ad] Norton Safe Web -> C:\Program Files\WindowsApps\SymantecCorporation.NortonSafeWeb_3.11.0.0_neutral__v68kp9n051hdp [2020-02-11] (Symantec Corporation) Norton Security -> C:\Program Files\Norton Security\Engine\22.21.11.46 [2022-01-14] (0) Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2019-12-05] (Twitter Inc.) WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2021-05-21] (Microsoft Corporation) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2994219239-2715993036-246446050-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\luc\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-2994219239-2715993036-246446050-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\luc\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Fichier non signé] CustomCLSID: HKU\S-1-5-21-2994219239-2715993036-246446050-1001_Classes\CLSID\{89BB4535-5AE9-43a0-89C5-19B4697E5C5E}\InprocServer32 -> C:\Users\luc\AppData\Local\Microsoft\Windows Sidebar\Gadgets\iBattery.gadget\bin\Gadget.Interop.dll () [Fichier non signé] ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2012-06-22] (EasyBits Software AS -> EasyBits Software Corp.) [Fichier non signé] ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers1: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.21.11.46\NavShExt.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Pas de fichier ContextMenuHandlers2: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.21.11.46\NavShExt.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers3: [LinkUpMenuExt] -> {B793E5EA-5344-488E-B98D-A18E2E5938AB} => C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\LinkUpExt64.dll [2011-05-06] (Hewlett-Packard Company -> Hewlett-Packard) ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2018-03-16] (NVIDIA Corporation -> NVIDIA Corporation) ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Pas de fichier ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files\Norton Security\Engine\22.21.11.46\buShell.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes) ContextMenuHandlers6: [NortonLifeLock.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files\Norton Security\Engine\22.21.11.46\NavShExt.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => -> Pas de fichier ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) Shortcut: C:\Users\luc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\musicMe\Page d'accueil musicMe.lnk -> hxxp://www.musicme.com ==================== Modules chargés (Avec liste blanche) ============= 2020-09-27 09:08 - 2020-06-23 08:54 - 000660480 _____ (Helmut Buhler) [Fichier non signé] C:\Program Files\Windows Sidebar\dwmapi.dll 2021-12-08 21:55 - 2018-03-16 08:47 - 000880024 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll 2021-12-08 21:55 - 2018-03-16 08:47 - 000343728 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ========== HKU\S-1-5-21-2994219239-2715993036-246446050-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPDSK/3 HKU\S-1-5-21-2994219239-2715993036-246446050-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://home.microsoft.com/access/allinone.asp HKU\S-1-5-21-2994219239-2715993036-246446050-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.norton.com/?prt=NGC&chn=1000&geo=FR&ver=22.17.0.183&locale=fr_FR&guid=E7F750F6-FC11-422F-BC5C-1521D3D4817D&doi=2019-05-09&o=APN11915&cmpgn=rapha&vendorConfigured=iac SearchScopes: HKLM -> DefaultScope la valeur est absente SearchScopes: HKLM -> {320D3E0C-D3AD-4157-BC45-9E87599F8A4A} URL = hxxp://www.amazon.fr/s/ref=azs_osd_ieafr?ie=UTF-8&tag=hp-fr1-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms} SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-2/4?mpre=hxxp://www.ebay.fr/sch/i.html?_nkw={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope la valeur est absente SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/709-111075-12437-2/4?mpre=hxxp://www.ebay.fr/sch/i.html?