Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 22-01-2022 Exécuté par Delphine (23-01-2022 21:13:50) Exécuté depuis C:\Users\Delphine\Desktop Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64) (2014-08-13 15:30:58) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2439542515-2363761972-3610949419-500 - Administrator - Disabled) Delphine (S-1-5-21-2439542515-2363761972-3610949419-1000 - Administrator - Enabled) => C:\Users\Delphine Invité (S-1-5-21-2439542515-2363761972-3610949419-501 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Avast Antivirus (Disabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avast Antivirus (Disabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12} FW: Avast Antivirus (Enabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) AMD Catalyst Install Manager (HKLM\...\{76E8353E-9CE9-ED86-8631-7FBE17A17C31}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.) Apple Application Support (32 bits) (HKLM-x32\...\{11C4575B-4B32-44D2-A097-D59A00BA60DE}) (Version: 8.5 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{D39B163A-9E12-442C-95E9-33FA5746AB21}) (Version: 8.5 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{74CC99EB-7DC0-4CB0-847A-F8C2FE39690C}) (Version: 14.5.0.7 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Audacity 3.0.2 (HKLM-x32\...\Audacity_is1) (Version: 3.0.2 - Audacity Team) Avast Cleanup Premium (HKLM\...\Avast Cleanup) (Version: 21.4.11361.5916 - Avast Software) Avast Premium Sécurité (HKLM\...\Avast Antivirus) (Version: 21.11.2500 - Avast Software) Banque Populaire (HKLM-x32\...\{C418F413-6D57-4AC6-862B-66B1CDDBCF92}) (Version: 5.6.0.1 - e-Carte Bleue Banque Populaire) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 5.88 - Piriform) CrystalDiskInfo 8.11.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.11.2 - Crystal Dew World) GigaTribe 3.04.013 (HKLM-x32\...\ShalSoft.GigaTribe_is1) (Version: - GigaTribe SAS) GIMP 2.8.16 (HKLM\...\GIMP-2_is1) (Version: 2.8.16 - The GIMP Team) Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.169 - Google Inc.) Hidden HP Dropbox Plugin (HKLM-x32\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP) HP ENVY 4520 series Aide (HKLM-x32\...\{D9C0AB86-384B-49FF-A667-717724F07740}) (Version: 36.0.0 - Hewlett Packard) HP Google Drive Plugin (HKLM-x32\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden HydraVision (HKLM-x32\...\{6A888ADA-BD9F-9B95-B692-21B2E53A0F29}) (Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP) iTunes (HKLM\...\{BA11FD7E-C323-404E-B400-D47B7C8BCEEF}) (Version: 12.10.11.2 - Apple Inc.) KC Softwares IDPhotoStudio (HKLM-x32\...\KC Softwares IDPhotoStudio_is1) (Version: 2.13.4.40 - KC Softwares) LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Lexibar Spanish (HKLM-x32\...\{8041E19D-C829-4293-B2D0-4262200CF662}_is1) (Version: - lexicool.com) Logiciel de base du périphérique HP ENVY 4520 series (HKLM\...\{3FFE72AE-0C03-4126-A3C8-EBF4D409C991}) (Version: 40.11.1122.1796 - HP Inc.) Luniistore (HKLM\...\{CF7261AA-B1DE-4D00-81E3-D36C7BFB15B1}_is1) (Version: 2.0.0 - Lunii) Manager (HKLM-x32\...\{8DED36D9-54D6-4127-A112-5A1BA1CDD66B}) (Version: 5.0.26.33533 - 2017 pdfforge GmbH. All rights reserved) Hidden Maths à grands pas - PS-MS (HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\Maths à grands pas - PS-MS) (Version: - ) Microsoft .NET Framework 4.8 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.8.03761 - Microsoft Corporation) Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation) Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProPlusRetail - fr-fr) (Version: 16.0.12527.22086 - Microsoft Corporation) Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\OneDriveSetup.exe) (Version: 21.220.1024.0005 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50428.0 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation) Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation) Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 96.0.2 (x64 fr)) (Version: 96.0.2 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.1.0 - Mozilla) Mozilla Thunderbird (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 91.5.0 (x86 fr)) (Version: 91.5.0 - Mozilla) Narramus - La sieste de Moussa (HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\Narramus - La sieste de Moussa) (Version: - ) NARRAMUS - Une petite oie pas si bête (HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\NARRAMUS - Une petite oie pas si bête) (Version: - ) Office 15 Click-to-Run Extensibility Component (HKLM-x32\...\{90150000-008C-0000-0000-0000000FF1CE}) (Version: 15.0.5049.1000 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (HKLM-x32\...