Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 19-10-2020
Exécuté par bea60 (23-10-2020 10:52:39)
Exécuté depuis C:\Users\bea60\Downloads
Windows 10 Home Version 1903 18362.657 (X64) (2019-09-10 20:05:38)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-1256877312-1687640460-1689063470-500 - Administrator - Disabled)
bea60 (S-1-5-21-1256877312-1687640460-1689063470-1001 - Administrator - Enabled) => C:\Users\bea60
DefaultAccount (S-1-5-21-1256877312-1687640460-1689063470-503 - Limited - Disabled)
Invité (S-1-5-21-1256877312-1687640460-1689063470-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1256877312-1687640460-1689063470-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
AMD Radeon Settings (HKLM\...\WUCCCApp) (Version: 2018.0606.847.14002 - Advanced Micro Devices, Inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.23192 - Microsoft Corporation)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 86.0.4240.111 - Google LLC)
HP Dropbox Plugin (HKLM-x32\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP)
Lenovo App Explorer (HKU\S-1-5-19\...\Host App Service) (Version: 0.273.2.542 - SweetLabs for Lenovo) <==== ATTENTION
Lenovo App Explorer (HKU\S-1-5-20\...\Host App Service) (Version: 0.273.2.542 - SweetLabs for Lenovo) <==== ATTENTION
Lenovo Calliope USB Keyboard (HKLM\...\{520AA862-0064-4B41-B777-1FAFC1AD1293}) (Version: 1.12 - Lenovo)
Lenovo Service Bridge (HKU\S-1-5-21-1256877312-1687640460-1689063470-1001\...\{2C74547D-EF88-47F4-85F5-BE46A31E26B7}_is1) (Version: 5.0.1.3 - Lenovo)
Lenovo System Update (HKLM-x32\...\TVSU_is1) (Version: 5.07.0072 - Lenovo)
Lenovo Vantage Service (HKLM-x32\...\VantageSRV_is1) (Version: 3.3.332.0 - Lenovo Group Ltd.)
Logiciel de base du périphérique HP DeskJet 2130 series (HKLM\...\{9D8E9963-B311-432D-AABD-BB6ED0030005}) (Version: 40.11.1124.17107 - HP Inc.)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.51 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft OneDrive (HKU\S-1-5-21-1256877312-1687640460-1689063470-1001\...\OneDriveSetup.exe) (Version: 20.169.0823.0008 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{97238E8A-4919-4A1E-965A-C6C36938F4CE}) (Version: 2.68.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
NoVirusThanks OSArmor v1.4.3 (HKLM\...\NoVirusThanks OSArmor_is1) (Version: 1.4.3.0 - NoVirusThanks Company Srl)
OpenOffice 4.1.6 (HKLM-x32\...\{50D70A8D-0503-4AA6-97EF-09849E9FB520}) (Version: 4.16.9790 - Apache Software Foundation)
Realtek Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8923.1 - Realtek Semiconductor Corp.)
Restoro (HKLM\...\Restoro) (Version: 2.0.2.0 - Restoro)
Revo Uninstaller 2.1.7 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.7 - VS Revo Group, Ltd.)
Serviio (HKLM\...\Serviio) (Version: 2.0 - Six Lines Ltd)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Streaming Audio Recorder V4.2.3 (HKLM-x32\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 4.2.3 - APOWERSOFT LIMITED)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Update for Windows 10 for x64-based Systems (KB4480730) (HKLM\...\{344F3227-F502-4219-9DC4-1967E586FAFA}) (Version: 2.51.0.0 - Microsoft Corporation)
WinRAR 5.91 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)

