Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 28-02-2021
Exécuté par Raymond (12-03-2021 20:27:50)
Exécuté depuis C:\Users\Raymond\Desktop
Windows 10 Pro Version 20H2 19042.867 (X64) (2020-08-01 15:36:25)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-1335967941-1673278040-1567979082-500 - Administrator - Disabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-1335967941-1673278040-1567979082-503 - Limited - Disabled)
Invité (S-1-5-21-1335967941-1673278040-1567979082-501 - Limited - Disabled)
Raymond (S-1-5-21-1335967941-1673278040-1567979082-1002 - Administrator - Enabled) => C:\Users\Raymond
WDAGUtilityAccount (S-1-5-21-1335967941-1673278040-1567979082-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {4F76F112-43EB-40E8-11D8-F7BD1853EA23}
AV: Kaspersky Internet Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Enabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {774D7037-0984-41B0-3A87-5E88E680AD58}
FW: Kaspersky Internet Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

64 Bit HP CIO Components Installer (HKLM\...\{C788B026-20BD-4E96-B698-533F1D6C5013}) (Version: 7.2.4 - Hewlett-Packard) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}) (Version: 23.5.17750 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}Visible) (Version: 23.5.17750 - Acronis)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.001.20142 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM-x32\...\{9738288C-21BC-4F54-AB4F-72F059339376}) (Version: 8.6 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{DEB339C1-2687-43AB-816A-8714F3E26846}) (Version: 8.6 - Apple Inc.)
Assistant Support et récupération de Microsoft (HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\...\f9a89bd2a46a7606) (Version: 16.0.3306.3 - Microsoft Corporation)
AVS Audio Converter 7.3 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 7.3.1.535 - Online Media Technologies Ltd.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
COM Explorer (HKLM-x32\...\{3FD70AC8-7597-42ED-A6DB-1A77CBD6F679}) (Version: 1.0.1 - DIVEN AND MUCH COMPANY LIMITED) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.3207 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3212 - CyberLink Corp.)
DirectX for Managed Code Update (Summer 2004) (HKLM-x32\...\{E9E34215-82EF-4909-BE2F-F581F0DC9062}) (Version: 9.02.2904 - Microsoft) Hidden
EdgeManage (HKLM-x32\...\{535F8180-FCD4-4593-8E21-BF228B216BE3}) (Version: 2.2.8 - Emmet Gray)
ElektroForm'10 Installateur (HKLM-x32\...\{82A1DE1E-E894-4992-8B91-9F548F5A82A3}) (Version: 8.1 - Brunner Informatik AG) Hidden
ElektroForm'10 Installateur (HKLM-x32\...\ElektroForm'10 Installateur) (Version: - Brunner Informatik AG)
ElektroForm15 Start (HKLM-x32\...\EfStart) (Version: 1.0.3.0 - Brunner Informatik AG)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Firebird 2.5.2.26540 (Win32) (HKLM-x32\...\FBDBServer_2_5_is1) (Version: 2.5.2.26540 - Firebird Project)
FonePaw DoTrans 2.3.0 (HKLM-x32\...\{37FB7288-973F-438F-ADDE-F9D59ABF427C}_is1) (Version: 2.3.0 - FonePaw)
Google Chrome (HKLM\...\{B93553B7-F366-388E-ADB8-EDEAC41EADC2}) (Version: 89.0.4389.82 - Google LLC)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.24.7 - Google Inc.) Hidden
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{C5CDBE4C-F998-4D5F-A054-FFA41C9ECC93}) (Version: 1.3.0.0 - Hewlett-Packard)
HP LaserJet P3010 Series Guide d'utilisation (HKLM-x32\...\{06C4BA69-5210-4707-B5BE-E26D487E1854}) (Version: 1.0.0.0 - Hewlett Packard, Co.)
HP LaserJet P3010 Series PCL 6 [HP LaserJet P3010 Series PCL 6, HP LaserJet P3015 - Secrétariat] (HKLM\...\HP LaserJet P3010 Series PCL 6) (Version: 10/09/2008 61.083.41.03 - HP)
