Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 29-11-2024
Exécuté par 33682 (30-11-2024 16:06:01)
Exécuté depuis C:\Users\33682\Desktop
Microsoft Windows 11 Famille Version 23H2 22631.4460 (X64) (2023-02-22 18:55:58)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

33682 (S-1-5-21-2525859470-462355321-1699556519-1001 - Administrator - Enabled) => C:\Users\33682
Administrateur (S-1-5-21-2525859470-462355321-1699556519-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2525859470-462355321-1699556519-503 - Limited - Disabled)
Gaétan (S-1-5-21-2525859470-462355321-1699556519-1002 - Limited - Enabled) => C:\Users\Gaétan
Invité (S-1-5-21-2525859470-462355321-1699556519-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2525859470-462355321-1699556519-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee (Enabled - Up to date) {0BE13B34-492A-21C0-AE43-C1742279CCB6}
FW: McAfee (Enabled) {33DABA11-0345-2098-851C-6841DCAA8BCD}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1697.6 - AVAST Software) Hidden
BlueStacks (HKLM\...\BlueStacks_nxt) (Version: 5.21.615.1011 - now.gg, Inc.)
BlueStacks Services (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\BlueStacksServices) (Version: 3.0.9 - now.gg, Inc.)
Call of Duty WWII 3.75.224 (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\c6c6799b-5ccc-5e60-b0da-44c8b0387ba7) (Version: 3.75.224 - Spero Cantab UK Limited)
Canva (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\3d0ba22d-e02b-5c6d-93a1-4e2a9af9c1f2) (Version: 1.99.0 - Canva Pty Ltd)
CRYENGINE Launcher 2.2.4 (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\14071b83-34eb-52ba-8ef3-a87335d16f39) (Version: 2.2.4 - Crytek GmbH)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 131.0.6778.86 - Google LLC)
Google Chrome (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\Google Chrome) (Version: 131.0.6778.86 - Google LLC)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.19.0 - HP)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
HP One Agent (HKLM\...\{31B16C04-055C-4681-8ED6-B7EDCDF600CE}) (Version: 1.1.683.2629 - HP Inc.)
HP One Agent (HKLM\...\{4C65BC47-61F3-4CED-805D-F7D117452DE1}) (Version: 1.1.683.2629 - HP Inc.) Hidden
McAfee (HKLM\...\McAfee.wps) (Version: 1.22.203.1 - McAfee, LLC)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 131.0.2903.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 131.0.2903.70 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2021 - fr-fr (HKLM\...\ProPlus2021Retail - fr-fr) (Version: 16.0.18129.20158 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 24.221.1103.0003 - Microsoft Corporation)
Microsoft OneNote - en-gb (HKLM\...\OneNoteFreeRetail - en-gb) (Version: 16.0.18129.20158 - Microsoft Corporation)
Microsoft OneNote - fr-fr (HKLM\...\OneNoteFreeRetail - fr-fr) (Version: 16.0.18129.20158 - Microsoft Corporation)
Microsoft Teams Meeting Add-in for Microsoft Office (HKLM\...\{A7AB73A3-CB10-4AA5-9D38-6AEFFBDE4C91}) (Version: 1.24.23304 - Microsoft)
Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.34.31931 (HKLM-x32\...\{d4cecf3b-b68f-4995-8840-52ea0fab646e}) (Version: 14.34.31931.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.34.31931 (HKLM\...\{EAE242B1-0A26-485A-BFEB-0292EE9F03CB}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.34.31931 (HKLM\...\{CF4C347D-954E-4543-88D2-EC17F07F466F}) (Version: 14.34.31931 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}) (Version: 10.0.50908 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox (x64 en-US) (HKLM\...\Mozilla Firefox 133.0 (x64 en-US)) (Version: 133.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 117.0.1 - Mozilla)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18129.20158 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden
Opera GX Stable 114.0.5282.233 (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\Opera GX 114.0.5282.233) (Version: 114.0.5282.233 - Opera Software)
Opera Stable 114.0.5282.185 (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\Opera 114.0.5282.185) (Version: 114.0.5282.185 - Opera Software)
PhotoPad Éditeur Photo (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\PhotoPad) (Version: 13.66 - NCH Software)
Python 3.13.0 (64-bit) (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\{5f75c346-3aaf-4f17-8545-2a21a740bb7a}) (Version: 3.13.150.0 - Python Software Foundation)
Python 3.13.0 Core Interpreter (64-bit) (HKLM\...\{92D06D2A-683D-4E16-8ACC-E7F7FC30AB32}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 Development Libraries (64-bit) (HKLM\...\{71542EB9-2FED-406F-9CB7-027ABBD8BBDB}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 Documentation (64-bit) (HKLM\...\{D0B9B0AE-74FD-4CA6-9404-91F0433C6CB2}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 Executables (64-bit) (HKLM\...\{006F742B-DED7-478D-93DD-4B975444DABE}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 pip Bootstrap (64-bit) (HKLM\...\{1239D9CA-8A9B-4A20-8361-0C6990D08FD8}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 Standard Library (64-bit) (HKLM\...\{09D95048-E91D-4F33-9197-1182FCA17B16}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 Tcl/Tk Support (64-bit) (HKLM\...\{C8DC7BA8-9A89-42A6-9ACA-04ACA6448612}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python 3.13.0 Test Suite (64-bit) (HKLM\...\{D1F9D9AE-E7E2-48AA-BA3A-6E760D2B5F7D}) (Version: 3.13.150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{1F3BC6BD-2010-40E7-85B2-F1A5E2EB5FF2}) (Version: 3.13.150.0 - Python Software Foundation)
Scratch 3 3.29.1 (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\bad79d23-e888-5a7b-9e99-60ee89b6c8bf) (Version: 3.29.1 - Scratch Foundation)
Unity 2022.3.47f1 (HKLM\...\Unity 2022.3.47f1) (Version: 2022.3.47f1 - Unity Technologies ApS)
Unity Hub 3.9.1 (HKLM\...\Unity Technologies - Hub) (Version: 3.9.1 - Unity Technologies Inc.)
VideoPad Logiciel de Montage Vidéo (HKU\S-1-5-21-2525859470-462355321-1699556519-1002\...\VideoPad) (Version: 16.36 - NCH Software)
WebAdvisor par McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.987 - McAfee, LLC)

