Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 13-05-2020 01
Exécuté par david (19-05-2020 19:06:37)
Exécuté depuis G:\Downloads
Windows 10 Home Version 2004 19041.264 (X64) (2020-01-14 23:52:18)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-481818036-3688668792-3603857820-500 - Administrator - Disabled)
david (S-1-5-21-481818036-3688668792-3603857820-1001 - Administrator - Enabled) => C:\Users\david
DefaultAccount (S-1-5-21-481818036-3688668792-3603857820-503 - Limited - Disabled)
Invité (S-1-5-21-481818036-3688668792-3603857820-501 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-481818036-3688668792-3603857820-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Security Cloud (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Security Cloud (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7-Zip 20.00 alpha (x64) (HKLM\...\7-Zip) (Version: 20.00 alpha - Igor Pavlov)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.009.20063 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.371 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.371 - Adobe)
AIDA64 Extreme v6.10 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 6.10 - FinalWire Ltd.)
AIMP (HKLM-x32\...\AIMP) (Version: v4.60.2177, 24.02.2020 - AIMP DevTeam)
AOMEI Partition Assistant Standard Edition 8.1 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version: - AOMEI Technology Co., Ltd.)
Attribute Changer 9.50 (HKLM\...\{27263813-8BDE-4CD2-84D3-02536743428A}_is1) (Version: 9.50 - Romain Petges)
Auslogics Disk Defrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 9.1.0.0 - Auslogics Labs Pty Ltd)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Avidemux VC++ 64bits (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\{efa048dc-96f5-4869-9893-20cc7417fcaf}) (Version: 2.7.5 - Mean)
Axialis IconWorkshop 6.90 (HKLM-x32\...\IconWorkshop) (Version: 6.90 - Axialis Software)
Basilisk 52.9.2018.12.18 (x64 en-US) (HKLM\...\Basilisk 52.9.2018.12.18 (x64 en-US)) (Version: 52.9.2018.12.18 - Mozilla)
Basilisk 52.9.2020.05.08 (x64 en-US) (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Basilisk 52.9.2020.05.08 (x64 en-US)) (Version: 52.9.2020.05.08 - Moonchild Productions)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.180.0.1051 - BlueStack Systems, Inc.)
Brave Dev (HKLM-x32\...\BraveSoftware Brave-Browser-Dev) (Version: 81.1.10.63 - Auteurs de Brave)
Brave Nightly (HKLM-x32\...\BraveSoftware Brave-Browser-Nightly) (Version: 81.1.11.10 - Auteurs de Brave)
BurnAware Free 13.3 (HKLM-x32\...\BurnAware Free_is1) (Version: - Burnaware)
BurnAware Premium 12.9 (HKLM-x32\...\BurnAware Premium_is1) (Version: - Burnaware)
Chrome Remote Desktop Host (HKLM-x32\...\{EF08968E-F7E7-43EA-95B1-1E8ACC8CC459}) (Version: 80.0.3987.18 - Google Inc.)
Citra (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\{b296bbfc-6c22-4d72-9846-621281a20888}) (Version: 1.0.0 - Citra Team)
Crédit Mutuel (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Crédit Mutuel) (Version: 1.0 - Crédit Mutuel)
CrystalDiskMark 6.0.2 (HKLM\...\CrystalDiskMark6_is1) (Version: 6.0.2 - Crystal Dew World)
Discord (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Discord) (Version: 1.0 - Discord)
Firefox Developer Edition 76.0 (x64 fr) (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Firefox Developer Edition 76.0 (x64 fr)) (Version: 76.0 - Mozilla)
Français (comme fr-oss) (HKLM\...\{06FAA324-039F-469E-A2FC-0EE7A5738404}) (Version: 1.0.3.40 - All the world)
Franz 5.1.0 (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\41ea870c-e358-5c9f-80c2-feeb2c3c8132) (Version: 5.1.0 - Stefan Malzner)
FTPRush 2.1.8 (HKLM-x32\...\FTP Rush_is1) (Version: 2.1.8 - wftpserver.com)
GoldWave v6.51 (HKLM\...\GoldWave v6.51) (Version: 6.51 - GoldWave Inc.)
Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
HashTab 6.0.0.34 (HKLM\...\HashTab) (Version: 6.0.0.34 - Implbits Software)
HDSDR 2.80 (HKLM-x32\...\{DB200CBD-9E3E-4C72-B711-B46D6817BC51}_is1) (Version: - DG0JBJ)
HomeBank 5.4.2 (HKLM-x32\...\{770D94F9-211A-4BC7-9921-FC946ABD82C8}_is1) (Version: 5.4.2 - Maxime DOYEN)
Honeyview (HKLM\...\Honeyview) (Version: 5.32 - Bandisoft.com)
HP Documentation (HKLM\...\HP_Documentation) (Version: 1.0.0.1 - HP Inc.)
Inkscape (HKLM-x32\...\Inkscape) (Version: 1.0.0- - Inkscape)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
ISO Workshop 8.3 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic)
MahJong Suite 2020 v17.0 (HKLM-x32\...\MahJong Suite_is1) (Version: 17.0 - TreeCardGames)
Messenger (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Messenger) (Version: 1.0 - Messenger)
Microsoft Edge Beta (HKLM-x32\...\Microsoft Edge Beta) (Version: 83.0.478.33 - Microsoft Corporation)
Microsoft Edge Canary (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Microsoft Edge SxS) (Version: 84.0.519.0 - Microsoft Corporation)
Microsoft Edge Dev (HKLM-x32\...\Microsoft Edge Dev) (Version: 84.0.508.0 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.127.21 - )
Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\Proplus2019Retail - fr-fr) (Version: 16.0.12730.20270 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.20.27508 (HKLM-x32\...\{7b178cda-9740-4701-a92a-f168d213b343}) (Version: 14.20.27508.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.20.27508 (HKLM-x32\...\{8c3f057e-d6a6-4338-ac6a-f1c795a6577b}) (Version: 14.20.27508.1 - Microsoft Corporation)
MKVToolNix 43.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 43.0.0 - Moritz Bunkus)
Mozilla A Team - mozregression-gui - regression range finder for Mozilla nightly and inbound builds (HKLM-x32\...\Mozilla A Team mozregression-gui) (Version: - "Mozilla A Team")
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 72.0a1 - Mozilla)
MPC-HC 1.9.1 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.9.1 - MPC-HC Team)
MS Comptes Bancaires 11.5.6 (64 bits) (HKLM\...\MS Comptes Bancaires (64 bits)_is1) (Version: 11.5.6 - MSoft informatique SAS)
MusicBee 3.3 (HKLM-x32\...\MusicBee) (Version: 3.3 - Steven Mayall)
Nightly 72.0a1 (x64 fr) (HKLM\...\Nightly 72.0a1 (x64 fr)) (Version: 72.0a1 - Mozilla)
Nightly 78.0a1 (x64 fr) (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Nightly 78.0a1 (x64 fr)) (Version: 78.0a1 - Mozilla)
NVIDIA GeForce NOW 2.0.16.148 (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.16.148 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.338.0 - NVIDIA Corporation) Hidden
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 442.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 442.05 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20270 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Opera developer 69.0.3686.0 (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Opera 69.0.3686.0) (Version: 69.0.3686.0 - Opera Software)
paint.net (HKLM\...\{F460E58B-FCF4-45C5-A791-37014D388A7B}) (Version: 4.2.11 - dotPDN LLC)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2) (Version: - )
PerformanceTest v9.0 (HKLM\...\PerformanceTest 9_is1) (Version: 9.0.1030.0 - Passmark Software)
PhotoFiltre Studio X (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\PhotoFiltre Studio X) (Version: - )
Plane Finder (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Plane Finder) (Version: 1.0 - Plane Finder)
PotPlayer-64 bit (HKLM\...\PotPlayer64) (Version: 200513 - Kakao Corp.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Prime Video (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\3c66b325a1f858fa85b6b8c1922e1173) (Version: 1.0 - Prime Video)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3.1 r3321 - Rainmeter)
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 1.0.0.93 - REALTEK Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8924.1 - Realtek Semiconductor Corp.)
Replay Converter 6 (6.0.4.0) (HKLM-x32\...\Replay Converter 6) (Version: 6.0.4.0 - Applian Technologies)
Sandboxie 5.33.6 (64-bit) (HKLM\...\Sandboxie) (Version: 5.33.6 - Sandboxie Holdings, LLC)
ScreenToGif (HKLM-x32\...\{34A46080-CAF6-4FDA-B0E3-5C72E09F517D}) (Version: 2.19.3 - Nicke Manarin)
SDR-Radio.com (V3) (HKLM-x32\...\SDR-Radio.com (V3)) (Version: - )
ShareX (HKLM\...\82E6AC09-0FEF-4390-AD9F-0DD3F5561EFC_is1) (Version: 13.0.1 - ShareX Team)
SolSuite 2020 v20.1 (HKLM-x32\...\SolSuite_is1) (Version: 20.1 - TreeCardGames)
Spotify (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Spotify) (Version: 1.1.31.703.g256add22 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stellarium 0.20.0 (HKLM\...\Stellarium_is1) (Version: 0.20.0 - Stellarium team)
SVG Explorer Extension 0.1.1 (HKLM\...\{4CA20D9A-98AC-4DD6-9C16-7449F29AC08A}_is1) (Version: 0.1.1 - Dotz Softwares)
TomTom HOME (HKLM-x32\...\{C51F55EC-477D-4385-B951-BDEFA5DFC90B}) (Version: 2.11.6 - Nom de votre société)
Transmission 2.94 (d8e60ee44f) (x64) (HKLM\...\{F822870C-AD55-47D1-A705-21661A02386B}) (Version: 2.94.0 - Transmission Project)
TunesKit Spotify Converter (HKLM-x32\...\{7E3D1669-A658-40A9-87F2-D82CC52ED1D1}_is1) (Version: 1.5.3.590 - TunesKit, Inc.)
TunesKit Spotify Converter 1.7.0.657 (HKLM-x32\...\TunesKit Spotify Converter_is1) (Version: - TunesKit, Inc.)
Vector Magic (HKLM-x32\...\Vector Magic) (Version: 1.15 - Vector Magic, Inc.)
VideoProc (HKLM-x32\...\VideoProc) (Version: 3.2 - Digiarty, Inc.)
Vivaldi (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\Vivaldi) (Version: 3.1.1906.3 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.10 - VideoLAN)
VMware Workstation (HKLM\...\{067A1C2B-0B50-4B40-A29A-01FD37620D9D}) (Version: 15.5.2 - VMware, Inc.)
Waterfox Current 68.0 (x64 en-US) (HKLM\...\Waterfox Current 68.0 (x64 en-US)) (Version: 68.0 - Waterfox)
welle.io (HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\{93fb29a5-b4c1-40e3-a330-f010bddc985f}) (Version: 2.0 - Albrecht Lohofener)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
WinSCP 5.15.2 (HKLM-x32\...\winscp3_is1) (Version: 5.15.2 - Martin Prikryl)
WinX HD Video Converter Deluxe 5.15.2 (HKLM-x32\...\WinX HD Video Converter Deluxe_is1) (Version: - Digiarty Software, Inc.)
XnConvert 1.83 (HKLM\...\XnConvert_is1) (Version: 1.83 - Gougelet Pierre-e)