\{90150000-008C-040C-0000-0000000FF1CE}) (Version: 15.0.5049.1000 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12527.22086 - Microsoft Corporation) Hidden Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12527.22086 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12527.22060 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.12527.22060 - Microsoft Corporation) Hidden Package de pilotes Windows - Lunii (libusb0) libusb-win32 devices (08/02/2012 1.2.6.0) (HKLM\...\B518D2EFAF7F6DE1F1774C288497A9BF00160B74) (Version: 08/02/2012 1.2.6.0 - Lunii) PDF Architect 5 Create Module (HKLM\...\{F2458BF2-1679-4021-A4DA-01E43C2764AC}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden PDF Architect 5 Edit Module (HKLM\...\{36ED97CE-5D43-4762-B012-38F5FB436739}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden PDF Architect 5 View Module (HKLM\...\{A4FBFCF3-A3FD-4A76-A504-4945A26054A4}) (Version: 5.0.24.33400 - pdfforge GmbH) Hidden PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.309.0 - Tracker Software Products Ltd) PhotoFiltre (HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\PhotoFiltre) (Version: - ) PrintParade Studio (HKLM-x32\...\PrintParade Studio) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.72.410.2013 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7111 - Realtek Semiconductor Corp.) SketchUp 2017 (HKLM\...\{F1E181BD-01D6-4754-92CC-DB8C259B9B28}) (Version: 17.0.18899 - Trimble, Inc.) Spotify (HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\Spotify) (Version: 1.1.51.382.g8e3b11ed - Spotify AB) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.16 - VideoLAN) Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) WinRAR 6.02 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 6.02.0 - win.rar GmbH) YouTube Song Downloader 2021 (HKLM-x32\...\AbAppId-55_is1) (Version: 21.0.0 - Abelssoft) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software) ShellIconOverlayIdentifiers-x32: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH) ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => -> Pas de fichier ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers3: [Copy To ] -> {C2FBB630-2971-11D1-A18C-00C04FD75D13}. => -> Pas de fichier ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-11-01] (Advanced Micro Devices, Inc.) [Fichier non signé] ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2021-12-15] (Avast Software s.r.o. -> AVAST Software) ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => -> Pas de fichier ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2021-06-11] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Modules chargés (Avec liste blanche) ============= 2013-07-26 04:59 - 2013-07-26 04:59 - 000814592 _____ () [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Device.dll 2013-11-01 10:46 - 2013-11-01 10:46 - 000214528 _____ () [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll 2013-07-26 04:59 - 2013-07-26 04:59 - 003650560 _____ () [Fichier non signé] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Platform.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-core-file-l1-2-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-core-file-l2-1-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-core-localization-l1-2-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-core-processthreads-l1-1-1.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-core-synch-l1-2-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-core-timezone-l1-1-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-convert-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-environment-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-filesystem-l1-1-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-heap-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-locale-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-math-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-multibyte-l1-1-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-runtime-l1-1-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-stdio-l1-1-0.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-string-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-time-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\api-ms-win-crt-utility-l1-1-0.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\msvcp140.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\MSVCP140.dll 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\ucrtbase.DLL 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\ucrtbase.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\ucrtbase.DLL 2021-11-07 13:40 - 2021-11-07 13:40 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\1036\avast.local_vc142.crt\VCRUNTIME140.