Packages:
=========
AppUp.IntelGraphicsExperience -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.5688.0_x64__8j3eq9eme6ctt [2024-11-30] (INTEL CORP) [Startup Task]
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2023-12-25] (HP Inc.)
HP Audio Center -> C:\Program Files\WindowsApps\AD2F1837.HPAudioCenter_1.47.308.0_x64__v10z8vjag6ke6 [2024-11-30] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_2.6.3.0_x64__v10z8vjag6ke6 [2024-11-30] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.3.7.0_x64__v10z8vjag6ke6 [2023-12-25] (HP Inc.)
HP QuickDrop -> C:\Program Files\WindowsApps\AD2F1837.HPQuickDrop_2.5.10921.0_x64__v10z8vjag6ke6 [2023-12-25] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_156.1.1125.0_x64__v10z8vjag6ke6 [2024-11-30] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.40.48.0_x64__v10z8vjag6ke6 [2024-11-30] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_2.1.4.0_x64__v10z8vjag6ke6 [2024-11-30] (HP Inc.)
McAfee -> C:\Program Files\McAfee\wps\1.22.203.1 [2024-11-19] ()
Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2410.16002.0_x64__8wekyb3d8bbwe [2024-11-30] (Microsoft Corporation) [Startup Task]
Microsoft Family -> C:\Program Files\WindowsApps\MicrosoftCorporationII.MicrosoftFamily_0.2.40.0_x64__8wekyb3d8bbwe [2023-12-25] (Microsoft Corp.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_54.20907.567.0_x64__8wekyb3d8bbwe [2024-11-30] (Microsoft Corporation)
myHP -> C:\Program Files\WindowsApps\AD2F1837.myHP_39.52446.140.0_x64__v10z8vjag6ke6 [2024-11-30] (HP Inc.) [Startup Task]
Solitaire -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.3899848563C1F_1.0.137.0_x64__kx24dqmazqk8j [2023-12-25] (Random Salad Games LLC)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [McCtxMenu] -> {4ADAAC88-E1BD-424F-816D-15E059007938} => C:\Program Files\McAfee\wps\1.22.203.1\mc-ctxmnu.dll [2024-10-01] (McAfee, LLC -> McAfee, LLC)
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\24.221.1103.0003\FileSyncShell64.dll [2024-11-26] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers6: [McCtxMenu] -> {4ADAAC88-E1BD-424F-816D-15E059007938} => C:\Program Files\McAfee\wps\1.22.203.1\mc-ctxmnu.dll [2024-10-01] (McAfee, LLC -> McAfee, LLC)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============


