Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 23-07-2020
Exécuté par Jean Louis (24-07-2020 12:27:30)
Exécuté depuis J:\Téléchargements\FRST64.exe
Windows 10 Home Version 2004 19041.388 (X64) (2020-05-27 10:56:58)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-295255132-320686632-1324357839-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-295255132-320686632-1324357839-503 - Limited - Disabled)
Invité (S-1-5-21-295255132-320686632-1324357839-501 - Limited - Disabled)
Jean Louis (S-1-5-21-295255132-320686632-1324357839-1001 - Administrator - Enabled) => C:\Users\Jean Louis
WDAGUtilityAccount (S-1-5-21-295255132-320686632-1324357839-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Total Security (Enabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Total Security (Enabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

. . (HKLM\...\{657DF44E-16FB-46D9-A2E6-476E54F694D3}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{94EBC126-1FC8-4528-859F-591460B2E7C2}) (Version: 3.4.0.4 - Intel) Hidden
Acronis True Image (HKLM-x32\...\{3FB8B185-7EBB-4E02-9038-DBF328954435}Visible) (Version: 20.0.8058 - Acronis)
Acronis True Image (HKLM-x32\...\{4FC35DD9-82DB-496D-AE43-43B7DE0A2CF8}) (Version: 23.5.17750 - Acronis) Hidden
Acronis Universal Restore Bootable Media Builder (HKLM-x32\...\{4706C674-8850-4D69-9311-07CEF51F79CD}) (Version: 11.5.40067 - Acronis)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.116 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.238 - Adobe)
AOMEI Partition Assistant Demo Edition 8.3 (HKLM-x32\...\{04F850ED-FD0F-4ED1-AE1B-4498165BF3D2}_is1) (Version: - AOMEI Technology Co., Ltd.)
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.13 - Arduino LLC)
Ashampoo Burning Studio 19 (HKLM-x32\...\{91B33C97-BA3F-5C99-C2A6-0EB17CC9054B}_is1) (Version: 19.0.0 - Ashampoo GmbH & Co. KG)
ASUS Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.5000 - ASUS)
Brother MFL-Pro Suite MFC-J4410DW (HKLM-x32\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
BurnAware Premium 10.9 (HKLM-x32\...\BurnAware Premium_is1) (Version: - Burnaware)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
Cryptographic Provider for Windows OS (HKLM-x32\...\{DAB78977-B639-47AF-87BC-F3FF3DC62998}) (Version: 1.3.1 - Intel Corporation) Hidden
Cryptographic Provider for Windows OS (HKLM-x32\...\{eda5f31b-27b4-4644-80b1-e7d0c03f935f}) (Version: 1.3.1 - Intel Corpration)
CyberLink YouCam 7 (HKLM-x32\...\{0078CD4D-B146-4D77-8CF0-268B36C1A3EC}) (Version: 7.0.4023.0 - CyberLink Corp.)
Dashlane (HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\Dashlane) (Version: 6.2002.0.30909 - Dashlane, Inc.)
DeepL (HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\DeepL) (Version: 1.12.2 - DeepL GmbH)
Dr. Folder version 2.6.1.0 (HKLM\...\{1E989158-7B7C-4A69-9038-B010AF3F775A}_is1) (Version: 2.6.1.0 - YL Computing)
Dragon 15 (HKLM-x32\...\{768AC460-237E-45B6-99B8-1DE6D0F391E8}) (Version: 15.00.000 - Nuance Communications Inc.)
DriversCloud.com (64 bits) (HKLM\...\{29DC4128-CF89-49D9-A524-B4430F036F14}) (Version: 10.0.7.0 - Cybelsoft)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
EaseUS Partition Master 13.0 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version: - EaseUS)
EaseUS Todo Backup Home 12.0 Trial (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 12.0 - CHENGDU YIWO Tech Development Co., Ltd)
EdgeDeflector (HKLM-x32\...\EdgeDeflector) (Version: - )
eM Client (HKLM-x32\...\{E1A91386-A21E-484E-8FED-47BA87671427}) (Version: 7.2.34062.0 - eM Client Inc.)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Everything 1.4.1.935 (x64) (HKLM\...\Everything) (Version: 1.4.1.935 - David Carpenter)
FilExile (HKLM-x32\...\{1310229C-E62A-4F05-87DB-13979A5D2EFC}_is1) (Version: 2.00 - Bryan Carey)
FilExile (HKLM-x32\...\{37D0B08A-2D0E-4A2E-8C8D-B2CB52BA81AC}_is1) (Version: 3.00 - Bryan Carey)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.441 - Google LLC) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - Huawei Technologies Co.,Ltd)
Human Anatomy Atlas version 7.4.01 (HKLM-x32\...\{0DDE4272-3433-4C74-ADA6-72350805D612}_is1) (Version: 7.4.01 - Visible Body - m!DVT)
