Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-06-2019
Exécuté par thier (01-07-2019 16:47:55)
Exécuté depuis C:\Users\thier\Downloads
Windows 10 Home Version 1903 18362.207 (X64) (2019-06-19 11:11:39)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-1028830518-859416871-2898031174-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1028830518-859416871-2898031174-503 - Limited - Disabled)
Invité (S-1-5-21-1028830518-859416871-2898031174-501 - Limited - Disabled)
thier (S-1-5-21-1028830518-859416871-2898031174-1001 - Administrator - Enabled) => C:\Users\thier
WDAGUtilityAccount (S-1-5-21-1028830518-859416871-2898031174-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Emsisoft Anti-Malware (Disabled - Up to date) {67773CDD-EA83-AD98-A2ED-386463EB3B0D}
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Bitdefender Antivirus (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}
FW: Bitdefender Pare-feu (Enabled) {362C5A58-E860-6396-9204-BEEEF20CA463}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.207 - Adobe)
Amazon Kindle (HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\Amazon Kindle) (Version: 1.25.1.52064 - Amazon)
Apple Application Support (32 bits) (HKLM-x32\...\{C1BCFECF-6EC2-4750-9072-5E2489423F8F}) (Version: 7.5 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{B202C7F5-7DE3-4FBF-B259-E70E625F56FC}) (Version: 7.5 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B5A46811-3612-4DA5-8A5A-E6DED5D7C523}) (Version: 12.2.1.12 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 23.0.8.115 - Bitdefender)
Bitdefender Device Management (HKLM\...\Bitdefender Device Management) (Version: 23.0.22.104 - Bitdefender)
Bitdefender Home Scanner (HKLM\...\Bitdefender Home Scanner) (Version: 1.0.6.146 - Bitdefender)
Bitdefender Total Security (HKLM\...\Bitdefender) (Version: 23.0.16.72 - Bitdefender)
Bitdefender VPN (HKLM\...\Bitdefender VPN) (Version: 23.0.8.665 - Bitdefender)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.70.0.2106 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.57 - Piriform)
CPUID HWMonitor 1.39 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.39 - CPUID, Inc.)
Debitest (HKLM\...\{FDC24E90-726E-4ACE-8690-8FA42AC5C729}) (Version: 1.3.0 - Prestafind)
EaseUS Todo Backup Home 11.5 Trial (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 11.5 - CHENGDU YIWO Tech Development Co., Ltd)
EasySMX Gaming Mouse Software 1.0 (HKLM-x32\...\EasySMX Gaming Mouse Software) (Version: 1.0 - EasySMX Gaming Mouse Software) <==== ATTENTION
e-Carte Bleue Société Générale (HKLM-x32\...\{C55A3E95-021D-4C7B-A8CA-E66BD27468FD}) (Version: 5.6.0.0 - e-Carte Bleue Société Générale)
Étude pour l'amélioration du produit HP OfficeJet 3830 series (HKLM\...\{66D05EEC-68F7-4789-8FBF-58E5036E106E}) (Version: 40.11.1119.1786 - HP Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.5.0.20723 - Foxit Software Inc.)
Glary Utilities PRO 5.121 (HKLM-x32\...\Glary Utilities 5) (Version: 5.121.0.146 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 75.0.3770.100 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
HitmanPro 3.7 (HKLM\...\HitmanPro38) (Version: 3.8.15.306 - SurfRight B.V.)
HP Dropbox Plugin (HKLM-x32\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP)
HP OfficeJet 3830 series Aide (HKLM-x32\...\{558AAE02-517F-43F5-A56B-83C2FA49084D}) (Version: 35.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP Support Solutions Framework (HKLM-x32\...\{1E7FD6C6-0112-4BDA-A488-C6245E105BFB}) (Version: 12.10.49.21 - HP Inc.)
iCloud (HKLM\...\{DA6D808E-3629-4933-8FB3-583F9BCB0DEF}) (Version: 7.12.0.14 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1069 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4836 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.7.0.1009 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1725.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{df682aff-4294-4ad1-aaa7-276931d5781f}) (Version: 1.49.166.0 - Intel Corporation) Hidden
Intel® Processor Identification Utility (HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\Utilitaire d'identification du processeur Intel® 6.0.0211) (Version: 6.0.0211 - Intel Corporation)
iTunes (HKLM\...\{C61D1957-6534-4B61-AB35-1F115D41CFD5}) (Version: 12.9.5.7 - Apple Inc.)
Kodi (HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\Kodi) (Version: - XBMC Foundation)
Light Image Resizer 5.1.4.1 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.1.4.1 - ObviousIdea)
Logiciel de base du périphérique HP OfficeJet 3830 series (HKLM\...\{05998036-A86E-47EF-9E58-CAF15924DD20}) (Version: 40.11.1119.1786 - HP Inc.)
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{226be6c3-8e08-4d52-bd3a-d361008448c5}) (Version: 10.1.1.37 - Intel(R) Corporation) Hidden
Mailbird (HKLM\...\{7831EF79-68DF-4D0C-A155-E10BD465DAC9}) (Version: 2.5.43 - Mailbird)
Malwarebytes version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft Office 365 ProPlus - fr-fr (HKLM\...\O365ProPlusRetail - fr-fr) (Version: 16.0.11727.20230 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\OneDriveSetup.exe) (Version: 19.086.0502.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{5d0723d3-cff7-4e07-8d0b-ada737deb5e6}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{35b83883-40fa-423c-ae73-2aff7e1ea820}) (Version: 12.0.40649.5 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.16.27012 (HKLM-x32\...\{67f67547-9693-4937-aa13-56e296bd40f6}) (Version: 14.16.27012.6 - Microsoft Corporation)
Mises à jour NVIDIA 37.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 37.0.0.0 - NVIDIA Corporation) Hidden
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 67.0.3 - Mozilla)
Mozilla Thunderbird 60.7.1 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 60.7.1 (x86 en-US)) (Version: 60.7.1 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.19.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.19.0.94 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.16 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11727.20230 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20230 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11727.20230 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.11727.20230 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation)
Opera Stable 60.0.3255.170 (HKLM-x32\...\Opera 60.0.3255.170) (Version: 60.0.3255.170 - Opera Software)
Outil de téléchargement USB/DVD Windows 7 (HKLM-x32\...\{5F8683B5-5056-411C-B808-B289E29E9BBB}) (Version: 1.0.30 - Microsoft Corporation)
Panneau de configuration NVIDIA 430.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 430.86 - NVIDIA Corporation) Hidden
PDF Architect 7 (HKLM-x32\...\PDF Architect 7) (Version: 7.0.21.1534 - pdfforge GmbH)
PDF Architect 7 Create Module (HKLM\...\{92B93B1C-433D-4271-875C-B13AF5F714D7}) (Version: 7.0.23.3193 - pdfforge GmbH) Hidden
PDF Architect 7 Edit Module (HKLM\...\{E3032061-5B97-47A6-BEDA-A025BD37B07F}) (Version: 7.0.23.3193 - pdfforge GmbH) Hidden
PDF Architect 7 View Module (HKLM\...\{FBD5D60A-B8C5-4626-A68F-6100E9BDB156}) (Version: 7.0.23.3193 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.5.0 - pdfforge GmbH)
PE-PC217 (HKLM-x32\...\{5AE06ADD-5EDC-425A-9DE6-52CC045DFB24}_is1) (Version: 1.0.4 - PTX)
Photo d'identite Facile v4.2 (HKLM-x32\...\Photo d'identite Facile_is1) (Version: - Jsoft.fr)
PhotoFiltre 7 (HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\PhotoFiltre 7) (Version: - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.34.307.2019 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8004 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 4.1.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.1.0 - VS Revo Group, Ltd.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
SSDlife Pro (HKLM-x32\...\{6F104B6D-535A-4D27-9A11-8525368AEB1F}) (Version: 2.5.82 - BinarySense Inc.)
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.5.10.66 - Synaptics Incorporated)
Utilitaire d'identification du processeur Intel® (HKLM-x32\...\{BA3CF118-924B-49D3-94FD-63F79DCC0EBB}) (Version: 6.0.0211 - Intel Corporation) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - Intel Corporation Inc.) Hidden
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1-2) (Version: 1.0.54.1 - Intel Corporation Inc.)
Who Is On My Wifi version 4.0.5 (HKLM-x32\...\{010D45A1-093D-4534-8147-4E10E80F81CC}_is1) (Version: 4.0.5 - IO3O LLC)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