==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mc-fw-host => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mc-fw-host => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) =============

SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2024-11-13] (HP Inc. -> HP Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2024-11-13] (HP Inc. -> HP Inc.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-11-04] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2022-05-07 06:24 - 2022-05-07 06:22 - 000000824 _____ C:\windows\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-2525859470-462355321-1699556519-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\33682\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\9728285392895179735\133774511323146211.jpg
HKU\S-1-5-21-2525859470-462355321-1699556519-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Gaétan\AppData\Local\Packages\MicrosoftWindows.Client.CBS_cw5n1h2txyewy\LocalCache\Microsoft\IrisService\4434030597110755654\133773041650464002.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Le Pare-feu est activé.

Network Binding:
=============
Wi-Fi: Realtek RTL8821CE 802.11ac PCIe Adapter -> rtwlane.sys
Connexion réseau Bluetooth: Bluetooth Device (Personal Area Network) -> bthpan.sys

vms_vsf: Filtre d’extension de commutateur virtuel Hyper-V
vms_vsp: Protocole d’extension de commutateur virtuel Hyper-V

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{0D6D6B8A-AA46-4AEE-8667-D2D13EE79485}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{753A4818-0F34-4368-9B59-CE4433AC553E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E62BA3EB-B82A-457A-BA8E-65B8CDA78B50}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1105.3082.1600_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1CA6FD56-5458-457D-9AA7-97A139737DCB}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_24215.1105.3082.1600_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F1A30D44-9D9C-4567-A321-A3C4AA7EB854}C:\users\gaétan\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\gaétan\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{D54D62B3-3C5E-440D-9A5E-FCA53808582A}C:\users\gaétan\appdata\local\google\chrome\application\chrome.exe] => (Block) C:\users\gaétan\appdata\local\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E8C7510D-9111-40E6-A05B-96692572CD43}] => (Allow) C:\Program Files\Unity Hub\Unity Hub.exe (Unity Technologies SF -> Unity Technologies Inc.)
FirewallRules: [{2503B4F4-DDFA-404C-B718-C10D5FC54C78}] => (Allow) C:\Program Files\Unity\Hub\Editor\2022.3.47f1\Editor\Unity.exe (Unity Technologies SF -> Unity Technologies)
FirewallRules: [{F3321C02-C017-4EC6-AEDC-617AA75CF041}] => (Block) C:\Program Files\Unity\Hub\Editor\2022.3.47f1\Editor\Unity.exe (Unity Technologies SF -> Unity Technologies)
FirewallRules: [TCP Query User{98D2D330-E84B-4111-8A36-CD3BA8256CA0}C:\program files\windowsapps\gdevelopgameengine.gdevelop_5.4.212.0_x64__k1pbm4zg68kra\app\gdevelop.exe] => (Block) C:\program files\windowsapps\gdevelopgameengine.gdevelop_5.4.212.0_x64__k1pbm4zg68kra\app\gdevelop.exe (B13CB8D3-97AA-422C-A394-0EE51B9ACAD3 -> GDevelop Team)
FirewallRules: [UDP Query User{110F111B-E9EC-416B-95AF-C8102F4E1288}C:\program files\windowsapps\gdevelopgameengine.gdevelop_5.4.212.0_x64__k1pbm4zg68kra\app\gdevelop.exe] => (Block) C:\program files\windowsapps\gdevelopgameengine.gdevelop_5.4.212.0_x64__k1pbm4zg68kra\app\gdevelop.exe (B13CB8D3-97AA-422C-A394-0EE51B9ACAD3 -> GDevelop Team)
FirewallRules: [{75E13029-CAF9-4F1F-80BB-5DC74405D6E6}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D7381256-81A2-4ECD-9C80-4DF9F1E36074}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{918316A4-CE7E-4713-B5D1-56F14B5D51E7}] => (Allow) C:\Program Files\WindowsApps\MSTeams_24295.605.3225.8804_x64__8wekyb3d8bbwe\ms-teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{98C2DEA2-BE10-450D-B1D3-C8170D6B8930}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{00A8CAC1-A7EF-4DD5-8563-01EE6DAD4D28}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30D23292-8340-4956-AF62-FD2ADDBF708C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{4405E6B7-2013-473F-8FEC-FD7BFE5EFD2C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{49943C45-4A46-44B4-84BF-B4D49D7F081F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A10C6DD6-FA62-4B93-8BEF-87C17E7BA04B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7B30D544-5039-43E5-A6F3-E9DF7E891133}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{7A84139D-19D9-42FB-A1BE-0D7635F30416}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{3DC8C327-1BBB-42D9-BE05-D1780ED04361}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{889F99D6-2289-42CC-9D2E-09A14E430CC7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.251.345.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{01F3990A-3D32-470C-ABB8-BA0EEDFF6BF6}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\131.0.2903.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F7DCD6C2-DA96-45A6-AFAF-4FD94BCBF4D7}] => (Allow) C:\Program Files (x86)\BlueStacks X\BlueStacksWeb.exe (Now.gg, INC -> Bluestack Systems, Inc.)
FirewallRules: [{D557F278-5964-4932-AEF7-59388ED09E8A}] => (Allow) C:\Program Files (x86)\BlueStacks X\Cloud Game.exe => Pas de fichier
FirewallRules: [{0B0E8C1F-8F9F-4C18-A565-5A06CC3BE6E7}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe (Now.gg, INC -> BlueStack Systems)
FirewallRules: [{D761EDAD-6603-4D2F-B89A-99CA6ABCC025}] => (Allow) C:\Program Files\BlueStacks_nxt\BlueStacksAppplayerWeb.exe (Now.gg, INC -> The Qt Company Ltd.)
FirewallRules: [{7493CAD3-429A-4295-BFB5-305FA24751FB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

26-11-2024 17:43:23 Windows Update
29-11-2024 22:30:15 Windows Update

==================== Éléments en erreur du Gestionnaire de périphériques ============

==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (11/30/2024 03:10:21 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/30/2024 03:10:21 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/30/2024 03:10:21 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/30/2024 03:10:21 PM) (Source: AbtPaaS) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/30/2024 12:45:15 PM) (Source: sbprotect) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/30/2024 12:45:15 PM) (Source: sbprotect) (EventID: 0) (User: )
Description: Event-ID 0