_nkw={searchTerms} SearchScopes: HKU\S-1-5-21-2994219239-2715993036-246446050-1001 -> DefaultScope {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&l=dis&prt=NGC&chn=1000&geo=FR&ver=22.21.9.25&locale=FR_fr&guid=E7F750F6-FC11-422F-BC5C-1521D3D4817D&doi=2019-05-09&o=APN11913&vendorConfigured=iac&gct=kwd&qsrc=2869 SearchScopes: HKU\S-1-5-21-2994219239-2715993036-246446050-1001 -> {320D3E0C-D3AD-4157-BC45-9E87599F8A4A} URL = SearchScopes: HKU\S-1-5-21-2994219239-2715993036-246446050-1001 -> {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&l=dis&prt=NGC&chn=1000&geo=FR&ver=22.21.9.25&locale=FR_fr&guid=E7F750F6-FC11-422F-BC5C-1521D3D4817D&doi=2019-05-09&o=APN11913&vendorConfigured=iac&gct=kwd&qsrc=2869 SearchScopes: HKU\S-1-5-21-2994219239-2715993036-246446050-1001 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = BHO: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine\22.21.11.46\coIEPlg.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-11-13] (Oracle America, Inc. -> Oracle Corporation) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc -> Google Inc.) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-13] (Oracle America, Inc. -> Oracle Corporation) BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH) BHO-x32: Norton Password Manager -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton Security\Engine32\22.21.11.46\coIEPlg.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-05] (Google Inc -> Google Inc.) BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2017-01-03] (Eyeo GmbH -> Eyeo GmbH) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc -> Google Inc.) Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.21.11.46\coIEPlg.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-05-05] (Google Inc -> Google Inc.) Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine32\22.21.11.46\coIEPlg.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) Toolbar: HKU\S-1-5-21-2994219239-2715993036-246446050-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-05-05] (Google Inc -> Google Inc.) Toolbar: HKU\S-1-5-21-2994219239-2715993036-246446050-1001 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Security\Engine\22.21.11.46\coIEPlg.dll [2021-12-13] (NortonLifeLock Inc. -> NortonLifeLock Inc.) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2016-07-11 15:21 - 000000054 ____N C:\WINDOWS\system32\drivers\etc\hosts 127.0.0.1 localhost ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;C:\ProgramData\Oracle\Java\javapath;C:\Program Files\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Users\luc\AppData\Local\Smartbar\Application\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\ HKU\S-1-5-21-2994219239-2715993036-246446050-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\luc\Pictures\2021-08\20210831_112944.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier) Le Pare-feu ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AOL ACS => 2 MSCONFIG\Services: MBAMService => 2 MSCONFIG\Services: NVDisplay.ContainerLocalSystem => 2 MSCONFIG\Services: WsAppService => 2 MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "SysTrayApp" HKLM\...\StartupApproved\Run: => "BeatsOSDApp" HKLM\...\StartupApproved\Run: => "HPSYSDRV" HKLM\...\StartupApproved\Run32: => "HostManager" HKLM\...\StartupApproved\Run32: => "AOLDialer" HKLM\...\StartupApproved\Run32: => "Easybits Recovery" HKLM\...\StartupApproved\Run32: => "HP Software Update" HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched" HKLM\...\StartupApproved\Run32: => "LifeCam" HKLM\...\StartupApproved\Run32: => "Norton Online Backup" HKLM\...\StartupApproved\Run32: => "Magic Desktop for HP notification" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\StartupFolder: => "Alertes de surveillance de l'encre - HP Deskjet 3050A J611 series.lnk" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\StartupFolder: => "Alertes de surveillance de l'encre - .lnk" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\StartupFolder: => "Sidebar626.lnk" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\StartupFolder: => "M.bat" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "Neuf Media Center" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "CCleaner