Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 31-03-2021
Exécuté par Nous (05-04-2021 10:24:09)
Exécuté depuis C:\Users\Nous\Desktop
Windows 10 Home Version 20H2 19042.867 (X64) (2021-04-04 18:58:20)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-4132504481-2094533250-970770175-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4132504481-2094533250-970770175-503 - Limited - Disabled)
Invité (S-1-5-21-4132504481-2094533250-970770175-501 - Limited - Disabled)
Nous (S-1-5-21-4132504481-2094533250-970770175-1001 - Administrator - Enabled) => C:\Users\Nous
WDAGUtilityAccount (S-1-5-21-4132504481-2094533250-970770175-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Protection antivirus et antispyware McAfee (Disabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 15.14 (HKLM-x32\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.7.157 - Adobe Systems, Inc.)
Advertising Center (HKLM-x32\...\{b2ec4a38-b545-4a00-8214-13fe0e915e6d}) (Version: 0.0.0.1 - Nero AG) Hidden
Apple Application Support (32 bits) (HKLM-x32\...\{80B42CAA-28C0-4FBD-A46E-D61F45E2F9FC}) (Version: 7.2 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{466D00D0-E7DE-47C2-8FE5-54A8009F5850}) (Version: 7.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5FA8C4BE-8C74-4B9C-9B49-EBF759230189}) (Version: 12.1.0.25 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Assistant Mise à niveau de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.17346 - Microsoft Corporation)
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.5 - GPL Public release.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon MG5300 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5300_series) (Version: - Canon Inc.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Clean Master (HKLM-x32\...\cmpc) (Version: 6.0 - Cheetah Mobile)
CyberLink PhotoDirector (HKLM\...\{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.6.6907 - Nom de votre société) Hidden
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}) (Version: 5.0.6.6907 - CyberLink Corp.)
CyberLink Power Media Player 14 (HKLM-x32\...\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}) (Version: 14.0.4.6527 - CyberLink Corp.)
CyberLink PowerDirector 12 (HKLM\...\{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.5.4601 - Nom de votre société) Hidden
CyberLink PowerDirector 12 (HKLM-x32\...\InstallShield_{E1646825-D391-42A0-93AA-27FA810DA093}) (Version: 12.0.5.4601 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.2.4508 - CyberLink Corp.)
DisableMSDefender (HKLM\...\{74FE39A0-FB76-47CD-84BA-91E2BBB17EF2}) (Version: 1.0.0 - Hewlett-Packard Company) Hidden
DolbyFiles (HKLM-x32\...\{b1adf008-e898-4fe2-8a1f-690d9a06acaf}) (Version: 2.0 - Nero AG) Hidden
Energy Star (HKLM\...\{465CA2B6-98AF-4E77-BE22-A908C34BB9EC}) (Version: 1.0.9 - Hewlett-Packard Company)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Evernote v. 5.8.13 (HKLM-x32\...\{A229420E-204B-11E5-B844-0050569584E9}) (Version: 5.8.13.8152 - Evernote Corp.)
ffdshow v1.3.4533 [2014-09-29] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4533.0 - )
Foto2Avi 4.4 (HKLM-x32\...\Foto2Avi) (Version: 4.4 - TrustFm)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 89.0.4389.114 - Google LLC)
HP CoolSense (HKLM-x32\...\{1504CF6F-8139-497F-86FC-46174B67CF7F}) (Version: 2.20.51 - Hewlett-Packard Company)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP)
HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8305.5282 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.8.34.31 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{87C5FC04-4C14-41A4-9C45-A5A0A6554E82}) (Version: 12.18.34.21 - Hewlett-Packard Company)
HP System Event Utility (HKLM-x32\...\{29E20347-C62F-4657-938E-876A182B67F1}) (Version: 1.4.13 - HP Inc.)
HP Touchpoint Analytics Client (HKLM\...\{E5FB98E0-0784-44F0-8CEC-95CD4690C43F}) (Version: 4.0.2.1439 - HP Inc.)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10603.192 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1163 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4549 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.2.1088 - Intel Corporation)
iTunes (HKLM\...\{5881B877-CB42-4317-9411-96BA3CA39715}) (Version: 12.9.2.6 - Apple Inc.)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Menu Templates - Starter Kit (HKLM-x32\...\{b78120a0-cf84-4366-a393-4d0a59bc546c}) (Version: 9.4.2.0 - Nero AG) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.68 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4132504481-2094533250-970770175-1001\...\OneDriveSetup.exe) (Version: 21.030.0211.0002 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: 11.0.7400.345 - Microsoft Corporation)
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{BAB9FCC5-1506-4B4F-BFCA-EDE0BDB86C21}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.13.26020 (HKLM-x32\...\{7474cd6e-76cc-4257-837e-5b9261e526af}) (Version: 14.13.26020.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.13.26020 (HKLM-x32\...\{5c045b7f-e561-4794-91f8-c6cda0893107}) (Version: 14.13.26020.0 - Microsoft Corporation)
Molotov (HKU\S-1-5-21-4132504481-2094533250-970770175-1001\...\Molotov) (Version: 4.2.3 - Molotov)
Movie Templates - Starter Kit (HKLM-x32\...\{e498385e-1c51-459a-b45f-1721e37aa1a0}) (Version: 9.4.2.0 - Nero AG) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.5.0 - Mozilla)
Mozilla Thunderbird 68.4.2 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 68.4.2 (x86 fr)) (Version: 68.4.2 - Mozilla)
Mozilla Thunderbird 78.9.0 (x64 fr) (HKLM\...\Mozilla Thunderbird 78.9.0 (x64 fr)) (Version: 78.9.0 - Mozilla)
Nero 9 (HKLM-x32\...\{5c441227-3ae7-4b8f-a9e9-2aa1f57465fb}) (Version: - Nero AG)
NVIDIA GeForce Experience 3.20.4.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.4.14 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Pilote graphique 457.63 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 457.63 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.103 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.3.723.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7584 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{A5107464-AA9B-4177-8129-5FF2F42DD322}) (Version: 1.0.0.62 - REALTEK Semiconductor Corp.)
Skype™ 7.33 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.33.105 - Skype Technologies S.A.)
SoundTrax (HKLM-x32\...\{c5a7cb6c-e76d-408f-ba0e-85605420fe9d}) (Version: 4.4.23.0 - Nero AG) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 3.1.1 - Krzysztof Kowalczyk)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics ClickPad Driver (HKLM\...\SynTPDeinstKey) (Version: 19.3.31.31 - Synaptics Incorporated)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{139493B2-F1BC-4F05-A974-B49297C1EB04}) (Version: 1.1.0.0 - Microsoft Corporation) Hidden
Zoom (HKU\S-1-5-21-4132504481-2094533250-970770175-1001\...\ZoomUMX) (Version: 5.5.4 (13142.0301) - Zoom Video Communications, Inc.)

Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_3.1.0.0_neutral__6e5tt8cgb93ep [2021-02-18] (Canon Inc.)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_1.1911.21713.0_x64__8wekyb3d8bbwe [2021-04-04] (Microsoft Corporation)
Dame de Pique -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.HeartsDeluxe_6.9.50.0_x64__kx24dqmazqk8j [2021-04-03] (Random Salad Games LLC)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-25] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-04-04] (Microsoft Studios) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Solitaire Français -> C:\Program Files\WindowsApps\26720RandomSaladGamesLLC.SimpleSolitaire_7.1.3.0_x64__kx24dqmazqk8j [2021-03-16] (Random Salad Games LLC)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-4132504481-2094533250-970770175-1001_Classes\CLSID\{C591CFEA-E432-495d-A0BE-58E4CCD87B17}\Shell\Open\Command -> C:\Program Files\Synaptics\SynTP\SynTPCpl.dll (Synaptics Incorporated -> Synaptics Incorporated)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1-x32: [cm_32bit] -> {D84432AF-3514-45a1-BD9C-1D6767EACD2E} => c:\program files (x86)\cmcm\Clean Master\cmmenu.dll [2020-06-02] (Cheetah Mobile Inc. -> Cheetah Mobile,Inc.)
ContextMenuHandlers1: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => c:\program files (x86)\cmcm\Clean Master\cmmenu64.dll [2020-06-02] (Cheetah Mobile Inc. -> Cheetah Mobile,Inc.)
ContextMenuHandlers1-x32: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files (x86)\Nero\Nero 9\Nero CoverDesigner\CoverEdExtension.dll [2009-05-08] (Nero AG -> Nero AG)
ContextMenuHandlers2-x32: [cm_32bit] -> {D84432AF-3514-45a1-BD9C-1D6767EACD2E} => c:\program files (x86)\cmcm\Clean Master\cmmenu.dll [2020-06-02] (Cheetah Mobile Inc. -> Cheetah Mobile,Inc.)
ContextMenuHandlers2: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => c:\program files (x86)\cmcm\Clean Master\cmmenu64.dll [2020-06-02] (Cheetah Mobile Inc. -> Cheetah Mobile,Inc.)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4-x32: [cm_32bit] -> {D84432AF-3514-45a1-BD9C-1D6767EACD2E} => c:\program files (x86)\cmcm\Clean Master\cmmenu.dll [2020-06-02] (Cheetah Mobile Inc. -> Cheetah Mobile,Inc.)
ContextMenuHandlers4: [cm_64bit] -> {69E19770-EA24-49e2-B997-405EDBEF4C05} => c:\program files (x86)\cmcm\Clean Master\cmmenu64.dll [2020-06-02] (Cheetah Mobile Inc. -> Cheetah Mobile,Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-01-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2015-12-31] (Igor Pavlov) [Fichier non signé]

