Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 07-11-2024 01 Exécuté par franc (08-11-2024 09:55:53) Exécuté depuis C:\Users\franc\Desktop Microsoft Windows 11 Professionnel Version 24H2 26120.2213 (X64) (2024-11-04 12:34:11) Mode d'amorçage: Normal ========================================================== ==================== Comptes: ============================= (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) Administrateur (S-1-5-21-2962105019-2811085449-2765148956-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-2962105019-2811085449-2765148956-503 - Limited - Disabled) franc (S-1-5-21-2962105019-2811085449-2765148956-1001 - Administrator - Enabled) => C:\Users\franc Invité (S-1-5-21-2962105019-2811085449-2765148956-501 - Limited - Disabled) WDAGUtilityAccount (S-1-5-21-2962105019-2811085449-2765148956-504 - Limited - Disabled) ==================== Centre de sécurité ======================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) AV: Norton 360 (Enabled - Up to date) {343E1860-FD6F-AB8D-96E4-A5006AA98D2C} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: Norton 360 (Enabled - Up to date) {9E3FD331-C4C2-7AC4-0537-131EEF1B1F8A} FW: Norton 360 (Enabled) {A6045214-8EAD-7B9C-2E68-BA2B11C858F1} FW: Norton 360 (Enabled) {0C059945-B700-AAD5-BDBB-0C35947ACA57} ==================== Programmes installés ====================== (Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.) 4K Video Downloader (HKLM\...\{75B43913-C09F-4E1D-8B48-0AE3F4115031}) (Version: 4.19.4.4720 - Open Media LLC) Hidden 4K Video Downloader (HKLM-x32\...\{1745d00a-e7cd-4baf-84d1-c7447e73b683}) (Version: 4.19.4.4720 - Open Media LLC) 7-Zip 24.08 (x64 edition) (HKLM\...\{23170F69-40C1-2702-2408-000001000000}) (Version: 24.08.00.0 - Igor Pavlov) AdGuardVPN (HKLM\...\{78B558E9-E32A-4113-854C-F035C28D83BF}) (Version: 2.4.1475.0 - Adguard Software Limited) Hidden AdGuardVPN (HKLM-x32\...\{16beafab-67a3-42eb-a6f7-fc37312795ba}) (Version: 2.4.1475.0 - Adguard Software Limited) Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1036-1033-7760-BC15014EA700}) (Version: 24.004.20243 - Adobe) Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601078}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden Agenda Business (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\com.appgenix.bizcal) (Version: 2.48.5 Amazon - appgenix.com) Alt-Tab Terminator (HKLM-x32\...\Alt-Tab Terminator) (Version: 5.2 - NTWind Software) Amazon Appstore (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\com.amazon.venezia) (Version: release-60.22.1.0.210093.0_646810 - amazon.com) Apogee USB Audio v4.32.0 (HKLM-x32\...\Software_Apogee_ApogeeMaestro_Setup) (Version: 4.32.0 - Apogee) Apple Application Support (32 bits) (HKLM-x32\...\{3D1290E6-1F77-46D5-A715-A56679C8D4E3}) (Version: 6.0.2 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{D0E45DEC-F4B9-4370-A9DF-66837789C2EF}) (Version: 6.0.2 - Apple Inc.) Apple Software Update (HKLM-x32\...\{B292D163-23D2-4523-A699-1ABEC1875609}) (Version: 2.7.0.3 - Apple Inc.) Assistant d’installation de Windows 11 (HKLM-x32\...\{115DF11E-4B4C-4EA9-9A79-00DB0C7EF02D}) (Version: 1.4.19041.2063 - Microsoft Corporation) Assistant Support et récupération de Microsoft (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\0527a644a4ddd31d) (Version: 17.0.6700.9 - Microsoft Corporation) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.19 - ASUS) Audacity 3.7.0 (HKLM-x32\...\Audacity_is1) (Version: 3.7.0 - Audacity Team) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) BRAVO-HD (HKLM-x32\...\{A8A2DEFB-015F-4846-ADBB-C93B2DC63E80}) (Version: 3.10.0 - SaviAudio) By Click Downloader (HKLM-x32\...\{38B991FE-527E-48C6-95A8-0C8609554902}) (Version: 2.3.29 - ByClick) Hidden By Click Downloader (HKLM-x32\...\By Click Downloader 2.3.29) (Version: 2.3.29 - ByClick) CCleaner (HKLM\...\CCleaner) (Version: 6.27 - Piriform) Chord 44.1Khz 768Khz version 1.0.62 (HKLM-x32\...\Chord 44.1Khz 768Khz_is1) (Version: 1.0.62 - ) Complete Internet Repair 9.1.3.6335 (HKLM\...\Complete Internet Repair_is1) (Version: 9.1.3.6335 - Rizonesoft) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.95.72 - Conexant) Contrôle d’intégrité du PC Windows (HKLM\...\{DB3AADA3-0996-4427-87CC-8BA140012410}) (Version: 3.7.2204.15001 - Microsoft Corporation) Contrôle d’intégrité du PC Windows (HKLM\...\{DF8C3BDB-5439-431D-89FA-A45643F262C6}) (Version: 3.1.2109.29003 - Microsoft Corporation) dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 2024.02.01 - Illustrate) DeepL (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\DeepL) (Version: 2.9.12645 - DeepL GmbH) devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 5.2.0.185 - devolo AG) Downloader Qobuz (HKLM-x32\...\Downloader Qobuz) (Version: - ) FiiO Portable High-Res Music Player series v4.47.0 (HKLM-x32\...\Software_FiiO_fiio_usbaudio_Setup) (Version: 4.47.0 - FiiO) GO Contact Sync Mod (HKLM-x32\...