Packages:
=========
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-04-09] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.37.4.0_x86__kgqvnymyfvs32 [2020-05-15] (king.com)
Candy Crush Jelly Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushJellySaga_2.41.9.0_x86__kgqvnymyfvs32 [2020-04-30] (king.com)
Candy Crush Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSaga_1.1760.2.0_x86__kgqvnymyfvs32 [2020-05-08] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.168.200.0_x86__kgqvnymyfvs32 [2020-05-15] (king.com)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_2.2005.5739.0_x64__8wekyb3d8bbwe [2020-05-09] (Microsoft Corporation) [Startup Task]
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-17] (Dolby Laboratories)
Energy Star -> C:\Program Files\WindowsApps\AD2F1837.HPInc.EnergyStar_1.2.0.0_x64__v10z8vjag6ke6 [2018-12-30] (HP Inc.)
FreeMiTV -> C:\Program Files\WindowsApps\41165Mitermite.FreeMiTV_1.1.11.0_x64__kqnspq53rphy4 [2019-04-10] (Stéphane Mitermite) [MS Ad]
HP PC Hardware Diagnostics Windows -> C:\Program Files\WindowsApps\AD2F1837.HPPCHardwareDiagnosticsWindows_1.6.4.0_x64__v10z8vjag6ke6 [2020-04-16] (HP Inc.)
HP Privacy Settings -> C:\Program Files\WindowsApps\AD2F1837.HPPrivacySettings_1.0.38.0_x64__v10z8vjag6ke6 [2019-11-06] (HP Inc.)
HP System Event Utility -> C:\Program Files\WindowsApps\AD2F1837.HPSystemEventUtility_1.1.14.0_x64__v10z8vjag6ke6 [2020-05-09] (HP Inc.)
Messenger (Beta) -> C:\Program Files\WindowsApps\Facebook.FacebookMessenger_530.2.117.0_x64__8xx8rvfyw5nnt [2020-05-19] (Facebook Inc)
MeteoStation -> C:\Program Files\WindowsApps\58707SoftImage.MeteoStation_19.1.1.0_x64__fqg73yh344498 [2019-04-10] (SoftImage)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Edge Canary -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application [2020-05-18] (0)
Microsoft Edge Dev -> C:\Program Files (x86)\Microsoft\Edge Dev\Application [2020-05-12] (0)
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_2.9.1913.0_x86__8wekyb3d8bbwe [2019-12-26] (Microsoft Studios) [MS Ad]
Microsoft News: les actualités à ne pas manquer -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.38.21323.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Corporation)
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-17] (Microsoft Corporation) [MS Ad]
myCANAL -> C:\Program Files\WindowsApps\CANALGroupe.CANALTOUCH_3.7.7.0_x64__4d0jsvmsaqz2m [2020-01-17] (Groupe Canal +)
myTube! -> C:\Program Files\WindowsApps\59750RYKENAPPS.435307C335C44_3.5.29.0_x64__zd92nzxdcatqw [2020-05-06] (Ryken Studio)
NcsiUwpApp -> C:\Windows\SystemApps\NcsiUwpApp_8wekyb3d8bbwe [2020-01-15] (Microsoft)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-11] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.956.0_x64__56jybvy8sckqj [2019-09-30] (NVIDIA Corp.)
Raw Image Extension -> C:\Program Files\WindowsApps\Microsoft.RawImageExtension_1.0.30761.0_x64__8wekyb3d8bbwe [2020-03-27] (Microsoft Corporation)
The Weather Channel -> C:\Program Files\WindowsApps\Weather.TheWeatherChannel_2016.614.87.0_x64__t3yemqpq4kp7p [2019-04-10] (The Weather Channel.)
Thème dynamique -> C:\Program Files\WindowsApps\55888ChristopheLavalle.DynamicTheme_1.4.30228.0_x64__jdggxwd41xcr0 [2020-04-13] (Christophe Lavalle)
uBlock Origin -> C:\Program Files\WindowsApps\37833NikRolls.uBlockOrigin_1.15.24.0_neutral__f8jsg5mm64m62 [2019-04-10] (0)
UDK Package -> C:\Windows\SystemApps\MicrosoftWindows.UndockedDevKit_cw5n1h2txyewy [2020-01-15] (Microsoft Corporation)
Windows Feature Experience Pack -> C:\WINDOWS\SystemApps\MicrosoftWindows.Client.CBS_cw5n1h2txyewy [2020-04-10] (Microsoft Windows)
Windows File Manager -> C:\Program Files\WindowsApps\Microsoft.WindowsFileManager_10.1.3.0_x64__8wekyb3d8bbwe [2019-07-01] (Microsoft Corporation)
Windows Search -> C:\Windows\SystemApps\Microsoft.Windows.Search_cw5n1h2txyewy [2020-05-13] (Microsoft Corporation)
Windows Terminal -> C:\Program Files\WindowsApps\Microsoft.WindowsTerminal_0.11.1333.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Corporation)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{1BF368D2-E51E-4ACC-8F60-3FC9E891B96A}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.119.43\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{1EFE814D-F1BA-4B7E-AE9A-A8BD71D2CF2D}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.117.15\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{23E47198-B3EE-44D9-B0F4-1B3F4A1E3336}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.101.13\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{300E17A3-B34E-4D77-BCB4-4F227F215016}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.121.21\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{3AD5FAA2-198B-4FD0-946A-713C16A8421B}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.105.7\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{4372F3CE-EDF2-4B6A-937B-A6E1F4C1AA78}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.117.29\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{4BF4AA82-C9FE-45F5-A67A-925D602662F3}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.125.27\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{5DB7CD8E-F11E-401F-8B84-E5B37533C22A}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.117.13\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{5EA43877-C6D8-4885-B77A-C0BB27E94372}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.127.21\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{66A22D9E-7C6D-4641-BBD7-E6C738CF32B0}\InprocServer32 -> D:\Kingsoft\WPS Office\11.2.0.8934\office6\kopenwpsshellext64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{75C74D83-5728-4B1A-8752-0D1809C0CF07}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.107.13\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{7CE325BB-E244-46E6-A080-DAB5F87CF1C7}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.111.45\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{9098DA36-53B8-4B8B-A550-6C71DA71B697}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.103.17\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{9B6D38F3-8EF4-48A5-AD30-FFFFFFFFFFFF}\InprocServer32 -> D:\Honeyview\HVShell64.dll (Bandisoft -> Bandisoft.com)
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{9C08B62F-350A-41A8-866D-958247525EE6}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.113.27\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{9DE945F0-3142-49CC-ACBD-AC1F443C5E16}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.127.21\psuser_64.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> D:\Vivaldi\Application\3.1.1906.3\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{C577C0FE-3906-48F4-B0D5-5F8151E18F5B}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.109.19\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{DBB733DE-162C-4B0D-A51B-71A2F35F7174}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.107.15\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{DE96B548-163C-40E3-88C9-55B9C26118EC}\localserver32 -> "D:\Vivaldi\Application\3.0.1874.5\notification_helper.exe" => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{EDD9A6D6-52EA-406B-AD7D-F9C9A0CE6A5F}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.127.15\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{F08D360F-FFA6-4954-8CA6-8E3DB6037CEB}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.111.43\psuser_64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-481818036-3688668792-3603857820-1001_Classes\CLSID\{F72FA0AF-5C8C-436F-8D41-E1B27FA05DE2}\InprocServer32 -> C:\Users\david\AppData\Local\Microsoft\EdgeUpdate\1.3.119.39\psuser_64.dll => Pas de fichier
