Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 30-08-2022
Exécuté par Serge (22-09-2022 21:33:57)
Exécuté depuis C:\Users\Serge\Desktop
Microsoft Windows 10 Famille Version 21H2 19044.2006 (X64) (2022-05-12 23:46:21)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================


(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-63988928-358538423-2880618334-500 - Administrator - Enabled) => C:\Users\Administrateur
DefaultAccount (S-1-5-21-63988928-358538423-2880618334-503 - Limited - Disabled)
Invité (S-1-5-21-63988928-358538423-2880618334-501 - Limited - Disabled)
Serge (S-1-5-21-63988928-358538423-2880618334-1001 - Administrator - Enabled) => C:\Users\Serge
WDAGUtilityAccount (S-1-5-21-63988928-358538423-2880618334-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

µTorrent (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\uTorrent) (Version: 3.5.5.46514 - BitTorrent Inc.)
Adobe Acrobat DC (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 22.002.20191 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.4.1.534 - Adobe Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Genuine Service (HKLM-x32\...\AdobeGenuineService) (Version: 8.0.0.11 - Adobe Inc.)
Adobe Illustrator 2022 (HKLM-x32\...\ILST_26_4_1) (Version: 26.4.1 - Adobe Inc.)
Adobe InDesign 2022 (HKLM-x32\...\IDSN_17_3) (Version: 17.3 - Adobe Inc.)
Adobe Photoshop 2022 (HKLM-x32\...\PHSP_23_5) (Version: 23.5.0.669 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601013}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation)
Antidote - Connectix 11 (HKLM\...\{2643823D-D15F-4046-8388-401756A5C924}) (Version: 11.2.327 - Druide informatique inc.)
Antidote 11 - English module (HKLM\...\{2643823D-D15F-4046-8388-401756A5C923}) (Version: 11.2.327 - Druide informatique inc.)
Antidote 11 - Module français (HKLM\...\{2643823D-D15F-4046-8388-401756A5C922}) (Version: 11.2.327 - Druide informatique inc.)
Antidote 11 (HKLM\...\{2643823D-D15F-4046-8388-401756A5C921}) (Version: 11.2.327 - Druide informatique inc.)
Assistant de téléchargement (HKLM-x32\...\{93154A3C-9BB7-49D7-A571-4EB6373FA602}) (Version: 6.71.0 - Druide informatique inc.)
Assistant Mise à jour de Windows 10 (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.19041.1703 - Microsoft Corporation)
ASUS Device Activation (HKLM-x32\...\{9C4B0706-9F9A-47BF-B417-0A111FC52B04}) (Version: 1.0.4.0 - ASUSTeK COMPUTER INC.)
ASUS GIFTBOX (HKLM-x32\...\ASUS GIFTBOX) (Version: 7.3.8 - ASUSTek Computer Inc)
ASUS HiPost (HKLM-x32\...\{04768366-F421-4BA5-8423-B84F644B5249}) (Version: 1.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.6.8 - ASUSTeK COMPUTER INC.)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.24 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.13.0004 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0050 - ASUS)
Audacity 3.1.3 (HKLM-x32\...\Audacity_is1) (Version: 3.1.3 - Audacity Team)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 83.1.10.97 - Auteurs de Brave)
Cheat Engine 7.2 (HKLM\...\Cheat Engine_is1) (Version: - Cheat Engine)
CrystalDiskInfo 8.17.7 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.17.7 - Crystal Dew World)
CrystalDiskMark 8.0.4 (HKLM\...\CrystalDiskMark8_is1) (Version: 8.0.4 - Crystal Dew World)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.13.0.1371 - Disc Soft Ltd)
Dashlane (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\Dashlane) (Version: 6.2148.0.52031 - Dashlane, Inc.)
Device Setup (HKLM-x32\...\{8D6B05E0-F457-408C-9D13-549334D8FAE1}) (Version: 2.0.3 - ASUSTek Computer Inc.)
DIAL Communication Framework (HKLM-x32\...\{562D0D31-FBAF-4505-8B27-4EC92EEA91D6}) (Version: 1.3.2.258 - DIAL GmbH)
DIAL Data Dispatcher (HKLM-x32\...\DIAL Data Dispatcher1.0) (Version: 2.0.24.0 - DIAL GmbH)
Dropbox 25 GB (HKLM-x32\...\{0867A88D-764F-366E-9E21-130DA8B472C3}) (Version: 3.1.18.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.541.1 - Dropbox, Inc.) Hidden
EaseUS Partition Master 15.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
Emergency Download Driver (HKLM-x32\...\{3F0F5AB4-C9CE-4226-8393-E9CFF8369D9D}) (Version: 1.1.16.1526 - Microsoft)
Epic Games Launcher (HKLM-x32\...\{BE9FFAD2-2901-4F9B-8A0C-59EA51773212}) (Version: 1.3.0.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Epic Online Services (HKLM-x32\...\{32C68D93-D32F-4B01-8250-61642BFC22F8}) (Version: 2.0.28.0 - Epic Games, Inc.)