\{C3FCBE40-773A-4A92-A997-EA41CD5AEE4C}) (Version: 4.1.33 - WebGear Ltd, New Zealand + Create Software + Stru.be + saller.NET + Big-R + obelix30) Google Chrome (HKLM\...\{EE6F7855-810E-3D2E-925B-9F8B36410A53}) (Version: 130.0.6723.117 - Google LLC) HIGHRESAUDIO Manager 2.0 (HKLM-x32\...\3085-4337-9422-7180) (Version: 2.0 - HIGHRESAUDIO UG) IDAGIO 1.10.0 (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\b5e67b57-a713-5d4e-b493-daa4ae569799) (Version: 1.10.0 - IDAGIO) iFi USB Audio Device Driver v5.12.0 (HKLM-x32\...\Software_iFiAMR_iFiAMR_UsbAudio_Driver_Setup) (Version: 5.12.0 - iFi) Logiciel de base du périphérique HP ENVY 4520 series (HKLM\...\{3FFE72AE-0C03-4126-A3C8-EBF4D409C991}) (Version: 40.11.1122.1796 - HP Inc.) Logiciel de base du périphérique HP ENVY 5640 series (HKLM\...\{993C7972-B3D4-4F15-B5E9-E6F146F983FA}) (Version: 40.13.1176.1978 - HP Inc.) Logitech SetPoint 6.69 (HKLM\...\sp6) (Version: 6.69.126 - Logitech) Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.10.13 - Magical Jelly Bean) Microsoft .NET Host - 6.0.35 (x64) (HKLM\...\{C59601A1-771B-426B-A9F7-6CACCAC4DB4E}) (Version: 48.140.21458 - Microsoft Corporation) Hidden Microsoft .NET Host FX Resolver - 6.0.35 (x64) (HKLM\...\{E91F8AC1-4917-455E-AACA-B40B193C7A62}) (Version: 48.140.21458 - Microsoft Corporation) Hidden Microsoft .NET Runtime - 6.0.35 (x64) (HKLM\...\{C79F6EEC-3A2B-487D-A3B6-EDF4057B4E4B}) (Version: 48.140.21458 - Microsoft Corporation) Hidden Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.18129.20108 - Microsoft Corporation) Microsoft Edge (HKLM-x32\...\{39758366-A1C5-349D-841A-3C88C32A6A43}) (Version: 131.0.2903.27 - Microsoft Corporation) Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 130.0.2849.68 - Microsoft Corporation) Microsoft OneDrive (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\OneDriveSetup.exe) (Version: 24.206.1013.0004 - Microsoft Corporation) Microsoft Teams (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\Teams) (Version: 1.6.00.22378 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{C6FD611E-7EFE-488C-A0E0-974C09EF6473}) (Version: 5.72.0.0 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Additional Runtime - 14.29.30153 (HKLM-x32\...\{F263DEED-F2D3-4AB2-9D1C-C47ED5AA8BFC}) (Version: 14.29.30153 - Microsoft Corporation) Hidden Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.29.30153 (HKLM-x32\...\{F3E4AF00-C81D-4253-B947-67DD661932EC}) (Version: 14.29.30153 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Additional Runtime - 14.40.33810 (HKLM\...\{59CED48F-EBFE-480C-8A38-FC079C2BEC0F}) (Version: 14.40.33810 - Microsoft Corporation) Hidden Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.40.33810 (HKLM\...\{B8B3BB4A-A10D-4F51-91B7-A64FFAC31EA7}) (Version: 14.40.33810 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.35 (x64) (HKLM\...\{8AA69679-CCD6-42D9-BCDA-99BE386D57B7}) (Version: 48.140.21525 - Microsoft Corporation) Hidden Microsoft Windows Desktop Runtime - 6.0.35 (x64) (HKLM-x32\...\{ed3bbfea-cc20-425e-b845-bc087d129675}) (Version: 6.0.35.34113 - Microsoft Corporation) Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 132.0.1 (x64 fr)) (Version: 132.0.1 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 132.0.1 - Mozilla) Norton 360 (HKLM\...\Norton 360) (Version: 24.10.9535.1052 - Gen Digital Inc.) Norton AntiTrack (HKLM-x32\...\NAT) (Version: 1.8.0.1309 - NortonLifeLock Inc) Norton Utilities (HKLM\...\{36896A40-D958-486B-8A43-31A41E129FE2}) (Version: 21.4.7.637 - NortonLifeLock Inc) Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.18025.20096 - Microsoft Corporation) Hidden Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.18129.20100 - Microsoft Corporation) Hidden Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. ) PowerShell 7-x64 (HKLM\...\{C1593F76-F694-448E-AD35-82DDD6203975}) (Version: 7.4.5.0 - Microsoft Corporation) Hidden PowerToys (Preview) (HKLM\...\{6E97D19B-84B5-47DF-A03A-0EE9637A8498}) (Version: 0.60.1 - Microsoft Corporation) Hidden PowerToys (Preview) x64 (HKLM-x32\...\{2b34ef9c-2147-46a9-8bf1-1a0edd1c5a51}) (Version: 0.60.1 - Microsoft Corporation) Pulse SMS 4.5.3 (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\b48fe4d9-ee4c-5cce-b155-58a841ce5555) (Version: 4.5.3 - Maple Media, LLC.) Qobuz (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\Qobuz) (Version: 7.1.4-b008 - Qobuz) ReiBoot for Android (HKLM-x32\...\{ReibootforAndroid}_is1) (Version: 2.1.21.7 - Tenorshare, Inc.) Revo Uninstaller 2.2.0 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.2.0 - VS Revo Group, Ltd.) Roon (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\Roon) (Version: 2.0 (build 1462) production - Roon Labs LLC) Signalyst HQPlayer 4 Desktop (HKLM-x32\...\HQPlayer 4 Desktop) (Version: - Signalyst) Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform) SSC Service Utility v4.30 (HKLM-x32\...\SSC Service Utility_is1) (Version: - SSC Localization Group) Stellar Repair for Outlook (HKLM\...