Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 21-08-2021
Exécuté par JOE (27-08-2021 00:51:27)
Exécuté depuis C:\Users\JOE\Desktop
Windows 10 Pro Version 2004 19041.572 (X64) (2020-09-07 19:11:14)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-1771672942-87226366-737989149-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1771672942-87226366-737989149-503 - Limited - Disabled)
Invité (S-1-5-21-1771672942-87226366-737989149-501 - Limited - Disabled)
JOE (S-1-5-21-1771672942-87226366-737989149-1001 - Administrator - Enabled) => C:\Users\JOE
WDAGUtilityAccount (S-1-5-21-1771672942-87226366-737989149-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.23 - Adobe Systems)
AOMEI Partition Assistant Pro Edition 6.0 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-5498165BF300}_is1) (Version: - AOMEI Technology Co., Ltd.)
Architecte 3D 19 Ultimate Plus (HKLM-x32\...\{A36304B8-DEBB-461f-ADF8-E511382C0078}) (Version: 19.0.0 - Avanquest Software)
Atomix VirtualDJ (HKLM\...\Atomix VirtualDJ_is1) (Version: 8.5.6067 - Atomix & Team V.R)
AviSynth+ 0.1.0 r2636 (HKLM-x32\...\{AC78780F-BACA-4805-8D4F-AE1B52B7E7D3}_is1) (Version: 0.1.0.2636 - The Public)
AVS Audio Converter 10.0.5 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 10.0.5.614 - Online Media Technologies Ltd.)
AVS Audio Editor 10.0.5 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 10.0.5.554 - Online Media Technologies Ltd.)
AVS Disc Creator 6.2.4 (HKLM-x32\...\AVS Disc Creator_is1) (Version: 6.2.4.564 - Online Media Technologies Ltd.)
AVS Document Converter 4.2.6 (HKLM-x32\...\AVS Document Converter_is1) (Version: 4.2.6.271 - Online Media Technologies Ltd.)
AVS Image Converter 5.2.6 (HKLM-x32\...\AVS Image Converter_is1) (Version: 5.2.6.306 - Online Media Technologies Ltd.)
AVS Media Player 5.2.5 (HKLM-x32\...\AVS Media Player_is1) (Version: 5.2.5.144 - Online Media Technologies Ltd.)
AVS Photo Editor 3.2.6 (HKLM-x32\...\AVS Photo Editor_is1) (Version: 3.2.6.170 - Online Media Technologies Ltd.)
AVS Registry Cleaner 4.1.7 (HKLM-x32\...\AVS Registry Cleaner_is1) (Version: 4.1.7.293 - Online Media Technologies Ltd.)
AVS Video Converter 12.1.5 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 12.1.5.673 - Online Media Technologies Ltd.)
AVS Video Editor 9.4.5 (HKLM-x32\...\AVS Video Editor_is1) (Version: 9.4.5.377 - Online Media Technologies Ltd.)
AVS Video ReMaker 6.4.5 (HKLM-x32\...\AVS Video ReMaker_is1) (Version: 6.4.5.250 - Online Media Technologies Ltd.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon MG5500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5500_series) (Version: 1.02 - Canon Inc.)
Canon MG5500 series On-screen Manual (HKLM-x32\...\Canon MG5500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.6.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.6.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.8.5 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.84 - Piriform)
Centre Souris et Claviers Microsoft (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 13.250.137.0 - Microsoft Corporation)
Combat Reloaded (HKLM-x32\...\Combat Reloaded) (Version: - Nadgames)
Dazzle Video Capture DVC100 X64 Driver 1.08 (HKLM-x32\...\{FB4B9EB9-68B2-4C42-8C38-B65F8FE5A5CA}) (Version: 1.08.0000 - Pinnacle)
Deezloader Remix 4.4.1 (HKLM\...\5eed4b40-1ed5-51be-ab52-56cdb94a998f) (Version: 4.4.1 - RemixDevs)
Defraggler (HKLM\...\Defraggler) (Version: 2.22 - Piriform)
EaseUS Todo Backup 12.0 Trial (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 12.0 - CHENGDU YIWO Tech Development Co., Ltd)
Easy CD-DA Extractor 16 (HKLM-x32\...\Easy CD-DA Extractor 16) (Version: 16.0.9 - Poikosoft)
Enregistrement utilisateur de Canon MG5500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG5500 series) (Version: - ‭Canon Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC)
GSM ALADDIN V2 (HKLM-x32\...\GSM ALADDIN V2) (Version: Version 1.34 - GSM ALADDIN TEAM)
Hercules HD Sunset (HKLM-x32\...\{81D18907-33D4-4288-B519-6E44E62F0042}) (Version: 4.1.1.1 - Hercules)
Hercules Webcam Station Evolution (HKLM-x32\...\{B60D61FD-1CB1-4ED5-974E-8C959F14208E}) (Version: 4.1.1.2 - Hercules)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet All-In-One Software (HKLM\...\{2CB8566A-8EA6-417A-BAB1-1B10A88C79BB}) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart C4500 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{0EC01D72-4906-42DD-BCC0-AF89EDA7493D}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
IGI 2 (HKLM-x32\...\IGI 2) (Version: - )
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: 6.38.14 - Tonec Inc.)
JoyToKey version 6.7 (HKLM-x32\...\{EBF21C82-423E-49FD-BCBD-88C08397CB44}_is1) (Version: 6.7 - JTK software)
Juiced2_HIN (HKLM-x32\...\{50E4FCC7-90B9-48C6-9D17-7AE66F282878}) (Version: 1.00.0000 - THQ)
KORG M1 (HKLM\...\M1_is1) (Version: 2.0.0 - KORG)
Lame ACM MP3 Codec (HKLM-x32\...\LameACM) (Version: - )
LibUSB-Win32-0.1.10.1 (HKLM-x32\...\LibUSB-Win32_is1) (Version: 0.1.10.1 - LibUSB-Win32)
m4ng (HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\m4ng) (Version: - )
Malwarebytes version 4.4.5.130 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.5.130 - Malwarebytes)
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
MGI PhotoSuite 8.06 (suppression seulement) (HKLM-x32\...\MGI_PHOTOSUITE_V806) (Version: - )
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.78 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{2F750C77-1FEC-44F9-88CC-2CE322EBD61E}) (Version: 1.1.0324 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{b3c7f59f-dc40-4be9-829c-77dd292978ea}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.23.27820 (HKLM-x32\...\{852adda4-4c78-4a38-b583-c0b360a329d6}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Microsoft Office LTSC Professionnel Plus 2021 - fr-fr (HKLM\...\ProPlus2021Volume - fr-fr) (Version: 16.0.14332.20058 - Microsoft Corporation)
MiniTool Power Data Recovery 9.0 (HKLM\...\{E1BCD081-4BF4-4E2F-832A-911EC42EF3C5}_is1) (Version: 9.0 - MiniTool Software Limited)
