Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 04-02-2021
Exécuté par H R (06-02-2021 08:49:45)
Exécuté depuis C:\Users\H R\Desktop
Windows 10 Home Version 2004 19041.746 (X64) (2020-08-19 07:27:50)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-2223360658-2783666713-851788665-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2223360658-2783666713-851788665-503 - Limited - Disabled)
H R (S-1-5-21-2223360658-2783666713-851788665-1001 - Administrator - Enabled) => C:\Users\H R
Invité (S-1-5-21-2223360658-2783666713-851788665-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2223360658-2783666713-851788665-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
AC3Filter 2.6.0b (HKLM-x32\...\AC3Filter_is1) (Version: 2.6.0b - Alexander Vigovsky)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.012.20034 - Adobe Systems Incorporated)
Adobe After (HKLM\...\{6A915992-D887-4897-82F5-950EDD12DEB1}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_0_1) (Version: 14.0.1 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.9.0.504 - Adobe Systems Incorporated)
Adobe Media Encoder (HKLM\...\{DC90AE1B-5BDE-429A-8746-8891A3FF85E1}) (Version: 1.0.0000 - Adobe Systems Incorporated) Hidden
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_0_0) (Version: 12.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0) (Version: 18.0.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_0) (Version: 11.0.0 - Adobe Systems Incorporated)
Audacity 2.4.2 (HKLM-x32\...\Audacity_is1) (Version: 2.4.2 - Audacity Team)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Converter 8 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
Backup and Sync from Google (HKLM\...\{00BA5D43-DC76-4DF2-A38C-5D3B8FABF5E4}) (Version: 3.54.3529.0458 - Google, Inc.)
Bandicam (HKLM-x32\...\Bandicam) (Version: 4.5.8.1673 - Bandicam.com)
Bandicam MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandicam.com)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre 64bit (HKLM\...\{60D51DD1-4BDE-44C4-A28C-F07D4740ACA1}) (Version: 5.2.0 - Kovid Goyal)
Camtasia Studio 8 (HKLM-x32\...\{DB93E2C2-851F-44B2-B09C-351D2C624AE1}) (Version: 8.0.4.1060 - TechSmith Corporation)
CDisplayEx 1.10.33 (HKLM\...\CDisplayEx_is1) (Version: - Progdigy Software S.A.R.L.)
Cool Timer 5.2.4.9 (HKLM-x32\...\Cool Timer_is1) (Version: - Harmony Hollow Software)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Étude pour l'amélioration du produit HP DeskJet 2600 series (HKLM\...\{12B536BF-B66A-4A2B-AA65-1A90BF027961}) (Version: 43.3.2478.18107 - HP Inc.)
ffdshow [rev 1703] [2007-12-15] (HKLM-x32\...\ffdshow_is1) (Version: 1.0 - )
FXCM MetaTrader4 (HKLM-x32\...\FXCM MetaTrader4) (Version: 4.00 - MetaQuotes Software Corp.)
Galerie de photos (HKLM-x32\...\{FE8DFDD0-A543-4A83-B7A9-C411138194D5}) (Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Global Prime - MetaTrader 4 (HKLM-x32\...\Global Prime - MetaTrader 4) (Version: 4.00 - MetaQuotes Software Corp.)
Google Earth Pro (HKLM-x32\...\{59F21DFB-6977-434B-9CB9-67783D6E7B6B}) (Version: 7.3.3.7786 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 88.0.4324.146 - Google LLC)
Greenshot 1.2.10.6 (HKLM\...\Greenshot_is1) (Version: 1.2.10.6 - Greenshot)
Heredis 2020 (HKLM\...\Heredis 2020_is1) (Version: 20 - BSD Concept)
HP DeskJet 2600 series Aide (HKLM-x32\...\{3EAD50AC-63AD-4356-9B1E-A65B054F690F}) (Version: 44.0.0 - HP)
HP Dropbox Plugin (HKLM-x32\...\{43CB5D1B-3C09-4065-A665-72FC2765B430}) (Version: 36.0.100.66344 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{5CE6E3CD-1AD8-4DA3-9BE7-CADE10583498}) (Version: 43.0.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{231B68C6-EDD8-4EA5-9860-1A8C4DB51FDA}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{1192D531-A1D5-4BBB-89B7-2304ABB3E3E1}) (Version: 36.0.100.66344 - HP)