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [112640 2014-09-29] () [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\Nous\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge (2).lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Nous\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Booking.com.lnk -> C:\Program Files (x86)\Hewlett-Packard\Shared\WizLink.exe () -> hxxp://www.booking.com/index.html?aid=398438&label=square

==================== Modules chargés (Avec liste blanche) =============

2015-07-22 11:44 - 2015-07-22 11:44 - 000285184 _____ (Intel Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2015-07-22 11:44 - 2015-07-22 11:44 - 000562688 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2016-02-17 09:57 - 2017-12-23 09:25 - 000548864 _____ (Microsoft Corporation) [Fichier non signé] c:\program files (x86)\cmcm\Clean Master\MSVCP80.dll
2016-02-17 09:57 - 2017-12-23 09:25 - 000626688 _____ (Microsoft Corporation) [Fichier non signé] c:\program files (x86)\cmcm\Clean Master\MSVCR80.dll
2021-04-04 20:33 - 2021-04-04 20:33 - 001093120 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\MFC80U.DLL
2021-04-04 20:33 - 2021-04-04 20:33 - 000061440 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\MFC80FRA.DLL

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\Nous\Downloads\CNI1.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\CNI1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Nous\Downloads\CNI2.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\CNI2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Nous\Downloads\dom.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\dom.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Nous\Downloads\PC1.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\PC1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Nous\Downloads\PC2.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\PC2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Nous\Downloads\volet1.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\volet1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Nous\Downloads\volet2.jpeg:3or4kl4x13tuuug3Byamue2s4b [95]
AlternateDataStreams: C:\Users\Nous\Downloads\volet2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [480]