Error: (11/29/2024 10:18:29 PM) (Source: Application Error) (EventID: 1000) (User: GAETAN)
Description: Nom de l’application défaillante backgroundTaskHost.exe, version : 10.0.22621.1, horodatage : 0x004687c2
Nom du module défaillant : ucrtbase.dll, version : 10.0.22621.3593, horodatage : 0x10c46e71
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000007f6fe
ID du processus défaillant : 0x0x3b64
Heure de début de l’application défaillante : 0x0x1db42a43b84abaa
Chemin d’accès de l’application défaillante : C:\windows\system32\backgroundTaskHost.exe
Chemin d’accès du module défaillant: C:\windows\System32\ucrtbase.dll
ID de rapport : a0e4c5a8-d205-427e-9b8c-678adb6050e0
Nom complet du package défaillant : AD2F1837.myHP_38.52440.1105.0_x64__v10z8vjag6ke6
ID de l’application relative au package défaillant : App

Error: (11/29/2024 09:57:29 PM) (Source: sbprotect) (EventID: 0) (User: )
Description: Event-ID 0


Erreurs système:
=============
Error: (11/30/2024 02:53:53 PM) (Source: DCOM) (EventID: 10010) (User: GAETAN)
Description: Le serveur {1F18FC75-A353-4121-AEDB-19DF9C98F622} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/30/2024 02:53:53 PM) (Source: DCOM) (EventID: 10010) (User: GAETAN)
Description: Le serveur {B8C1DCAE-5020-4F5D-BA2A-85292744E334} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/30/2024 01:08:25 PM) (Source: DCOM) (EventID: 10010) (User: GAETAN)
Description: Le serveur Microsoft.AAD.BrokerPlugin_1000.19580.1000.0_neutral_neutral_cw5n1h2txyewy!Windows.Security.Authentication.Web.Core.BackgroundGetTokenTask.ClassId.WebAccountProvider ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/30/2024 12:50:43 PM) (Source: DCOM) (EventID: 10010) (User: GAETAN)
Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/30/2024 12:49:19 PM) (Source: DCOM) (EventID: 10010) (User: GAETAN)
Description: Le serveur Microsoft.Windows.ShellExperienceHost_10.0.22621.4249_neutral_neutral_cw5n1h2txyewy!App ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (11/29/2024 10:36:26 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9N9PHDT62W94-AD2F1837.myHP.

Error: (11/29/2024 10:30:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9PC1H9VN18CM-Microsoft.StartExperiencesApp.

Error: (11/29/2024 09:29:30 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 01:41:16 le ‎29/‎11/‎2024 n’était pas prévu.


Windows Defender:
================
Date: 2023-09-24 15:36:08
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {F314EE6C-4BED-4DEA-B44F-9CB82ACC89F0}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]

Date: 2023-09-24 15:22:42
Description: 
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité : 
Version précédente de la veille de sécurité : 1.397.1487.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur : 
Version précédente du moteur : 1.1.23080.2005
Code d’erreur : 0x80240016
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support. 

CodeIntegrity:
===============
Date: 2024-11-30 16:02:49
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SecurityHealthService.exe) attempted to load \Device\HarddiskVolume3\Program Files\McAfee\wps\1.22.203.1\mc-sec-plugin-x64.dll that did not meet the Windows signing level requirements.


==================== Infos Mémoire =========================== 

BIOS: AMI F.30 07/04/2023
Carte mère: HP 8651
Processeur: Intel(R) Celeron(R) N4120 CPU @ 1.10GHz
Pourcentage de mémoire utilisée: 69%
Mémoire physique - RAM - totale: 8005.48 MB
Mémoire physique - RAM - disponible: 2425.63 MB
Mémoire virtuelle totale: 9413.48 MB
Mémoire virtuelle disponible: 2903.98 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:237.49 GB) (Free:129.1 GB) (Model: WD PC SN740 SDDPNQD-256G-1006) NTFS

\\?\Volume{37bef4ad-c3f7-4424-83d1-46f0f1ce7896}\ () (Fixed) (Total:0.71 GB) (Free:0.11 GB) NTFS
\\?\Volume{ffbd6e5c-a302-4553-b1eb-bed42abfeb82}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 60AA9D56)

Partition: GPT.

==================== Fin de Addition.txt =======================