Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-01-2023
Exécuté par damien (18-01-2023 18:11:37)
Exécuté depuis C:\Users\damien\Downloads
Microsoft Windows 10 Famille Version 21H2 19044.2486 (X64) (2021-03-26 21:20:30)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-59585300-983056647-3162816678-500 - Administrator - Disabled)
damien (S-1-5-21-59585300-983056647-3162816678-1001 - Administrator - Enabled) => C:\Users\damien
DefaultAccount (S-1-5-21-59585300-983056647-3162816678-503 - Limited - Disabled)
Invité (S-1-5-21-59585300-983056647-3162816678-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-59585300-983056647-3162816678-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

12 Labours of Hercules III: Girl Power (HKLM-x32\...\WTA-b63e59e6-aade-483b-88e9-18701e1bcf7e) (Version: 3.0.2.118 - WildTangent) Hidden
abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2002 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.08.2003 - Acer Incorporated)
abMusic (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 3.01.2003.6 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3024 - Acer Incorporated)
Acer Drive (HKLM-x32\...\{5D45E67C-B04E-411F-93BB-947DAAF355D5}) (Version: 1.00.3009 - Acer Incorporated)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3001 - Acer Incorporated)
Acer PanelOnOff (HKLM-x32\...\{55F2D48B-6022-4722-9B55-47CC4FA7DBD6}) (Version: 1.0.4.506 - Acer)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)
Acer Quick Access (HKLM\...\{E3678E72-78E3-4F91-A9FB-913876FF6DA2}) (Version: 2.00.3006 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 2.02.3000 - Acer Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.1.201 - Adobe Systems, Inc.)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17354 - Microsoft Corporation)
Avast Update Helper (HKLM-x32\...\{19C3AB22-3718-4E4D-B203-242F5001565B}) (Version: 1.8.1579.3 - AVAST Software) Hidden
Avast Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1065.0 - AVAST Software) Hidden
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 6.07 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{90C6971F-ABF1-4FBF-BD98-24F14C5F5AB4}) (Version: 3.6.2204.08001 - Microsoft Corporation)
CyberLink PhotoDirector 5 (HKLM-x32\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.6623.01 - CyberLink Corp.) Hidden
CyberLink PhotoDirector 5 (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.6623.01 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM-x32\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.3602.01 - CyberLink Corp.) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.3602.01 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5527.01 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.5527.01 - CyberLink Corp.)
Dolby Audio X2 Windows API SDK (HKLM\...\{6A478BF2-F67F-4ABC-A7F1-B6B5BA862371}) (Version: 0.5.2.32 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{7DA57EF8-9D20-4126-AF15-D0CC97D0C017}) (Version: 0.4.0.22 - Dolby Laboratories, Inc.)
eBay Worldwide (HKLM-x32\...\{3DC26EA7-03E3-4353-9424-EEB7A34A7504}) (Version: 2.5.0427 - OEM)
Étude pour l'amélioration du produit HP DeskJet 3630 series (HKLM\...\{10966CDF-7E02-492D-92FA-11B476A7DD6D}) (Version: 35.0.61.54677 - Hewlett-Packard Co.)
Foxit PhantomPDF (HKLM-x32\...\{A4023BDF-82D5-412D-9D58-8C2819EBFE2E}) (Version: 7.0.410.326 - Foxit Software Inc.)
Game Explorer Categories - genres (HKLM-x32\...\WildTangentGameProvider-acer-genres) (Version: 13.0.0.6 - WildTangent, Inc.)
Game Explorer Categories - main (HKLM-x32\...\WildTangentGameProvider-acer-main) (Version: 13.0.0.6 - WildTangent, Inc.)
Google Earth Pro (HKLM\...\{F27DBA46-80E1-4858-9285-19198FFFBF3D}) (Version: 7.3.6.9345 - Google)