Packages:
=========
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1530.2.0_x86__kgqvnymyfvs32 [2019-06-13] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.142.300.0_x86__kgqvnymyfvs32 [2019-06-26] (king.com)
Courrier et calendrier -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11629.20174.0_x64__8wekyb3d8bbwe [2019-05-30] (Microsoft Corporation) [MS Ad]
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.0.2002.0_x64__rz1tebttyb220 [2019-06-19] (Dolby Laboratories)
Emsisoft Browser Security -> C:\Program Files\WindowsApps\24598Emsisoft.EmsisoftBrowserSecurity_2018.12.10.0_neutral__qx27tcjycwb5c [2019-06-30] (Emsisoft)
Hidden City : Jeu d’objets cachés -> C:\Program Files\WindowsApps\828B5831.HiddenCityMysteryofShadows_1.29.2900.0_x86__ytsefhwckbdv6 [2019-05-30] (G5 Entertainment AB)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.575.0_x64__v10z8vjag6ke6 [2019-06-29] (HP Inc.)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.1.0.6_x86__h6adky7gbf63m [2019-06-18] (Gameloft.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.11723.0_x64__8wekyb3d8bbwe [2019-06-27] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.4.6132.0_x64__8wekyb3d8bbwe [2019-06-18] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.11.402.0_x64__8wekyb3d8bbwe [2019-05-25] (Microsoft Studios)
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.28.10351.0_x64__8wekyb3d8bbwe [2019-02-12] (Microsoft Corporation) [MS Ad]
SwagButton -> C:\Program Files\WindowsApps\Swagbucks.SwagButton_298.0.0.0_neutral__g7bhjt7rmbyc2 [2019-06-18] (Swagbucks)
WiFi Analyzer -> C:\Program Files\WindowsApps\19965MattHafner.WifiAnalyzer_2.4.1.0_x64__gs5k5vmxr2ste [2019-01-03] (Matt Hafner)