HP LaserJet P3010 Series Polices d'écran (HKLM-x32\...\{CB71331A-9DCE-4A0D-B527-FD96BD5CFC4A}) (Version: 2.0.0.0 - Hewlett Packard, Co.)
HP PageLift (HKLM-x32\...\{59202086-BEA1-411A-8AA4-A5DCD28FF537}) (Version: 1.0.13.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{68E1C9E9-1606-49AF-9978-573148CED9E4}) (Version: 3.5.3.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{7561C06A-7797-4462-A7C3-86F45AE901CF}) (Version: 8.7.4 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HP Wireless Keyboard and Mouse Applet (HKLM-x32\...\{C2A98780-3B82-4056-A1FB-7377B3C80AF7}) (Version: 1.0.0.0 - Hewlett-Packard)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Network Connections 19.2.104.00 (HKLM\...\PROSetDX) (Version: 19.2.104.00 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5126 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.2.0.1016 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Kaspersky Internet Security (HKLM-x32\...\{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{4FC79BE9-AD63-46C0-9626-E4F6BCE6A976}) (Version: 21.3.10.391 - Kaspersky)
Kaspersky Password Manager (HKLM-x32\...\{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab) Hidden
Kaspersky Password Manager (HKLM-x32\...\InstallWIX_{B2F7333E-6C8D-4994-AAC4-FEC8EBBF9611}) (Version: 9.0.2.767 - Kaspersky Lab)
Kaspersky VPN (HKLM-x32\...\{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky) Hidden
Kaspersky VPN (HKLM-x32\...\InstallWIX_{FF2A12B8-AEB7-48C0-95C8-E2E3D67DFCB2}) (Version: 21.3.10.391 - Kaspersky)
Live Help (HKLM-x32\...\{A3253F6B-C6E9-2F38-0184-B8D0FE5CEACC}) (Version: 7.11.760 - LogMeIn, Inc.)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.141.63 - )
Microsoft Office Home and Business 2019 - fr-fr (HKLM\...\HomeBusiness2019Retail - fr-fr) (Version: 16.0.13801.20294 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\...\OneDriveSetup.exe) (Version: 21.016.0124.0003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1335967941-1673278040-1567979082-500\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60724 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.60724 - Microsoft Corporation)
MSI to redistribute MS VS2005 CRT libraries (HKLM-x32\...\{A8D93648-9F7F-407D-915C-62044644C3DA}) (Version: 8.0.50727.42 - The Firebird Project)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.13801.20274 - Microsoft Corporation) Hidden
opensource (HKLM-x32\...\{3677D4D8-E5E0-49FC-B86E-06541CF00BBE}) (Version: 1.0.14960.3876 - Your Company Name) Hidden
Package de pilotes Windows - C Technologies AB (PayPen) Input Pen (09/28/2007 2.0.0.0) (HKLM\...\FF0C660232778E730A83A02DA620652B3CF36C07) (Version: 09/28/2007 2.0.0.0 - C Technologies AB)
Package de pilotes Windows - STMicroelectronics (usbser) Ports (04/25/2010 1.3.1) (HKLM\...\3EC7C72AA67B4ECE1197C3CAF0460DE1FCEFBFF5) (Version: 04/25/2010 1.3.1 - STMicroelectronics)
PayEye version 1.1.4 (HKLM-x32\...\{4652E29B-C360-4BBB-8045-C7AF18FD7971}_is1) (Version: 1.1.4 - CREALOGIX AG)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.9.0 - Prolific Technology INC)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8328 - Realtek Semiconductor Corp.)
Skype version 8.68 (HKLM-x32\...\Skype_is1) (Version: 8.68 - Skype Technologies S.A.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.15.5 - TeamViewer)
VC_CRT_x64 (HKLM\...\{54F2237F-018C-483B-8884-9FC0D88840C3}) (Version: 1.02.0000 - Intel Corporation) Hidden
WinProgitel version 7.0.18.3 (HKLM-x32\...\WinProgitel_is1) (Version: 7.0.18.3 - Polylog SA)