Google SketchUp 8 (HKLM-x32\...\{E3F4EA31-41D7-4789-9AC4-F26CDAF797BA}) (Version: 3.0.14354 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 109.0.5414.75 - Google LLC)
Home Makeover (HKLM-x32\...\WTA-b80e62f6-bd83-4d1c-b188-9a7566302fde) (Version: 3.0.2.59 - WildTangent) Hidden
HP DeskJet 3630 series Aide (HKLM-x32\...\{08F5B0C6-D24D-4327-BA56-F8E00C1A6878}) (Version: 35.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel(R) Chipset Device Software (HKLM\...\{55398EAC-F58E-4F19-B553-BDF8B9EFD839}) (Version: 10.1.1.9 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{BFACB3F5-7091-429E-A6A9-59C0696B710E}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{CCCB484E-79D5-4398-9377-CA6EEB6B53AE}) (Version: 11.0.0.1158 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{DF17C0DB-76D8-4A45-B26E-674F8455B803}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4703 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{D15F3A13-B4B5-417C-859F-1666CFE06263}) (Version: 17.1.1525.1443 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (HKLM\...\{61D0924A-4791-4AD5-B6C6-38E3420B6D53}) (Version: 18.11.0.0664 - Intel Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden
Jewel Match 3 (HKLM-x32\...\WTA-a641f472-4494-4628-b350-7eb0e746cc94) (Version: 2.2.0.97 - WildTangent) Hidden
Jewel Match Snowscapes (HKLM-x32\...\WTA-320b7adc-1fa0-4877-b085-13009e740542) (Version: 3.0.2.118 - WildTangent) Hidden
Logiciel de base du périphérique HP DeskJet 3630 series (HKLM\...\{B29E7B47-4F32-4404-8336-24A88459F5C9}) (Version: 35.0.61.54677 - Hewlett-Packard Co.)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{c92e37dd-de51-4a9e-abfc-54c4b71d1b72}) (Version: 18.11.0 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Magic Academy (HKLM-x32\...\WTA-76526ecd-371e-434f-8922-07f6339568e1) (Version: 2.2.0.97 - WildTangent) Hidden
Malwarebytes version 4.5.4.168 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.4.168 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 109.0.1518.55 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 109.0.1518.52 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{9085040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-59585300-983056647-3162816678-1001\...\OneDriveSetup.exe) (Version: 23.002.0102.0001 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Mozilla Firefox (x86 en-US) (HKLM-x32\...\Mozilla Firefox 94.0.2 (x86 en-US)) (Version: 94.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 94.0.2.7993 - Mozilla)
OpenOffice 4.1.2 (HKLM-x32\...\{DCB1B348-C94E-4D6D-8CE0-7D9DA5CF663E}) (Version: 4.12.9782 - Apache Software Foundation)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Polar Bowler 1st Frame (HKLM-x32\...\WTA-0e89ac60-447b-46aa-ab2e-0a1a07cf8c45) (Version: 3.0.2.59 - WildTangent) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7624 - Realtek Semiconductor Corp.)
Revo Uninstaller 2.4.2 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.4.2 - VS Revo Group, Ltd.)
Rory's Restaurant (HKLM-x32\...\WTA-9a2aa148-7dd7-4b38-be53-5b4459c80da0) (Version: 3.0.2.126 - WildTangent) Hidden
Runefall (HKLM-x32\...\WTA-bb37d6a1-7bd9-4ca2-90b6-1d0b79e17f9c) (Version: 3.0.2.126 - WildTangent) Hidden
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Unity Web Player (HKU\S-1-5-21-59585300-983056647-3162816678-1001\...\UnityWebPlayer) (Version: 5.3.8f2 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden
UpdateAssistant (HKLM-x32\...\{139493B2-F1BC-4F05-A974-B49297C1EB04}) (Version: 1.1.0.0 - Microsoft Corporation) Hidden
Vegas World (HKLM-x32\...\WildTangentGDF-acer-vegasworld) (Version: 13.0.0.6 - WildTangent) Hidden
Villagers and Heroes (HKLM-x32\...\WildTangentGDF-acer-villagersandheroes) (Version: 13.0.0.6 - WildTangent) Hidden
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-acer) (Version: 4.0.11.16 - WildTangent) Hidden