Movavi Photo Editor 6 (HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Movavi Photo Editor 6) (Version: 6.7.0 - Movavi)
Movavi Video Converter 19 Premium (HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Movavi Video Converter 19 Premium) (Version: 19.1.0 - Movavi)
Movavi Video Suite 21 (HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Movavi Video Suite 21) (Version: 21.0.1 - Movavi)
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 91.0.2 (x64 fr)) (Version: 91.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.2 - Mozilla)
MultiCam Capture Lite (HKLM\...\{0E4CA68C-72C3-4B01-AE33-8854AC00D17B}) (Version: 1.1.4.10460 - Corel Corporation)
NAVIGON Fresh 3.6.0 (HKLM-x32\...\NAVIGON Fresh) (Version: 3.6.0 - NAVIGON)
Nero 2020 (HKLM-x32\...\{C123715D-F79F-47AE-8486-16FAC0C276E1}) (Version: 22.0.00900 - Nero AG)
Nero Core (HKLM-x32\...\{E522C6B9-F714-49E9-915D-BC8918E071A5}) (Version: 2.0.04400 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 21.0.1006 - Nero AG)
Nero WaveEditor (HKLM-x32\...\{0A592C8C-FAA6-4EBC-ABE8-784A1B65CCEE}) (Version: 15.0.00700 - Nero AG)
Nitro Pro (HKLM\...\{B3AE1681-857F-451A-AE8E-A758D75D7CF8}) (Version: 13.2.3.26 - Nitro)
NVIDIA Pilote 3D Vision 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.13 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.35.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.35.1 - NVIDIA Corporation)
NVIDIA Pilote graphique 388.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.13 - NVIDIA Corporation)
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20058 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14332.20058 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14332.20011 - Microsoft Corporation) Hidden
Ontrack® EasyRecovery™ Toolkit for Windows (HKLM-x32\...\Ontrack® EasyRecovery™ Toolkit for Windows_is1) (Version: 13.0.0.0 - Ontrack)
OptiCoupe 5.22l (HKLM-x32\...\OptiCoupe 5) (Version: 5.22.12.1 - Boole & Partners)
Oracle VM VirtualBox 5.2.22 (HKLM\...\{B3F7EC27-5008-4131-9C45-839E545C5675}) (Version: 5.2.22 - Oracle Corporation)
Ori and the Blind Forest (HKLM-x32\...\{56781D5B-FD93-4A72-958E-9F206619C421}_is1) (Version: 5.3.2.14075 - Moon Studio)
Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\BE156A27AFEAEA39D6A7C9D25CFA8DAFAF91756B) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Package de pilotes Windows - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00004) (HKLM\...\D43FD4059F47ACA9539247D6CF690AAEA503AF2D) (Version: 08/27/2012 7.0.0000.00004 - Google, Inc.)
Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (dg_ssudbus) USB (12/02/2015 2.12.1.0) (HKLM\...\85A33267F12961AF9ED9AE799DEDA5E62BEA236F) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (ssudmdm) Modem (12/02/2015 2.12.1.0) (HKLM\...\88ED314360B98E6E82E7CC3201FAEB4A9FD291B4) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Package de pilotes Windows - SAMSUNG Electronics Co., Ltd. (WinUSB) AndroidUsbDeviceClass (12/02/2015 2.12.1.0) (HKLM\...\701281E8283E9E3681220099A9DA5013A5A437AF) (Version: 12/02/2015 2.12.1.0 - SAMSUNG Electronics Co., Ltd. )
Package de pilotes Windows - Sony Mobile Communications (ggsomc) SOMCFlashDevice (12/06/2017 3.2.0.0) (HKLM\...\7AA77B236196DB9A6C04257060560ACDBB626F30) (Version: 12/06/2017 3.2.0.0 - Sony Mobile Communications)
Pinnacle 3D Title Editor (HKLM\...\{0A4DB5B8-8C83-458B-8D0F-603543BA50A2}) (Version: 1.0.8.185 - Corel Corporation)
Pinnacle MyDVD (HKLM\...\{C9CEF17D-DE54-4E20-9FC8-8AE13A31E419}) (Version: 3.0.019 - Nom de votre société) Hidden
Pinnacle MyDVD (HKLM-x32\...\{6C7DC3C2-32EF-4B67-B2FB-5CBCE63313D7}) (Version: 3.0 - Pinnacle)
Pinnacle Studio 22 - Standard Content Pack (HKLM\...\{EEC666DC-1B29-4F81-8D7B-A886C86159C6}) (Version: 22.1 - Corel Corporation)
Pinnacle Studio 22 (HKLM\...\{74D19994-F843-4BFE-9850-18DFFC8A1056}) (Version: 22.3.0.377 - Corel Corporation)
PolyBoard 6.05b (HKLM-x32\...\PolyBoard 6) (Version: 6.5.2.1 - Boole & Partners)
PolyBoard 7.05b (HKLM-x32\...\PolyBoard 7) (Version: 7.5.2.1 - Boole & Partners)
Project IGI (HKLM-x32\...\Project IGI) (Version: - )
Rayman Legends (HKLM-x32\...\UmF5bWFuTGVnZW5kcw==_is1) (Version: 1 - )
Rayman Origins (HKLM-x32\...\{DE491AB9-1D47-4FED-A8F5-4D4325B2EB4B}) (Version: 1.00 - Ubisoft)
Rayman3 (HKLM-x32\...\{BAF5914B-5730-4373-B038-9F436AC6A0D6}) (Version: 1.00.0000 - Ubi Soft)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Sage 100cloud Comptabilité (HKLM-x32\...\{EC5017CA-FAD3-47ED-B50C-74B020EC5392}) (Version: 5.00 - Sage)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.43.0 - Samsung Electronics Co., Ltd.)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype version 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.)
Sony Mobile Software Update Drivers (HKLM\...\{4872001F-F67C-4C54-BC92-281C6A165251}) (Version: 3.2.0.3 - Sony Mobile Communications)
Speccy (HKLM\...\Speccy) (Version: 1.32 - Piriform)
Stardock Start10 (HKLM-x32\...\Start10_is1) (Version: 1.55 - Stardock Software, Inc.)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.19.5 - TeamViewer)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
VIDAL Expert 2021.07.0 (HKLM-x32\...\1603-2822-6154-1246-vxp) (Version: 2021.07.0 - Vidal)
VIDAL Menu 2021.07.0 (HKLM-x32\...\1385-4490-9531-0573) (Version: 2021.07.0 - VIDAL)
VLC media player 3.0.6 (32-bit) (HKLM-x32\...\{905770CF-0D18-48D9-9114-758B49519F6D}) (Version: 3.0.6.0 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\WhatsApp) (Version: 2.2123.7 - WhatsApp)
Windows 7 Games for Windows 10 and 8 (HKLM\...\Win7Games) (Version: 2.0 - hxxp://winaero.com)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
WinRAR 6.01 bêta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.01.1 - win.rar GmbH)
Wizard101(FR) (HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\Wizard101(FR)_is1) (Version: - Gameforge 4D GmbH)
Wondershare Dr.Fone (Version 11.4.1) (HKLM-x32\...\{E8F86DA8-B8E4-42C7-AFD4-EBB692AC43FD}_is1) (Version: 11.4.1.447 - Wondershare Technology Co.,Ltd.)
Wondershare Recoverit(Build 8.2.1.9) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 8.2.1.9 - Wondershare Software Co.,Ltd.)