Packages:
=========
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-20] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.3.838.0_x64__v10z8vjag6ke6 [2021-03-12] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa [2020-12-10] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-08-23] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-08-23] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2020-10-23] (Microsoft Studios) [MS Ad]
RICOH Driver Utility -> C:\Program Files\WindowsApps\3EA2211E.RICOHDriverUtility_4.6.0.0_x86__fxme7667cy4q4 [2020-07-04] (Ricoh Company, Ltd.)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ContextMenuHandlers1: [ {CFE52057-1574-4D43-851E-2B670255887A}] -> {CFE52057-1574-4D43-851E-2B670255887A} => C:\Program Files\Common Files\FonePaw\FonePaw DoTrans Shell Extension.dll [2020-09-22] (FonePaw Technology Limited -> FonePaw)
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-08-20] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers1: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2013-05-27] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.) [Fichier non signé]
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2013-08-20] (CyberLink Corp. -> Cyberlink)
ContextMenuHandlers2: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers4: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-06-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [Kaspersky Anti-Virus 21.3] -> {37303E08-14C9-4FC3-B1D9-7993682A4691} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\shellex.dll [2021-03-11] (Kaspersky Lab JSC -> AO Kaspersky Lab)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2020-10-05 13:02 - 2017-12-27 16:46 - 009212928 _____ () [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\opencv_core310.dll
2020-10-05 13:02 - 2017-12-27 16:48 - 020934656 _____ () [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\opencv_imgproc310.dll
2020-10-05 13:02 - 2018-04-02 20:56 - 000032256 _____ () [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\qtsingleapplication.dll
2020-10-05 13:02 - 2016-10-02 13:57 - 000075776 _____ () [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\zbar0.dll
2018-01-29 15:40 - 2013-03-19 11:02 - 000552960 _____ (Firebird Project) [Fichier non signé] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\fbclient.dll
2007-11-17 16:12 - 2007-11-17 16:12 - 000153088 _____ (Hewlett Packard) [Fichier non signé] C:\WINDOWS\System32\hptcpmib.dll
2007-11-17 16:13 - 2007-11-17 16:13 - 000330752 _____ (Hewlett Packard) [Fichier non signé] C:\WINDOWS\System32\HpTcpMon.dll
2005-04-08 00:27 - 2005-04-08 00:27 - 000132096 _____ (Hewlett Packard) [Fichier non signé] C:\WINDOWS\System32\hpzjrd01.dll
2010-08-06 10:15 - 2010-08-06 10:15 - 000071680 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzinw12.dll
2010-08-06 10:15 - 2010-08-06 10:15 - 000089600 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzipm12.dll
2018-01-29 15:40 - 2013-03-19 10:50 - 001568768 _____ (IBM Corporation and others) [Fichier non signé] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\icudt30.dll
2018-01-29 15:40 - 2013-03-19 10:49 - 000675840 _____ (IBM Corporation and others) [Fichier non signé] C:\Program Files (x86)\Firebird\Firebird_2_5\bin\icuuc30.dll
2014-06-25 09:31 - 2014-06-25 09:31 - 000296960 _____ (Intel Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-08-29 00:01 - 2013-04-26 19:24 - 000073728 _____ (Intel Corporation) [Fichier non signé] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2014-06-25 09:31 - 2014-06-25 09:31 - 000526336 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2014-08-29 00:06 - 2013-07-08 08:21 - 000499712 _____ (Microsoft Corporation) [Fichier non signé] c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\MSVCP71.dll
2014-08-29 00:06 - 2013-07-08 08:21 - 000348160 _____ (Microsoft Corporation) [Fichier non signé] c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\MSVCR71.dll
2007-11-17 16:14 - 2007-11-17 16:14 - 000317440 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\System32\HPTcpMUI.dll