Packages:
=========
AMD Radeon™ Settings Lite -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.59462344778C5_10.18.78.0_x64__0a9344xs7nr4m [2019-06-19] (Advanced Micro Devices Inc.)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-21] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.5.201.0_x64__rz1tebttyb220 [2020-09-24] (Dolby Laboratories)
Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-09-25] (Microsoft Corporation)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-03-27] (Fitbit)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_120.1.741.0_x64__v10z8vjag6ke6 [2020-10-16] (HP Inc.)
Lenovo Vantage -> C:\Program Files\WindowsApps\E046963F.LenovoCompanion_10.2009.18.0_x64__k1h2ywk1493x8 [2020-09-24] (LENOVO INC.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-03-27] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-03-26] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-19] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.13231.20390.0_x86__8wekyb3d8bbwe [2020-10-21] (Microsoft Corporation)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.21.1.0_x64__nfy108tqq3p12 [2020-08-27] (Thumbmunkeys Ltd)
Power2Go for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.Power2GoforLenovo_8.0.11322.0_x86__m916jedk64snt [2020-07-28] (CYBERLINKCOM CORPORATION) [Startup Task]
PowerDVD for Lenovo -> C:\Program Files\WindowsApps\CyberLinkCorp.th.PowerDVDforLenovo_14.2.2520.0_x86__m916jedk64snt [2020-07-22] (CYBERLINKCOM CORPORATION)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.10.216.0_x64__dt26b99r8h8gj [2020-07-29] (Realtek Semiconductor Corp)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Pas de fichier
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-06-06] (Advanced Micro Devices, Inc.) [Fichier non signé]
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll -> Pas de fichier
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-09-25] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2018-05-04 15:11 - 2018-05-04 15:11 - 000015360 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2018-05-04 15:11 - 2018-05-04 15:11 - 002519040 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2020-09-11 08:45 - 2020-05-30 19:58 - 001280000 _____ (Robert Simpson, et al.) [Fichier non signé] C:\ProgramData\Lenovo\iMController\Plugins\GenericMessagingPlugin\x86\SQLite.Interop.dll
2020-06-22 10:36 - 2020-04-09 09:17 - 000944840 _____ (SQLite Development Team) [Fichier non signé] C:\ProgramData\Lenovo\iMController\Plugins\LenovoWiFiSecurityPlugin\x86\x86\e_sqlite3.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000032256 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000039936 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000034304 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000237056 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000025600 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000025600 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000024064 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000481792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 001336320 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll
2018-05-04 15:10 - 2018-05-04 15:10 - 001136128 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Charts.dll
2018-06-06 08:45 - 2018-06-06 08:45 - 005766144 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2018-05-04 15:10 - 2018-05-04 15:10 - 006045184 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2018-05-04 15:10 - 2018-05-04 15:10 - 000964096 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2018-05-04 15:10 - 2018-05-04 15:10 - 003233792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2018-05-04 15:10 - 2018-05-04 15:10 - 003406848 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2018-05-04 15:10 - 2018-05-04 15:10 - 000328704 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 005523456 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000282624 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000194560 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000049152 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000018432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000018432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2018-05-04 15:11 - 2018-05-04 15:11 - 000311296 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2018-05-04 15:12 - 2018-05-04 15:12 - 000139264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2018-05-04 15:12 - 2018-05-04 15:12 - 000089600 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2018-05-04 15:12 - 2018-05-04 15:12 - 000018432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mbamchameleon => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-1256877312-1687640460-1689063470-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo17win10.msn.com/?pc=LCTE
HKU\S-1-5-21-1256877312-1687640460-1689063470-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=fr-fr|hxxp://www.msn.com/?pc=SK2M&ocid=SK2MDHP&osmkt=fr-fr
SearchScopes: HKU\S-1-5-21-1256877312-1687640460-1689063470-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\S-1-5-21-1256877312-1687640460-1689063470-1001 -> {2A23ab71-4ac6-41f2-a955-ea576e553146} URL =
SearchScopes: HKU\S-1-5-21-1256877312-1687640460-1689063470-1001 -> {2B955154-70E2-4AB2-80C1-E5E0954B50B6} URL =