Packages:
=========
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.45.3.0_x86__kgqvnymyfvs32 [2020-11-02] (king.com)
ePub3 Reader -> C:\Program Files\WindowsApps\TMAMobileSolutionsTMS.ePub3Reader_1.1.2.0_x64__4gq98zabdra0y [2020-11-02] (TMA Solutions.)
Farm Heroes Saga -> C:\Program Files\WindowsApps\king.com.FarmHeroesSaga_5.46.6.0_x86__kgqvnymyfvs32 [2020-11-02] (king.com)
Freebox Compagnon -> C:\Program Files\WindowsApps\5874nestebe.FreeboxCompagnon_1.1.2.0_x64__en1ea0yq63ef6 [2020-11-02] (DevWorker) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-11-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-11-02] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-11-02] (Microsoft Studios) [MS Ad]
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0 [2020-11-02] (Spotify AB) [Startup Task]

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ShellIconOverlayIdentifiers: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ShellIconOverlayIdentifiers: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll [2019-05-02] (Tonec Inc. -> Tonec Inc.)
ShellIconOverlayIdentifiers-x32: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers1: [EzCddax] -> {31415D58-4750-4413-A95B-83D151F50040} => C:\Program Files\Easy CD-DA Extractor 16\ezcddax64.dll [2012-01-24] (Poikosoft -> Poikosoft)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ContextMenuHandlers1: [Nitro.Pro.ShellExtension.Shim] -> {211B6F25-950C-49CD-AB86-A448EF85686A} => C:\Program Files\Common Files\Nitro\Nitro.Pro.ShellExtension.Shim.dll [2019-09-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2020-12-10] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.)
ContextMenuHandlers1: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-03-23] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AlcoholShellEx64] -> {AF67B665-D752-424E-9A03-C7C218F2844F} => C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxShlEx64.dll [2014-09-06] (Alcohol Soft -> Alcohol Soft Development Team)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ContextMenuHandlers2: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-08-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers4: [EzCddax] -> {31415D58-4750-4413-A95B-83D151F50040} => C:\Program Files\Easy CD-DA Extractor 16\ezcddax64.dll [2012-01-24] (Poikosoft -> Poikosoft)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\JOE\AppData\Local\MEGAsync\ShellExtX64.dll [2020-03-19] (Mega Limited -> )
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers4: [SimpleShlExt] -> {45203D3B-3D73-4497-8AFE-D29950AC6C55} => C:\Program Files (x86)\EaseUS\Todo Backup\bin\x64\ImageSh.dll [2018-12-17] (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co.,Ltd)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-27] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat Elements\ContextMenuShim64.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [DefragglerShellExtension] -> {4380C993-0C43-4E02-9A7A-0D40B6EA7590} => C:\Program Files\Defraggler\DefragglerShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-08-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2021-03-23] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [vidc.mjpg] => pvmjpgx40.dll
HKLM\...\Drivers32: [vidc.pDAD] => C:\Windows\SysWOW64\prodad-codec.dll [506312 2014-01-08] (proDAD GmbH -> proDAD GmbH)
HKLM\...\Drivers32: [msacm.lameacm] => C:\Windows\SysWOW64\LameACM.acm [389120 2006-09-24] (hxxp://www.mp3dev.org/) [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