ShellServiceObjects: OneDrive network states cache SSO -> {78DE489B-7931-4f14-83B4-C56D38AC9FFA} => C:\Windows\System32\Windows.FileExplorer.Common.dll [2020-03-14] (Microsoft Windows -> Microsoft Corporation)
ShellServiceObjects-x32: OneDrive network states cache SSO -> {78DE489B-7931-4f14-83B4-C56D38AC9FFA} => C:\Windows\SysWOW64\Windows.FileExplorer.Common.dll [2019-12-07] (Microsoft Windows -> Microsoft Corporation)
ContextMenuHandlers1: [0HVContext] -> {9B6D38F3-8EF4-48A5-AD30-FFFFFFFFFFFF} => D:\Honeyview\HVShell64.dll [2020-01-23] (Bandisoft -> Bandisoft.com)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => D:\AIMP\System\aimp_menu64.dll [2019-12-31] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => -> Pas de fichier
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => D:\VMware\VMware Workstation\vmdkShellExt.dll [2020-03-07] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers2: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => D:\VMware\VMware Workstation\x64\vmdkShellExt64.dll [2020-03-07] (VMware, Inc. -> VMware, Inc.)
ContextMenuHandlers3: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => D:\Attribute Changer\acshell.dll [2020-01-04] (Romain Petges) [Fichier non signé]
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} => -> Pas de fichier
ContextMenuHandlers4: [0HVContext] -> {9B6D38F3-8EF4-48A5-AD30-FFFFFFFFFFFF} => D:\Honeyview\HVShell64.dll [2020-01-23] (Bandisoft -> Bandisoft.com)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [AIMP] -> {1F77B17B-F531-44DB-ACA4-76ABB5010A28} => D:\AIMP\System\aimp_menu64.dll [2019-12-31] (IP Izmaylov Artem Andreevich -> AIMP DevTeam)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Pas de fichier
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvhdc.inf_amd64_89d2f741860f43c6\nvshext.dll [2020-03-03] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => D:\7-Zip\7-zip.dll [2020-02-06] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} => -> Pas de fichier
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> Pas de fichier
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => D:\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1_S-1-5-21-481818036-3688668792-3603857820-1001: [ kopenwpsshellext] -> {66A22D9E-7C6D-4641-BBD7-E6C738CF32B0} => D:\Kingsoft\WPS Office\11.2.0.8934\office6\kopenwpsshellext64.dll -> Pas de fichier
ContextMenuHandlers1_S-1-5-21-481818036-3688668792-3603857820-1001: [0HVContext] -> {9B6D38F3-8EF4-48A5-AD30-FFFFFFFFFFFF} => D:\Honeyview\HVShell64.dll [2020-01-23] (Bandisoft -> Bandisoft.com)
ContextMenuHandlers4_S-1-5-21-481818036-3688668792-3603857820-1001: [ kopenwpsshellext] -> {66A22D9E-7C6D-4641-BBD7-E6C738CF32B0} => D:\Kingsoft\WPS Office\11.2.0.8934\office6\kopenwpsshellext64.dll -> Pas de fichier
ContextMenuHandlers4_S-1-5-21-481818036-3688668792-3603857820-1001: [0HVContext] -> {9B6D38F3-8EF4-48A5-AD30-FFFFFFFFFFFF} => D:\Honeyview\HVShell64.dll [2020-01-23] (Bandisoft -> Bandisoft.com)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDR-Radio.com (V3) Tools\Reset Console.lnk -> D:\SDR-Radio.com\ResetConsole.bat ()
Shortcut: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SDR-Radio.com (V3) Tools\Select Identity.lnk -> D:\SDR-Radio.com\SelectIdentity.bat ()
ShortcutWithArgument: C:\Users\david\Desktop\Crédit Mutuel.lnk -> C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ackglagbbhgghfpkcnemaokgdidnogia
ShortcutWithArgument: C:\Users\david\Desktop\Discord.lnk -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=gfnpopainmcambbkpaceeiliiblbjleg
ShortcutWithArgument: C:\Users\david\Desktop\Google Earth.lnk -> D:\Chromium\bin\chrome_proxy.exe (The Chromium Authors) -> --user-data-dir="D:\Chromium\profile" --profile-directory=Default --app-id=lakbjgffnbdgkefhkfgoencachbcgnpf
ShortcutWithArgument: C:\Users\david\Desktop\Messenger.lnk -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=docmfbaenngeeiidiicecmbidkalapdl
ShortcutWithArgument: C:\Users\david\Desktop\Plane Finder.lnk -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=gjogckkdhjidmmdghabbfjkhkhlehbho
ShortcutWithArgument: C:\Users\david\Desktop\Prime Video.lnk -> C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=icinbigbhdmbimkohlheipdkbkaiomjj
ShortcutWithArgument: C:\Users\david\Desktop\The Weather Channel.lnk -> D:\Chromium\bin\chrome_proxy.exe (The Chromium Authors) -> --user-data-dir="D:\Chromium\profile" --profile-directory=Default --app-id=pmlefpmcajakfmhlkhnkommjglkgijob
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Crédit Mutuel.lnk -> C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=ackglagbbhgghfpkcnemaokgdidnogia
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord.lnk -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=gfnpopainmcambbkpaceeiliiblbjleg
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Messenger.lnk -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=docmfbaenngeeiidiicecmbidkalapdl
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plane Finder.lnk -> C:\Users\david\AppData\Local\Microsoft\Edge SxS\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=gjogckkdhjidmmdghabbfjkhkhlehbho
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Prime Video.lnk -> C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge_proxy.exe (Microsoft Corporation) -> --profile-directory=Default --app-id=icinbigbhdmbimkohlheipdkbkaiomjj
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chromium\Google Earth.lnk -> D:\Chromium\bin\chrome_proxy.exe (The Chromium Authors) -> --user-data-dir="D:\Chromium\profile" --profile-directory=Default --app-id=lakbjgffnbdgkefhkfgoencachbcgnpf
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chromium\The Weather Channel.lnk -> D:\Chromium\bin\chrome_proxy.exe (The Chromium Authors) -> --user-data-dir="D:\Chromium\profile" --profile-directory=Default --app-id=pmlefpmcajakfmhlkhnkommjglkgijob
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\af8446203517116f\Microsoft Edge Dev.lnk -> C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\david\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69541d79c3e27651\Brave Dev.lnk -> C:\Program Files (x86)\BraveSoftware\Brave-Browser-Dev\Application\brave.exe (Brave Software, Inc.) -> --profile-directory=Default