HP OneDrive Plugin (HKLM-x32\...\{F719B6C1-B1AD-4CFE-A5A1-8125BA7837F3}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SharePoint Plugin (HKLM-x32\...\{B6E7A310-B63A-4ED9-B2EE-9FB31B4373F0}) (Version: 43.0.0.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
IPTV Smarters Player 3.0.0 (HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\fee38e36-bd5c-5f8c-a4c4-29d7f942a22c) (Version: 3.0.0 - IPTV Smarters Player)
Jasc Paint Shop Pro 9 (HKLM-x32\...\{F843C6A3-224D-4615-94F8-3C461BD9AEA0}) (Version: 9.00.0000 - Jasc Software Inc)
Junk Mail filter update (HKLM-x32\...\{FECB76C1-1C1D-4A84-8D47-5754C74B5A5E}) (Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version: - )
Logiciel de base du périphérique HP DeskJet 2600 series (HKLM\...\{D515AD5F-004D-4B21-80BD-5F21DD33C039}) (Version: 43.3.2478.18107 - HP Inc.)
MAGIX Cloud Import (HKLM\...\{E2EC0850-84BF-4A86-842E-4A100473FB22}) (Version: 0.1.0.5 - MAGIX Software GmbH) Hidden
MAGIX Cloud Import (HKLM\...\MX.{E2EC0850-84BF-4A86-842E-4A100473FB22}) (Version: 0.1.0.5 - MAGIX Software GmbH)
MAGIX Speed burnR (HKLM\...\{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{370FD2B5-6A2F-4BB9-8B5F-F5CE6F0C01E5}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Vidéo deluxe Premium (HKLM\...\{878CC916-D9E1-4AB9-8237-F9D9F4D1E8CC}) (Version: 18.0.3.261 - MAGIX Software GmbH) Hidden
MAGIX Vidéo deluxe Premium (HKLM\...\MX.{878CC916-D9E1-4AB9-8237-F9D9F4D1E8CC}) (Version: 18.0.3.261 - MAGIX Software GmbH)
MediaHuman Audio Converter version 1.9.7 (HKLM-x32\...\MHAudioConverter_is1) (Version: 1.9.7 - MediaHuman)
MediaInfo 19.09 (HKLM\...\MediaInfo) (Version: 19.09 - MediaArea.net)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.63 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{90ffcee5-8608-4e94-8c18-a4feb4f83fb8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
Mises à jour NVIDIA 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
MKVToolNix 52.0.0 (64-bit) (HKLM-x32\...\MKVToolNix) (Version: 52.0.0 - Moritz Bunkus)
Movie Maker (HKLM-x32\...\{9846E46F-07E0-4BDF-985A-E3FBA8C15877}) (Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{D71BC54E-A4E6-4E06-866C-FD6EE16EA187}) (Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
NVIDIA GeForce Experience 2.11.4.125 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.125 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
OSCAR (HKLM\...\{FC6F08E6-69BF-4469-ADE3-78199288D305}_is1) (Version: 1.0.1-r1-Win64-a102a85d - The OSCAR Team)
Panneau de configuration NVIDIA 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 342.01 - NVIDIA Corporation) Hidden
PhotoDiva 1.25 (HKLM-x32\...\{B038D0A4-5C8F-4C91-9020-7523A7CD6CC2}_is1) (Version: 1.25 - AMS Software)
Revo Uninstaller Pro 4.1.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.1.0 - VS Revo Group, Ltd.)
Ri4m v5.0.1d (HKLM-x32\...\Ri4m v5.0.1d) (Version: - )
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.4.125 - NVIDIA Corporation) Hidden
Speedtest by Ookla (HKLM\...\{584D7E1F-F3D7-437E-A9EB-238B4199789E}) (Version: 1.2.29.001 - Ookla)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.14.5 - TeamViewer)
Telegram Desktop version 2.5.1 (HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.5.1 - Telegram FZ-LLC)
Trapcode Suite 14 (HKLM\...\Trapcode Suite 14 v14.0.2) (Version: - Red Giant LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.24-Update7 - IDRIX)
VirtualDubMOD 1.5.10.3 Fr (HKLM-x32\...\{B158F76F-76AB-4115-A4F0-4C6EF6956093}_is1) (Version: 1.5.10.3 - Trad-Fr)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WhatsApp (HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\WhatsApp) (Version: 2.2023.2 - WhatsApp)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
XMedia Recode 64bit version 3.5.2.7 (HKLM\...\{D31E6E69-4C6A-42CC-926F-CC7B186864EB}_is1) (Version: 3.5.2.7 - XMedia Recode 64bit)
Zoom (HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\ZoomUMX) (Version: 5.4.1 (58698.1027) - Zoom Video Communications, Inc.)

Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-09-23] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_1.0.1.22_x86__enpm4xejd91yc [2019-09-01] (Adobe Systems Incorporated)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.1.17.0_x86__kgqvnymyfvs32 [2020-12-16] (king.com)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.51.4.0_x86__kgqvnymyfvs32 [2021-01-27] (king.com)
Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2019-12-04] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-07-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-07-13] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-01] (Microsoft Studios) [MS Ad]
Simple File Locker Ecnrypt/Decrypter -> C:\Program Files\WindowsApps\5813DolphinSystems.SimpleFileLockerEcnryptDecrypte_1.1.41.0_x64__b49fw6g0jk8t2 [2020-06-29] (Dolphin Systems) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0 [2021-01-29] (Spotify AB) [Startup Task]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-2223360658-2783666713-851788665-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-D9DEAC3BBA14} -> [Creative Cloud Files] => C:\Users\H R\Creative Cloud Files [2019-07-12 07:42]
CustomCLSID: HKU\S-1-5-21-2223360658-2783666713-851788665-1001_Classes\CLSID\{930e604a-cc01-4d06-8d7a-5a07914f3afb}\localserver32 -> "C:\Program Files\TechSmith\Camtasia 2019\CamtasiaStudio.exe" -ToastActivated => Pas de fichier
CustomCLSID: HKU\S-1-5-21-2223360658-2783666713-851788665-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ShellIconOverlayIdentifiers: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ShellIconOverlayIdentifiers: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-01-20] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-01-20] (Google LLC -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2021-01-20] (Google LLC -> Google)
ShellIconOverlayIdentifiers-x32: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-01-20] (Google LLC -> Google)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2012-11-08] (Online Media Technologies Ltd.) [Fichier non signé]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2021-01-20] (Google LLC -> Google)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\H R\AppData\Local\MEGAsync\ShellExtX64.dll [2020-11-25] (Mega Limited -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [vidc.mjpg] => C:\WINDOWS\system32\bdmjpeg64.dll [75248 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\WINDOWS\system32\bdmpegv64.dll [75272 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\WINDOWS\system32\bdmpega64.acm [75784 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.ac3filter] => C:\WINDOWS\system32\ac3filter64.acm [2231296 2013-04-05] () [Fichier non signé]
HKLM\...\Drivers32: [vidc.mjpg] => C:\Windows\SysWOW64\bdmjpeg.dll [71152 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [vidc.mpeg] => C:\Windows\SysWOW64\bdmpegv.dll [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.bdmpeg] => C:\Windows\SysWOW64\bdmpega.acm [71176 2017-01-26] (Bandicam Company -> )
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-05] () [Fichier non signé]
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\LameACM.acm [393216 2004-02-01] (hxxp://www.mp3dev.org/) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\SysWOW64\ff_vfw.dll [7680 2007-12-15] () [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\H R\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Allianz Travel.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aknjmblpipfknhannoegbjgdkcmkgkhe
ShortcutWithArgument: C:\Users\H R\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Bureau à distance Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=gbchcmhmhahfdphkhkmpfmihenigjmpp