Intel(R) Computing Improvement Program (HKLM\...\{F6B5BD59-21F0-47F8-A6C6-63BAEB1A6569}) (Version: 2.1.03720 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1004 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 25.20.100.6323 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{917c2887-4ed0-4389-9b51-616905bcf34f}) (Version: 3.4.0.4 - Intel)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.38.1 - Tonec Inc.)
Java 8 Update 161 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
Kaspersky Total Security (HKLM-x32\...\{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky) Hidden
Kaspersky Total Security (HKLM-x32\...\InstallWIX_{D891550B-ACFE-4797-B368-BCFC434BBEB1}) (Version: 20.0.14.1085 - Kaspersky)
Le Grand Robert (HKLM-x32\...\Le Grand Robert) (Version: - )
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft Access database engine 2010 (French) (HKLM-x32\...\{90140000-00D1-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.40 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Money (HKLM-x32\...\Money2005b) (Version: 14 - Microsoft)
Microsoft Office Professional Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.10730.20102 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Molotov (HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\Molotov) (Version: 4.3.0 - Molotov)
Mozilla Firefox 77.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 77.0.1 (x64 fr)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 66.0.4 - Mozilla)
Mozilla Thunderbird 68.10.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 68.10.0 (x86 fr)) (Version: 68.10.0 - Mozilla)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.7 - Notepad++ Team)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.10730.20102 - Microsoft Corporation) Hidden
OneClickFirewall (HKLM\...\OneClickFirewall) (Version: 1.0.0.2 - hxxp://winaero.com)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.28.615.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8911.1 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller Pro 4.3.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.3.0 - VS Revo Group, Ltd.)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 6.1.0.170 - Samsung Electronics)
Skype version 8.60 (HKLM-x32\...\Skype_is1) (Version: 8.60 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
SRWare Iron (64-Bit) version 71.0.3700.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: 71.0.3700.0 - SRWare)
SRWare Iron version 72.0.3750.0 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: 72.0.3750.0 - SRWare)
SSDFresh 2018 (HKLM-x32\...\{71149886-0AA3-4F31-81F9-CC90EA0D55EF}_is1) (Version: 7.42 - Abelssoft)
SumatraPDF (HKLM\...\SumatraPDF) (Version: 3.1.2 - Krzysztof Kowalczyk)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.3.8497 - TeamViewer)
TextAloud 4.0 (HKLM-x32\...\{2d52d1c9-9281-4e32-8bfb-018332abcba7}_is1) (Version: 4.0.33.0 - NextUp.com)
Toolwiz Care (HKLM-x32\...\ToolwizCareFree) (Version: 4.0.0.1200 - ToolWiz Care)
Total Uninstall 6.20.1 (HKLM\...\Total Uninstall 6_is1) (Version: 6.20.1 - Gavrila Martau)
TP-LINK TL-WN881ND Driver (HKLM-x32\...\{FDA7E907-6539-42C1-9721-0239C281B336}) (Version: 1.3.1 - TP-LINK)
TreeSize V7.1.4 (64 bit) (HKLM\...\TreeSize_is1) (Version: 7.1.4 - JAM Software)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Vivaldi (HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\Vivaldi) (Version: 3.1.1929.45 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.7.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1-3) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\WhatsApp) (Version: 2.2023.2 - WhatsApp)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
Wondershare PDF Converter Pro (Build 4.1.0) (HKLM-x32\...\{67CC8351-9D8B-4EDF-AAEE-B8CB17E5F3AC}_is1) (Version: 4.1.0 - Wondershare Software)
XnView 2.49.3 (HKLM-x32\...\XnView_is1) (Version: 2.49.3 - Gougelet Pierre-e)
xplorer² lite 32 bit (HKLM-x32\...\xplorer2l) (Version: 3.0.0.4 - Zabkat)
XYplorer 20.20.0100 (HKLM-x32\...\XYplorer_is1) (Version: 20.20.0100 - lrepacks.ru)