==================== Modules chargés (Avec liste blanche) =============

2013-09-28 12:07 - 2013-09-28 12:07 - 000009728 _____ (All the world) [Fichier non signé] C:\WINDOWS\system32\fr-oss.dll
2020-02-07 14:32 - 2020-02-06 15:00 - 000076800 _____ (Igor Pavlov) [Fichier non signé] D:\7-Zip\7-zip.dll
2020-01-07 02:27 - 2020-01-04 21:35 - 000491520 _____ (Romain Petges) [Fichier non signé] D:\Attribute Changer\acshell.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NgcSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MsQuic => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcCtnrSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NgcSvc => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer sites de confiance/sensibles ==========

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2018-09-15 09:31 - 2018-09-15 09:31 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-481818036-3688668792-3603857820-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\david\AppData\Local\Packages\55888ChristopheLavalle.DynamicTheme_jdggxwd41xcr0\LocalState\WinSpotlight\RE321k7_1920x1080.0.jpg
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

Network Binding:
=============
VMware Network Adapter VMnet8: VMware Bridge Protocol -> vmware_bridge (disabled)
Ethernet: VMware Bridge Protocol -> vmware_bridge (enabled)
VMware Network Adapter VMnet1: VMware Bridge Protocol -> vmware_bridge (disabled)
Wi-Fi: VMware Bridge Protocol -> vmware_bridge (enabled)