2020-08-01 16:27 - 2020-08-01 16:27 - 000113664 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2015-02-20 15:22 - 2013-05-27 17:48 - 000150888 _____ (Online Media Technologies Ltd. -> Online Media Technologies Ltd.) [Fichier non signé] C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll
2019-03-25 19:30 - 2019-03-25 19:30 - 025338368 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icudt54.dll
2019-03-25 19:30 - 2019-03-25 19:30 - 002056704 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icuin54.dll
2019-03-25 19:30 - 2019-03-25 19:30 - 001425408 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icuuc54.dll
2020-10-05 13:02 - 2016-05-04 00:39 - 001364480 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\LIBEAY32.dll
2020-10-05 13:02 - 2016-05-04 00:39 - 000335872 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\ssleay32.dll
2020-10-05 13:02 - 2016-12-01 11:48 - 000037376 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\bearer\qgenericbearer.dll
2020-10-05 13:02 - 2016-12-01 11:48 - 000039424 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\bearer\qnativewifibearer.dll
2020-10-05 13:02 - 2016-12-01 14:37 - 000038400 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qdds.dll
2020-10-05 13:02 - 2016-12-01 11:48 - 000024576 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qgif.dll
2020-10-05 13:02 - 2016-12-01 14:37 - 000030720 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qicns.dll
2020-10-05 13:02 - 2016-12-01 11:48 - 000024576 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qico.dll
2020-10-05 13:02 - 2016-12-01 11:48 - 000243200 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qjpeg.dll
2020-10-05 13:02 - 2016-12-01 14:18 - 000018432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qsvg.dll
2020-10-05 13:02 - 2016-12-01 14:37 - 000017920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qtga.dll
2020-10-05 13:02 - 2016-12-01 14:37 - 000313344 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qtiff.dll
2020-10-05 13:02 - 2016-12-01 14:37 - 000017920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qwbmp.dll
2020-10-05 13:02 - 2016-12-01 14:37 - 000369664 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\imageformats\qwebp.dll
2020-10-05 13:02 - 2016-12-01 11:49 - 001063936 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\platforms\qwindows.dll
2020-10-05 13:02 - 2018-01-06 16:41 - 004681728 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Core.dll
2020-10-05 13:02 - 2016-12-01 11:42 - 004878848 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Gui.dll
2020-10-05 13:02 - 2016-12-01 11:40 - 000848896 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Network.dll
2020-10-05 13:02 - 2016-12-01 17:40 - 000171520 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Positioning.dll
2020-10-05 13:02 - 2016-12-01 14:57 - 002512896 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Qml.dll
2020-10-05 13:02 - 2016-12-01 15:00 - 002595840 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Quick.dll
2020-10-05 13:02 - 2016-12-01 14:18 - 000251392 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Svg.dll
2020-10-05 13:02 - 2016-12-01 17:53 - 000083456 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5WebChannel.dll
2020-10-05 13:02 - 2016-12-02 16:35 - 046416384 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5WebEngineCore.dll
2020-10-05 13:02 - 2016-12-02 16:40 - 000162816 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5WebEngineWidgets.dll
2020-10-05 13:02 - 2016-12-01 17:01 - 000109056 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5WebSockets.dll
2020-10-05 13:02 - 2016-12-01 11:46 - 004495360 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5Widgets.dll
2020-10-05 13:02 - 2018-08-06 13:51 - 000066560 _____ (The Qt Company Ltd/CREALOGIX) [Fichier non signé] C:\Program Files (x86)\CREALOGIX PayEye\Qt5SerialPort.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM14/21
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\System32\blank.htm
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\system32\blank.htm
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM14/21
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Software\Microsoft\Internet Explorer\Main,EdgeReminderURL = hxxp://go.microsoft.com/fwlink/?LinkId=838604