Packages:
=========
Acer Explorer -> C:\Program Files\WindowsApps\AcerIncorporated.AcerExplorer_2.0.3007.0_x86__48frkmn4z8aw4 [2016-08-23] (Acer Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-09] (Autodesk Inc.)
Better Audio Editor -> C:\Program Files\WindowsApps\36059XiaoyaStudio.BetterAudio_2.0.3.0_x86__ngh7ertwt50re [2022-05-14] (Xiaoya Lab)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.234.200.0_x64__kgqvnymyfvs32 [2023-01-14] (king.com)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-11] (Microsoft Corporation)
Cooking Fever -> C:\Program Files\WindowsApps\NORDCURRENT.COOKINGFEVER_16.0.5.0_x86__m9bz608c1b9ra [2022-10-05] (Nordcurrent)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_141.2.441.0_x64__v10z8vjag6ke6 [2022-12-07] (HP Inc.)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.19.0_neutral__8xx8rvfyw5nnt [2021-11-04] (Instagram)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa [2023-01-06] (Apple Inc.) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-11] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-11] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-01-16] (MAGIX)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.98.1805.0_x64__mcm4njqhnhss8 [2022-02-17] (Netflix, Inc.)
PhotoScape X -> C:\Program Files\WindowsApps\MooiiTech.PhotoScapeX_4.2.1.0_x64__f5eddttrpssna [2022-01-28] (Mooii Tech)
Solitaire & Casual Games -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.15.12020.0_x64__8wekyb3d8bbwe [2023-01-06] (Microsoft Studios) [MS Ad]
Time's to guess up -> C:\Program Files\WindowsApps\29009JrmyBeuchot.Timestoguessup_1.1.1.8_x86__9zy5np70hyxgj [2018-07-22] (Jérémy Beuchot)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2021-06-11] (Twitter Inc.)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-01-27] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-02-19] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-07-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-02-19] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\damien\Desktop\PRONOTE.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=damjacgfhbgmnocfmodhaabgefjmfcje
ShortcutWithArgument: C:\Users\damien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\MovieStarPlanet.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=oalgdegldonelhamolpalnofkjedacdp
ShortcutWithArgument: C:\Users\damien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\PRONOTE (1).lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=damjacgfhbgmnocfmodhaabgefjmfcje
ShortcutWithArgument: C:\Users\damien\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\pronote.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=dkfgmeplnemchmmngnbhgfbkffdmagph
ShortcutWithArgument: C:\Users\damien\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PRONOTE.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=damjacgfhbgmnocfmodhaabgefjmfcje