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "RtlS5Wake"
HKLM\...\StartupApproved\Run: => "HPLightingBarControl"
HKLM\...\StartupApproved\Run32: => "vmware-tray.exe"
HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\StartupApproved\Run: => "TomTomHOME.exe"
HKU\S-1-5-21-481818036-3688668792-3603857820-1001\...\StartupApproved\Run: => "Opera Browser Assistant"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{1D3FF178-BB22-4CBC-B38F-249B5FBCCF56}E:\cemu\cemu.exe] => (Allow) E:\cemu\cemu.exe () [Fichier non signé]
FirewallRules: [TCP Query User{A0BDDCBB-1724-4E2B-93C9-280DFC8DC77E}E:\cemu\cemu.exe] => (Allow) E:\cemu\cemu.exe () [Fichier non signé]
FirewallRules: [UDP Query User{1C068BD3-7BCA-43DF-BC6F-51C5C019703A}E:\cemu_1.16.0\cemu.exe] => (Allow) E:\cemu_1.16.0\cemu.exe => Pas de fichier
FirewallRules: [TCP Query User{4EDB3618-A9F8-44F6-ADC6-4614B6A65220}E:\cemu_1.16.0\cemu.exe] => (Allow) E:\cemu_1.16.0\cemu.exe => Pas de fichier
FirewallRules: [UDP Query User{EF2F755C-4373-4118-986F-6DB2BDAE70C1}D:\opera developer\67.0.3541.0\opera.exe] => (Allow) D:\opera developer\67.0.3541.0\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{8306EE38-1EC0-4270-9DD0-0A24EB516003}D:\opera developer\67.0.3541.0\opera.exe] => (Allow) D:\opera developer\67.0.3541.0\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{BBCE5325-4A9B-4286-824F-EF9831811BED}D:\opera developer\66.0.3515.2\opera.exe] => (Block) D:\opera developer\66.0.3515.2\opera.exe => Pas de fichier
FirewallRules: [TCP Query User{B7CBA316-CE48-4F39-A204-EC2BF27A238A}D:\opera developer\66.0.3515.2\opera.exe] => (Block) D:\opera developer\66.0.3515.2\opera.exe => Pas de fichier
FirewallRules: [UDP Query User{8E28F32F-EFCD-45AC-A7CC-74DDD93BD57D}G:\downloads\server\server\www\engine\ace_engine.exe] => (Allow) G:\downloads\server\server\www\engine\ace_engine.exe => Pas de fichier
FirewallRules: [TCP Query User{26ECD539-D18B-45EC-84B9-96912A477078}G:\downloads\server\server\www\engine\ace_engine.exe] => (Allow) G:\downloads\server\server\www\engine\ace_engine.exe => Pas de fichier
FirewallRules: [UDP Query User{D7C9617E-955B-476E-9F05-0695204889D1}G:\downloads\server\server\bin\apache\bin\httpdallfrtv.exe] => (Allow) G:\downloads\server\server\bin\apache\bin\httpdallfrtv.exe => Pas de fichier
FirewallRules: [TCP Query User{036C2A24-763E-45A2-A317-0695ABE4AB2B}G:\downloads\server\server\bin\apache\bin\httpdallfrtv.exe] => (Allow) G:\downloads\server\server\bin\apache\bin\httpdallfrtv.exe => Pas de fichier
FirewallRules: [UDP Query User{9EE5F6C4-A1D3-445A-8B1E-8CF59555B367}D:\transmission\transmission-qt.exe] => (Allow) D:\transmission\transmission-qt.exe (Mike Gelfand -> Transmission Project)
FirewallRules: [TCP Query User{28674244-2D00-4041-A886-AC69BCCCBDE6}D:\transmission\transmission-qt.exe] => (Allow) D:\transmission\transmission-qt.exe (Mike Gelfand -> Transmission Project)
FirewallRules: [{E721D218-0D3C-48D6-B566-FF76AC92DFB3}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{9E1628B3-6A5E-4B84-8B31-16FE4CD129E6}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{285CCC78-5F0C-4DA7-9888-4C9A34B02D75}] => (Allow) E:\Steam\steamapps\common\legacy_kain_defiance\defiance.exe (Eidos Inc.) [Fichier non signé]
FirewallRules: [{970DEC3A-8A33-484C-A228-11EBE6368602}] => (Allow) E:\Steam\steamapps\common\legacy_kain_defiance\defiance.exe (Eidos Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{3376984A-F882-45AD-9749-923DD01486EF}D:\android\android studio\jre\bin\java.exe] => (Allow) D:\android\android studio\jre\bin\java.exe => Pas de fichier
FirewallRules: [TCP Query User{E2D279F6-00BC-444D-BEAA-EFDDBBA5435C}D:\android\android studio\jre\bin\java.exe] => (Allow) D:\android\android studio\jre\bin\java.exe => Pas de fichier
FirewallRules: [UDP Query User{5AD261DB-84BC-4D13-87D6-00E77EF343AF}D:\citra\nightly-mingw\citra-qt.exe] => (Allow) D:\citra\nightly-mingw\citra-qt.exe () [Fichier non signé]
FirewallRules: [TCP Query User{73039103-334D-499E-9370-42CCA81ED509}D:\citra\nightly-mingw\citra-qt.exe] => (Allow) D:\citra\nightly-mingw\citra-qt.exe () [Fichier non signé]
FirewallRules: [{00667893-E6FF-47FD-B821-48205CF3A736}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8D4B7B65-C122-4C99-82CE-9115952EE070}] => (Allow) E:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{8F124111-8C6D-44A4-9A3D-79A5A85DF49F}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{C0BC644B-9F86-46CF-8082-860BB69999B5}] => (Allow) E:\Steam\bin\cef\cef.win7\steamwebhelper.exe => Pas de fichier
FirewallRules: [{39B30402-A4F9-4705-BAA9-46CDD6EEC968}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E5CC4958-671B-4591-83DE-899639BB3977}] => (Allow) E:\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{0EC270B4-5341-45F1-984F-F8BA47E683A4}D:\videolan\vlc\vlc.exe] => (Allow) D:\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{577FDACD-1E12-44D0-A14C-B2335A1CD95D}D:\videolan\vlc\vlc.exe] => (Allow) D:\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{390FEB35-AB79-492D-870C-8433A44B84EC}C:\users\david\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{888ED21D-2D03-49CB-8651-2EAA04426194}C:\users\david\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\david\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FD471367-C74D-411F-AC69-80F1001D27AA}] => (Allow) D:\Basilisk\basilisk.exe (Mark Straver -> Moonchild Productions)
FirewallRules: [{47AA2DD8-BF14-4830-9BC3-F3C5931ABCD0}] => (Allow) D:\Basilisk\basilisk.exe (Mark Straver -> Moonchild Productions)
FirewallRules: [{A245922B-E6A2-4366-9776-CAB21B43D5EF}] => (Block) D:\Axialis\IconWorkshop\IconWorkshop.exe (Axialis SA -> Axialis Software)