==================== Personnalisé CLSID (Avec liste blanche): ==========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-1028830518-859416871-2898031174-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0x1475627B0063D401B3FC4C7DA522D5010D0000001700000000000000 => Pas de fichier
CustomCLSID: HKU\S-1-5-21-1028830518-859416871-2898031174-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-06-29] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-01-23] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [PDFArchitect7_ManagerExt] -> {21989F59-B260-4302-90C3-E51740E03639} => C:\Program Files\PDF Architect 7\context-menu.dll [2019-04-01] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-05-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-01-23] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-10-22] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki126176.inf_amd64_694219dc1ebc939c\igfxDTCM.dll [2018-01-15] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-05-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-01-23] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)


==================== Modules chargés (Avec liste blanche) ==============

2018-11-07 11:05 - 2016-03-07 19:08 - 001291264 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2018-11-07 11:05 - 2004-10-05 04:08 - 000055808 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2019-03-07 13:34 - 2015-07-09 13:26 - 000839680 _____ () [Fichier non signé] C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\System.Data.SQLite.dll
2018-11-07 11:05 - 2008-11-25 18:18 - 000892928 _____ (Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2019-06-25 16:12 - 2019-06-25 16:12 - 000058368 _____ (Internet Security Corporation) [Fichier non signé] C:\Users\thier\AppData\Local\Programs\Prestafind\Debitest\svcinetsec.exe
2019-03-07 13:34 - 2018-08-02 11:28 - 000013824 _____ (IO3O LLC) [Fichier non signé] C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\shared.dll
2018-10-10 14:59 - 2018-10-10 14:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\AppVIsvSubsystems32.dll
2018-10-10 14:59 - 2018-10-10 14:59 - 000000000 ____L (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\c2r32.dll
2019-03-07 13:34 - 2015-07-09 13:26 - 000422912 _____ (Newtonsoft) [Fichier non signé] C:\Program Files (x86)\IO3O LLC\Who Is On My Wifi\Newtonsoft.Json.dll
2019-06-29 16:50 - 2019-06-29 16:49 - 003147648 _____ (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\thier\AppData\Roaming\ZHP\ZHPCleaner.exe
2019-06-30 08:33 - 2019-06-30 08:32 - 003040640 _____ (Nicolas Coolman -> Nicolas Coolman) [Fichier non signé] C:\Users\thier\AppData\Roaming\ZHP\ZHPDiag3.exe
2018-10-02 15:48 - 2019-02-23 15:53 - 000117248 _____ (pdfforge GmbH) [Fichier non signé] C:\WINDOWS\System32\pdfcmon.dll
2018-12-10 10:29 - 2018-12-10 10:29 - 000438272 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] C:\Program Files\PDF Architect 7\libcurl.dll

==================== Alternate Data Streams (Avec liste blanche) =========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)


==================== Mode sans échec (Avec liste blanche) ===================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé.)


==================== Internet Explorer sites de confiance/sensibles ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Il y a 7941 plus de sites.

IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\123simsen.com -> www.123simsen.com

Il y a 7941 plus de sites.


==================== Autres zones ============================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1028830518-859416871-2898031174-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.