==================== Modules chargés (Avec liste blanche) =============

2015-07-20 16:34 - 2015-07-20 16:34 - 000073728 _____ () [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\No-IP\ducapi.dll
2015-03-17 00:34 - 2015-03-17 00:34 - 000010240 _____ () [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\AcroTray.fra
2020-10-15 10:57 - 2020-10-15 10:57 - 013053440 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\avcodec-58.dll
2020-10-15 10:57 - 2020-10-15 10:57 - 002290176 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\avformat-58.dll
2020-10-15 10:57 - 2020-10-15 10:57 - 000521728 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\avutil-56.dll
2019-05-14 01:06 - 2020-10-15 10:57 - 000065024 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\cares.dll
2020-10-15 10:57 - 2020-10-15 10:57 - 000145408 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\swresample-3.dll
2020-10-15 10:57 - 2020-10-15 10:57 - 000570880 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\swscale-5.dll
2021-02-06 08:12 - 2021-02-06 08:12 - 000114176 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_ctypes.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000172544 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_elementtree.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 002255872 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_hashlib.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000032256 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_multiprocessing.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000046080 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_psutil_windows.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000047616 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_socket.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 002824704 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_ssl.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000026112 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\_yappi.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000080896 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\bz2.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000015872 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\common.time34.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000007680 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\hashobjs_ext.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000301568 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\PIL._imaging.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000168448 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\pyexpat.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 001084416 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\pysqlite2._sqlite.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000548864 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\pythoncom27.dll
2021-02-06 08:12 - 2021-02-06 08:12 - 000137728 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\pywintypes27.dll
2021-02-06 08:12 - 2021-02-06 08:12 - 000010752 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\select.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000020992 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\thumbnails_ext.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000689664 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\unicodedata.pyd
2021-02-06 08:12 - 2021-02-06 08:12 - 000119808 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\usb_ext.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000128512 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32api.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000438784 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32com.shell.shell.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000011776 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32crypt.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000023040 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32event.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000149504 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32file.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000223232 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32gui.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000048128 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32inet.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000029696 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32pdh.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000027648 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32pipe.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000044032 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32process.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000020480 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32profile.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000136192 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32security.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000026624 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\win32ts.