FirewallRules: [{8F399C71-55A3-4CB8-8364-9C848A4DD8DE}] => (Allow) D:\Mozilla Firefox\Mozilla-central\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A9957E80-9F6F-46DC-9662-075DA06C935E}] => (Allow) D:\Mozilla Firefox\Mozilla-central\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{6E49782A-9639-4DF1-9456-6B4CF2814D78}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.11126.20266.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{508BFF1A-ED5B-4800-9913-C29C9B0E9687}] => (Allow) C:\Program Files\Common Files\McAfee\MMSSHost\MMSSHost.exe => Pas de fichier
FirewallRules: [{7D1BD8CF-4BEB-4C46-AB09-620E5E37F41C}] => (Allow) C:\Program Files (x86)\Common Files\Mcafee\MMSSHost\MMSSHost.exe => Pas de fichier
FirewallRules: [{4AB26BF4-1341-4F04-86B5-D69F955330D3}] => (Allow) E:\Steam\steamapps\common\Universe Sandbox 2\Universe Sandbox x64.exe () [Fichier non signé]
FirewallRules: [{5980FAB6-9CCD-4EFB-9BD6-466761B43259}] => (Allow) E:\Steam\steamapps\common\Universe Sandbox 2\Universe Sandbox x64.exe () [Fichier non signé]
FirewallRules: [{29AE0935-1A0E-43A3-BB87-8633E82E03E2}] => (Allow) E:\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [{63694832-5F42-497C-8491-0B49C2CB9767}] => (Allow) E:\Steam\steamapps\common\Rise of the Tomb Raider\ROTTR.exe (Square Enix LTD -> Eidos Inc.)
FirewallRules: [TCP Query User{BA3940F7-C995-4C6E-82E5-606FA2E703EB}D:\chromium\bin\chrome.exe] => (Allow) D:\chromium\bin\chrome.exe (The Chromium Authors) [Fichier non signé]
FirewallRules: [UDP Query User{5FDA2DF2-CDA6-44D0-A217-8CC81531F4AC}D:\chromium\bin\chrome.exe] => (Allow) D:\chromium\bin\chrome.exe (The Chromium Authors) [Fichier non signé]
FirewallRules: [TCP Query User{2A157F6E-7F9D-44F8-9FEC-4CB4DB486D26}C:\users\david\appdata\local\microsoft\edge sxs\application\msedge.exe] => (Allow) C:\users\david\appdata\local\microsoft\edge sxs\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{3E848148-93B4-4864-801C-506619B9D0E4}C:\users\david\appdata\local\microsoft\edge sxs\application\msedge.exe] => (Allow) C:\users\david\appdata\local\microsoft\edge sxs\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{2DA0FBD1-B61F-4FCD-891B-53F272F3B8F3}D:\dearmob\5kplayer\5kplayer.exe] => (Allow) D:\dearmob\5kplayer\5kplayer.exe => Pas de fichier
FirewallRules: [UDP Query User{21D51AA3-9DBC-408F-804E-44DA45DB9C74}D:\dearmob\5kplayer\5kplayer.exe] => (Allow) D:\dearmob\5kplayer\5kplayer.exe => Pas de fichier
FirewallRules: [TCP Query User{5AC7FE98-1AE1-4125-80DF-023FCCE3A565}D:\vcxsrv\vcxsrv.exe] => (Allow) D:\vcxsrv\vcxsrv.exe => Pas de fichier
FirewallRules: [UDP Query User{000C334A-C796-45DA-9730-78222FEF3CBA}D:\vcxsrv\vcxsrv.exe] => (Allow) D:\vcxsrv\vcxsrv.exe => Pas de fichier
FirewallRules: [{C8A8D8A6-3DA2-4B20-86E6-853B3108493B}] => (Allow) D:\Waterfox Current\waterfox.exe (Waterfox Limited -> Waterfox Ltd.)
FirewallRules: [{E82C183B-F67D-471C-B8FD-071C73EE1686}] => (Allow) D:\Waterfox Current\waterfox.exe (Waterfox Limited -> Waterfox Ltd.)
FirewallRules: [TCP Query User{43A1D72F-C599-46A8-899E-7625F100E83A}C:\users\david\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\david\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{C216AABA-10E4-4EEF-9DAD-10FD59A9BAED}C:\users\david\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\david\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{32AA86FB-737A-468E-9AA1-6935E5E3328D}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{40CCF7DE-36D8-43C4-98EF-55193BB3F6ED}] => (Allow) D:\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{4373F81C-AE1D-49A5-82FA-31AE0A822B01}] => (Allow) D:\VMware\VMware Workstation\vmware-authd.exe (VMware, Inc. -> VMware, Inc.)
FirewallRules: [{71264DE1-197F-445D-8AD1-7596BA805207}] => (Allow) D:\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> )
FirewallRules: [{FA717ADE-508E-4794-B4AF-F497F964EE1F}] => (Allow) D:\VMware\VMware Workstation\vmware-hostd.exe (VMware, Inc. -> )
FirewallRules: [TCP Query User{B5DE4C42-50B4-455A-A37A-5148A609A8C1}D:\vivaldi\application\vivaldi.exe] => (Allow) D:\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [UDP Query User{24664647-7BCD-4B9D-8616-7AB4843DB671}D:\vivaldi\application\vivaldi.exe] => (Allow) D:\vivaldi\application\vivaldi.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
FirewallRules: [{B5F08FA4-50DF-460C-9586-D747D232D253}] => (Allow) C:\Program Files (x86)\Google\Chrome Remote Desktop\80.0.3987.18\remoting_host.exe (Google LLC -> Google Inc.)
FirewallRules: [{0A38F281-A655-425F-AFB5-AA506D07BE3A}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CB9EF404-86A9-473D-B961-1BF550A507EC}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\84.0.488.1\msedgewebview.exe => Pas de fichier
FirewallRules: [{E72E21CD-61E9-45AF-830A-3D24BBA53872}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\84.0.495.2\msedgewebview.exe => Pas de fichier
FirewallRules: [{F86343CE-B520-4176-9B7D-6920717B3B9D}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\84.0.502.0\msedgewebview.exe => Pas de fichier
FirewallRules: [{ADFFE3DF-EA76-4DB6-91F8-F148CF91481B}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{5F750802-4171-4170-B289-72D395820B48}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Dev\Application\84.0.508.0\msedgewebview.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1273427F-DCA4-4DDD-95B3-79A32FD4F7AE}] => (Allow) C:\Program Files (x86)\Microsoft\Edge Beta\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A7DC50C3-F228-4169-8550-892FAFD76549}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser-Dev\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{B77DF4C0-B8D5-46D8-9B1F-303A10F6451C}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser-Nightly\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)