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://fr.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_anvsft_16_47¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0CyE0AtA0E0EyCyD0C0E0AyD0AtAtAtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0A0EtD0AzztGtC0AzzzztGtC0FyD0DtGtBtBtDyCtGyD0DyB0EyDyCyE0DyE0FyB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0F0Dzz0A0CtCtBtGtAyCzzyBtGyEyDyDyDtG0B0FyEyEtGtD0CtDtByDtAyD0B0BtDyDyB2QtN0A0LzuyE%26cr%3D584607702%26a%3Dwbf_anvsft_16_47%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
HKU\S-1-5-21-4132504481-2094533250-970770175-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.fr/
HKU\S-1-5-21-4132504481-2094533250-970770175-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://hp15-comm.msn.com/?pc=HRTE
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_anvsft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0CyE0AtA0E0EyCyD0C0E0AyD0AtAtAtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0A0EtD0AzztGtC0AzzzztGtC0FyD0DtGtBtBtDyCtGyD0DyB0EyDyCyE0DyE0FyB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0F0Dzz0A0CtCtBtGtAyCzzyBtGyEyDyDyDtG0B0FyEyEtGtD0CtDtByDtAyD0B0BtDyDyB2QtN0A0LzuyE%26cr%3D584607702%26a%3Dwbf_anvsft_16_47%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_anvsft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0CyE0AtA0E0EyCyD0C0E0AyD0AtAtAtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0A0EtD0AzztGtC0AzzzztGtC0FyD0DtGtBtBtDyCtGyD0DyB0EyDyCyE0DyE0FyB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0F0Dzz0A0CtCtBtGtAyCzzyBtGyEyDyDyDtG0B0FyEyEtGtD0CtDtByDtAyD0B0BtDyDyB2QtN0A0LzuyE%26cr%3D584607702%26a%3Dwbf_anvsft_16_47%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_anvsft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0CyE0AtA0E0EyCyD0C0E0AyD0AtAtAtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0A0EtD0AzztGtC0AzzzztGtC0FyD0DtGtBtBtDyCtGyD0DyB0EyDyCyE0DyE0FyB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0F0Dzz0A0CtCtBtGtAyCzzyBtGyEyDyDyDtG0B0FyEyEtGtD0CtDtByDtAyD0B0BtDyDyB2QtN0A0LzuyE%26cr%3D584607702%26a%3Dwbf_anvsft_16_47%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wbf_anvsft_16_47¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1Qzu0D0CyE0AtA0E0EyCyD0C0E0AyD0AtAtAtN0D0Tzu0StCyBzytDtN1L2XzutAtFtByDtFtCtFyDtBtN1L1Czu1StN1L1G1B1V1N2Y1L1Qzu2SyB0DtB0A0EtD0AzztGtC0AzzzztGtC0FyD0DtGtBtBtDyCtGyD0DyB0EyDyCyE0DyE0FyB0A2QtN1M1F1B2Z1V1N2Y1L1Qzu2StD0F0Dzz0A0CtCtBtGtAyCzzyBtGyEyDyDyDtG0B0FyEyEtGtD0CtDtByDtAyD0B0BtDyDyB2QtN0A0LzuyE%26cr%3D584607702%26a%3Dwbf_anvsft_16_47%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-4132504481-2094533250-970770175-1001 -> {FE63EDF5-0C04-4F73-92AC-C01A283FAB46} URL = hxxps://fr.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=994519&p={searchTerms}
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho_64.dll => Pas de fichier
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.52\BHO\ie_to_edge_bho.dll => Pas de fichier
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2015-07-01] (EVERNOTE CORPORATION -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-10-27] (HP Inc. -> HP Inc.)
Toolbar: HKU\S-1-5-21-4132504481-2094533250-970770175-1001 -> Pas de nom - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Pas de fichier
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-07-10 13:04 - 2015-07-10 13:02 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\windows\system32;C:\windows;C:\windows\System32\Wbem;C:\windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-4132504481-2094533250-970770175-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Nous\Desktop\Photos\2020\Octobre 20\IMG_20201021_115319.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\StartupFolder: => "Avast SecureLine VPN.lnk"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "BtServer"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "cmsc"
HKLM\...\StartupApproved\Run32: => "MalwareProtectionLive"
HKLM\...\StartupApproved\Run32: => "HPMessageService"
HKU\S-1-5-21-4132504481-2094533250-970770175-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-4132504481-2094533250-970770175-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-4132504481-2094533250-970770175-1001\...\StartupApproved\Run: => "Steam"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{248A1A0A-E3BF-4CB6-89DF-2E92ED7CA583}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{DBF934B3-388D-4D3D-B5F3-7F239F5EFE68}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{103E0D3C-8200-48CE-AD92-E7D5AE76F5C4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{A1D4A0FA-785F-4AE3-8C5C-82C61212511A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{4AB93021-55A4-4BC0-AB6E-7C25EDDC807B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\F1 2020\F1_2020_dx12.