\Stellar Repair for Outlook_is1) (Version: 12.0.0.0 - Stellar Information Technology Pvt. Ltd.) VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN) VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.21 - VideoLAN) WebAdvisor par McAfee (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.975 - McAfee, LLC) WhatsApp (Outdated) (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\WhatsApp) (Version: 2.2314.11 - WhatsApp) Wondershare NativePush(Build 1.0.0.7) (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\Wondershare NativePush_is1) (Version: - ) Wondershare Recoverit(Build 12.0.6.2) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 12.0.6.2 - Wondershare Software Co.,Ltd.) Zoom Workplace (64-bit) (HKLM\...\{7575C1F2-56B3-48D5-AC61-D3606C5E5653}) (Version: 6.2.46690 - Zoom) Chrome apps: ============ Google Agenda (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\3a3315f9ff8aaa25a3a8849b3d7637d2) (Version: 1.0 - Google\Chrome) Google Drive (HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\fbec1e6bb0b6270d587e87003d08760d) (Version: 1.0 - Google\Chrome) Packages: ========= @{MicrosoftWindows.LKG.AccountsService_1000.22621.4247.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.AccountsService/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.AccountsService_1000.26100.2200.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.AccountsService/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.DesktopSpotlight_1000.22621.4247.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.DesktopSpotlight/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.DesktopSpotlight_1000.26100.2200.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.DesktopSpotlight/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.IrisService_1000.22621.4247.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.IrisService/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.IrisService_1000.26100.2200.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.IrisService/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.RulesEngine_1000.26100.2200.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.RulesEngine/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.RulesEngine_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.SpeechRuntime_1000.26100.2200.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.SpeechRuntime/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.SpeechRuntime_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.TwinSxS_1000.22621.4247.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.TwinSxS/resources/ProductPkgDisplayName} -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) @{MicrosoftWindows.LKG.TwinSxS_1000.26100.2200.0_x64__cw5n1h2txyewy?ms-resource://MicrosoftWindows.LKG.TwinSxS/resources/ProductPkgDisplayName} -> C:\Windows\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) 9 zip -> C:\Program Files\WindowsApps\184MagikHub.9zip_3.3.75.0_x64__hvr7qkvwfhvx6 [2024-10-31] (Magik Hub) [MS Ad] Adobe Acrobat Reader -> C:\Program Files\Adobe\Acrobat DC [2024-06-17] () B.tv -> C:\Program Files\WindowsApps\BouyguesTelecom.B.tv_4.104.0.0_x64__zffmaw26y6va6 [2024-10-31] (Bouygues Telecom) Corel PaintShop Pro -> C:\Program Files\WindowsApps\CorelCorporation.PaintShopPro_25.2.60.0_x64__wbjqpk9xt50t4 [2024-09-17] (Corel Corporation) Flower (dark) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Flowerdark_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corp.) Flower (light) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Flowerlight_2.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corp.) GPX viewer and recorder -> C:\Program Files\WindowsApps\45442stefano64.GPXviewerandrecorder_2.0.0.0_x64__bszswgksnzmf2 [2024-09-17] (stefano64) HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_156.1.1125.0_x64__v10z8vjag6ke6 [2024-10-31] (HP Inc.) Islands in the Sun -> C:\Program Files\WindowsApps\Microsoft.IslandsintheSun_1.0.0.0_neutral__8wekyb3d8bbwe [2023-03-24] (Microsoft Corporation) iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12134.4.3008.0_x64__nzyj5cx40ttqa [2024-11-04] (Apple Inc.) [Startup Task] Japanese Landscapes -> C:\Program Files\WindowsApps\Microsoft.JapaneseLandscapes_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation) LINE -> C:\Program Files\WindowsApps\NAVER.LINEwin8_7.15.0.0_x86__8ptj331gd3tyt [2023-02-11] (LINE Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-12-24] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\microsoft.advertising.xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-12-24] (Microsoft Corporation) [MS Ad] Microsoft Defender -> C:\Program Files\WindowsApps\Microsoft.6365217CE6EB4_102.2410.16002.0_x64__8wekyb3d8bbwe [2024-11-04] (Microsoft Corporation) [Startup Task] Microsoft Teams -> C:\Program Files\WindowsApps\MSTeams_24137.2203.2894.4529_x64__8wekyb3d8bbwe [2024-06-22] (Microsoft) [Startup