==================== Modules chargés (Avec liste blanche) =============

2015-09-25 13:50 - 2015-09-25 13:50 - 000194048 _____ () [Fichier non signé] C:\Program Files (x86)\Acer\Acer Drive\curllib.dll
2015-09-25 13:50 - 2015-09-25 13:50 - 000110592 _____ () [Fichier non signé] C:\Program Files (x86)\Acer\Acer Drive\OpenLDAP.dll
2022-01-30 18:58 - 2022-01-30 18:58 - 001469440 _____ () [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_141.2.441.0_x64__v10z8vjag6ke6\e_sqlite3.dll
2015-09-25 13:50 - 2015-09-25 13:50 - 000077910 _____ (Carnegie Mellon University) [Fichier non signé] C:\Program Files (x86)\Acer\Acer Drive\libsasl.dll
2022-12-07 18:33 - 2022-12-07 18:33 - 126848512 _____ (HP Development Company, L.P.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_141.2.441.0_x64__v10z8vjag6ke6\HP.Smart.dll
2022-08-25 11:19 - 2022-08-25 11:20 - 008856064 _____ (HP Development Company, L.P.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_141.2.441.0_x64__v10z8vjag6ke6\HPPageLift.UWP.dll
2022-12-07 18:33 - 2022-12-07 18:33 - 000134144 _____ (HP Inc) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_141.2.441.0_x64__v10z8vjag6ke6\HP.OneDriver.UserForms.dll
2022-03-21 19:06 - 2022-03-21 19:08 - 000013824 _____ (HP Inc.) [Fichier non signé] C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_141.2.441.0_x64__v10z8vjag6ke6\NativeRpcClient.dll
2015-09-25 13:50 - 2015-09-25 13:50 - 001016832 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Acer\Acer Drive\LIBEAY32.dll
2015-09-25 13:50 - 2015-09-25 13:50 - 000200192 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Acer\Acer Drive\SSLEAY32.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\damien\Desktop\absl.jpeg:3or4kl4x13tuuug3Byamue2s4b [93]
AlternateDataStreams: C:\Users\damien\Desktop\absl.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\damien\Desktop\attestation.jpeg:3or4kl4x13tuuug3Byamue2s4b [93]
AlternateDataStreams: C:\Users\damien\Desktop\attestation.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\damien\Desktop\carte grise.jpeg:3or4kl4x13tuuug3Byamue2s4b [93]
AlternateDataStreams: C:\Users\damien\Desktop\carte grise.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\damien\Desktop\certif scolaire ja.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\damien\Desktop\certif scolaire ja.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\damien\Desktop\diac.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\damien\Desktop\diac.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\damien\Desktop\facturedentiste.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\damien\Desktop\facturedentiste.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKU\S-1-5-21-59585300-983056647-3162816678-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer15.msn.com/?pc=ACTE
HKU\S-1-5-21-59585300-983056647-3162816678-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer15.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-59585300-983056647-3162816678-1001 -> DefaultScope {181CDA6F-5E05-4D3E-BE0B-BA8C712CA714} URL =
SearchScopes: HKU\S-1-5-21-59585300-983056647-3162816678-1001 -> {181CDA6F-5E05-4D3E-BE0B-BA8C712CA714} URL =