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-04-12 01:38 - 2018-04-12 01:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-1256877312-1687640460-1689063470-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img1.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{76F9A847-6AC3-4EE4-8EB8-DDD839DFE4E2}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll () [Fichier non signé]
FirewallRules: [{D4BB1AF0-7C77-429F-AECD-D1EB59964DCB}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll () [Fichier non signé]
FirewallRules: [{89B60321-0D55-4410-A635-98ACACD66B47}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{0E9BC242-F4BE-49D6-8EEB-2558811CCE32}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{1C9B1272-C616-471D-A2BD-4C49A202E7AB}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Pas de fichier
FirewallRules: [{26D6B114-D6D6-4324-BF2F-C25A40BD44EF}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Pas de fichier
FirewallRules: [{2FA6C6BB-C302-4FF1-817D-DAA8978E3279}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\USBSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{4E0DD490-9BAD-42CF-96BC-3CD8044ACA2A}] => (Allow) C:\Program Files\HP\HP DeskJet 2130 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{B07332A6-6985-4DAF-9212-50ED99385171}] => (Allow) C:\Users\bea60\AppData\Local\Temp\7zS22AC\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [{ABB0D639-FE7F-4A5F-9A70-48B92BE29992}] => (Allow) C:\Users\bea60\AppData\Local\Temp\7zS22AC\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [TCP Query User{C67C89BD-7CC0-440F-ADAA-BAFFDFA514EF}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe
FirewallRules: [UDP Query User{DCD0D508-383A-4384-8526-10F50C278EC7}C:\program files\serviio\jre\bin\javaw.exe] => (Allow) C:\program files\serviio\jre\bin\javaw.exe
FirewallRules: [{DCFB8D49-09E0-4274-86D6-946D94BFA638}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [Fichier non signé]
FirewallRules: [{1D0B198D-9326-4E8A-99D8-2A4AEDAB00CE}] => (Allow) C:\Program Files\Serviio\bin\ServiioService.exe () [Fichier non signé]
FirewallRules: [{45CDED0F-6C32-4DA1-B04F-5FA7B4D16D73}] => (Allow) C:\Program Files\Serviio\console\ServiioConsole.exe (Six Lines Ltd) [Fichier non signé]
FirewallRules: [{471FAB5B-ACBD-447D-92AD-AAA12451B1A7}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{A1A5DF66-F12A-4C68-920F-0C43FC6C47C0}] => (Allow) C:\Program Files (x86)\Lenovo\System Update\uncserver.exe (Lenovo -> )
FirewallRules: [{1D276922-ADA9-49C7-902D-DAA655488CF6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.13231.20390.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{177C4EDF-7D21-4051-A523-4C6756E35C91}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4AC5B7C7-42DE-4304-B3F9-69624BCDABD8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{DB288EF7-265E-4601-A809-46646B359A96}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{30F515AA-270C-4961-9A3D-50AB905212D9}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F8401A20-0A2E-4B76-BC39-13F097104DC1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

22-10-2020 18:18:01 Programme d’installation pour les modules Windows
22-10-2020 19:06:13 Programme d’installation pour les modules Windows
22-10-2020 19:24:29 Programme d’installation pour les modules Windows

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (10/23/2020 10:45:43 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12808,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/23/2020 10:21:22 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7028,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/23/2020 09:57:19 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8308,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/23/2020 09:41:58 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7700,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/22/2020 09:39:18 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1152,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/22/2020 09:27:07 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12108,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/22/2020 09:04:31 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8152,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (10/22/2020 07:39:26 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8692,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Erreurs système:
=============
Error: (10/23/2020 09:29:43 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/22/2020 07:26:20 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073701 : Mise à jour de fonctionnalité vers Windows 10, version 1909.

Error: (10/22/2020 06:59:57 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/22/2020 06:57:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/22/2020 06:57:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/22/2020 06:57:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/22/2020 06:57:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (10/22/2020 06:57:46 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-H2DAHA2)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


Windows Defender:
===================================
Date: 2019-09-13 18:06:02.138
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {6D433D44-4C20-4619-B17D-BCA4F580E2D9}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2019-09-13 16:40:40.882
Description:
L’analyse Antivirus Windows Defender a été arrêtée avant la fin.
ID de l’analyse : {EC62A113-FD1F-4AA8-9044-A16C124DEB9A}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

CodeIntegrity:
===================================

Date: 2020-10-21 15:01:27.986
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-21 14:59:41.837
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\PROGRAM FILES\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-21 14:55:17.282
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-10-21 14:55:17.259
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-10-21 14:55:17.232
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\Avast Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.

Date: 2020-10-21 14:48:44.489
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-21 14:48:44.416
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

Date: 2020-10-21 14:48:40.880
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST SOFTWARE\Avast\aswhook.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

BIOS: LENOVO O2HKT56A 07/23/2018
Carte mère: LENOVO 36F7
Processeur: AMD A9-9425 RADEON R5, 5 COMPUTE CORES 2C+3G
Pourcentage de mémoire utilisée: 49%
Mémoire physique - RAM - totale: 7628.42 MB
Mémoire physique - RAM - disponible: 3848.12 MB
Mémoire virtuelle totale: 8844.42 MB
Mémoire virtuelle disponible: 4782.23 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:1861.77 GB) (Free:1747.87 GB) NTFS

\\?\Volume{2c81c390-6d33-478b-b8e1-eceb064a13db}\ (WinRE_DRV) (Fixed) (Total:0.98 GB) (Free:0.54 GB) NTFS
\\?\Volume{01c3d007-c3ee-4ccb-9bf8-f3d14725529a}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: B0016446)

Partition: GPT.

==================== Fin de Addition.txt =======================