Task] Microsoft.ApplicationCompatibilityEnhancements -> C:\Program Files\WindowsApps\Microsoft.ApplicationCompatibilityEnhancements_1.2410.5.0_x64__8wekyb3d8bbwe [2024-11-04] (Microsoft Corporation) Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.3.4.0_x64__8wekyb3d8bbwe [2024-11-07] (Microsoft Corporation) Microsoft.AVCEncoderVideoExtension -> C:\Program Files\WindowsApps\Microsoft.AVCEncoderVideoExtension_1.1.3.0_x64__8wekyb3d8bbwe [2024-11-04] (Microsoft Corporation) Microsoft.BingSearch -> C:\Program Files\WindowsApps\Microsoft.BingSearch_1.1.0.0_x64__8wekyb3d8bbwe [2024-10-31] (Microsoft Corporation) Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2024-11-04] (Microsoft Corporation) Microsoft.Photos.MediaEngineDLC -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2023-01-23] (Microsoft Corporation) Microsoft.StartExperiencesApp -> C:\Program Files\WindowsApps\Microsoft.StartExperiencesApp_1.1.195.0_x64__8wekyb3d8bbwe [2024-11-04] (Microsoft Corporation) [Startup Task] Microsoft.Windows.AugLoop.CBS -> C:\Windows\SystemApps\Microsoft.Windows.AugLoop.CBS_8wekyb3d8bbwe [2024-11-04] (Microsoft Corporation) Microsoft.Windows.Photos.DLC.Main -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2023-01-23] (Microsoft Corporation) MicrosoftWindows.CrossDevice -> C:\Program Files\WindowsApps\MicrosoftWindows.CrossDevice_1.24102.44.0_x64__cw5n1h2txyewy [2024-11-07] (Microsoft Windows) [Startup Task] One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2024.717.1.0_x64__8kea50m9krsh2 [2024-09-17] (Code Spark) Pack d’expérience de fonctionnalités Windows -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.AccountsService_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.DesktopSpotlight_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.IrisService_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.RulesEngine_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.SpeechRuntime_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\WINDOWS\SystemApps\LKG\MicrosoftWindows.LKG.TwinSxS_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\Windows\SystemApps\MicrosoftWindows.Client.OOBE_cw5n1h2txyewy [2024-11-04] (Microsoft Windows) Pack d’expérience de fonctionnalités Windows -> C:\Windows\SystemApps\MicrosoftWindows.Client.Photon_cw5n1h2txyewy [2024-11-05] (Microsoft Windows) PDF X -> C:\Program Files\WindowsApps\6760NGPDFLab.PDFX_1.4.7.0_x64__sbe4t8mqwq93a [2024-11-04] (NG PDF Lab) [Startup Task] Planets (dark) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Planetsdark_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corp.) Planets (light) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Planetslight_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corp.) PowerShell -> C:\Program Files\WindowsApps\Microsoft.PowerShell_7.4.6.0_x64__8wekyb3d8bbwe [2024-10-31] (Microsoft Corporation) Prime Video for Windows -> C:\Program Files\WindowsApps\AmazonVideo.PrimeVideo_1.0.167.0_x64__pwbj9vvecjh7j [2024-11-04] (Amazon Development Centre (London) Ltd) Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-08-01] (Adobe Systems Incorporated) Ski Paradise -> C:\Program Files\WindowsApps\Microsoft.SkiParadise_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corporation) Sous-système Windows pour Android™ -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WindowsSubsystemForAndroid_2407.40000.0.0_x64__8wekyb3d8bbwe [2024-07-25] (Microsoft Corp.) [Startup Task] Sunset (dark) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Sunsetdark_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corp.) Sunset (light) -> C:\Program Files\WindowsApps\MicrosoftCorporationII.Sunsetlight_1.0.0.0_neutral__8wekyb3d8bbwe [2023-01-25] (Microsoft Corp.) Vector Art PREMIUM -> C:\Program Files\WindowsApps\Microsoft.VectorArtPREMIUM_1.0.0.0_neutral__8wekyb3d8bbwe [2023-03-24] (Microsoft Corporation) WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2443.7.0_x64__cv1g1gvanyjgm [2024-10-31] (WhatsApp Inc.) [Startup Task] Widgets Platform Runtime -> C:\Program Files\WindowsApps\Microsoft.WidgetsPlatformRuntime_1.6.1.0_x64__8wekyb3d8bbwe [2024-10-31] (Microsoft Corporation) WinAppRuntime.Main.1.5 -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Main.1.5_5001.275.500.0_x64__8wekyb3d8bbwe [2024-10-31] (Microsoft Corp.) WinAppRuntime.Singleton -> C:\Program Files\WindowsApps\MicrosoftCorporationII.WinAppRuntime.Singleton_6000.242.101.0_x64__8wekyb3d8bbwe [2024-09-09] (Microsoft Corp.) 截图软件 -> C:\Program Files\WindowsApps\WuhanNetPowerTechnologyCo.112366801E823_5.6.0.0_x64__63m8b6nby1dvp [2024-10-31] (Wuhan Net Power Technology Co., Ltd) ==================== Personnalisé CLSID (Avec liste blanche): ============== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) CustomCLSID: HKU\S-1-5-21-2962105019-2811085449-2765148956-1001_Classes\CLSID\{14100442-9664-1407-2647-000000000000}\localserver32 -> C:\Users\franc\AppData\Local\Wondershare\Wondershare NativePush\WsToastNotification.exe (Wondershare Technology Group Co.,Ltd -> Wondershare) CustomCLSID: HKU\S-1-5-21-2962105019-2811085449-2765148956-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\franc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.23199.