Monitoring" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "ccleaner" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "TomTomHOME.exe" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "TomTom MySports Connect.exe" HKU\S-1-5-21-2994219239-2715993036-246446050-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{F4ED5064-3B71-4E82-B2C6-906F5990A2D7}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{0F3CCDD4-D6CF-4055-A7CA-D3F9A5DC74F1}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform) FirewallRules: [{4DFE91AC-0920-4FF3-B18E-2B8E6246C695}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{684A516A-B6CC-4CA1-A224-37D6ADBBFC0F}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{CA32EF77-F039-4848-8602-5B99C226A7E5}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{6E5BB65D-79A7-4454-BD1F-4D019E824251}] => (Allow) C:\Program Files\HP\HP Deskjet 3050A J611 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.) FirewallRules: [{51AC4E2A-FAC2-492F-AB60-B00DDF13ABDF}] => (Allow) C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [{A95A0417-0758-4F62-A839-5F5EA7BE2ED5}] => (Allow) C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [{1D01ABEC-8DF0-49EE-AD66-217982177C8B}] => (Allow) C:\windows\system32\ezSharedSvcHost.exe => Pas de fichier FirewallRules: [{67CC09B2-C7EE-4386-A173-B092854300C8}] => (Allow) C:\Program Files (x86)\EasyBits For Kids\ezDesktop.exe (EasyBits Software AS -> EasyBits Software AS) FirewallRules: [{4BF9B1BD-845E-4670-9EFF-0F44A343E2FC}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe (Hewlett-Packard Company -> Hewlett-Packard Company) FirewallRules: [{D258AD60-A103-46EC-AD5C-D3BF5DD44138}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe (Hewlett-Packard Company -> Hewlett-Packard Company) FirewallRules: [{A29E9924-C54A-45F0-AF99-909A5ADC1D7B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{89C5F5F6-9ABA-4B60-9AD1-35126762B9BC}] => (Allow) LPort=2869 FirewallRules: [{A6E57968-C1C8-4AC1-A96D-7B3D537C2748}] => (Allow) LPort=1900 FirewallRules: [{05108583-473C-4F83-A888-64F63F72AAA5}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{078C1CD1-DFE1-4D88-93A5-B3A36809DD38}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{633DC78A-6F75-4596-B9EA-F7C4884BADD1}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLDial.exe (AOL Inc -> America Online) FirewallRules: [{534F734E-F397-4DF9-82F6-725F87119CF8}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLDial.exe (AOL Inc -> America Online) FirewallRules: [{4AD52EC5-E5D5-4B06-87B3-47D73755BBB0}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe (AOL LLC -> AOL LLC) FirewallRules: [{D990EA89-C4B7-46E8-AB37-46562A053A29}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe (AOL LLC -> AOL LLC) FirewallRules: [{829D19F1-DEA6-48E5-B30C-506B9AB6A342}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLDial.exe (AOL Inc -> America Online) FirewallRules: [{68ECDF37-BE7E-46C7-9BE3-3B2B4DA0B83C}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLDial.exe (AOL Inc -> America Online) FirewallRules: [{D0388DAD-8B08-427F-B3A7-E7C5306C8E2D}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe (AOL LLC -> AOL LLC) FirewallRules: [{01ECA9F7-7EB7-47E3-A726-7A5A842AE3C5}] => (Allow) C:\Program Files (x86)\Common Files\AOL\ACS\AOLacsd.exe (AOL LLC -> AOL LLC) FirewallRules: [{CE68EF26-A51D-48B5-B166-1B7A929AC2D2}] => (Allow) C:\Program Files (x86)\Common Files\AOL\1349029199\ee\aolsoftware.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{0ABEFD7D-20CF-4E41-89C4-07DEF3201F04}] => (Allow) C:\Program Files (x86)\Common Files\AOL\1349029199\ee\aolsoftware.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{5B658AB9-82C4-4437-96A7-7A021E444988}] => (Allow) C:\Program Files (x86)\AOL Desktop 9.7\waol.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{0DD329C1-00D2-4E0B-88A9-259CB557A2DD}] => (Allow) C:\Program Files (x86)\AOL Desktop 9.7\waol.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{7125D125-AF63-40A1-8856-041262552DD4}] => (Allow) C:\Program Files (x86)\Common Files\AOL\Loader\aolload.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{91A4A990-35C3-4C3B-A0DD-48F0F0AA0D05}] => (Allow) C:\Program Files (x86)\Common Files\AOL\Loader\aolload.