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE trusted site: HKU\S-1-5-21-59585300-983056647-3162816678-1001\...\amazon.fr -> hxxps://amazon.fr

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-07-10 12:04 - 2019-01-04 12:08 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-59585300-983056647-3162816678-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\damien\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{20552d7f-3d50-4438-92fe-507a2ce74e2e}.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

Network Binding:
=============
Wi-Fi: Realtek IOAC Protocol Driver -> rtk_rtkioac60 (enabled)
Ethernet: Realtek IOAC Protocol Driver -> rtk_rtkioac60 (enabled)
Connexion réseau Bluetooth: Realtek IOAC Protocol Driver -> rtk_rtkioac60 (enabled)

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKU\S-1-5-21-59585300-983056647-3162816678-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{61105E31-13F9-4B54-AC5C-EC98ACC37205}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{1B7FF6B4-8A9F-45A0-AF35-FA397426EA82}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{2B9B302A-71EA-4001-89E3-615D2DC2393A}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector12\PDR10.EXE => Pas de fichier
FirewallRules: [{6EB3F6A7-29B7-4A48-8ECC-E06F34C74996}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CEBE3687-9E21-4812-B56D-341D95D9C7C5}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{11BB2DD2-F716-4A50-8225-958694968968}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{47BB031B-1A09-48BD-B791-583E8EE4CCCA}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{42AD038D-B62B-467D-AE44-24BAAB0C4461}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{C8B36A94-234B-482B-826A-0D829DFAC362}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{629288F0-DF49-412D-BF2F-087C9ABE6C47}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{B08DF579-C0A0-4EE8-A60C-CF783CC07ACC}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{FE72E68B-1036-4B31-A573-B39F14C87F43}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{F5E86A3E-FDAC-4839-A0EA-BCA036F30AB2}] => (Allow) C:\Program Files (x86)\Acer\Acer Drive\AcerDriveProxy.exe (Acer Incorporated -> Acer Incorporated)
FirewallRules: [{B63A1D78-77CA-45AA-829B-1A26F8E1CD36}] => (Allow) C:\Program Files (x86)\Acer\Acer Drive\AcerDriveProxy.exe (Acer Incorporated -> Acer Incorporated)
FirewallRules: [{1C8D68D5-1C3C-4515-97D4-253478EC9867}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{D5F8EA93-4B64-4979-822C-AB29B008FE62}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe => Pas de fichier
FirewallRules: [{63B2CCA8-3030-49DE-AF14-03DF0DB30790}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe => Pas de fichier
FirewallRules: [{1B80D5FC-09C3-4C75-B5C1-CE1D5C4959B5}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe => Pas de fichier
FirewallRules: [{1E35674C-8FB3-411A-B370-6EB5EDC67D48}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{46623036-9E1D-41AC-BD4A-14FF447F71A6}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{4BC30FE2-35B3-4F01-A9E4-A76EDE8878FD}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe => Pas de fichier
FirewallRules: [{1ED19A8D-515F-458E-BB1B-E661BBF79476}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe => Pas de fichier
FirewallRules: [{1588BE3E-6ADB-4F81-85B6-31C56AFAAEFB}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe => Pas de fichier
FirewallRules: [{0C183165-0C8C-4431-9A37-A70143E2F2BC}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe => Pas de fichier
FirewallRules: [{B1D9A612-17E1-4D03-8FF6-197B326D0E8C}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe => Pas de fichier
FirewallRules: [{5549CD72-5A80-457B-AF25-09D1FAD56741}] => (Allow) C:\Program Files (x86)\Acer\abMedia\DMCDaemon.exe => Pas de fichier
FirewallRules: [{ECC1F8FC-78DE-43B5-B7CC-676F51F18597}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe => Pas de fichier
FirewallRules: [{2DD3F9BA-C7D7-4999-AF4B-36E918207CB4}] => (Allow) C:\Program Files (x86)\Acer\abMedia\WindowsUpnpMV.exe => Pas de fichier
FirewallRules: [{92E305F0-77B9-484E-ABD5-DB8366CCA59F}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{0470FE4E-A80C-44C5-A614-941BE48A90B0}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{A395BC5A-B85D-49F5-B657-FE4EA91ED23C}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{37C2D8A8-59D0-4966-8260-EB7EC4D1EC3D}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{C5CC850D-96D9-44A1-9374-CB4E6325373A}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{3C655005-2A9B-494F-890C-14587437A8F8}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{A40A5833-C2B3-4126-95A8-E6BFE178F0EB}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{85C389B7-7B21-4D1F-AA16-CEA4E4C86C38}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{9E183AB1-461A-4550-9F17-48B371399AA6}] => (Allow) C:\Program Files (x86)\Acer\Acer Drive\AcerDriveProxy.exe (Acer Incorporated -> Acer Incorporated)
FirewallRules: [{DA14DC26-EC22-493A-A402-51953A9A2E85}] => (Allow) C:\Program Files\HP\HP DeskJet 3630 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{554E8359-658F-42FC-A8AC-0278B0DDC365}] => (Allow) LPort=5357
FirewallRules: [{13C02B1B-7D05-4F18-B6D3-1518FEFC7FC7}] => (Allow) C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Development Company, LP)
FirewallRules: [{05DC899F-4575-4B7D-99AB-D3841E1F1959}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{6DCEC013-D5A1-4D61-87DC-54D0C08A267E}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{AA66BD00-0F05-4C44-9D95-8C0F80DEC55A}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{0067F233-5521-4771-84A8-601AF6D5A6D3}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{45A46BB0-B07A-4E48-BE72-49E149557774}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{D8765051-A066-41C4-9DE6-2EE9A41425F2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{67AB6A2C-0244-4384-BA4E-E588C418E646}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{01665B56-30CF-4468-BAB1-FE758F6D7E60}] => (Allow) C:\Program Files (x86)\Acer\abMusic\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{47EFB6F5-0448-4A7C-B11D-32035701C5D9}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{B4B25C1B-E512-4CD3-A1DE-D063F109FF8A}] => (Allow) C:\Program Files (x86)\Acer\abMusic\WindowsUpnpMV.exe (Acer Incorporated -> acer)
FirewallRules: [{2271D18D-ED6C-4174-AE35-4C961C12CBFD}] => (Allow) C:\Users\damien\AppData\Local\Temp\7zS4B20\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [{050A7132-B2D1-45C3-870B-911C58283235}] => (Allow) C:\Users\damien\AppData\Local\Temp\7zS4B20\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [{FA6E086F-1B82-4D1A-8E50-7731B33A6AB3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [{CF6A3AB7-D18E-479F-A546-C5C808181E84}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform)
FirewallRules: [TCP Query User{A16B7F3F-F1E9-497A-ABF3-FD3F6A887486}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{E96D2474-2AC4-45EB-BCFC-D525D1A8B085}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{C0A6DE1B-E005-4B04-8247-C739AAFFA2A7}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{517975AC-4576-43FB-AADB-1DB98D577731}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B113173B-78CB-42AA-92DC-CB535EEC49D8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{35F51243-8298-4EF5-A51F-4989448516C8}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F487BE73-2760-47B4-99BF-430699098581}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{35CCB402-93AA-4B93-9257-983702A7B783}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9114C98A-D358-4319-8AED-555051F20675}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C52A4597-14C0-46ED-AD09-77C97F936BB0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12127.1.57051.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{114891DF-3920-4831-AE8B-741B31A8247B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{58E61C13-5D78-4EA0-A9B7-73896DAB045B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{62E4D027-31C2-41A1-9B77-12806F9D7152}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{84355EEF-B4D3-4191-868D-390A6F29367B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.92.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{5B0FB9C9-84B0-4E89-BAE8-4DEC53954B16}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{D23001F8-2697-4175-823F-2E5CA01CDA8D}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\109.0.1518.52\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Points de restauration =========================