Packages:
=========
Adblock Plus -> C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.19.0_neutral__d55gg7py3s0m0 [2020-02-13] (eyeo GmbH)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.2731.0_x64__8j3eq9eme6ctt [2020-06-10] (INTEL CORP) [Startup Task]
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation)
Dashlane - Password Manager -> C:\Program Files\WindowsApps\Dashlane.DashlaneEdgeExtension_6.2027.1.0_neutral__ks9qrcqmdm1bm [2020-07-23] (Dashlane)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-17] (Dolby Laboratories)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation)
Ghostery – Bloqueur de publicité protégeant la vie privée -> C:\Program Files\WindowsApps\Ghostery.Ghostery_8.4.6.0_neutral__kzkqe0pn505dg [2020-05-03] (Ghostery)
iDM Edge Extension -> C:\Program Files\WindowsApps\21676OptimiliaStudios.iDMEdgeExtension_1.1.5.0_neutral__k42naep6bwmrc [2019-08-12] (Optimilia Studios)
IDM Integration Module -> C:\Program Files\WindowsApps\TonecInc.IDMIntegrationModule_6.38.1.0_neutral__e7b5mm5d3r6v2 [2020-07-05] (Tonec FZE)
Messenger -> C:\Program Files\WindowsApps\FACEBOOK.317180B0BB486_580.7.122.0_x64__8xx8rvfyw5nnt [2020-07-05] (Facebook Inc) [Startup Task]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation) [MS Ad]
Télé-Loisirs Programme TV -> C:\Program Files\WindowsApps\PrismaMdia.Tl-LoisirsProgrammeTV_2.0.1.160_neutral__dvdbm1wr0r29j [2020-05-03] (Prisma Média)
uBlock Origin -> C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2020-05-03] (Nik Rolls)
World National Parks -> C:\Program Files\WindowsApps\Microsoft.WorldNationalParks_1.0.0.0_neutral__8wekyb3d8bbwe [2020-05-03] (Microsoft Corporation)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-295255132-320686632-1324357839-1001_Classes\CLSID\{75f92b33-bbaa-b4b4-04ac-a7c07959e5a66}\InprocServer32 -> 0xABCDF2F44D70D501240CF9C308C6D501020000000900000000000000 => Pas de fichier
CustomCLSID: HKU\S-1-5-21-295255132-320686632-1324357839-1001_Classes\CLSID\{9486aaf1-0930-362a-962d-8e6908739c817}\InprocServer32 -> 0x8C08A01D4298D4015B49F8C308C6D501030000001800000000000000 => Pas de fichier
CustomCLSID: HKU\S-1-5-21-295255132-320686632-1324357839-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Jean Louis\AppData\Local\Vivaldi\Application\3.1.1929.45\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-03-25] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier
ContextMenuHandlers1: [ANotepad++64] -> [CC]{B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier
ContextMenuHandlers1: [FilExileShlExt] -> [CC]{37D0B08A-2D0E-4A2E-8C8D-B2CB52BA81AC} => -> Pas de fichier
ContextMenuHandlers1: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\ShellEx.dll [2020-05-02] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers1: [SimpleShlExt] -> [CC]{45203D3B-3D73-4497-8AFE-D29950AC6C55} => -> Pas de fichier
ContextMenuHandlers1: [TextAloud] -> [CC]{BF31B0FB-AE0E-488F-BFD6-416FA2F9915F} => -> Pas de fichier
ContextMenuHandlers2: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\ShellEx.dll [2020-05-02] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers2: [SimpleShlExt] -> [CC]{45203D3B-3D73-4497-8AFE-D29950AC6C55} => -> Pas de fichier
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-24] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DrFolderExtension] -> {4ca4fa65-0669-3a6b-8c16-f5c69eaf9fc9} => C:\Program Files\Dr. Folder\DrFolderExtension.DLL [2018-11-23] () [Fichier non signé] [Fichier en cours d'utilisation]
ContextMenuHandlers4: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\ShellEx.dll [2020-05-02] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers4: [SimpleShlExt] -> [CC]{45203D3B-3D73-4497-8AFE-D29950AC6C55} => -> Pas de fichier
ContextMenuHandlers6: [Kaspersky Anti-Virus 20.0] -> {6E1B4453-548D-4C43-A4AB-DE8D1D3DE17B} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Total Security 20.0\x64\ShellEx.dll [2020-05-02] (Kaspersky Lab -> AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-07-24] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll
HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll
HKLM\...\Drivers32: [msacm.pspgru] => C:\Windows\SysWOW64\pspgru.acm [401920 2010-03-22] (Philips Austria GmbH - Speech Processing) [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\Jean Louis\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\969fa00ceac8236d\Vivaldi.lnk -> C:\Users\Jean Louis\AppData\Local\Vivaldi\Application\vivaldi_proxy.exe (Vivaldi Technologies AS) -> --profile-directory=Default