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\VCRUNTIME140.dll 2022-01-23 19:47 - 2022-01-23 19:47 - 000000000 ____L (Microsoft Corporation) [simlink -> C:\Program Files\AVAST Software\Avast\avast.local_vc142.crt\vcruntime140_1.dll] C:\Program Files\AVAST Software\Avast\defs\22012304\avast.local_vc142.crt\VCRUNTIME140_1.dll ==================== Alternate Data Streams (Avec liste blanche) ======== (Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.) AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxlctlfudivq`qsp`28hfm [0] AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0] ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\aswSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Version 11) (Avec liste blanche) ========== HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.ighome.com/ SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2021-07-15] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files (x86)\PDF Architect 5\creator-ie-helper.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2021-07-15] (Microsoft Corporation -> Microsoft Corporation) Toolbar: HKLM-x32 - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files (x86)\PDF Architect 5\creator-ie-plugin.dll [2017-05-08] (pdfforge GmbH -> pdfforge GmbH) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-18] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-18] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-18] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-09-18] (Microsoft Corporation -> Microsoft Corporation) Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices, Inc. -> Advanced Micro Devices) (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.) IE trusted site: HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\...\sharepoint.com -> hxxps://acaixmarseillefr-files.sharepoint.com ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2009-07-14 03:34 - 2019-01-04 09:24 - 000000828 _____ C:\Windows\system32\drivers\etc\hosts ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2439542515-2363761972-3610949419-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Delphine\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) BITS: {2AF5E1B6-9712-4179-B42F-948B0E690BDF} - (8072a6cfce09c789) -> [NotifyCmdLine: cmd.exe "cmd.exe" /c start /b regsvr32.exe /s /n /i:"" "C:\ProgramData\374311380\BITAED8.tmp"] [fichiers:http://optuninstallpro.info/uninstall/?key=/js1L5TOFgv2HM5wysVO/xylU3ZNgKh/B4V7vorOe18N1f3ogQhHqbB86X//C4N86Uqqlt5JomYt0Khky5HWyrk74XE0wLZeboPf1wkkJe2KM2TevYKPlMx4qyOjiEa%2BdFjJ6FafIQC9rGECDMFqlMCrn%2BnpAGGq/SIauTiC7s99HixCa8xHhcM3GBVSBSEgXR8ZFgyIvZC/xpg/Q8I01hZ4X2XHaW5mpQthV0tkZOWgfbof0AZSIMviyL1x8aOC06xQN0POCuHbATBckblSAAixbRT5OYrpAAz/J2v6lFBXEVq%2BhYPQoDvEJilZ1UfZVC8OAdqIPJCjeTBC4itnMUAjJTCIcTbGnE/PQlVPeNCmiwuDruspidXuaAupf/LZVkdY38AFzx2OoDu3lz8Td6EKsKahCZSXVAZZVhr%2BeXdEq7UwQTfPjjTFJ7ftCw1b/Z5nW8RCIg7%2B79ZHEAmwT%2BnDEOK4LeAFEh/zn1sX6eZ6FieZr9fEpzbjsS39sPrLwMd8JMO2ziBtKL6YK6Pz4DPjCiUGP3YOIeXLjt7Bfblv31vQvU%2BTV -> C:\ProgramData\374311380\374311380.dll] Le Pare-feu est activé. ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\startupfolder: C:^Users^Delphine^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Alertes de surveillance de l'encre - HP Officejet 6500 E710n-z.lnk => C:\Windows\pss\Alertes de surveillance de l'encre - HP Officejet 6500 E710n-z.lnk.Startup MSCONFIG\startupfolder: C:^Users^Delphine^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Envoyer à OneNote.lnk => C:\Windows\pss\Envoyer à OneNote.lnk.Startup MSCONFIG\startupfolder: C:^Users^Delphine^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^GigaTribe.lnk => C:\Windows\pss\GigaTribe.lnk.Startup MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup MSCONFIG\startupreg: HP ENVY 4520 series (NET) => "C:\Program Files\HP\HP ENVY 4520 series\Bin\ScanToPCActivationApp.exe" -deviceID "TH8725H04H0660:NW" -scfn "HP ENVY 4520 series (NET)" -AutoStart 1 MSCONFIG\startupreg: HydraVisionDesktopManager => "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: Lync => "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe" /fromrunkey MSCONFIG\startupreg: NUSB3MON => "C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe" MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s MSCONFIG\startupreg: Spotify => "C:\Users\Delphine\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized MSCONFIG\startupreg: Spotify Web Helper => C:\Users\Delphine\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart MSCONFIG\startupreg: Uninstall C: => ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [TCP Query User{68D03BE4-7ED9-450E-8F3A-FE08BAA3540E}C:\program files (x86)\gigatribe\gigatribe.exe] => (Allow) C:\program files (x86)\gigatribe\gigatribe.exe (Gigatribe -> Gigatribe) FirewallRules: [UDP Query User{34CD89A5-412E-4F14-A718-83715C6FB51E}C:\program files (x86)\gigatribe\gigatribe.exe] => (Allow) C:\program files (x86)\gigatribe\gigatribe.exe (Gigatribe -> Gigatribe) FirewallRules: [{44FE0D74-6DCD-4C81-819D-135F652099E2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{98B93E32-6817-4E9C-A418-3D4DA5AAA3A1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [TCP Query User{18BDF5DF-FBDF-4FD4-8332-A7CC0AB19A70}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [UDP Query User{D5CA4466-7B1F-43AF-869F-67E108ADEC35}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{196DFA2D-C5E4-4A94-B757-C94A3D7BEBF4}] => (Allow) C:\Users\Delphine\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{AE2F32FF-8F9B-44AA-8257-22756A99DE89}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{A03875CA-67E8-4F67-B49F-5B9604AD391A}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{F24FD612-F327-4ED7-B675-067B628CB625}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2DE22C18-CCC1-463F-A30F-5955981F2B30}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2C73EC35-6501-47FE-A7DA-2A7A6AF555CB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2DC896D7-DA1A-46AB-8F55-386456606092}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [TCP Query User{3962C32E-2DF9-46A4-B192-2DEAC5A38EA2}C:\users\delphine\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\delphine\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{966D3FC7-1E8C-46D3-BDAF-00441A1985C8}C:\users\delphine\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\delphine\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [TCP Query User{3FEAB648-EBEB-4AF5-A7F8-361292188B0E}C:\program files (x86)\gigatribe\gigatribe.exe] => (Allow) C:\program files (x86)\gigatribe\gigatribe.exe (Gigatribe -> Gigatribe) FirewallRules: [UDP Query User{828A5F63-536E-4F40-BA36-D3029C42CC47}C:\program files (x86)\gigatribe\gigatribe.exe] => (Allow) C:\program files (x86)\gigatribe\gigatribe.exe (Gigatribe -> Gigatribe) FirewallRules: [TCP Query User{2FB3D3BE-04C4-4240-A777-79FD05A3166B}C:\users\delphine\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\delphine\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [UDP Query User{1147296A-5DD2-40C6-9F43-D2129908E554}C:\users\delphine\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\delphine\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd) FirewallRules: [{7057F7E4-940B-487F-960B-2501B1B9DAAD}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{D11B8E2D-BF65-4C78-9F62-9573DC623BB4}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{5C1EBC0E-354B-4E8F-B3DB-61D4085D40EB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{E6B8B04E-4371-491E-9100-0F73B9B5BCCC}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{F5965446-57CE-45DE-9152-9A9C78C78FD0}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{9F1F8344-DD8F-4F70-BBCC-C8F08F43CE67}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{71676B02-6C7C-44B0-935F-5B1B01E03B1B}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{082032FA-5361-403B-A695-6D279A1DF52C}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{ACB326EE-215B-48EC-A3AD-08BF77C7AC02}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.) FirewallRules: [{87C8A8B5-1FF2-4E87-A3D9-0AE5ED28D246}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{D0DC41C1-CE30-44F2-9DE8-A325D84ABD68}] => (Allow) LPort=5357 FirewallRules: [{D18C3F2B-961F-4F87-B35C-B6D0ABCC8108}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{7E5B8732-7A15-48FD-97E0-59529012DDEE}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{F6132F4C-5607-4E31-BF87-F8CC7CF112F1}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{171C113D-2F4B-4184-AB88-B63025363413}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{BAEFCFFF-EE8B-4336-8D12-EED4F15C1ABB}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{E2E4145F-37FB-4174-9732-06856C2C7FA2}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{71F7F64B-8F9B-438C-BF66-9FAF29CD0ED7}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{CCDCD40A-B4B8-4EE4-8956-802EAE7095FF}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{4FB9BA35-23B0-4503-8570-F69CFD58E5DC}] => (Block) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{D9545259-93A0-4E28-8A3B-572D4A37AB8C}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software) FirewallRules: [{78775297-6B5D-4DBE-B656-DDC4074CE585}] => (Allow) C:\Program Files\Avast Software\Cleanup\TuneupUI.exe (Avast Software s.r.o. -> AVAST Software) ==================== Points de restauration ========================= 20-01-2022 00:30:13 Point de contrôle planifié ==================== Éléments en erreur du Gestionnaire de périphériques ============ ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (01/23/2022 09:10:50 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme FRST64.exe version 22.1.2022.