Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Exécuté par Francoise (06-09-2022 18:57:40)
Exécuté depuis C:\Users\Francoise\Desktop
Microsoft Windows 10 Famille Version 21H2 19044.1889 (X64) (2021-04-14 17:17:41)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-3781016564-2944584169-260864522-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3781016564-2944584169-260864522-503 - Limited - Disabled)
Francoise (S-1-5-21-3781016564-2944584169-260864522-1001 - Administrator - Enabled) => C:\Users\Francoise
Invité (S-1-5-21-3781016564-2944584169-260864522-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3781016564-2944584169-260864522-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Panda Dome (Enabled - Up to date) {8EE5B6CC-D555-4755-164C-336E561DE601}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: McAfee VirusScan (Enabled - Up to date) {F682A51C-4EAD-6A3A-F460-B9C1D4A2DB09}
AV: McAfee VirusScan (Disabled - Up to date) {9D4501E6-72F6-2877-C789-89AF6F535B2C}
FW: Pare-feu McAfee (Disabled) {A57E80C3-3899-292F-ECD6-209A91801C57}
FW: Pare-feu McAfee (Enabled) {CEB92439-04C2-6B62-DF3F-10F42A719C72}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISE_{14809F99-C601-4D4A-9391-F1E8FAA964C5}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISE_{187308AB-5FA7-4F14-9AB9-D290383A10D9}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-002A-040C-1000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISE_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
2007 Microsoft Office Suite Service Pack 2 (SP2) (HKLM-x32\...\{90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISE_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}) (Version: - Microsoft) Hidden
7-Zip 22.01 (x64) (HKLM\...\7-Zip) (Version: 22.01 - Igor Pavlov)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 22.001.20142 - Adobe Systems Incorporated)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-001824458876}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 6.03 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation)
CrystalDiskInfo 8.11.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.11.2 - Crystal Dew World)
HP Audio Switch (HKLM-x32\...\{3A5141D4-47DB-4302-9B1C-272BE585BC8A}) (Version: 1.0.179.0 - HP Inc.)
HP Connection Optimizer (HKLM-x32\...\{6468C4A5-E47E-405F-B675-A70A70983EA6}) (Version: 2.0.17.0 - HP Inc.)
JDownloader 2 (HKU\S-1-5-21-3781016564-2944584169-260864522-1001\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Malwarebytes version 4.5.13.208 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.13.208 - Malwarebytes)
Microsoft Office Access MUI (French) 2007 (HKLM-x32\...\{90120000-0015-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (French) 2007 (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (French) 2007 (HKLM-x32\...\{90120000-00BA-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (French) 2007 (HKLM-x32\...\{90120000-0044-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (HKLM\...\{90120000-002A-0000-1000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (French) 2007 (HKLM-x32\...\{90120000-00A1-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (French) 2007 (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (French) 2007 (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Arabic) 2007 (HKLM-x32\...\{90120000-001F-0401-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Dutch) 2007 (HKLM-x32\...\{90120000-001F-0413-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (HKLM-x32\...\{90120000-001F-0409-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (HKLM-x32\...\{90120000-001F-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (HKLM-x32\...\{90120000-001F-0407-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (HKLM-x32\...\{90120000-001F-0C0A-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (French) 2007 (HKLM-x32\...\{90120000-002C-040C-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (French) 2007 (HKLM-x32\...\{90120000-0019-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (French) 2007 (HKLM\...\{90120000-002A-040C-1000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2007 (HKLM-x32\...\{90120000-006E-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (French) 2007 (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}) (Version: 12.0.6425.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 104.0.1 (x64 fr)) (Version: 104.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 104.0.1 - Mozilla)
Package de pilotes Windows - Lunii (libusb0) libusb-win32 devices (08/02/2012 1.2.6.0) (HKLM\...\B518D2EFAF7F6DE1F1774C288497A9BF00160B74) (Version: 08/02/2012 1.2.6.0 - Lunii)
Panda Devices Agent (HKLM-x32\...\{DB0164A2-ADE9-4FEE-B080-D506BDD6427F}) (Version: 1.08.09 - Panda Security) Hidden
Panda Devices Agent (HKLM-x32\...\Panda Devices Agent) (Version: 1.03.09 - Panda Security) Hidden
Panda Dome (HKLM\...\{5394BFC2-EA73-4BD5-83DC-9CE8A816546B}) (Version: 11.56.10 - Panda Security) Hidden
Panda Dome (HKLM-x32\...\Panda Universal Agent Endpoint) (Version: 21.01.00.0000 - Panda Security)
PhotoFiltre 11.4.0 (HKLM\...\{562D5B35-6D7E-415D-8554-30A2D0146FE6}_is1) (Version: 11.4 - PhotoFiltre)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.3.3 - Krzysztof Kowalczyk)
Via 10.2.0.0 (HKU\S-1-5-21-3781016564-2944584169-260864522-1001\...\{3E79AFCE-EB55-4819-A357-15851A2EC42F}}_is1) (Version: 10.2.0.0 - SVI eSolutions inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.14 - VideoLAN)

Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\advancedmicrodevicesinc-2.59462344778c5_10.19.10006.0_x64__0a9344xs7nr4m [2021-04-14] (Advanced Micro Devices Inc.)
ELAN Touchpad Setting -> C:\Program Files\WindowsApps\ELANMicroelectronicsCorpo.ELANTouchpadSetting_11.2.63.0_x64__stws0m115j6hg [2022-07-13] (ELAN Microelectronics Corporation)
HP Audio Center -> C:\Program Files\WindowsApps\AD2F1837.HPAudioCenter_1.11.218.0_x64__v10z8vjag6ke6 [2022-07-13] (HP Inc.)
HP JumpStarts -> C:\Program Files\WindowsApps\AD2F1837.HPJumpStarts_1.10.1627.0_x64__v10z8vjag6ke6 [2022-07-13] (HP Inc.)
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.8.2.0_x64__v10z8vjag6ke6 [2022-08-24] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.42.0_x64__v10z8vjag6ke6 [2022-07-13] (HP Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.412.0_x64__v10z8vjag6ke6 [2022-08-24] (HP Inc.)
HP Support Assistant -> C:\Program Files\WindowsApps\AD2F1837.HPSupportAssistant_9.20.22.0_x64__v10z8vjag6ke6 [2022-08-24] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6 [2022-08-25] (HP Inc.)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.13.7180.0_x64__8wekyb3d8bbwe [2022-08-24] (Microsoft Studios) [MS Ad]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217848 2009-02-12] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2021-09-20] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2022-07-15] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [UAContextMenu] -> {A9B8E64D-3F7E-4D32-8FC9-E391DEE67D75} => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAShell.dll [2020-12-02] (Panda Security S.L. -> Panda Security, S.L.)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2021-04-05 21:29 - 2015-03-17 08:51 - 000375296 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL
2021-04-05 21:54 - 2015-03-12 05:00 - 000409088 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMXLMCT.DLL
2020-09-22 00:41 - 2020-09-22 00:41 - 000014336 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.3.2.0_x64__v10z8vjag6ke6\SystemEventUtility\NativeRpcClient.DLL
2022-09-01 15:37 - 2022-07-15 16:00 - 000094720 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PSUAService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NanoServiceMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PSUAService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2022-08-17] (HP Inc. -> HP Inc.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\HP\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2022-08-17] (HP Inc. -> HP Inc.)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2019-03-19 06:49 - 2019-03-19 06:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-3781016564-2944584169-260864522-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\HP Backgrounds\backgroundDefault.jpg
DNS Servers: 192.168.43.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{C54E17BD-559F-41FB-9A70-79AA318DE12C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{AA42F367-DA2F-43C5-8AC5-F0AE6C953A42}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A143EE43-AC76-4F88-BCBD-736555B42F9C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FB4019F3-18E0-42D7-B48B-59BAEA0925A4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.87.3406.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{D17F5D00-CF7B-4314-80AC-73C54AE48DFB}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{8A9005F6-EE0F-48F7-9E92-BBC374031FCF}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{C9EEE3E0-C676-4AA6-A573-F2165643F87F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A7A14560-F2CC-4AF4-B20A-7DE7C12679A5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

==================== Points de restauration =========================

01-09-2022 15:17:45 Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026
05-09-2022 16:45:57 Installed Microsoft Office Enterprise 2007

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (09/06/2022 06:45:04 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT)
Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\LAPTOP-005PNI0L$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep :

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 16:45:02 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: b429df2f-ef1c-4f79-82d1-5f3d549f1ba6

Méthode : GET(625ms)
Étape : GetCACaps
Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/06/2022 06:37:37 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT)
Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\LAPTOP-005PNI0L$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep :

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 16:37:35 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: b79b4de6-b9fb-4314-a8bc-00378010e526

Méthode : GET(593ms)
Étape : GetCACaps
Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/06/2022 06:32:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Explorer.EXE, version : 10.0.19041.1889, horodatage : 0xd1439b88
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000009448456a
ID du processus défaillant : 0x1090
Heure de début de l’application défaillante : 0x01d8c1e06e44d0d8
Chemin d’accès de l’application défaillante : C:\WINDOWS\Explorer.EXE
Chemin d’accès du module défaillant: unknown
ID de rapport : 344dd33b-42e0-4191-b3bb-787c3b962a48
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (09/06/2022 05:46:19 PM) (Source: Firefox Default Browser Agent) (EventID: 1155) (User: )
Description: Event-ID 1155

Error: (09/06/2022 01:04:35 PM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT)
Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\LAPTOP-005PNI0L$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep :

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 11:04:33 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: b4ec5639-a9f4-4d9d-956f-7d150ae25588

Méthode : GET(578ms)
Étape : GetCACaps
Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/06/2022 11:08:12 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT)
Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\LAPTOP-005PNI0L$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep :

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 09:08:11 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: 6c703e90-89e9-4b6f-a31f-7080de8beba8

Méthode : GET(547ms)
Étape : GetCACaps
Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/06/2022 10:23:22 AM) (Source: CertEnroll) (EventID: 86) (User: AUTORITE NT)
Description: Échec de l’initialisation de l’inscription du certificat SCEP pour WORKGROUP\LAPTOP-005PNI0L$ via https://AMD-KeyId-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net/templates/Aik/scep :

GetCACaps
GetCACaps: Not Found
{"Message":"The authority \"amd-keyid-578c545f796951421221a4a578acdb5f682f89c8.microsoftaik.azure.net\" does not exist."}
HTTP/1.1 404 Not Found
Date: Tue, 06 Sep 2022 08:23:21 GMT
Content-Length: 121
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: c6a86fc8-bec8-4409-be61-852b6d5f86e3

Méthode : GET(1046ms)
Étape : GetCACaps
Non trouvé (404). 0x80190194 (-2145844844 HTTP_E_STATUS_NOT_FOUND)

Error: (09/06/2022 09:07:42 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante firefox.exe, version : 104.0.1.8276, horodatage : 0x630cdd1c
Nom du module défaillant : xul.dll, version : 104.0.1.8276, horodatage : 0x630cde73
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000013da65b
ID du processus défaillant : 0xe84
Heure de début de l’application défaillante : 0x01d8c1bf1553acc1
Chemin d’accès de l’application défaillante : C:\Program Files\Mozilla Firefox\firefox.exe
Chemin d’accès du module défaillant: C:\Program Files\Mozilla Firefox\xul.dll
ID de rapport : 8066ab42-f831-455d-8f6c-054d15020408
Nom complet du package défaillant :
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (09/06/2022 06:45:10 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x000000d1 (0x00000000b43a5f78, 0x0000000000000002, 0x0000000000000000, 0xfffff800aac0e303). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 7d2f0cc5-fd27-4d1f-8f4b-2d942636c4ab.

Error: (09/06/2022 06:44:48 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 18:37:26 le ‎06/‎09/‎2022 n’était pas prévu.

Error: (09/06/2022 06:38:21 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-005PNI0L)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca

Error: (09/06/2022 06:32:56 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-005PNI0L)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca

Error: (09/06/2022 01:05:18 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-005PNI0L)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca

Error: (09/06/2022 01:04:23 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:38:00 le ‎06/‎09/‎2022 n’était pas prévu.

Error: (09/06/2022 11:08:56 AM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-005PNI0L)
Description: Impossible de démarrer un serveur DCOM : Microsoft.MicrosoftEdge_44.19041.1266.0_neutral__8wekyb3d8bbwe!MicrosoftEdge en tant que Non disponible/Non disponible. L’erreur
« 2147942402 »
s’est produite lors du démarrage de la commande :
"C:\WINDOWS\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe" -ServerName:MicrosoftEdge.AppXdnhjhccw3zf0j06tkg3jtqr00qdm0khc.mca

Error: (09/06/2022 11:08:00 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 10:53:02 le ‎06/‎09/‎2022 n’était pas prévu.


CodeIntegrity:
===============
Date: 2022-08-25 17:47:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2022-08-25 17:46:30
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.


==================== Infos Mémoire ===========================

BIOS: AMI F.54 04/15/2020
Carte mère: HP 85B3
Processeur: AMD Ryzen 7 3700U with Radeon Vega Mobile Gfx
Pourcentage de mémoire utilisée: 26%
Mémoire physique - RAM - totale: 14250.29 MB
Mémoire physique - RAM - disponible: 10435.68 MB
Mémoire virtuelle totale: 28586.29 MB
Mémoire virtuelle disponible: 23993.69 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:118.45 GB) (Free:33.95 GB) (Model: SanDisk SD9SN8W-128G-1006) NTFS
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:917.32 GB) (Model: WDC WD10SPZX-60Z10T0) NTFS
Drive f: (ROUGE) (Removable) (Total:14.63 GB) (Free:10.52 GB) FAT32

\\?\Volume{321058f8-bd57-45f4-9094-d1be9599f908}\ (Windows RE tools) (Fixed) (Total:0.51 GB) (Free:0.07 GB) NTFS
\\?\Volume{22beb902-b9b7-41e8-a1ed-7dc9d2534cd6}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.19 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 119.2 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 604ACC25)

Partition: GPT.

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 14.6 GB) (Disk ID: 5F42D45C)
Partition 1: (Active) - (Size=14.6 GB) - (Type=0C)

==================== Fin de Addition.txt =======================