==================== Modules chargés (Avec liste blanche) =============

2018-09-20 21:07 - 2018-09-20 21:07 - 000277538 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\LIBMAGIC.dll
2020-03-17 10:28 - 2019-06-28 12:09 - 001291264 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2020-03-17 10:28 - 2019-06-28 12:09 - 000055808 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2020-03-17 10:28 - 2019-06-28 12:09 - 000892928 _____ (Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2015-07-08 18:54 - 2015-07-08 18:54 - 025338368 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icudt54.dll
2015-07-08 18:54 - 2015-07-08 18:54 - 002056704 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icuin54.dll
2015-07-08 18:54 - 2015-07-08 18:54 - 001425408 _____ (The ICU Project) [Fichier non signé] C:\Program Files (x86)\Acronis\TrueImageHome\icuuc54.dll
2020-03-17 10:28 - 2019-10-09 10:05 - 001359872 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\LIBEAY32.dll
2020-03-17 10:28 - 2019-10-09 10:05 - 000365056 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\SSLEAY32.dll
2018-07-27 14:01 - 2020-01-07 16:15 - 001240064 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\libeay32.dll
2018-07-27 14:01 - 2020-01-07 16:15 - 000281600 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\ssleay32.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000026112 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qgif.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000034816 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qicns.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000025600 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qico.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000298496 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qjpeg.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000020992 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qsvg.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000019968 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qtga.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000332288 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qtiff.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000019456 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qwbmp.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000414720 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\imageformats\qwebp.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 001126400 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\platforms\qwindows.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 004994048 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Core.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 003637248 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Gui.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 001088512 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Network.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000280576 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Positioning.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000278016 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5PrintSupport.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 002966016 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Qml.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 002796032 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Quick.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000048640 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5QuickWidgets.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000163840 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Sql.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000268288 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Svg.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 000092160 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebChannel.dll
2020-01-16 18:08 - 2020-01-07 16:15 - 055062528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebEngineCore.dll
2020-01-16 18:09 - 2020-01-07 16:15 - 000190976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5WebEngineWidgets.dll
2020-01-16 18:09 - 2020-01-07 16:15 - 004590592 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\Qt5Widgets.dll
2020-01-16 18:09 - 2020-01-07 16:15 - 000122368 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Users\Jean Louis\AppData\Roaming\Dashlane\6.2002.0.30909\bin\Qt\styles\qwindowsvistastyle.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\ProgramData\TEMP:6DAA43DB [195]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer sites de confiance/sensibles ==========