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000034304 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\windows.conditional.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000037888 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\windows.connectivity.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000071680 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\windows.device_monitor.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000103936 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\windows.volumes.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000019968 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\windows.winwrap.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 001325056 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wx._controls_.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 001489408 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wx._core_.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 001007104 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wx._gdi_.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000103424 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wx._html2.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 000916992 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wx._misc_.pyd
2021-02-06 08:13 - 2021-02-06 08:13 - 001039872 _____ () [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wx._windows_.pyd
2015-03-17 00:34 - 2015-03-17 00:34 - 000013824 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2020-08-19 08:03 - 2020-08-19 08:03 - 000113664 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2019-07-29 11:03 - 2016-11-14 13:30 - 001300688 _____ (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
2019-12-04 08:21 - 2012-11-08 15:30 - 000147968 _____ (Online Media Technologies Ltd.) [Fichier non signé] C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll
2021-02-06 08:12 - 2021-02-06 08:12 - 003043328 _____ (Python Software Foundation) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\python27.dll
2019-05-14 01:06 - 2020-10-15 10:57 - 000295936 _____ (The curl library, hxxps://curl.haxx.se/) [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\libcurl.dll
2020-10-15 10:57 - 2020-10-15 10:57 - 002444288 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\libcrypto-1_1.dll
2020-10-15 10:57 - 2020-10-15 10:57 - 000504320 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\libssl-1_1.dll
2019-05-14 01:06 - 2020-10-15 10:57 - 005118072 _____ (The Qt Company Oy -> The Qt Company Ltd.) [Fichier non signé] C:\Users\H R\AppData\Local\MEGAsync\Qt5Core.dll
2021-02-06 08:13 - 2021-02-06 08:13 - 000202240 _____ (wxWidgets development team) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wxbase30u_net_vc90_x64.dll
2021-02-06 08:13 - 2021-02-06 08:13 - 002831872 _____ (wxWidgets development team) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wxbase30u_vc90_x64.dll
2021-02-06 08:13 - 2021-02-06 08:13 - 001654784 _____ (wxWidgets development team) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wxmsw30u_adv_vc90_x64.dll
2021-02-06 08:13 - 2021-02-06 08:13 - 006542336 _____ (wxWidgets development team) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wxmsw30u_core_vc90_x64.dll
2021-02-06 08:13 - 2021-02-06 08:13 - 000773632 _____ (wxWidgets development team) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wxmsw30u_html_vc90_x64.dll
2021-02-06 08:13 - 2021-02-06 08:13 - 000137216 _____ (wxWidgets development team) [Fichier non signé] C:\Users\H R\AppData\Local\Temp\_MEI130282\wxmsw30u_webview_vc90_x64.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKU\S-1-5-21-2223360658-2783666713-851788665-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_cekvtqg5_19_28_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EtA0ByDzyyByE0BtDyC0AzztCtBtN0D0Tzu0StByByEzytN1L2XzuyEtFyDtAtFtDtFtCtAyEtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyC0E0CyD0DzztD0BtGtB0EyC0BtGtAyCyD0DtGtAzztCzytG0D0F0EzytA0ByEtC0CyDzz0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyCyD1TtA1SzzyEtG1PzyyBzytGyEzy1PzztG1S1Q1QyCtG1RyCyCtCyByByDyB1PtDtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutBtByBtAyCtN1Q2Z1B1P1RzutCyDyCtBzyyEtBtDyDyC%26cr%3D1670357588%26a%3Dwsg_cekvtqg5_19_28_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_cekvtqg5_19_28_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EtA0ByDzyyByE0BtDyC0AzztCtBtN0D0Tzu0StByByEzytN1L2XzuyEtFyDtAtFtDtFtCtAyEtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyC0E0CyD0DzztD0BtGtB0EyC0BtGtAyCyD0DtGtAzztCzytG0D0F0EzytA0ByEtC0CyDzz0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyCyD1TtA1SzzyEtG1PzyyBzytGyEzy1PzztG1S1Q1QyCtG1RyCyCtCyByByDyB1PtDtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutBtByBtAyCtN1Q2Z1B1P1RzutCyDyCtBzyyEtBtDyDyC%26cr%3D1670357588%26a%3Dwsg_cekvtqg5_19_28_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_cekvtqg5_19_28_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EtA0ByDzyyByE0BtDyC0AzztCtBtN0D0Tzu0StByByEzytN1L2XzuyEtFyDtAtFtDtFtCtAyEtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyC0E0CyD0DzztD0BtGtB0EyC0BtGtAyCyD0DtGtAzztCzytG0D0F0EzytA0ByEtC0CyDzz0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyCyD1TtA1SzzyEtG1PzyyBzytGyEzy1PzztG1S1Q1QyCtG1RyCyCtCyByByDyB1PtDtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutBtByBtAyCtN1Q2Z1B1P1RzutCyDyCtBzyyEtBtDyDyC%26cr%3D1670357588%26a%3Dwsg_cekvtqg5_19_28_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://fr.