Shortcut: C:\Users\JOE\Desktop\JEUX\Rayman 1 Forever.lnk -> C:\GOGGames\Rayman 1 Forever\Rayman.bat ()

==================== Modules chargés (Avec liste blanche) =============

2012-09-23 20:43 - 2012-09-23 20:43 - 000010240 _____ () [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\fr_fr\acrotray.fra
2021-08-25 19:53 - 2016-03-07 18:08 - 001291264 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2021-08-25 19:53 - 2004-10-05 03:08 - 000055808 _____ () [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2021-07-03 21:23 - 2021-05-27 17:13 - 003889664 _____ () [Fichier non signé] C:\Program Files (x86)\Wondershare\Wondershare dr.fone\WsidClient.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 000010240 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2019-11-18 02:41 - 2013-01-24 17:24 - 000359936 _____ (CANON INC.) [Fichier non signé] C:\WINDOWS\System32\CNMN6PPM.DLL
2021-08-25 19:52 - 2021-08-25 19:41 - 000057936 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2021-08-25 19:53 - 2018-10-10 11:01 - 000109712 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> ) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2021-08-25 19:52 - 2021-08-25 19:41 - 000028752 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\Options.dll
2021-08-25 19:52 - 2018-10-10 11:01 - 000046736 _____ (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EuPipe.dll
2021-08-25 19:53 - 2008-11-25 17:18 - 000892928 _____ (Free Software Foundation) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\bin\iconv.dll
2011-08-18 01:29 - 2011-08-18 01:29 - 001039360 _____ (Hewlett-Packard Co.) [Fichier non signé] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzipm12.dll
2021-07-03 15:55 - 2019-02-21 18:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2020-09-07 14:15 - 2020-09-07 14:15 - 000113664 _____ (Microsoft Corporation) [Fichier non signé] C:\WINDOWS\WinSxS\amd64_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_8a1dd9552ed7f8d8\ATL80.DLL
2020-09-07 20:54 - 2017-10-27 18:06 - 000874368 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2020-09-07 20:54 - 2017-10-27 18:06 - 000339256 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [Fichier non signé] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr64.dll
2019-09-02 00:01 - 2017-04-12 18:25 - 001653712 _____ (Stardock Corporation -> Stardock Software, Inc) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files (x86)\Stardock\Start10\Start10_64.dll
2021-08-25 19:52 - 2016-01-26 08:38 - 001150464 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\LIBEAY32.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\JOE:.repos [1036]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2020-07-31] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: NitroPDF.IE.Sharepoint -> {3BFAE61D-4A6D-4467-9E5E-FE5293D10F9F} -> C:\Program Files\Nitro\Pro\13\npnitroie.dll [2019-09-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2020-07-31] (Tonec Inc. -> Internet Download Manager, Tonec Inc.)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-07-11] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: NitroPDF.IE.Sharepoint -> {3BFAE61D-4A6D-4467-9E5E-FE5293D10F9F} -> C:\Program Files (x86)\Nitro\Pro\13\npnitroie.dll [2019-09-26] (Nitro Software, Inc. -> Nitro Software, Inc.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2016-10-01] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-08-11] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2020-04-21 01:39 - 2021-08-26 12:58 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKU\S-1-5-21-1771672942-87226366-737989149-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\JOE\AppData\Roaming\Microsoft\Windows Photo Viewer\Papier peint de la Visionneuse de photos Windows.jpg
DNS Servers: 1.1.1.1 - 1.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