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{5A80CF5C-FF99-4CB6-BFE3-5EFF9A115FED}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{50EF0CF9-0936-4B07-A942-3FC2712F442C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{EC803BB1-5390-4726-8E8E-6B24458F92B1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9A96BD81-B915-4767-ABC9-7E1AA4158887}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{AB7F940B-1BD9-474D-9FA9-370DB305CD65}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2E033D5F-0158-4644-B0C2-BCFC033D8BBE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E17469C0-46FE-4238-B9D9-18F34F5844AF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{529D8D8C-2902-4530-BF57-1D3190AA95BD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{89BDFFB7-C540-44FC-B965-C69A994FD914}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{76145F48-F5B0-4D91-84C3-9B2F442AF90D}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{245C233D-71D6-4FB6-9128-67AC7BFD118A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{D8D0A9E2-6FD9-4012-9E5E-A6AB6ED5B0AC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0A34CDD0-BB20-4ED9-B8AF-2460CD42FDC4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DC7C306D-F83C-4254-BB2F-BE92381E41DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{FD2E1A99-0717-4D69-BAD4-6934438BB351}] => (Allow) C:\Users\Nous\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{941EF7BC-6C22-4280-9650-950D1290D2AC}] => (Allow) C:\Users\Nous\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{68445713-5806-4640-8F1B-3E7FC0304CEC}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{769F2004-44EB-44DE-9A43-8306C6D4BAC1}C:\program files (x86)\vuze\azureus.exe] => (Allow) C:\program files (x86)\vuze\azureus.exe => Pas de fichier
FirewallRules: [TCP Query User{23046F0E-64B4-4047-8C07-B45390264515}C:\program files (x86)\vuze\azureus.exe] => (Allow) C:\program files (x86)\vuze\azureus.exe => Pas de fichier
FirewallRules: [{0C9E8545-51A3-4725-A4CD-20522ECC6631}] => (Allow) c:\Program Files\CyberLink\PowerDirector12\PDR10.EXE => Pas de fichier
FirewallRules: [{87A8EE5E-3CD4-450B-90F4-3AC32B28C79D}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7C961249-9F5A-462A-BEB6-311357BE746F}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4B0A10B9-BBEF-44C3-8855-36B62D4BC19C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1F91DE30-40A9-4B1C-B56A-276DB43E452D}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{D2F9615A-A2F2-43CB-92E0-4C7A20EB0533}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D3BB7CB6-0249-442E-8905-EA4D062D8B8C}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1253257A-4E50-495D-A545-A77CB16BB1FB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EF93BD4D-1B30-40DF-83FF-D84664807F5A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B0CC88FB-570E-490F-8038-D92FC201C6E1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A3ED59BE-EDEB-4F68-8AF0-EAD0555A2145}] => (Allow) C:\Program Files\CyberLink\PowerDirector12\PDR10.EXE => Pas de fichier
FirewallRules: [{18B25AB2-70E5-4C65-B020-1924EB8462CA}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe => Pas de fichier
FirewallRules: [{B26AAEC5-2A72-4294-8E25-88171E026622}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe => Pas de fichier
FirewallRules: [{83C8D953-E521-4529-83A7-3F8484E8736B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{BF72F91C-FB5B-40A2-A344-1484D7C9DE69}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe (CyberLink Corp. -> CyberLink)
FirewallRules: [{A5F62501-0AE6-4A45-8C2C-BFE8E380FCDD}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe => Pas de fichier
FirewallRules: [{FE01140F-346B-4A37-82A3-82E94759538B}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [{72974461-8766-4BEB-85C6-CB8B81113E8C}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe (CyberLink Corp. -> CyberLink Corp.)
FirewallRules: [TCP Query User{9913D86E-4038-42AC-A42B-7F61E8CB9503}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Pas de fichier
FirewallRules: [UDP Query User{37CC0403-BBD4-44E5-84A9-62D99616EF34}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Pas de fichier
FirewallRules: [TCP Query User{FD6736CE-835A-4931-AAA9-A9CE610F81D0}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier
FirewallRules: [UDP Query User{5E02A8DF-0AE3-4B85-B2CE-317E30ECB31C}C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) C:\program files\epic games\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe => Pas de fichier
FirewallRules: [TCP Query User{510497BB-0565-4C54-95D9-D10D5C505C4B}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Pas de fichier
FirewallRules: [UDP Query User{7467AD38-4DAD-4B3D-B3C2-29C43285D703}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe => Pas de fichier
FirewallRules: [{8F4CA8B0-E1A5-4C6B-9DEF-88E8FBBD85F8}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F5A99AB9-3F69-4E01-A9EA-EE83C0E8AEC4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe => Pas de fichier