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : b2c Heure de début : 01d810952e51d503 Heure de fin : 20 Chemin d’accès de l’application : C:\Users\Delphine\Desktop\FRST64.exe ID de rapport : 88a160db-7c88-11ec-a5fe-448a5b66fe7e Error: (01/23/2022 08:42:02 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme thunderbird.exe version 91.5.0.8041 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1f6c Heure de début : 01d81071e85aed62 Heure de fin : 1760 Chemin d’accès de l’application : C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe ID de rapport : 3024637d-7c84-11ec-a5fe-448a5b66fe7e Error: (01/23/2022 08:40:29 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Explorer.EXE, version : 6.1.7601.23537, horodatage : 0x57c44efe Nom du module défaillant : Explorer.EXE, version : 6.1.7601.23537, horodatage : 0x57c44efe Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000000056029 ID du processus défaillant : 0x504 Heure de début de l’application défaillante : 0x01d80e3b13a5d7b8 Chemin d’accès de l’application défaillante : C:\Windows\Explorer.EXE Chemin d’accès du module défaillant: C:\Windows\Explorer.EXE ID de rapport : 511af7e9-7c84-11ec-a5fe-448a5b66fe7e Error: (01/23/2022 07:00:06 PM) (Source: Windows Backup) (EventID: 4103) (User: ) Description: La sauvegarde a échoué en raison d’une erreur d’écriture dans l’emplacement de sauvegarde, E:\. Erreur : Emplacement de sauvegarde introuvable ou incorrect. Vérifiez vos paramètres de sauvegarde, ainsi que l’emplacement de sauvegarde. (0x81000006). Error: (01/22/2022 01:13:15 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante autoreactivator.exe, version : 21.4.11361.0, horodatage : 0x61e5927a Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000000000015f9aa ID du processus défaillant : 0x88c Heure de début de l’application défaillante : 0x01d80f896e9d15a9 Chemin d’accès de l’application défaillante : C:\Program Files\Avast Software\Cleanup\autoreactivator.exe Chemin d’accès du module défaillant: unknown ID de rapport : ac7fb51d-7b7c-11ec-a5fe-448a5b66fe7e Error: (01/21/2022 10:07:06 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 10030 Error: (01/21/2022 10:07:06 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 10030 Error: (01/21/2022 10:07:06 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Erreurs système: ============= Error: (01/23/2022 09:18:33 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: Le serveur {BB6DF56B-CACE-11DC-9992-0019B93A3A84} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (01/23/2022 11:37:06 AM) (Source: NetBT) (EventID: 4321) (User: ) Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.16. L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par cet ordinateur. Error: (01/23/2022 11:35:29 AM) (Source: NetBT) (EventID: 4321) (User: ) Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.16. L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par cet ordinateur. Error: (01/23/2022 11:34:10 AM) (Source: NetBT) (EventID: 4321) (User: ) Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.16. L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par cet ordinateur. Error: (01/22/2022 07:02:06 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.16. L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par cet ordinateur. Error: (01/22/2022 12:53:28 PM) (Source: NetBT) (EventID: 4321) (User: ) Description: Le nom "WORKGROUP :1d" n’a pas pu être enregistré sur l’interface avec l’adresse IP 192.168.1.16. L’ordinateur avec l’adresse IP 192.168.1.1 n’a pas permis que le nom soit réclamé par cet ordinateur. Error: (01/20/2022 09:20:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service. Error: (01/20/2022 09:20:43 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service Windows Search s’est arrêté avec l’erreur service particulière %%-1073473535. Windows Defender: ================ Date: 2016-01-14 03:23:39.709 Description: L’analyse Windows Defender a été arrêtée avant la fin. ID de l’analyse : {025E00FC-04B2-4D56-9FAD-EC8C58DA6380} Type de l’analyse : Logiciel anti-espion Paramètres de l’analyse : Analyse rapide Utilisateur : AUTORITE NT\SERVICE RÉSEAU  ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. V30.6 12/15/2014 Carte mère: MSI A78M-E35 (MS-7721) Processeur: AMD A10-5800K APU with Radeon(tm) HD Graphics Pourcentage de mémoire utilisée: 89% Mémoire physique - RAM - totale: 3269.4 MB Mémoire physique - RAM - disponible: 340.77 MB Mémoire virtuelle totale: 8011.5 MB Mémoire virtuelle disponible: 2716.27 MB ==================== Lecteurs ================================ Drive c: () (Fixed) (Total:244.04 GB) (Free:77.13 GB) NTFS Drive i: (DATA PERSO ) (Fixed) (Total:221.62 GB) (Free:152.2 GB) NTFS \\?\Volume{07a2c0ee-232e-11e4-8fb4-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: C6FB7798) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=244 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=221.6 GB) - (Type=07 NTFS) ==================== Fin de Addition.txt =======================