Network Binding:
=============
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKU\S-1-5-21-1771672942-87226366-737989149-1001\...\StartupApproved\Run: => "OneDrive"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{55A253BC-085B-4E68-9E78-68A179A9E6C0}C:\program files\virtualdj\virtualdj.exe] => (Allow) C:\program files\virtualdj\virtualdj.exe (Atomix Productions) [Fichier non signé]
FirewallRules: [TCP Query User{37F44240-2716-4C7E-B84B-34CAA7AC62BD}C:\program files\virtualdj\virtualdj.exe] => (Allow) C:\program files\virtualdj\virtualdj.exe (Atomix Productions) [Fichier non signé]
FirewallRules: [UDP Query User{2060112A-635C-4682-9A9A-C32506B7A90B}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{6D363140-676B-4AA3-97DF-A2698E291C74}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{31C4617B-D794-42F7-8B22-28336E50A120}C:\program files (x86)\hercules\hercules hd sunset\xtrctrlex.exe] => (Allow) C:\program files (x86)\hercules\hercules hd sunset\xtrctrlex.exe (Guillemot Corporation -> Guillemot Corporation S.A.)
FirewallRules: [TCP Query User{069CC594-351B-48A5-9571-A4C33E20653A}C:\program files (x86)\hercules\hercules hd sunset\xtrctrlex.exe] => (Allow) C:\program files (x86)\hercules\hercules hd sunset\xtrctrlex.exe (Guillemot Corporation -> Guillemot Corporation S.A.)
FirewallRules: [{E47A4297-2BBB-41D5-A190-99CCDE3C6220}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B34B99B9-AF2F-446A-BE50-76BBFB051E9B}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B320176F-26EF-4E7B-9FBD-DF21FD70E873}] => (Allow) C:\Windows\system32\lxeacoms.exe (Lexmark International, Inc. -> )
FirewallRules: [{FD23A647-B87A-4026-93F0-2AC2959BA74E}] => (Allow) C:\Program Files\Pinnacle\Studio 22\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{02607F6E-7C99-4276-B983-BB7D90946B1B}] => (Allow) C:\Program Files\Pinnacle\Studio 22\programs\UMI.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{53BDDA7E-8D5E-43C8-A463-585B998FBDEB}] => (Allow) C:\Program Files\Pinnacle\Studio 22\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{91E3306C-B5BF-4349-833A-90D28B56161F}] => (Allow) C:\Program Files\Pinnacle\Studio 22\programs\NGStudio.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{5084DD00-847D-4C97-A114-7289C81F54FF}] => (Allow) C:\Program Files\Pinnacle\Studio 22\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{AC65D77F-BC83-4796-AF73-4721CF3792C5}] => (Allow) C:\Program Files\Pinnacle\Studio 22\programs\RM.exe (Corel Corporation -> Pinnacle)
FirewallRules: [{F665D30F-0842-457A-80E5-650D45A7BD9C}] => (Allow) C:\Windows\system32\lxeecoms.exe (Lexmark International, Inc. -> )
FirewallRules: [{459BADE8-6C15-4241-91B8-B7E8C6BADFD3}] => (Allow) C:\Program Files (x86)\Nero\Nero 2020\Nero Burning ROM\nero.exe (Nero AG -> Nero AG)
FirewallRules: [{658CCE01-16D0-471C-9ED1-372BD2C9770C}] => (Allow) C:\Program Files (x86)\Nero\Nero 2020\Nero MediaHome\MediaHome.exe (Nero AG -> Nero AG)
FirewallRules: [{BE8DB2DD-8017-4F7C-8452-EEDE5CDABF07}] => (Allow) C:\Program Files (x86)\Nero\Nero 2020\Nero MediaHome\NMDllHost.exe (Nero AG -> Nero AG)
FirewallRules: [{9149B84C-F4ED-469A-B4B1-0CFD84ACECDD}] => (Allow) C:\Program Files (x86)\Nero\Nero 2020\Nero Burning ROM\StartNBR.exe (Nero AG -> Nero AG)
FirewallRules: [{C89DCE99-2053-489C-BF05-EB80087083F2}] => (Allow) C:\Users\JOE\Downloads\Programs\4ukey-for-android.exe (Tenorshare Co.,Ltd. -> Tenorshare Co.Ltd)
FirewallRules: [{0CB57498-DB24-4442-9CD7-0D920AD520B7}] => (Allow) C:\Users\JOE\Downloads\Programs\4ukey-for-android.exe (Tenorshare Co.,Ltd. -> Tenorshare Co.Ltd)
FirewallRules: [UDP Query User{8AA9654E-5EC2-4CAE-9B02-BBE3793DBBCE}C:\program files (x86)\rayman legends\rayman legends.exe] => (Allow) C:\program files (x86)\rayman legends\rayman legends.exe (Ubisoft Chengdu Co., Ltd. -> )
FirewallRules: [TCP Query User{CF603938-0DB2-4DC4-825E-3005FECB1CD2}C:\program files (x86)\rayman legends\rayman legends.exe] => (Allow) C:\program files (x86)\rayman legends\rayman legends.exe (Ubisoft Chengdu Co., Ltd. -> )
FirewallRules: [{4925F949-C8E5-4642-91B9-0B52A8387DD3}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe (Ubisoft Entertainment SA -> Ubisoft)
FirewallRules: [{0CC730EE-BA3D-4A0F-AE6A-4F6E26603C24}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\gu.exe (Ubisoft Entertainment SA -> Ubisoft)
FirewallRules: [{380DE860-200C-479E-83EA-31074A69B30D}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{348F9598-4388-44DF-BC7A-420BB2F90F0C}] => (Allow) C:\Program Files (x86)\Ubisoft\Rayman Origins\Rayman Origins.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{D644F249-E4C2-41D3-BF4A-E87C86E22B4D}] => (Allow) C:\Program Files (x86)\THQ\Juiced2_HIN\Juiced2_HIN.exe (THQ, Inc. -> Juice Games)
FirewallRules: [{28F495E5-2520-423A-930A-3D38DB110406}] => (Allow) C:\Program Files (x86)\THQ\Juiced2_HIN\Juiced2_HIN.exe (THQ, Inc. -> Juice Games)