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2962105019-2811085449-2765148956-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe) CustomCLSID: HKU\S-1-5-21-2962105019-2811085449-2765148956-1001_Classes\CLSID\{45156B15-ED18-4034-BB99-211BBEF60CBA} -> [Note20 Ultra de François] => C:\Users\franc\CrossDevice\Note20 Ultra de François [2024-09-25 20:36] CustomCLSID: HKU\S-1-5-21-2962105019-2811085449-2765148956-1001_Classes\CLSID\{d1b22d3d-8585-53a6-acb3-0e803c7e8d2a}\localserver32 -> C:\Users\franc\AppData\Local\Microsoft\Teams\current\Teams.exe (Microsoft Corporation -> Microsoft Corporation) ShellIconOverlayIdentifiers: [ BUOverlayExcluded] -> {42DE06EE-09E4-4808-A8AA-F63B1D3F6CE5} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ShellIconOverlayIdentifiers: [ BUOverlayPending] -> {5A4597A9-CC87-4ED2-A7E5-3BC62CF54901} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ShellIconOverlayIdentifiers: [ BUOverlayProtected] -> {9C11454A-4B5C-4586-B0BB-E51BB6033668} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ShellIconOverlayIdentifiers: [00nll] -> {472083B2-C522-11CF-8763-00608CC02F24} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ShellIconOverlayIdentifiers-x32: [00nll] -> {472083B2-C522-11CF-8763-00608CC02F24} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ContextMenuHandlers1: [1XdShellExt] -> {B4E15CD0-F916-4C8E-830A-15E3E9D01A1B} => C:\Users\franc\AppData\Roaming\SwifDooPDFData\PDFShell64.dll [2023-08-07] (Chengdu Aishang Office Technology Co., Ltd. -> Tianjin Xundu Technology Co.,Ltd) ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers1: [norton] -> {472083B2-C522-11CF-8763-00608CC02F24} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ContextMenuHandlers3: [00nll] -> {472083B2-C522-11CF-8763-00608CC02F24} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ContextMenuHandlers3: [PowerRenameExt] -> {0440049F-D1DC-4E46-B27B-98393D79486B} => C:\Program Files\PowerToys\modules\PowerRename\PowerToys.PowerRenameExt.dll [2022-07-13] (Microsoft Corporation -> Microsoft Corporation) ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\igfxDTCM.dll [2016-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2024-08-11] (Igor Pavlov) [Fichier non signé] ContextMenuHandlers6: [norton] -> {472083B2-C522-11CF-8763-00608CC02F24} => C:\Program Files\Norton\Suite\ashShell.dll [2024-11-04] (NortonLifeLock Inc. -> Gen Digital Inc.) ==================== Codecs (Avec liste blanche) ==================== ==================== Raccourcis & WMI ======================== (Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.) ShortcutWithArgument: C:\Users\franc\Desktop\Raccourcis\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak ShortcutWithArgument: C:\Users\franc\Desktop\Raccourcis\Roon Labs Community.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nofgddfoocbfnijlbaomiahnoedidflf ShortcutWithArgument: C:\Users\franc\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_kjbdgfilnfhdoflbpgamdcdgpehopbep\Google Agenda.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kjbdgfilnfhdoflbpgamdcdgpehopbep ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Keep – Notes et listes (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 3" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Keep – Notes et listes.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 2" --app-id=hmjkmjkepdijhoojdojkdfohbdgmmhki ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Agenda.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kjbdgfilnfhdoflbpgamdcdgpehopbep ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Drive (1).lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 3" --app-id=aghbiahbpaijignceidepookljebhfak ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Roon Labs Community.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=nofgddfoocbfnijlbaomiahnoedidflf ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Agenda.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kjbdgfilnfhdoflbpgamdcdgpehopbep ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Françoise - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1" ShortcutWithArgument: C:\Users\franc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Françoise - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3" ==================== Modules chargés (Avec liste blanche) ============= 2024-11-05 13:47 - 2024-11-05 13:47 - 000372736 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\40b51860093806996694b4c03d6b7937\Interop.CxHDAudioAPILib.ni.dll 2024-11-05 13:47 - 2024-11-05 13:47 - 000018944 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\d42e7c2c525ce21242a1feb1894aa403\Interop.CxUtilSvcLib.ni.dll 2021-10-31 17:56 - 2018-03-13 10:21 - 001173504 _____ (Conexant Systems, Inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll ==================== Alternate Data Streams (Avec liste blanche) ======== ==================== Mode sans échec (Avec liste blanche) ================== (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\cdd.dll => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\nllSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{13cfe1b1-6b17-424c-ac3f-16ace8733898} => ""="I3C devices" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\cdd.dll => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ExecutionContext.