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPCOM14/21
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE03&ocid=UE03DHP
HKU\S-1-5-21-1335967941-1673278040-1567979082-500\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
HKU\S-1-5-21-1335967941-1673278040-1567979082-500\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKU\S-1-5-21-1335967941-1673278040-1567979082-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPCOM14/21
HKU\S-1-5-21-1335967941-1673278040-1567979082-500\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPCOM14/21
HKU\S-1-5-21-1335967941-1673278040-1567979082-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPCOM14/21
URLSearchHook: HKU\S-1-5-21-1335967941-1673278040-1567979082-1002 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1335967941-1673278040-1567979082-1002 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1335967941-1673278040-1567979082-500 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\System32\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
URLSearchHook: HKU\S-1-5-21-1335967941-1673278040-1567979082-500 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll (Microsoft Windows -> Microsoft Corporation)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=CMDTDFJS
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=CMDTDFJS
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=CMDTDFJS
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=CMDTDFJS
SearchScopes: HKU\S-1-5-21-1335967941-1673278040-1567979082-1002 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-1335967941-1673278040-1567979082-1002 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-1335967941-1673278040-1567979082-500 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=CMDTDFJS
SearchScopes: HKU\S-1-5-21-1335967941-1673278040-1567979082-500 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE11TR&src=IE11TR&pc=CMDTDFJS
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.50\BHO\ie_to_edge_bho_64.dll [2021-03-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\89.0.774.50\BHO\ie_to_edge_bho.dll [2021-03-10] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard Company -> Hewlett-Packard)
Toolbar: HKU\S-1-5-21-1335967941-1673278040-1567979082-1002 -> Pas de nom - {C500C267-63BF-451F-8797-4D720C9A2ED9} - Pas de fichier
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\msvidctl.dll [2021-01-12] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\msvidctl.dll [2021-01-12] (Microsoft Windows -> Microsoft Corporation)
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\SysWOW64\inetcomm.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\SysWOW64\itss.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2020-10-14] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2020-10-14] (Microsoft Windows -> Microsoft Corporation)
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\msvidctl.dll [2021-01-12] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\msvidctl.dll [2021-01-12] (Microsoft Windows -> Microsoft Corporation)
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll [2021-03-11] (Microsoft Windows -> Microsoft Corporation)
Handler: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll [2020-10-14] (Microsoft Windows -> Microsoft Corporation)
Handler-x32: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll [2020-10-14] (Microsoft Windows -> Microsoft Corporation)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\System32\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - C:\Windows\SysWOW64\mscoree.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLMF.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
Filter-x32: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\MSOXMLMF.DLL [2021-03-04] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2019-11-25 09:45 - 2019-11-25 09:48 - 000000147 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> c:\Program Files (x86)\Intel\iCLS Client\;c:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Raymond\Pictures\Photos\transférer le 20.02.13 235.jpg
HKU\S-1-5-21-1335967941-1673278040-1567979082-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