==================== Points de restauration =========================


==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: VMware Virtual Ethernet Adapter for VMnet1
Description: VMware Virtual Ethernet Adapter for VMnet1
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: VMware Virtual Ethernet Adapter for VMnet8
Description: VMware Virtual Ethernet Adapter for VMnet8
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: VMware, Inc.
Service: VMnetAdapter
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (05/19/2020 01:15:40 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.

Error: (05/19/2020 01:08:08 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.

Error: (05/19/2020 12:31:48 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.

Error: (05/18/2020 12:25:29 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.

Error: (05/17/2020 12:53:46 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.

Error: (05/16/2020 12:29:59 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.

Error: (05/15/2020 07:58:58 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DAVID-HPI5)
Description: Impossible de fermer l’application ou le service « Microsoft Excel ».

Error: (05/15/2020 12:24:10 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Erreur lors de la mise à jour du statut Windows Defender vers SECURITY_PRODUCT_STATE_ON.


Erreurs système:
=============
Error: (05/19/2020 01:08:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service VMware Workstation Server s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.

Error: (05/19/2020 01:06:06 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000001e (0xffffffffc0000005, 0xfffff8022f8b2b9e, 0x0000000000000000, 0x000000008db54e18). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 0b52f119-d26a-4d44-9ea8-2a829548c3b8.

Error: (05/19/2020 01:06:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:45:17 le ‎19/‎05/‎2020 n’était pas prévu.

Error: (05/19/2020 12:44:22 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: L’ordinateur a redémarré après une vérification d’erreur. La vérification d’erreur était : 0x0000001e (0xffffffffc0000005, 0xfffff803628b2b9e, 0x0000000000000000, 0x000000008db54e18). Un vidage a été enregistré dans : C:\WINDOWS\MEMORY.DMP. ID de rapport : 841f2469-9ab1-4354-a19f-365303907c7d.

Error: (05/19/2020 12:44:08 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Échec de la création du fichier de l’image mémoire en raison d’une erreur lors de la création de cette image.

Error: (05/19/2020 12:44:17 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:43:13 le ‎19/‎05/‎2020 n’était pas prévu.

Error: (05/19/2020 12:43:04 PM) (Source: volmgr) (EventID: 161) (User: )
Description: Échec de la création du fichier de l’image mémoire en raison d’une erreur lors de la création de cette image.

Error: (05/19/2020 12:43:13 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 12:42:20 le ‎19/‎05/‎2020 n’était pas prévu.