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-09-29 15:46 - 2020-07-24 08:37 - 000001236 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 www.apowersoft.com
127.0.0.1 apowersoft.com
0.0.0.0 telemetry.malwarebytes.com
127.0.0.1 activation.easeus.com
127.0.0.1 track.easeus.com
127.0.0.1 66.39.112.91
127.0.0.1 216.92.151.227
127.0.0.1 216.92.61.7
127.0.0.1 www.easeus.com
127.0.0.1 cap.cyberlink.com
127.0.0.1 activation.cyberlink.com

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;%SystemRoot%\System32;C:\PROGRAMDATA\ORACLE\JAVA\JAVAPATH;C:\PROGRAM FILES (X86)\INTEL\ICLS CLIENT\;C:\PROGRAM FILES\INTEL\ICLS CLIENT\;%SYSTEMROOT%;%SYSTEMROOT%\SYSTEM32\WBEM;%SYSTEMROOT%\SYSTEM32\WINDOWSPOWERSHELL\V1.0\;C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\DAL;C:\PROGRAM FILES\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\DAL;C:\PROGRAM FILES (X86)\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\IPT;C:\PROGRAM FILES\INTEL\INTEL(R) MANAGEMENT ENGINE COMPONENTS\IPT;C:\PROGRAM FILES (X86)\COMMON FILES\ACRONIS\VIRTUALFILE\;C:\PROGRAM FILES (X86)\COMMON FILES\ACRONIS\VIRTUALFILE64\;C:\PROGRAM FILES (X86)\COMMON FILES\ACRONIS\SNAPAPI\;%SYSTEMROOT%\SYSTEM32\OPENSSH\;C:\PROGRAM FILES (X86)\COMMON FILES\ACRONIS\FILEPROTECTOR\;C:\PROGRAM FILES (X86)\COMMON FILES\ACRONIS\FILEPROTECTOR64\;;C:\Program Files\ASUS\Bluetooth Software\;C:\Program Files\ASUS\Bluetooth Software\syswow64;%systemdrive%\Program Files (x86)\FilExile;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-295255132-320686632-1324357839-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jean Louis\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\2moorea.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\StartupFolder: => "Bluetooth.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "Everything"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Reflect UI"
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "YouCam Service7"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\StartupApproved\StartupFolder: => "Logitech . Enregistrement du produit.lnk"
HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\StartupApproved\Run: => "iCloudServices"
HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\StartupApproved\Run: => "iCloudDrive"
HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-295255132-320686632-1324357839-1001\...\StartupApproved\Run: => "Imo Messenger"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{FBF62316-7BDA-4729-A696-77CA6BAD01FF}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{061A0E71-B9FF-4128-B739-6E5422D9C79A}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{FFABE004-61B7-499A-8B75-AA12F051CED2}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{384CAFFB-5407-41AF-9581-F9626755061D}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{F1DADD27-6578-4972-B391-2A51F815A904}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé]
FirewallRules: [{1E9D6ECE-7A64-4F35-9ACC-3E269EBC887D}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé]
FirewallRules: [{90F3A4C3-1CEB-4D75-962E-08934D6672CA}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{8548B361-761F-4324-B4E4-907049461169}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{83B7D94D-6157-418D-912C-D128C8F8C0F1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FC7BD45C-6CC3-4404-9F37-6EC33574E8E4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{9FB27E35-509B-4C80-82E6-BEB88EC7B818}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AE244343-BE73-4EBF-BE0A-79B191B85ADF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0018D39F-66DF-42EC-B713-9C57AD369F06}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{854999AA-D45A-4EAB-B18A-CB63FB1EE5DA}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Home\report_sender.exe (Acronis International GmbH -> )