==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (01/18/2023 06:14:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Microsoft.SharePoint.exe, version : 23.2.102.1, horodatage : 0xf3432c8c
Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.789, horodatage : 0x2bd748bf
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000007286e
ID du processus défaillant : 0xce0
Heure de début de l’application défaillante : 0x01d92b5fb09fe53b
Chemin d’accès de l’application défaillante : C:\Users\damien\AppData\Local\Microsoft\OneDrive\23.002.0102.0001\Microsoft.SharePoint.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll
ID de rapport : b4b9ff98-d561-4593-946a-4dac55a70e71
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/18/2023 06:07:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Microsoft.SharePoint.exe, version : 23.2.102.1, horodatage : 0xf3432c8c
Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.789, horodatage : 0x2bd748bf
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000007286e
ID du processus défaillant : 0x3c7c
Heure de début de l’application défaillante : 0x01d92b5edc226227
Chemin d’accès de l’application défaillante : C:\Users\damien\AppData\Local\Microsoft\OneDrive\23.002.0102.0001\Microsoft.SharePoint.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll
ID de rapport : 4acccaf9-9344-4d52-bbce-aa31d915d1a2
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/18/2023 06:03:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Microsoft.SharePoint.exe, version : 23.2.102.1, horodatage : 0xf3432c8c
Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.789, horodatage : 0x2bd748bf
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000007286e
ID du processus défaillant : 0x26a8
Heure de début de l’application défaillante : 0x01d92b5e05008f00
Chemin d’accès de l’application défaillante : C:\Users\damien\AppData\Local\Microsoft\OneDrive\23.002.0102.0001\Microsoft.SharePoint.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll
ID de rapport : 649c4b2b-d054-4078-a9c6-25228da43605
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/18/2023 05:52:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Microsoft.SharePoint.exe, version : 23.2.102.1, horodatage : 0xf3432c8c
Nom du module défaillant : ucrtbase.dll, version : 10.0.19041.789, horodatage : 0x2bd748bf
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000007286e
ID du processus défaillant : 0x271c
Heure de début de l’application défaillante : 0x01d92b5d29968484
Chemin d’accès de l’application défaillante : C:\Users\damien\AppData\Local\Microsoft\OneDrive\23.002.0102.0001\Microsoft.SharePoint.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\ucrtbase.dll
ID de rapport : ce2bba8c-98ba-4f9a-bab9-9b460e7f6e86
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (01/18/2023 05:47:24 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (01/18/2023 05:47:23 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (01/18/2023 05:38:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.


Opération :
Opération asynchrone en cours d’exécution

Contexte :
État actuel: DoSnapshotSet

Error: (01/18/2023 05:37:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service Avast Tools since QueryServiceConfig API failed

System Error:
Le fichier spécifié est introuvable.
.


Erreurs système:
=============
Error: (01/18/2023 05:49:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (01/18/2023 05:49:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Cache de police de Windows Presentation Foundation 3.0.0.0.

Error: (01/15/2023 06:01:05 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Service de stockage est en attente de démarrage.

Error: (01/15/2023 05:58:55 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Service Broker du moniteur d'exécution System Guard est en attente de démarrage.

Error: (01/15/2023 05:58:10 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Serveur de trame de la Caméra Windows s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/15/2023 05:56:21 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Intel(R) Management and Security Application Local Management Service est en attente de démarrage.

Error: (01/15/2023 05:54:04 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Service de transfert intelligent en arrière-plan est en attente de démarrage.

Error: (01/15/2023 05:51:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.


CodeIntegrity:
===============
Date: 2023-01-18 16:37:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2023-01-18 16:35:29
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.


==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. R01-A2 01/11/2016
Carte mère: Acer Aspire Z3-705
Processeur: Intel(R) Pentium(R) 3805U @ 1.90GHz
Pourcentage de mémoire utilisée: 84%
Mémoire physique - RAM - totale: 4008.58 MB
Mémoire physique - RAM - disponible: 616.46 MB
Mémoire virtuelle totale: 5544.58 MB
Mémoire virtuelle disponible: 1472.53 MB

==================== Lecteurs ================================

Drive c: (Acer) (Fixed) (Total:465.46 GB) (Free:397.25 GB) (Model: WDC WD10JPVX-22JC3T0) NTFS
Drive d: (DATA) (Fixed) (Total:465.46 GB) (Free:461.91 GB) (Model: WDC WD10JPVX-22JC3T0) NTFS

\\?\Volume{566fda94-4b69-4ee2-95aa-d1a0d981912f}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
\\?\Volume{091d9096-199a-45ee-9321-abd047c06349}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 759BE16F)

Partition: GPT.

==================== Fin de Addition.txt =======================