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wsg_cekvtqg5_19_28_ssg00¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dfr%26pa%3Dwincy%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EtA0ByDzyyByE0BtDyC0AzztCtBtN0D0Tzu0StByByEzytN1L2XzuyEtFyDtAtFtDtFtCtAyEtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyC0E0CyD0DzztD0BtGtB0EyC0BtGtAyCyD0DtGtAzztCzytG0D0F0EzytA0ByEtC0CyDzz0F2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyCyD1TtA1SzzyEtG1PzyyBzytGyEzy1PzztG1S1Q1QyCtG1RyCyCtCyByByDyB1PtDtAtA2QtN0A0LzuyEtN1B2Z1V1T1S1NzutBtByBtAyCtN1Q2Z1B1P1RzutCyDyCtBzyyEtBtDyDyC%26cr%3D1670357588%26a%3Dwsg_cekvtqg5_19_28_ssg00%26os_ver%3D10.0%26os%3DWindows%2B10%2BHome&p={searchTerms}
SearchScopes: HKU\S-1-5-21-2223360658-2783666713-851788665-1001 -> DefaultScope {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE15
SearchScopes: HKU\S-1-5-21-2223360658-2783666713-851788665-1001 -> {2f23ab71-4ac6-41f2-a955-ea576e553146} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE15
SearchScopes: HKU\S-1-5-21-2223360658-2783666713-851788665-1001 -> {AF44EFCF-059F-430A-9885-8CB5A84F4DCA} URL = hxxp://www.recherche-fr.com/search?q={searchTerms}
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-05-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-05-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-05-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-05-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2019-05-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2019-05-03] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2019-03-19 05:49 - 2019-03-19 05:49 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files\Calibre2\
HKU\S-1-5-21-2223360658-2783666713-851788665-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\H R\Pictures\IMG-20200806-WA0001.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\StartupApproved\Run: => "Chromium"
HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-2223360658-2783666713-851788665-1001\...\StartupApproved\Run: => "WallpaperHd"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{C1F99454-277E-47FC-9D11-BED19FA76262}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => Pas de fichier
FirewallRules: [TCP Query User{6664E808-6B24-4FF6-A046-24DDB26D9180}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe => Pas de fichier
FirewallRules: [UDP Query User{CA00AAF6-2F7C-4596-B01D-5481CA68D5A4}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => Pas de fichier
FirewallRules: [TCP Query User{323E1F31-539A-444F-9392-D1DF808080E5}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe => Pas de fichier
FirewallRules: [{CB9199FA-E308-4C32-A251-F18A732BB91A}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{31EAFA7C-C08D-48E9-855C-ACF4B3639CC2}] => (Allow) LPort=5357
FirewallRules: [{B9F91317-EC0B-4EFF-88C6-7B5FCC064865}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{ED5B30F8-241B-48A4-83CE-0B92A7F098DD}] => (Allow) C:\Program Files\HP\HP DeskJet 2600 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{99123001-9621-4295-B52F-7F59D7727736}] => (Allow) C:\Users\H R\AppData\Local\Temp\7zS3FDD\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [{15980EE3-9BD3-477D-A058-B61E9DCD04A9}] => (Allow) C:\Users\H R\AppData\Local\Temp\7zS3FDD\HPDiagnosticCoreUI.exe => Pas de fichier
FirewallRules: [{D78B1387-9B43-4943-91FB-85CC9B612842}] => (Allow) C:\Users\H R\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{340BBA52-F4BD-4A4F-9765-D9E229A370E2}] => (Allow) C:\Users\H R\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{D632F7A3-0A67-4117-8726-E1BD9E0AC495}F:\english\search tool.exe] => (Allow) F:\english\search tool.exe => Pas de fichier
FirewallRules: [TCP Query User{D52D31A6-391D-49E0-8E24-C44DDEE34995}F:\english\search tool.exe] => (Allow) F:\english\search tool.exe => Pas de fichier
FirewallRules: [UDP Query User{1B7211B8-7768-414E-95BA-18615C85DBCA}C:\program files (x86)\bsd concept\heredis 2020\heredis20.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) [Fichier non signé]
FirewallRules: [TCP Query User{A79DA71E-5A41-4005-B03D-F818F25EE6CD}C:\program files (x86)\bsd concept\heredis 2020\heredis20.exe] => (Allow) C:\program files (x86)\bsd concept\heredis 2020\heredis20.exe (HEREDIS S.C.O.P -> Heredis) [Fichier non signé]
FirewallRules: [{BC5F1B60-B845-462E-9FEF-AB9AB2CEC21D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4C757042-F4B9-4592-BB2A-460DDE101742}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B426F55A-F2A6-4D72-B0D5-FDBFB09DB8B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{08134F52-36B3-42D1-AD19-4FCA5E7EC33B}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [UDP Query User{6E628471-D47A-4F12-8C60-DF4DC90E53A9}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{DAF99695-629C-4CFF-8DC4-95B36DB03B27}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{B562FF0C-7D68-4FF3-8A23-B5DA2A5482B4}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe => Pas de fichier