FirewallRules: [{39684B1A-C411-4FB7-8631-8AF18BDB2665}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{0241CA9A-0832-49F5-8014-61B6BDD6EA6A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{C7111AD1-EC85-4C64-92BB-D2ABFC78B1E4}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{776F8B45-D881-42C9-A09C-F2A95F4194EE}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{28A1C49B-2894-4EC0-9ACD-52F300DD2223}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{36E4973B-C5F6-4BD9-B7C8-700F6ACAF25C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{B3B7BF55-9391-4F14-A4A0-E6DA20D02285}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{50AA50EC-6E3E-425E-8019-DD01827C2744}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{9603C27F-808B-44D4-8FEE-031B8BDB616C}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{567975FB-7597-4384-A3E6-EAD1D52A58FB}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{CA0B1A51-B64F-4738-BDBF-0D70030F3D43}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{D1703D08-1736-4F99-A403-08A76C3DA49A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{65444AB6-9DCC-4CAC-B8EB-10311A00958C}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{FD2F53DA-960D-4856-86D7-693902F6E8E7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{2A18A7AB-E3CA-41AD-8F33-8899572B9DFD}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B37E5ADE-92BD-413B-B08D-2C297572B211}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C8642B92-267B-47D1-89E1-5A7C374B9415}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9C27E959-0B94-4AE6-BD3B-4754A31191A9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{614F1804-4658-4E99-A29A-D85114E008A7}] => (Allow) LPort=1688
FirewallRules: [{969283EC-1CCF-4D3A-9E6C-8996FAA2EF83}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{6448C1C2-4DDF-44A8-B436-F2301115215A}] => (Allow) C:\Program Files\DriversCloud.com\DriversCloud.exe (CYBELSOFT -> CybelSoft)
FirewallRules: [{6992A9FB-6D23-4CDE-ABA7-A118D489C118}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4B4937F6-05BB-494B-8813-DDFFDBFD17CA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{78E469CA-0DE9-4D90-84D5-FB53241A642E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{93AFC637-B444-47FC-A8D5-8689654F6B11}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{15D958D9-615D-430B-9174-E83C8BC08CCB}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{05989C76-EF46-4A59-BD2B-1EAA603AB2AB}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{9866ADCE-72A3-4EC6-A4C7-7857B835B066}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B66C5E8A-E85A-4CDA-A4E7-F26AD3D9AFDE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{787339A2-FEB9-4042-AC28-70736D2DF927}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Points de restauration =========================

24-07-2020 11:01:37 Sauvegarde du 24 juillet 2020

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: Clavier standard PS/2
Description: Clavier standard PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Claviers standard)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Souris Microsoft PS/2
Description: Souris Microsoft PS/2
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (07/24/2020 08:19:17 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.

Error: (07/24/2020 08:19:17 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]

Error: (07/23/2020 06:14:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme vivaldi.exe version 3.1.1929.45 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 2314

Heure de début : 01d6610ac9091ec6

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : C:\Users\Jean Louis\AppData\Local\Vivaldi\Application\vivaldi.exe

ID de rapport : 03cb63de-f1f3-4287-b712-addeda3e9633

Nom complet du package défectueux :

ID de l'application relative à un package défectueux :

Type de blocage : Top level window is idle

Error: (07/23/2020 05:43:22 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Le service Services de chiffrement n’a pas réussi à initialiser la base de données du catalogue. L’erreur ESENT était : -1409.