HKLM\...\StartupApproved\StartupFolder: => "Le logiciel de transfert de données OneTouch Reveal®.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Le logiciel de transfert de donn←es OneTouch Revealᆴ.lnk"
HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\StartupApproved\Run: => "CryptoTab Browser"
HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\StartupApproved\Run: => "CryptoTab Update"
HKU\S-1-5-21-1028830518-859416871-2898031174-1001\...\StartupApproved\Run: => "mc_plus"

==================== RèglesPare-feu (Avec liste blanche) ===============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{EEE13CC9-C996-4753-A0A7-9C1ECA0E1386}] => (Allow) C:\Program Files\Opera\60.0.3255.170\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{D10EC35B-2556-48AF-B872-11D12FDC36FA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8CD5F77-BCEE-410F-A110-72455B3E4305}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D8DB44F9-4CD5-448A-9EEC-B8D3085E9374}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{8888576F-66B1-437D-AD34-B01F7C36A66E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FFAC7367-929B-4B77-8D69-BF6CC000C55C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E5750230-937D-4E05-BE74-A8B3E5D96528}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{07D68EA6-B924-4023-AF8C-FD285A0383C2}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{CD8A5F3B-D0D0-498E-97A4-495190FB5496}] => (Allow) C:\Program Files\Opera\60.0.3255.151\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{141968AF-C5D9-4F40-9F4D-3D4DD00C99BC}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{B8921F19-A137-4E67-B11E-568AFFFDF55D}] => (Allow) LPort=5357
FirewallRules: [{80195E44-EF70-40B7-B0CD-F64728A755D5}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{93E46AA6-712D-43E1-965A-1B13AEE88B5D}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2186913B-450D-4155-B255-2ED3B0AADDAF}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{471F3562-4AA0-48CD-9A29-6D4C02FBA823}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2FE2EE7B-4287-4AED-BFC2-0223D9F2573C}] => (Allow) C:\Program Files\HP\HP OfficeJet 3830 series\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{0BB9092E-DC11-49C0-8537-AC8D55EBA870}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3AA03992-A302-49C9-B1CE-4A9E72D5F815}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F28E0315-B9C4-4289-8C62-291B263525D9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BEF567AB-EB04-4B06-A645-056CD703B84A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{36EE006D-E55E-4696-82ED-405326539494}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{6843120B-C31B-498D-B05E-C7BB5F7B5660}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{F2B9BD43-1329-4601-B9D9-19A14A0FBD2C}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{DD78A1B8-8636-4EAB-8BBD-87201A34A450}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{AC6F0569-68E2-4E12-B356-36EF09F1573A}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{AAC5F7D0-02F8-43F3-8E65-FF38997B15A4}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{BEB46A86-5A86-43BD-9DA9-0029E5928781}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{49A82238-5017-4304-A7DB-20EA8EFDAD62}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{79C2B8A5-BD1C-478B-8939-28C114388B72}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{D02B6AF2-517D-4254-A0F3-A1A9B4DC0336}] => (Allow) C:\Program Files\Bitdefender Home Scanner\hvasrv.exe (Bitdefender SRL -> Bitdefender)
FirewallRules: [{AEF21ED5-4660-4738-B106-7730A2674A28}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CB88D1FD-7240-4A5B-B33E-C132D719283D}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C56818EB-FDF0-4AE2-BF97-FF49E3318238}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FC9ABA96-4A97-428B-9533-7A764063754A}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1F1104B1-4127-4436-BFBB-EC97BC3A0C90}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9DD54B75-9767-48F3-B68C-8CBB601547E9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{88F8EFAB-ED90-44FB-ACC3-4EA8275146E1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DD2DE392-CA5D-426B-BF90-D3A5B5920A8A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Points de restauration =========================

01-07-2019 15:54:43 Revo Uninstaller Pro's restore point - SpyHunter 5

==================== Éléments en erreur du Gestionnaire de périphériques =============


==================== Erreurs du Journal des événements: =========================