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\netadaptercx.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nllSP.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinHttpAutoProxySvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{13cfe1b1-6b17-424c-ac3f-16ace8733898} => ""="I3C devices" ==================== Association (Avec liste blanche) ================= ==================== Internet Explorer (Avec liste blanche) ============= BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2024-09-17] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2020-11-21] (Logitech Inc -> Logitech, Inc.) Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2024-10-10] (Microsoft Corporation -> Microsoft Corporation) ==================== Hosts contenu: ========================= (Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.) 2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts 2022-10-22 16:20 - 2024-05-05 21:33 - 000000436 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics ==================== Autres zones =========================== (Actuellement, il n'y a pas de correction automatique pour cette section.) HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\franc\Pictures\Fonds d'écran\beach-1852945_640.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Le Pare-feu est activé. Network Binding: ============= Wi-Fi: Qualcomm Atheros AR956x Wireless Network Adapter -> athw10x.sys Ethernet: Qualcomm Atheros AR8171/8175 PCI-E Gigabit Ethernet Controller (NDIS 6.20) -> L1C62x64.sys ==================== MSCONFIG/TASK MANAGER éléments désactivés == (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.) MSCONFIG\Services: AdobeARMservice => 2 MSCONFIG\Services: AtherosSvc => 2 MSCONFIG\Services: ATServiceHost => 2 MSCONFIG\Services: AtTrayWatchService => 2 MSCONFIG\Services: CCleanerPerformanceOptimizerService => 2 MSCONFIG\Services: cphs => 3 MSCONFIG\Services: CxAudMsg => 2 MSCONFIG\Services: esifsvc => 2 MSCONFIG\Services: GoogleChromeElevationService => 3 MSCONFIG\Services: gupdate => 2 MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: HPPrintScanDoctorService => 2 MSCONFIG\Services: igfxCUIService2.0.0.0 => 2 MSCONFIG\Services: Intel(R) Capability Licensing Service TCP IP Interface => 3 MSCONFIG\Services: Intel(R) TPM Provisioning Service => 2 MSCONFIG\Services: LBTServ => 3 MSCONFIG\Services: SAService => 2 MSCONFIG\Services: ss_conn_launcher_service => 3 MSCONFIG\Services: valWBFPolicyService => 2 MSCONFIG\Services: ZoomCptService => 2 HKLM\...\StartupApproved\StartupFolder: => "FiiO Control Panel Autostart.lnk" HKLM\...\StartupApproved\StartupFolder: => "iFi USB Audio Device Control Panel Autostart.lnk" HKLM\...\StartupApproved\Run: => "SecurityHealth" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run: => "EvtMgr6" HKLM\...\StartupApproved\Run32: => "NortonAntiTrack" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "Adobe Reader Synchronizer" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "DeepL" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "xyz.klinker.messenger" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "HP ENVY 4520 series (NET)" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_B0A21BE99A4176918586E4D3CF402A93" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_ACD3870ECF706465B78AD29FEAB66201" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "Alt-Tab Terminator" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning" HKU\S-1-5-21-2962105019-2811085449-2765148956-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer" ==================== RèglesPare-feu (Avec liste blanche) ================ (Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.) FirewallRules: [{D0E0B014-4D07-4352-81A6-6717029DDC39}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG) FirewallRules: [{DE7167C7-EE22-4D66-B2AF-B7465104C48E}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG) FirewallRules: [{A05BE079-9300-49FC-AEF2-58050A249C05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{B57F432E-BBCD-45FF-B040-D3A49707251B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation) FirewallRules: [{B967B007-118A-4BE8-9305-E393E2882E79}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{CC0DB33F-A534-4045-BD4F-AD4FA8F180E8}] => (Allow) C:\Program