Error: (07/23/2020 04:23:09 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.386_none_e72d64cd263a3a51\TiWorker.exe -Embedding ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070422).

Error: (07/23/2020 04:22:55 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.329_none_e77145332606deb0\TiWorker.exe -Embedding ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070422).

Error: (07/23/2020 04:22:38 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\WINDOWS\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.329_none_e77145332606deb0\TiWorker.exe -Embedding ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070422).

Error: (07/23/2020 03:29:24 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur SAUVEGARDES DIVERSES MAXTOR (K:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)


Erreurs système:
=============
Error: (07/24/2020 10:56:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Intel(R) Content Protection HECI Service s’est arrêté avec l’erreur :
Descripteur incorrect

Error: (07/24/2020 08:20:19 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service cphs s’est arrêté avec l’erreur :
Descripteur incorrect

Error: (07/24/2020 08:19:19 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Acronis Sync Agent Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (07/24/2020 08:19:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.

Error: (07/24/2020 08:19:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service ICEsound Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (07/24/2020 08:19:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Bluetooth Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (07/24/2020 08:19:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Content Protection HDCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (07/24/2020 08:19:10 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Acronis Nonstop Backup Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.


CodeIntegrity:
===================================

Date: 2020-07-24 12:27:16.8440000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\WindowManagementAPI.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-07-24 12:10:18.1760000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\WindowManagementAPI.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-07-24 11:50:23.2730000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\WindowManagementAPI.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-07-24 11:12:28.8720000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-24 11:12:28.6520000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-24 11:12:28.5770000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-24 11:12:28.4000000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-24 11:12:28.0910000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. 1.40 04/06/2017
Carte mère: MSI B250M PRO-VH (MS-7A74)
Processeur: Intel(R) Core(TM) i3-7100 CPU @ 3.90GHz
Pourcentage de mémoire utilisée: 58%
Mémoire physique - RAM - totale: 12146.72 MB
Mémoire physique - RAM - disponible: 5078.75 MB
Mémoire virtuelle totale: 13106.72 MB
Mémoire virtuelle disponible: 5356.64 MB

==================== Lecteurs ================================

Drive c: (WINDOWS 10) (Fixed) (Total:231.3 GB) (Free:172.3 GB) NTFS
Drive e: (SAUVEGARDES DISQUES MAXTOR) (Fixed) (Total:585.94 GB) (Free:528.34 GB) NTFS
Drive f: (DOSSIERS DIVERS MAXTOR) (Fixed) (Total:488.28 GB) (Free:456.37 GB) NTFS
Drive g: (DOSSIERS DIVERS & TELECHARGEMENT) (Fixed) (Total:212.03 GB) (Free:72.38 GB) NTFS
Drive h: (SAUVEGARDES DIVERSES) (Fixed) (Total:457.18 GB) (Free:63.75 GB) NTFS
Drive i: (SAUVEGARDES DISQUE C ) (Fixed) (Total:262.31 GB) (Free:230.65 GB) NTFS
Drive j: (TELECHARGEMENTS DIVERS MAXTOR) (Fixed) (Total:585.94 GB) (Free:481.81 GB) NTFS
Drive k: (SAUVEGARDES DIVERSES MAXTOR) (Fixed) (Total:202.84 GB) (Free:202.63 GB) NTFS

\\?\Volume{fb8b1737-2164-4e27-8eda-a83012238a83}\ (Récupération) (Fixed) (Total:0.49 GB) (Free:0.28 GB) NTFS
\\?\Volume{98076f4a-1e6f-4e25-9cb5-f4aeda34855d}\ () (Fixed) (Total:0.87 GB) (Free:0.33 GB) NTFS
\\?\Volume{29635634-daad-4908-bcd1-a6103ca0a4b9}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: AACA3310)

Partition: GPT.

==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 7B1C2403)

Partition: GPT.

==========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 3E5E5F3F)

Partition: GPT.

==================== Fin de Addition.txt =======================