==================== Points de restauration =========================

ATTENTION: La Restauration système est désactivée (Total:908.36 GB) (Free:394.23 GB) (43%)

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (04/05/2021 10:28:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:27:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:26:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:26:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:25:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:24:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:23:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.

Error: (04/05/2021 10:22:00 AM) (Source: ESENT) (EventID: 537) (User: )
Description: svchost (3548,D,22) SRUJet: A request for a node on an empty page (Pgno: 1657, Flags: 0x1ac4a) has been made (error -351) for a B-Tree (ObjectId: 21, PgnoRoot: 127) of database C:\WINDOWS\system32\SRU\SRUDB.dat. This is typically due to a lost I/O from
storage hardware. Please check with your hardware vendor for latest firmware revisions, make changes to your controller's caching parameters, use crash consistent hardware with Forced
Unit Access support, and/or replace faulty hardware.


Erreurs système:
=============
Error: (04/05/2021 10:12:44 AM) (Source: disk) (EventID: 7) (User: )
Description: Le périphérique \Device\Harddisk0\DR0 comporte un bloc défectueux.

Error: (04/04/2021 10:10:47 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.

Error: (04/04/2021 10:10:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (04/04/2021 09:21:36 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service HP Support Solutions Framework Service est en attente de démarrage.

Error: (04/04/2021 09:18:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (04/04/2021 09:18:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Cache de police de Windows Presentation Foundation 3.0.0.0.

Error: (04/04/2021 09:17:03 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service RichVideo64 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (04/04/2021 09:17:03 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service RichVideo64.


==================== Infos Mémoire ===========================

BIOS: Insyde F.80 06/14/2016
Carte mère: HP 818B
Processeur: Intel(R) Core(TM) i7-4510U CPU @ 2.00GHz
Pourcentage de mémoire utilisée: 67%
Mémoire physique - RAM - totale: 6072.26 MB
Mémoire physique - RAM - disponible: 1965.3 MB
Mémoire virtuelle totale: 11960.26 MB
Mémoire virtuelle disponible: 7527.97 MB

==================== Lecteurs ================================

Drive c: (Windows) (Fixed) (Total:908.36 GB) (Free:394.23 GB) NTFS
Drive d: (RECOVERY) (Fixed) (Total:21.04 GB) (Free:2.45 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]

\\?\Volume{d0ec5660-fcaa-47c5-9db6-55605489f7a8}\ () (Fixed) (Total:1.73 GB) (Free:1.14 GB) NTFS
\\?\Volume{64306962-59ed-4123-8c1b-339acb3de284}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 5F8654C3)

Partition: GPT.

==================== Fin de Addition.txt =======================