Erreurs Application:
==================
Error: (07/01/2019 04:45:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3936,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/01/2019 04:15:42 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8384,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/01/2019 04:03:14 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4740,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (07/01/2019 03:57:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante explorer.exe, version : 10.0.18362.207, horodatage : 0x4bd43dc1
Nom du module défaillant : SHELL32.dll, version : 10.0.18362.175, horodatage : 0x5215a10c
Code d’exception : 0xc000041d
Décalage d’erreur : 0x000000000003500a
ID du processus défaillant : 0x31fc
Heure de début de l’application défaillante : 0x01d53014e7808cfc
Chemin d’accès de l’application défaillante : C:\WINDOWS\explorer.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\SHELL32.dll
ID de rapport : b1c1a267-5d74-4871-b1d6-21843516293e
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (07/01/2019 03:57:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante explorer.exe, version : 10.0.18362.207, horodatage : 0x4bd43dc1
Nom du module défaillant : SHELL32.dll, version : 10.0.18362.175, horodatage : 0x5215a10c
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000003500a
ID du processus défaillant : 0x31fc
Heure de début de l’application défaillante : 0x01d53014e7808cfc
Chemin d’accès de l’application défaillante : C:\WINDOWS\explorer.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\SHELL32.dll
ID de rapport : 2e7e8701-8011-488a-93f5-8c6ed7ece084
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (07/01/2019 03:57:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante explorer.exe, version : 10.0.18362.207, horodatage : 0x4bd43dc1
Nom du module défaillant : SHELL32.dll, version : 10.0.18362.175, horodatage : 0x5215a10c
Code d’exception : 0xc000041d
Décalage d’erreur : 0x000000000003500a
ID du processus défaillant : 0x275c
Heure de début de l’application défaillante : 0x01d53014de7cf18d
Chemin d’accès de l’application défaillante : C:\WINDOWS\explorer.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\SHELL32.dll
ID de rapport : 546db08d-d2d0-4fdb-84bb-fc3db94e74a3
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (07/01/2019 03:57:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante explorer.exe, version : 10.0.18362.207, horodatage : 0x4bd43dc1
Nom du module défaillant : SHELL32.dll, version : 10.0.18362.175, horodatage : 0x5215a10c
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000003500a
ID du processus défaillant : 0x275c
Heure de début de l’application défaillante : 0x01d53014de7cf18d
Chemin d’accès de l’application défaillante : C:\WINDOWS\explorer.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\SHELL32.dll
ID de rapport : 05ce46e9-a6d1-4d02-920c-38c9aba27b44
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (07/01/2019 03:56:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante explorer.exe, version : 10.0.18362.207, horodatage : 0x4bd43dc1
Nom du module défaillant : SHELL32.dll, version : 10.0.18362.175, horodatage : 0x5215a10c
Code d’exception : 0xc000041d
Décalage d’erreur : 0x000000000003500a
ID du processus défaillant : 0x3430
Heure de début de l’application défaillante : 0x01d5301407ad0977
Chemin d’accès de l’application défaillante : C:\WINDOWS\explorer.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\SHELL32.dll
ID de rapport : 089402a5-1cbe-4e50-9725-2f092b4d32df
Nom complet du package défaillant :
ID de l’application relative au package défaillant :


Erreurs système:
=============
Error: (07/01/2019 04:26:04 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:50:37 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:50:34 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: DESKTOP-F33S8PQ)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:50:12 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:50:12 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:49:08 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:49:05 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (07/01/2019 03:48:15 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-F33S8PQ)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


Windows Defender:
===================================
Date: 2019-07-01 13:47:12.781
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {355AC8F4-96F2-42A8-9ADC-8AD6AFAC43CC}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-06-30 12:59:28.335
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {115F5193-74B2-4399-8345-928FD5AE6F70}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-F33S8PQ\thier

CodeIntegrity:
===================================

Date: 2019-07-01 15:51:36.301
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-07-01 15:51:36.294
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-07-01 15:51:36.277
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2019-07-01 15:50:11.771
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-07-01 15:50:11.765
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-07-01 15:50:11.759
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-07-01 15:50:11.753
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

Date: 2019-07-01 15:50:11.747
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

BIOS: Insyde F.35 01/23/2017
Motherboard: HP 8219
Processeur: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 36%
Mémoire physique - RAM - totale: 16235.72 MB
Mémoire physique - RAM - disponible: 10310.82 MB
Mémoire virtuelle totale: 25963.72 MB
Mémoire virtuelle disponible: 18941.9 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:117.73 GB) (Free:29.63 GB) NTFS
Drive f: (Nouveau nom) (Fixed) (Total:931.51 GB) (Free:792.25 GB) NTFS

\\?\Volume{c64facc5-4114-4db7-8b88-a25a5e8e0349}\ (Récupération) (Fixed) (Total:0.49 GB) (Free:0.47 GB) NTFS
\\?\Volume{f9d20768-5b04-4a57-9a41-f0529f3037ff}\ () (Fixed) (Total:0.91 GB) (Free:0.38 GB) NTFS
\\?\Volume{348212ce-6885-4928-b1b0-914d33329044}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 0BE001B2)

Partition: GPT.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 2FAD5315)

Partition: GPT.

==================== Fin de Addition.txt ============================