FirewallRules: [UDP Query User{486EB73C-B725-4563-9F72-30FE92DC0CC0}C:\program files\deezloader remix\deezloader remix.exe] => (Allow) C:\program files\deezloader remix\deezloader remix.exe (RemixDevs) [Fichier non signé]
FirewallRules: [TCP Query User{FD489E2D-6592-4729-A989-8504094F4256}C:\program files\deezloader remix\deezloader remix.exe] => (Allow) C:\program files\deezloader remix\deezloader remix.exe (RemixDevs) [Fichier non signé]
FirewallRules: [UDP Query User{DC180CF9-157A-4CAB-A7F8-972363B6FADC}G:\telechargements\deezloader-win32-ia32\deezloader.exe] => (Allow) G:\telechargements\deezloader-win32-ia32\deezloader.exe (GitHub, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{596A293B-B8A9-48B6-ABB7-5186A6D3A512}G:\telechargements\deezloader-win32-ia32\deezloader.exe] => (Allow) G:\telechargements\deezloader-win32-ia32\deezloader.exe (GitHub, Inc.) [Fichier non signé]
FirewallRules: [{6D12D5A5-9D85-40F4-94D2-E60E5F97D6BE}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{8459390E-1F41-4056-8143-469630386CCB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E1CEDB84-DF47-4B24-8D08-250ECC95D4C5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{261EB221-F341-42BE-8DC4-4E947AB21682}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D68FF839-ED26-4306-924D-5A8C0A3DE14E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9E4C921E-0BD1-4BF2-885D-AC6444EDDC80}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A9887B95-97A1-47C1-A0C8-DEB8D82CEE73}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EDCC97EF-9875-4915-9427-B2DCE9A9AEC5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{715AEF5B-4917-44A0-9CC7-09D24086B190}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E4060E40-49D9-482F-ACC5-FF1598104DEA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.144.538.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D7B696F4-54F8-47F3-A9BE-BA891CF34A01}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3C33FC86-7A00-48BC-AFC4-FBD12AE58366}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{58CB696B-75ED-4C2E-BF6F-FDA5EED9967C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{571EB4F5-7239-45C0-BE42-19A5E6F50B1D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.65.78.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{8EAEBF69-DEF3-4591-BDAE-9462BE5F5996}C:\program files (x86)\hercules\webcam station evolution\stationev.exe] => (Allow) C:\program files (x86)\hercules\webcam station evolution\stationev.exe (Guillemot Corporation -> Guillemot Corporation S.A.)
FirewallRules: [UDP Query User{3E3298EC-26D1-4CC5-A790-51EAD7879444}C:\program files (x86)\hercules\webcam station evolution\stationev.exe] => (Allow) C:\program files (x86)\hercules\webcam station evolution\stationev.exe (Guillemot Corporation -> Guillemot Corporation S.A.)
FirewallRules: [{D9F18E50-74A2-41D8-BA4B-3E54903D56CB}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{695D6D5F-05D1-4940-BCE9-5D5ACC4889B9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{BD0F2508-26BA-4CB8-803C-255684D72AE4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5F00D761-854C-45A2-80DF-0E80E01C3491}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{26C4AA96-A723-464D-87B6-92F8EC115011}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1375AA8C-DA20-4890-AA30-F58925F81308}] => (Allow) LPort=1688
FirewallRules: [{6AE9F672-D2B2-4A4A-B88B-420AE263D072}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3F4B2743-AB9B-4AFF-AF79-E99CEBC7DD1E}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{C79DD389-3968-4F5A-B0BC-FC7EE4973FF1}C:\program files (x86)\vidal expert\vidalexpert.exe] => (Allow) C:\program files (x86)\vidal expert\vidalexpert.exe (VIDAL France -> )
FirewallRules: [UDP Query User{B32F1119-19D6-44EB-9518-A5A61AF9B49D}C:\program files (x86)\vidal expert\vidalexpert.exe] => (Allow) C:\program files (x86)\vidal expert\vidalexpert.exe (VIDAL France -> )
FirewallRules: [{4FD4D85A-D85C-4AAE-B92F-8C3C4FD2E77A}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\CMC\bin\EBCClient.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{C96CB07C-FA08-4C15-9683-8703D6FDE873}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{8CE4980D-E110-412E-A4D1-6F0D35778294}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{8443421C-E1C5-4A48-9DD7-B459C746292B}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{1978E9DD-8EC7-46D3-A1B0-79077DE93F61}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe (CHENGDU YIWO Tech Development Co., Ltd. -> CHENGDU YIWO Tech Development Co., Ltd)
FirewallRules: [{6E2F6817-DA3A-481A-A245-F44A021A2B20}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )
FirewallRules: [{2FA6001C-12DE-4175-BB70-85A236B16567}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe (CHENGDU YIWO Tech Development Co., Ltd. -> )