Windows Defender:
===================================
Date: 2020-05-14 22:11:54.5640000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0
Nom : PUA:Win32/FusionCore.C
ID : 266656
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : behavior:_pid:8532:23859280252400; file:_C:\Users\david\AppData\Local\Temp\PotUpdate\PotPlayerSetup64_110.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.315.639.0, AS: 1.315.639.0, NIS: 1.315.639.0
Version du moteur : AM: 1.1.17100.2, NIS: 1.1.17100.2

Date: 2020-05-14 22:11:54.5580000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0
Nom : PUA:Win32/FusionCore.C
ID : 266656
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : behavior:_pid:8532:23859280252400; file:_C:\Users\david\AppData\Local\Temp\PotUpdate\PotPlayerSetup64_110.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.315.639.0, AS: 1.315.639.0, NIS: 1.315.639.0
Version du moteur : AM: 1.1.17100.2, NIS: 1.1.17100.2

Date: 2020-05-14 22:11:53.0830000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0
Nom : PUA:Win32/FusionCore.C
ID : 266656
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : behavior:_pid:8532:23859280252400; process:_pid:8532,ProcessStart:132339606971646147
Origine de la détection : Inconnu
Type de détection : Concret
Source de détection : Inconnu
Utilisateur :
Nom du processus : C:\Users\david\AppData\Local\Temp\PotUpdate\PotPlayerSetup64_110.exe
Version de la veille de sécurité : AV: 1.315.639.0, AS: 1.315.639.0, NIS: 1.315.639.0
Version du moteur : AM: 1.1.17100.2, NIS: 1.1.17100.2

Date: 2020-05-14 22:11:48.3490000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/FusionCore.C&threatid=266656&enterprise=0
Nom : PUA:Win32/FusionCore.C
ID : 266656
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : behavior:_pid:8532:23859280252400; process:_pid:8532,ProcessStart:132339606971646147
Origine de la détection : Inconnu
Type de détection : Concret
Source de détection : Inconnu
Utilisateur :
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.315.639.0, AS: 1.315.639.0, NIS: 1.315.639.0
Version du moteur : AM: 1.1.17100.2, NIS: 1.1.17100.2

Date: 2020-05-10 19:48:50.1410000Z
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {5DE5B2A7-A1EE-48D1-BEF2-DA3252ECDED8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2020-05-19 13:13:36.3770000Z
Description:
Antivirus Microsoft Defender a rencontré une erreur lors du chargement de la veille de sécurité et va tenter de rétablir une version approprié.
Veille de sécurité tentée : Actuelle
Code d’erreur : 0x80070003
Description de l’erreur : Le chemin d’accès spécifié est introuvable.
Version de la veille de sécurité : 0.0.0.0;0.0.0.0
Version du moteur : 0.0.0.0

Date: 2020-05-10 17:18:13.5440000Z
Description:
Antivirus Microsoft Defender a rencontré une erreur lors du chargement de la veille de sécurité et va tenter de rétablir une version approprié.
Veille de sécurité tentée : Actuelle
Code d’erreur : 0x80070002
Description de l’erreur : Le fichier spécifié est introuvable.
Version de la veille de sécurité : 0.0.0.0;0.0.0.0
Version du moteur : 0.0.0.0

Date: 2020-05-10 16:43:39.7060000Z
Description:
La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.

Date: 2020-05-10 14:27:37.0490000Z
Description:
La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.

CodeIntegrity:
===================================

Date: 2020-05-19 13:13:33.3020000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume11\Windows\System32\fr-oss.dll that did not meet the Windows signing level requirements.

Date: 2020-05-19 13:06:01.6870000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume11\Windows\System32\fr-oss.dll that did not meet the Windows signing level requirements.

Date: 2020-05-19 12:44:16.6960000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume11\Windows\System32\fr-oss.dll that did not meet the Windows signing level requirements.

Date: 2020-05-19 12:40:19.7100000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume11\Windows\System32\fr-oss.dll that did not meet the Windows signing level requirements.

Date: 2020-05-19 12:29:42.0030000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume11\Windows\System32\wininit.exe) attempted to load \Device\HarddiskVolume11\Windows\System32\fr-oss.dll that did not meet the Windows signing level requirements.

Date: 2020-05-19 00:46:00.8980000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume11\Windows\System32\WindowManagementAPI.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-19 00:46:00.6640000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume11\Windows\System32\DriverStore\FileRepository\nvhdc.inf_amd64_89d2f741860f43c6\NvCamera\NvCameraWhitelisting64.dll because the set of per-page image hashes could not be found on the system.

Date: 2020-05-19 00:46:00.6480000Z
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume11\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

==================== Infos Mémoire ===========================

BIOS: AMI F.40 11/21/2019
Carte mère: HP 843B
Processeur: Intel(R) Core(TM) i5-8400 CPU @ 2.80GHz
Pourcentage de mémoire utilisée: 46%
Mémoire physique - RAM - totale: 8059.34 MB
Mémoire physique - RAM - disponible: 4320.7 MB
Mémoire virtuelle totale: 9595.34 MB
Mémoire virtuelle disponible: 4600.04 MB

==================== Lecteurs ================================

Drive c: (Windows 10) (Fixed) (Total:127.22 GB) (Free:72.38 GB) NTFS
Drive d: (Logiciels) (Fixed) (Total:128 GB) (Free:103.79 GB) NTFS
Drive e: (Jeux) (Fixed) (Total:209.48 GB) (Free:125.74 GB) NTFS
Drive f: (Documents) (Fixed) (Total:128.27 GB) (Free:92.24 GB) NTFS
Drive g: (Téléchargements) (Fixed) (Total:100 GB) (Free:68.6 GB) NTFS
Drive h: (ISO & VM) (Fixed) (Total:128 GB) (Free:39.27 GB) NTFS
Drive i: (Multimédia) (Fixed) (Total:274.28 GB) (Free:110.94 GB) NTFS
Drive j: (Audio Work) (Fixed) (Total:100 GB) (Free:66.74 GB) NTFS
Drive k: (Divers 1) (Fixed) (Total:100 GB) (Free:17.95 GB) NTFS
Drive l: (Divers 2) (Fixed) (Total:100 GB) (Free:60.33 GB) NTFS

\\?\Volume{53b5a58e-d587-442e-bab7-902b06d79f2a}\ (Windows RE tools) (Fixed) (Total:0.96 GB) (Free:0.55 GB) NTFS
\\?\Volume{5f528163-12cd-49c0-8b7a-199efb9fd024}\ () (Fixed) (Total:0.53 GB) (Free:0.11 GB) NTFS
\\?\Volume{1adc8373-5b05-11e9-947c-0c96e667324b}\ () (Fixed) (Total:0.5 GB) (Free:0.41 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)

Partition: GPT.

==========================================================
Disk: 1 (Protective MBR) (Size: 465.8 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt =======================