Files\HP\HP ENVY 4520 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.) FirewallRules: [{FE6AD0EE-06B3-48C9-B8B4-A7218C3DDF22}] => (Allow) C:\Program Files\HP\HP ENVY 5640 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc -> HP Inc.) FirewallRules: [{5E3D55F5-D448-4296-980B-D2FB2BC4F3EE}] => (Allow) C:\Program Files\HP\HP ENVY 5640 series\Bin\DeviceSetup.exe (HP Inc -> HP Inc.) FirewallRules: [UDP Query User{19A1F9B0-183D-43DE-884A-C5448300BEAF}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [TCP Query User{6F2B08CB-85D0-4E6D-AF2B-764FCD12541B}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [{DBB54398-D4C0-4021-95D4-A765DCE88DD3}] => (Allow) LPort=5357 FirewallRules: [UDP Query User{1D816387-E70F-4850-AB2F-29BF6ED5E6BF}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Block) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [TCP Query User{865C4317-667F-4ECA-A0D2-A76FF6C8EDF5}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Block) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTeK Computer Inc. -> ASUSTeK Computer Inc.) FirewallRules: [{EA7231C4-54A3-4458-A888-B98694DD67FE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2476F54E-5654-4731-975E-40E2CD933AC4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{7D28B9E7-FBB4-42E5-AFF4-D15F890D6176}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{22D5F430-43A1-49BA-BBE1-34015EB4D66A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{0B8EA068-98A4-43F6-844C-9654D5E63250}] => (Allow) C:\Program Files\Norton\Suite\NortonUI.exe (NortonLifeLock Inc. -> Gen Digital Inc.) FirewallRules: [{EA3AFE53-21B8-4690-BDC4-C4BE12931B96}] => (Allow) C:\Program Files\Norton\Suite\NortonUI.exe (NortonLifeLock Inc. -> Gen Digital Inc.) FirewallRules: [{E1039694-0511-4F2B-9273-C1102BBACEA9}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\130.0.2849.68\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation) FirewallRules: [{B839AAAC-C344-4363-8B03-E8E98829E9CB}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) ==================== Points de restauration ========================= 04-11-2024 18:59:59 Windows Update 04-11-2024 19:00:02 Windows Update 04-11-2024 19:00:12 Windows Update 08-11-2024 08:25:09 Windows Update 08-11-2024 08:25:24 Windows Update ==================== Éléments en erreur du Gestionnaire de périphériques ============ Name: STMicroelectronics 3D Accelerometer Description: STMicroelectronics 3D Accelerometer Class Guid: {5175d334-c371-4806-b3ba-71fd53c9258d} Manufacturer: STMicroelectronics Service: WUDFRd Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Erreurs du Journal des événements: ======================== Erreurs Application: ================== Error: (11/08/2024 09:44:43 AM) (Source: .NET Runtime) (EventID: 1023) (User: ) Description: Description: A .NET application failed. Application: RoonServer.exe Path: C:\Users\franc\AppData\Local\RoonServer\Application\RoonServer.exe Message: The application to execute does not exist: 'C:\Users\franc\AppData\Local\RoonServer\Application\200001470\RoonServer.dll'. Error: (11/08/2024 08:15:36 AM) (Source: .NET Runtime) (EventID: 1023) (User: ) Description: Description: A .NET application failed. Application: RoonServer.exe Path: C:\Users\franc\AppData\Local\RoonServer\Application\RoonServer.exe Message: The application to execute does not exist: 'C:\Users\franc\AppData\Local\RoonServer\Application\200001470\RoonServer.dll'. Error: (11/07/2024 04:03:39 PM) (Source: .NET Runtime) (EventID: 1023) (User: ) Description: Description: A .NET application failed. Application: RoonServer.exe Path: C:\Users\franc\AppData\Local\RoonServer\Application\RoonServer.exe Message: The application to execute does not exist: 'C:\Users\franc\AppData\Local\RoonServer\Application\200001470\RoonServer.dll'. Error: (11/07/2024 02:22:28 PM) (Source: .NET Runtime) (EventID: 1023) (User: ) Description: Description: A .NET application failed. Application: RoonServer.exe Path: C:\Users\franc\AppData\Local\RoonServer\Application\RoonServer.exe Message: The application to execute does not exist: 'C:\Users\franc\AppData\Local\RoonServer\Application\200001470\RoonServer.dll'. Error: (11/06/2024 10:41:23 AM) (Source: Application Error) (EventID: 1000) (User: ASUSPRO) Description: Nom de l'application défaillante : AppGpxRecorder1.exe, version : 1.0.0.0, horodatage : 0x59281d47 Nom du module défaillant : Windows.UI.Xaml.dll, version : 10.0.26100.2213, horodatage : 0xda09d4ac Exception code: 0xc000027b Fault offset: 0x0000000000901ff3 Identifiant du processus défaillant : 0x3900 Heure de début de l'application défaillante : 0x1db302ffd25325d Chemin de l'application défaillante : C:\Program Files\WindowsApps\45442stefano64.GPXviewerandrecorder_2.0.0.0_x64__bszswgksnzmf2\AppGpxRecorder1.exe Chemin du module défaillant : C:\Windows\System32\Windows.UI.Xaml.dll ID du rapport : a70a8310-2a41-4a28-bf5a-595c7c4af3bd Nom complet