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{BB7B8F1E-208D-4122-A74B-A3C021D24E40}] => (Allow) C:\Program Files (x86)\Common Files\AOL\System Information\sinf.exe (America Online, Inc. -> America Online, Inc.) FirewallRules: [{DF61F200-F73B-4BFD-B527-31044E5B7DE0}] => (Allow) C:\Program Files (x86)\Common Files\AOL\System Information\sinf.exe (America Online, Inc. -> America Online, Inc.) FirewallRules: [{4F732703-37E6-4ABE-883B-40777ADFDE5C}] => (Allow) C:\Program Files (x86)\AOL Desktop 9.7\AOLBrowser\aolbrowser.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{3B442C69-300D-4891-A0F5-D1F704815095}] => (Allow) C:\Program Files (x86)\AOL Desktop 9.7\AOLBrowser\aolbrowser.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{A1161AAB-573A-4530-AACA-37086AAE2EA8}] => (Allow) C:\Program Files (x86)\AOL Desktop 9.7a\waol.exe (AOL Inc. -> AOL Inc.) FirewallRules: [{A33BA9E8-E505-4ACA-A28C-01531B521C62}] => (Allow) C:\Program Files (x86)\AOL Desktop 9.7a\waol.exe (AOL Inc. -> AOL Inc.) FirewallRules: [TCP Query User{7BE4C42D-D28A-4EDB-A9DB-0001035DF654}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{0980F7C6-2798-4B01-9140-DE056100D89B}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{493752D7-677E-4EB0-A8AB-AB8B205F8F02}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F1606649-9D5D-4FD1-A85A-28F574A3086D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{BF96E8B0-AF19-4500-8AD8-CCFC6288D2ED}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{1BBC1820-FABA-436F-951C-CD3DF9C394E2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{E73A546A-3E9C-49B3-8056-0257DAC47E1B}] => (Allow) C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [{446E8452-74FA-4603-AEED-06F915B5359D}] => (Allow) C:\Program Files (x86)\SFR\Media Center\httpd\httpd.exe (Apache Software Foundation) [Fichier non signé] FirewallRules: [{BDA62572-4427-423F-9FAD-31A989A05DBF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{3EF95442-443C-4394-B1FE-E3832E6E29B6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{333AB356-C8F8-42DB-8D70-6E4410E100D9}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia) FirewallRules: [{363805F7-6D32-4D22-A29F-D75C6FE16E08}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= ATTENTION: La Restauration système est désactivée (Total:913.51 GB) (Free:786.1 GB) (86%) ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/13/2022 04:37:42 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Microsoft.Photos.exe version 2019.19081.22010.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 1f6c Heure de début : 01d808935445a1e6 Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe ID de rapport : 27414748-283b-4c6e-98aa-92c56bb3610c Nom complet du package défectueux : Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe ID de l'application relative à un package défectueux : App Type de blocage : Quiesce Error: (01/13/2022 04:36:25 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme Microsoft.Photos.exe version 2019.19081.22010.0 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance. ID de processus : 10e4 Heure de début : 01d80890601172da Heure d'arrêt : 4294967295 Chemin d'accès à l'application : C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe ID de rapport : 59123fac-6e97-428a-8aa6-5d28d9f8ea38 Nom complet du package défectueux : Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe ID de l'application relative à un package défectueux : App Type de blocage : Quiesce Error: (01/10/2022 11:56:09 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Video.UI.exe, version : 10.20011.1071.0, horodatage : 0x5e218a7e Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.19041.1320, horodatage : 0x0fc4243f Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000020b598 ID du processus défaillant : 0x3364 Heure de début de l’application défaillante : 0x01d8060e50e9b23b Chemin d’accès de l’application défaillante : C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe Chemin d’accès du module défaillant: C:\Windows\System32\Windows.UI.Xaml.dll ID de rapport : cad62eba-c26b-40e1-87f5-3b37b72eb7a8 Nom complet du package défaillant : Microsoft.ZuneVideo_10.20011.10711.0_x64__8wekyb3d8bbwe ID de l’application relative au package défaillant : Microsoft.ZuneVideo Error: (01/10/2022 11:41:39 AM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: Échec de la sauvegarde. Raison : une erreur d'écriture s'est produite à l'emplacement de sauvegarde (H:\). Erreur : Emplacement de sauvegarde introuvable ou non valide. Vérifiez-le en passant en revue vos paramètres de sauvegarde. (0x81000006). Error: (01/02/2022 07:00:02 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: Échec de la sauvegarde. Raison : une erreur d'écriture s'est produite à l'emplacement de sauvegarde (H:\). Erreur : Emplacement de sauvegarde introuvable ou non valide. Vérifiez-le en passant en revue vos paramètres de sauvegarde. (0x81000006). Error: (12/27/2021 05:26:41 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur HP_RECOVERY (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Error: (12/27/2021 11:26:20 AM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: Échec de la sauvegarde. Raison : une erreur d'écriture s'est produite à l'emplacement de sauvegarde (H:\). Erreur : Emplacement de sauvegarde introuvable ou non valide. Vérifiez-le en passant en revue vos paramètres de sauvegarde. (0x81000006). Error: (12/23/2021 06:42:14 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: ) Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur HP_RECOVERY (D:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A) Erreurs système: ============= Error: (01/11/2022 06:37:16 PM) (Source: DCOM) (EventID: 10010) (User: luc-HP) Description: Le serveur {9BA05972-F6A8-11CF-A442-00A0C90A8F39} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/08/2022 06:31:46 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (01/05/2022 05:56:45 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT) Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013. Error: (12/28/2021 07:14:32 PM) (Source: DCOM) (EventID: 10010) (User: luc-HP) Description: Le serveur Microsoft.Wallet_2.4.18324.0_x64__8wekyb3d8bbwe!App.AppXgvxkrr1tm1jwgecmqbxe81yfbwpjdn1h.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/28/2021 07:14:32 PM) (Source: DCOM) (EventID: 10010) (User: luc-HP) Description: Le serveur Microsoft.Windows.ContentDeliveryManager_10.0.19041.1023_neutral_neutral_cw5n1h2txyewy!App.AppX9s1cz53zc86xn39kwrb02jyft9ecn62r.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (12/28/2021 05:21:44 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetTcpActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (12/28/2021 05:21:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service NetMsmqActivator dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. Error: (12/28/2021 05:21:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service W3SVC dépend du service WAS qui n’a pas pu démarrer en raison de l’erreur : Le lecteur spécifié est introuvable. CodeIntegrity: =============== Date: 2022-01-14 11:14:16 Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\Norton Security\Engine\22.21.11.46\symamsi.dll that did not meet the Windows signing level requirements. ==================== Infos Mémoire =========================== BIOS: AMI 7.11 04/28/2012 Carte mère: Foxconn 2ADA Processeur: Intel(R) Core(TM) i3-2120 CPU @ 3.30GHz Pourcentage de mémoire utilisée: 87% Mémoire physique - RAM - totale: 4052.01 MB Mémoire physique - RAM - disponible: 501.12 MB Mémoire virtuelle totale: 7388.27 MB Mémoire virtuelle disponible: 2286.78 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:913.51 GB) (Free:786.1 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)] Drive d: (HP_RECOVERY) (Fixed) (Total:16.93 GB) (Free:2.06 GB) NTFS \\?\Volume{ec12ed20-2148-457b-a7ef-564d0bcbd4f1}\ () (Fixed) (Total:0.85 GB) (Free:0.36 GB) NTFS \\?\Volume{dfa6d575-ceb1-4f75-8da9-fae3027e1e3f}\ (SYSTEM) (Fixed) (Total:0.09 GB) (Free:0.06 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 8E62B46F) Partition: GPT. ==================== Fin de Addition.txt =======================