FirewallRules: [{6737CA2E-3D8D-40FF-89BC-1BCC8EA752E5}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManagerCoreServices.exe => Pas de fichier
FirewallRules: [{BEB2D5FB-D70B-46E3-B91A-AE5A88EFFDED}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe => Pas de fichier
FirewallRules: [{19644C25-4379-4608-8AA0-F4D5F5908C51}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerManager\ApowerManager.exe => Pas de fichier
FirewallRules: [UDP Query User{C88AC0CF-9A5C-4290-802F-B17416348148}C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe (Adobe Systems Incorporated -> Adobe)
FirewallRules: [TCP Query User{31E5B50F-A78A-474C-8CCC-DD9171E4BB7B}C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe] => (Allow) C:\program files\adobe\adobe media encoder cc 2018\adobe media encoder.exe (Adobe Systems Incorporated -> Adobe)
FirewallRules: [UDP Query User{07438D9B-6B68-41A1-B76B-7F7231D2566B}C:\program files\adobe\adobe premiere pro cc 2017\adobe premiere pro.exe] => (Allow) C:\program files\adobe\adobe premiere pro cc 2017\adobe premiere pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [TCP Query User{1CAD3EE7-8308-48A4-BD35-2833E3627D72}C:\program files\adobe\adobe premiere pro cc 2017\adobe premiere pro.exe] => (Allow) C:\program files\adobe\adobe premiere pro cc 2017\adobe premiere pro.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [UDP Query User{8D50FA8A-78C6-48E9-8FBD-F5C8450C9670}C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe] => (Block) C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [TCP Query User{8E674F87-F846-40FF-897F-54CBFC220F11}C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe] => (Block) C:\program files\adobe\adobe after effects cc 2017\support files\afterfx.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
FirewallRules: [{2D069233-AC26-4B4B-93F3-0D04615B72D6}] => (Block) C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{61C47A37-1868-430E-9BC3-56DF11BFC9AB}] => (Block) C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamRecorder.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{1F2B7228-4D96-4714-AC5E-EA6E8F8DED35}] => (Block) C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamtasiaStudio.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{F27BB5D7-72E6-45FA-A131-1A9CDC4B2464}] => (Block) C:\Program Files (x86)\TechSmith\Camtasia Studio 8\CamRecorder.exe (TechSmith Corporation -> TechSmith Corporation)
FirewallRules: [{A73408DD-CCA7-4E0C-9A30-C0F89A6F0D61}] => (Allow) C:\Program Files\MAGIX\Video deluxe Premium\2019\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH) [Fichier non signé]
FirewallRules: [{711B8D96-A33B-4D87-844D-34017E14501B}] => (Allow) C:\Program Files\Common Files\MAGIX Services\MxCloudSync\MxCloudSync.exe (MAGIX Software GmbH -> MAGIX)
FirewallRules: [{BA3288E1-B97C-4DCA-97F5-67C1002AA23E}] => (Allow) LPort=1900
FirewallRules: [{A1F82B87-3852-4E78-A49D-1E27E23A85A1}] => (Allow) LPort=2869
FirewallRules: [{FF91ABC7-5F09-4934-847D-2D43A2674359}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{1543B3AA-F5B8-4228-AC2B-40C200D06DB0}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe => Pas de fichier
FirewallRules: [{7A119E32-7021-4CC1-9647-B19128843A6D}] => (Allow) C:\Program Files (x86)\EaseUS\EaseUS Video Editor\EaseUS Video Editor.exe => Pas de fichier
FirewallRules: [{F67F032D-EC1F-4AD5-BAF2-A268E8D27C5A}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FD4674C1-17E4-47B7-88B3-943A9A0284DD}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8B352905-F915-49FB-A23C-B462230AEDC2}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{698BB692-63D7-4B54-9D70-16F78DFAF9A4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{337E4109-8841-4F65-AB50-D94B66314B55}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A3E2DDC6-78ED-4572-8A01-FD6876A605AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{808E1A62-0760-4EA7-99CF-5E5EF0EAB759}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A8DD706D-3B22-4D30-8760-D8C8DEDD3F77}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0712BAD7-4022-4CA7-9315-4F7E42BC6D41}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4ACC5E63-073D-4F2B-948F-DE8C821ECEE8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{99EDB090-765F-49A7-95B8-ADDFB8345C48}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F1BB4B22-523B-4C86-9861-3068C5A7F5D8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.382.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{561D8D11-293B-46F6-AFA6-83464127CF7B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B749F625-3257-4C7E-95D6-C8795294EB1A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{35F190CE-0322-4F79-A3D0-8057AEA4F98E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{DE423035-6683-431E-BDD6-9CA21C97E653}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5675CCE4-A424-4A64-84DC-2A43710CC4E7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)