du package défaillant : 45442stefano64.GPXviewerandrecorder_2.0.0.0_x64__bszswgksnzmf2 Package défaillant – ID d'application relatif : App Error: (11/06/2024 08:08:40 AM) (Source: .NET Runtime) (EventID: 1023) (User: ) Description: Description: A .NET application failed. Application: RoonServer.exe Path: C:\Users\franc\AppData\Local\RoonServer\Application\RoonServer.exe Message: The application to execute does not exist: 'C:\Users\franc\AppData\Local\RoonServer\Application\200001470\RoonServer.dll'. Error: (11/05/2024 06:22:11 PM) (Source: Application Error) (EventID: 1000) (User: ASUSPRO) Description: Nom de l'application défaillante : ms-teams.exe, version : 24137.2203.2894.4529, horodatage : 0x664e9d24 Nom du module défaillant : ms-teams.exe, version : 24137.2203.2894.4529, horodatage : 0x664e9d24 Exception code: 0xc0000005 Fault offset: 0x000000000007f74a Identifiant du processus défaillant : 0x1bdc Heure de début de l'application défaillante : 0x1db2fa73e147316 Chemin de l'application défaillante : C:\Program Files\WindowsApps\MSTeams_24137.2203.2894.4529_x64__8wekyb3d8bbwe\ms-teams.exe Chemin du module défaillant : C:\Program Files\WindowsApps\MSTeams_24137.2203.2894.4529_x64__8wekyb3d8bbwe\ms-teams.exe ID du rapport : d885c6df-c64a-4148-aa31-3648cb102933 Nom complet du package défaillant : MSTeams_24137.2203.2894.4529_x64__8wekyb3d8bbwe Package défaillant – ID d'application relatif : MSTeams Error: (11/05/2024 06:21:19 PM) (Source: Application Error) (EventID: 1000) (User: ASUSPRO) Description: Nom de l'application défaillante : ms-teams.exe, version : 24137.2203.2894.4529, horodatage : 0x664e9d24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Exception code: 0xc0000409 Fault offset: 0x00007ffcc0cc328f Identifiant du processus défaillant : 0x37f0 Heure de début de l'application défaillante : 0x1db2fa71f303dff Chemin de l'application défaillante : C:\Program Files\WindowsApps\MSTeams_24137.2203.2894.4529_x64__8wekyb3d8bbwe\ms-teams.exe Chemin du module défaillant : unknown ID du rapport : 48c51840-1a14-403a-b48a-07af1c02eb66 Nom complet du package défaillant : MSTeams_24137.2203.2894.4529_x64__8wekyb3d8bbwe Package défaillant – ID d'application relatif : MSTeams Erreurs système: ============= Error: (11/08/2024 09:45:45 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (11/08/2024 09:45:45 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate). Error: (11/08/2024 09:45:29 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: AUTORITE NT) Description: La mise à jour de Secure Boot a échoué à mettre à jour une variable Secure Boot avec l'erreur -2147020471. Pour plus d'informations, veuillez consulter https://go.microsoft.com/fwlink/?linkid=2169931 Error: (11/08/2024 09:43:22 AM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 09:36:19 le ‎08/‎11/‎2024 n’était pas prévu. Error: (11/08/2024 08:23:47 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: AUTORITE NT) Description: La mise à jour de Secure Boot a échoué à mettre à jour une variable Secure Boot avec l'erreur -2147020471. Pour plus d'informations, veuillez consulter https://go.microsoft.com/fwlink/?linkid=2169931 Error: (11/08/2024 08:20:30 AM) (Source: DCOM) (EventID: 10010) (User: ASUSPRO) Description: Le serveur {8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19} ne s’est pas enregistré sur DCOM avant la fin du temps imparti. Error: (11/08/2024 08:16:57 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur : Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (11/08/2024 08:16:57 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Service Google Update (gupdate). ==================== Infos Mémoire =========================== BIOS: American Megatrends Inc. PU551LA.208 10/22/2014 Carte mère: ASUSTeK COMPUTER INC. PU551LA Processeur: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz Pourcentage de mémoire utilisée: 49% Mémoire physique - RAM - totale: 12152.73 MB Mémoire physique - RAM - disponible: 6185.6 MB Mémoire virtuelle totale: 14008.73 MB Mémoire virtuelle disponible: 8177.21 MB ==================== Lecteurs ================================ Drive c: (OS) (Fixed) (Total:351.29 GB) (Free:162.44 GB) (Model: CT1000BX500SSD1) NTFS Drive d: (DATA) (Fixed) (Total:523.38 GB) (Free:248.75 GB) (Model: CT1000BX500SSD1) NTFS \\?\Volume{ccc42880-ffda-444c-a23c-5088934e57e4}\ () (Fixed) (Total:0.75 GB) (Free:0.15 GB) NTFS \\?\Volume{9e96648f-dc66-4b0b-81c4-75e4b577cf60}\ () (Fixed) (Total:0.58 GB) (Free:0.56 GB) NTFS \\?\Volume{9666499a-93fc-477b-9d6d-df85ef97ea93}\ (Recovery) (Fixed) (Total:25 GB) (Free:12.19 GB) NTFS \\?\Volume{2e8fdfbc-b982-4b61-b407-a085334efcbc}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) FAT32 ==================== MBR & Table des partitions ==================== ========================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 8BECB514) Partition: GPT. ==================== Fin de Addition.txt =======================