==================== Points de restauration =========================

24-08-2021 23:18:53 {464324F7-AD6C-4638-8FC1-69DD0E42174E}

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: HP Photosmart C4500
Description: HP Photosmart C4500
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================

Erreurs système:
=============
Error: (08/27/2021 12:38:08 AM) (Source: DCOM) (EventID: 10000) (User: JOE-PC)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}

Error: (08/26/2021 01:07:42 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Gestionnaire des cartes téléchargées est en attente de démarrage.

Error: (08/26/2021 01:03:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service MBAMChameleon n’a pas pu démarrer en raison de l’erreur :
Le fichier spécifié est introuvable.

Error: (08/26/2021 01:02:47 PM) (Source: VBoxNetLwf) (EventID: 12) (User: )
Description: Le pilote a détecté une erreur de pilote interne sur \Device\VBoxNetLwf.

Error: (08/26/2021 01:01:16 PM) (Source: DCOM) (EventID: 10010) (User: JOE-PC)
Description: Le serveur Microsoft.WindowsFeedbackHub_1.1907.3152.0_x64__8wekyb3d8bbwe!App.AppXsdjy3vfbpyyren487rr1k4k8g5t1k844.mca ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (08/26/2021 12:56:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Service Agent EaseUS s’est terminé de façon inattendue pour la 10ème fois.

Error: (08/26/2021 12:56:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Microsoft Office « Démarrer en un clic » s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.

Error: (08/26/2021 12:56:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Disque virtuel s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 60000 millisecondes : Redémarrer le service.