==================== Points de restauration =========================

02-02-2021 11:18:21 Installé WinZip 25.0.
02-02-2021 11:36:03 WinZip 25.0 supprimé.
04-02-2021 08:28:24 Programme d’installation pour les modules Windows

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (02/05/2021 08:42:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 46859

Error: (02/05/2021 08:42:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 46859

Error: (02/05/2021 08:42:06 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2021 08:41:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31250

Error: (02/05/2021 08:41:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31250

Error: (02/05/2021 08:41:51 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (02/05/2021 08:41:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15625

Error: (02/05/2021 08:41:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15625


Erreurs système:
=============
Error: (02/05/2021 09:42:36 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (02/04/2021 08:18:53 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (02/03/2021 09:36:44 AM) (Source: volsnap) (EventID: 25) (User: )
Description: Les clichés instantanés du volume G: ont été supprimés car le stockage du cliché instantané n’a pas pu s’agrandir à temps. Réduisez la charge d’E/S sur le système ou choisissez un volume stockage de cliché instantané qui n’est pas mis en cliché instantané.

Error: (02/03/2021 07:15:06 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone.

Error: (01/31/2021 01:54:14 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: AUTORITE NT)
Description: Le gestionnaire de filtres n’a pas réussi à s’attacher au volume « \Device\HarddiskVolume28 ». Ce volume ne sera pas disponible pour le filtrage avant un redémarrage. L’état final était 0xc03a001c.

Error: (01/31/2021 01:54:14 PM) (Source: Microsoft-Windows-FilterManager) (EventID: 3) (User: AUTORITE NT)
Description: Le gestionnaire de filtres n’a pas réussi à s’attacher au volume « \Device\HarddiskVolume28 ». Ce volume ne sera pas disponible pour le filtrage avant un redémarrage. L’état final était 0xc03a001c.

Error: (01/29/2021 10:56:49 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-NJ4F7O1)
Description: Le serveur {2593F8B9-4EAF-457C-B68A-50F6B8EA6B54} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (01/28/2021 07:48:45 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT)
Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80073d02 : 9NMPJ99VJBWV-Microsoft.YourPhone.


Windows Defender:
===================================
Date: 2021-02-05 08:40:26.4410000Z
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {AD6A9AB5-D449-4F6C-B4F2-5389DAD33FB4}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-02-04 08:45:48.8610000Z
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {0F0C5994-2FED-4279-A817-4B7D5AC14F28}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-02-03 10:41:57.9540000Z
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {E017C2E0-1087-4EA3-9531-8836467FA054}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-02-02 12:07:20.2500000Z
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {90B94A94-0D6A-4662-829C-570E9315B80B}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-02-01 08:42:53.6320000Z
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {A519E8A5-96B6-4559-921C-0AA21012BD2C}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. 6.16 03/18/2011
Carte mère: MSI 2A9C
Processeur: Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz
Pourcentage de mémoire utilisée: 89%
Mémoire physique - RAM - totale: 3959.07 MB
Mémoire physique - RAM - disponible: 422.98 MB
Mémoire virtuelle totale: 8931.3 MB
Mémoire virtuelle disponible: 3220.54 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:916.19 GB) (Free:632.71 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (HP_RECOVERY) (Fixed) (Total:14.7 GB) (Free:1.77 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive g: (TOURO) (Fixed) (Total:931.51 GB) (Free:658.21 GB) NTFS
Drive h: (TOSHIBA ) (Fixed) (Total:465.76 GB) (Free:135.97 GB) NTFS

\\?\Volume{8b6fd511-0000-0000-0000-100000000000}\ (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{8b6fd511-0000-0000-0000-b012e5000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 8B6FD511)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=916.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=532 MB) - (Type=27)
Partition 4: (Not Active) - (Size=14.7 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 223A0560)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: B65AABDE)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt =======================