MSCONFIG\startupreg: F-Secure Manager => "C:\Program Files (x86)\F-Secure\Common\FSM32.EXE" /splash
HKLM\...\StartupApproved\Run32: => "IMSS"
HKLM\...\StartupApproved\Run32: => "PDF Complete"
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_CF82B17A892419EC3CBA5BD96F5CD9B3"
HKU\S-1-5-21-1335967941-1673278040-1567979082-1002\...\StartupApproved\Run: => "CLXReader"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)


==================== Points de restauration =========================

11-03-2021 13:28:43 Programme d’installation pour les modules Windows
12-03-2021 20:19:49 Restore Point Created by FRST

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (03/12/2021 08:19:49 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {ab944387-0656-4fcb-8994-d40ec1fbd2f0}

Error: (03/11/2021 03:07:33 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.

Error: (03/11/2021 02:56:19 PM) (Source: FirebirdGuardianDefaultInstance) (EventID: 281) (User: )
Description: Event-ID 281

Error: (03/11/2021 02:46:43 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.

Error: (03/11/2021 02:41:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante RtkNGUI64.exe, version : 1.0.665.0, horodatage : 0x558cf648
Nom du module défaillant : RtkNGUI64.exe, version : 1.0.665.0, horodatage : 0x558cf648
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000000f3d5f
ID du processus défaillant : 0x3228
Heure de début de l’application défaillante : 0x01d7167c0b44c012
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
Chemin d’accès du module défaillant: C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
ID de rapport : edac62d3-6b2e-4774-9a26-33933d7d7a8a
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (03/11/2021 02:08:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante DllHost.exe, version : 10.0.19041.546, horodatage : 0xb850de5d
Nom du module défaillant : combase.dll, version : 10.0.19041.789, horodatage : 0xce908c7b
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000aa9e2
ID du processus défaillant : 0x190
Heure de début de l’application défaillante : 0x01d7166f5c6b5d07
Chemin d’accès de l’application défaillante : C:\WINDOWS\SysWOW64\DllHost.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\combase.dll
ID de rapport : 7389f697-e563-430b-a115-e5867102c4aa
Nom complet du package défaillant : Microsoft.SkypeApp_15.66.77.0_x86__kzf8qxf38zg5c
ID de l’application relative au package défaillant : App

Error: (03/11/2021 07:51:26 AM) (Source: FirebirdGuardianDefaultInstance) (EventID: 281) (User: )
Description: Event-ID 281

Error: (03/10/2021 09:54:56 AM) (Source: FirebirdGuardianDefaultInstance) (EventID: 281) (User: )
Description: Event-ID 281


Erreurs système:
=============
Error: (03/12/2021 08:23:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service TeamViewer n’a pas pu démarrer en raison de l’erreur :
Accès refusé.

Error: (03/12/2021 08:23:12 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service TeamViewer s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 2000 millisecondes : Redémarrer le service.

Error: (03/12/2021 08:23:08 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service TeamViewer s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 2000 millisecondes : Redémarrer le service.

Error: (03/12/2021 08:23:04 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media s’est arrêté avec l’erreur :
Tentative de référence à un jeton qui n’existe pas.

Error: (03/12/2021 08:23:03 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service FDResPub s’est arrêté avec l’erreur :
%%2147952449 = L’adresse demandée n’est pas valide dans son contexte.

Error: (03/12/2021 08:22:38 PM) (Source: DCOM) (EventID: 10010) (User: RAYMOND)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (03/12/2021 08:22:38 PM) (Source: DCOM) (EventID: 10010) (User: RAYMOND)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (03/12/2021 08:22:38 PM) (Source: DCOM) (EventID: 10010) (User: RAYMOND)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


CodeIntegrity:
===============
Date: 2021-03-12 20:25:07
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 21.3\x64\antimalware_provider.dll that did not meet the Windows signing level requirements.


==================== Infos Mémoire ===========================

BIOS: Hewlett-Packard L01 v02.33 07/15/2014
Carte mère: Hewlett-Packard 18E5
Processeur: Intel(R) Core(TM) i5-4570S CPU @ 2.90GHz
Pourcentage de mémoire utilisée: 22%
Mémoire physique - RAM - totale: 16295.48 MB
Mémoire physique - RAM - disponible: 12636.11 MB
Mémoire virtuelle totale: 17319.48 MB
Mémoire virtuelle disponible: 13748.32 MB

==================== Lecteurs ================================

Drive c: (Windows ) (Fixed) (Total:231.08 GB) (Free:79.7 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (HP_RECOVERY) (Fixed) (Total:6.3 GB) (Free:6.22 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.08 GB) FAT32
Drive s: () (Network) (Total:0 GB) (Free:0 GB)
Drive w: (Windows ) (Network) (Total:231.08 GB) (Free:79.7 GB) NTFS
Drive x: () (Network) (Total:0 GB) (Free:0 GB)
Drive y: () (Network) (Total:0 GB) (Free:0 GB)

\\?\Volume{c7620101-6649-11e4-9317-806e6f6e6963}\ (SYSTEM ) (Fixed) (Total:1 GB) (Free:0.49 GB) NTFS

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: EC3AFEE7)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=231.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=6.3 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=102 MB) - (Type=0C)

==================== Fin de Addition.txt =======================