Windows Defender:
================
Date: 2020-10-30 23:43:47
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.AB2D&threatid=2147758023&enterprise=0
Nom : Trojan:Win32/Ymacco.AB2D
ID : 2147758023
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\JOE\Downloads\Compressed\4How_.com__bytes Premium 4.2.0.82\Malwarebytes Premium 4.2.0.82\LicenseMalwareBytes.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : JOE-PC\JOE
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.327.44.0, AS: 1.327.44.0, NIS: 1.327.44.0
Version du moteur : AM: 1.1.17600.5, NIS: 1.1.17600.5

Date: 2020-10-30 23:43:31
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Ymacco.AB2D&threatid=2147758023&enterprise=0
Nom : Trojan:Win32/Ymacco.AB2D
ID : 2147758023
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\JOE\Downloads\Compressed\4How_.com__bytes Premium 4.2.0.82\Malwarebytes Premium 4.2.0.82\LicenseMalwareBytes.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : JOE-PC\JOE
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.327.44.0, AS: 1.327.44.0, NIS: 1.327.44.0
Version du moteur : AM: 1.1.17600.5, NIS: 1.1.17600.5

Date: 2020-10-30 00:54:03
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS!rfn&threatid=2147692752&enterprise=0
Nom : HackTool:Win32/AutoKMS!rfn
ID : 2147692752
Gravité : Élevée
Catégorie : Outil
Chemin : file:_N:\Microsoft Office Professional Plus 2016.FR.[x86-x64]\Microsoft Toolkit v 2.61(1).exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.325.1637.0, AS: 1.325.1637.0, NIS: 1.325.1637.0
Version du moteur : AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-30 00:54:00
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_N:\Microsoft Office Professional Plus 2016.FR.[x86-x64]\Microsoft Toolkit v 2.61(1).exe; file:_N:\Microsoft Office Professional Plus 2016.FR.[x86-x64]\Microsoft Toolkit v 2.61(1).exe->[SAResource]->[MSILRES:?.?.resources]
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : JOE-PC\JOE
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.325.1637.0, AS: 1.325.1637.0, NIS: 1.325.1637.0
Version du moteur : AM: 1.1.17500.4, NIS: 1.1.17500.4

Date: 2020-10-29 02:03:10
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C1677C2F-5215-4B87-BD25-410A0A3567F1}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

CodeIntegrity:
===============
Date: 2021-08-26 22:43:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.

Date: 2021-08-11 00:15:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MDEServer.exe) attempted to load \Device\HarddiskVolume1\Program Files (x86)\Stardock\Start10\start10_64.dll that did not meet the Microsoft signing level requirements.

Date: 2021-08-11 00:15:27
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Windows\System32\MDEServer.exe) attempted to load \Device\HarddiskVolume1\Program Files\Pinnacle Studio 22\Pinnacle MyDVD\RoxioMPEGDemuxer.dll that did not meet the Microsoft signing level requirements.


==================== Infos Mémoire ===========================

BIOS: Phoenix Technologies, LTD PBSFC2MB.P07 08/13/2007
Carte mère: Packard Bell BV PT890-8237A
Processeur: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Pourcentage de mémoire utilisée: 87%
Mémoire physique - RAM - totale: 3070.49 MB
Mémoire physique - RAM - disponible: 385.45 MB
Mémoire virtuelle totale: 5370.78 MB
Mémoire virtuelle disponible: 1128.22 MB

==================== Lecteurs ================================

Drive c: (Windows 10) (Fixed) (Total:492.94 GB) (Free:20.79 GB) NTFS ==>[lecteur avec composants d'amorçage (obtenu depuis BCD)]
Drive d: (Sauvegardes Win 10) (Fixed) (Total:205.08 GB) (Free:32.32 GB) NTFS
Drive e: (SAUVEGARDES) (Fixed) (Total:76.33 GB) (Free:17.54 GB) NTFS
Drive f: (LOGICIELS) (Fixed) (Total:75.13 GB) (Free:10.64 GB) NTFS
Drive g: (FILMS) (Fixed) (Total:244.14 GB) (Free:4.02 GB) NTFS
Drive h: (AUDIO et JEUX) (Fixed) (Total:146.48 GB) (Free:9.92 GB) NTFS

\\?\Volume{1549f232-0000-0000-0000-303c7b000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 1549F232)
Partition 1: (Active) - (Size=492.9 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=531 MB) - (Type=27)
Partition 3: (Not Active) - (Size=205.1 GB) - (Type=07 NTFS)

==========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 346991CB)
Partition 1: (Not Active) - (Size=75.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=244.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=146.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 76.3 GB) (Disk ID: 72C23A93)
Partition 1: (Not Active) - (Size=76.3 GB) - (Type=07 NTFS)

==================== Fin de Addition.txt =======================