Étude pour l'amélioration du produit HP OfficeJet 4650 series (HKLM\...\{DAD033BC-FEC5-42E0-BF38-BBC75B4BFED4}) (Version: 40.11.1122.1796 - HP Inc.)
Evernote 10.6.9 (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\e4251011-875e-51f3-a464-121adaff5aaa) (Version: 10.6.9 - Evernote Corporation)
FFU Loader Driver 1.0.0 (HKLM-x32\...\{7209d085-ed88-4a08-beb2-c49db2b9e838}) (Version: 1.0.0 - Microsoft)
FFU Loader Driver 1.0.0 (HKLM-x32\...\{CA839C49-B3D1-4EA6-BB8A-21937B808771}) (Version: 1.0.0 - Microsoft) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.99.0 - Google Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 105.0.5195.127 - Google LLC)
HP Dropbox Plugin (HKLM-x32\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP)
HP OfficeJet 4650 series Aide (HKLM-x32\...\{56300693-9E80-466C-B905-C2292C41877A}) (Version: 36.0.0 - Hewlett Packard)
I.R.I.S. OCR (HKLM-x32\...\{D5CFF630-2F9B-4EE5-8F2F-EFBDFCE413CC}) (Version: 12.3.7.0 - HP)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM\...\{8C91A5EB-2C62-4A6D-8802-CC79FD2ED390}) (Version: 10.1.1.7 - Intel Corporation) Hidden
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10602.174 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1159 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{4DA476FC-AFA5-49C3-A419-688153FC2D01}) (Version: 11.0.0.1159 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{8911FD78-14CF-4B69-A772-6204D5E86928}) (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel(R) ME UninstallLegacy (HKLM\...\{9B445C3B-9E6D-47E6-9A62-A693B6A224B0}) (Version: 1.0.1.0 - Intel Corporation) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4404 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{7D84E343-A23D-451C-B123-0195B2D903A6}) (Version: 1.42.17.0 - Intel Corporation) Hidden
IObit Software Updater (HKLM-x32\...\IObit Software Updater_is1) (Version: 4.5.0.246 - IObit)
IObit Uninstaller 12 (HKLM-x32\...\IObitUninstall) (Version: 12.0.0.10 - IObit)
IObit Unlocker (HKLM-x32\...\IObit Unlocker_is1) (Version: 1.1.2.1 - IObit)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lecture à distance PS4 (HKLM-x32\...\{D74E8B23-694A-468A-9041-DD5691C0A602}) (Version: 3.0.0.09250 - Sony Interactive Entertainment Inc.)
Logiciel de base du périphérique HP OfficeJet 4650 series (HKLM\...\{4FD855B3-716A-430A-B88A-8D3E2892488B}) (Version: 40.11.1122.1796 - HP Inc.)
Lumia UEFI Blue Driver (HKLM-x32\...\{9D2A75FE-8CE1-4297-AEC1-A097D47BACE9}) (Version: 1.1.10.1526 - Microsoft)
Malwarebytes version 4.5.14.210 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.14.210 - Malwarebytes)
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 1.6.5230.111 - Waves Audio Ltd.) Hidden
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft Edge (HKLM-x32\...\{E9210F3C-1662-3546-878C-22E75988675D}) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 105.0.1343.42 - Microsoft Corporation)
Microsoft HEVC Media Extension Installation for Microsoft.HEVCVideoExtension_1.0.2512.0_x64__8wekyb3d8bbwe (x64) (HKLM\...\{B0169E83-757B-EF66-E2F0-391944D785BC}) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft Office Professionnel Plus 2019 - fr-fr (HKLM\...\ProPlus2019Retail - fr-fr) (Version: 16.0.15601.20148 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 21.230.1107.0003 - Microsoft Corporation)
Microsoft Project - fr-fr (HKLM\...\ProjectPro2019Retail - fr-fr) (Version: 16.0.15601.20148 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\Teams) (Version: 1.4.00.7174 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visio - fr-fr (HKLM\...\VisioPro2019Retail - fr-fr) (Version: 16.0.15601.20148 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{dd1e9bde-2ad6-4e92-8c07-7d4723eab8b8}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31332 (HKLM-x32\...\{3746f21b-c990-4045-bb33-1cf98cff7a68}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31332 (HKLM-x32\...\{a98dc6ff-d360-4878-9f0a-915eba86eaf3}) (Version: 14.32.31332.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31332 (HKLM\...\{F4499EE3-A166-496C-81BB-51D1BCDC70A9}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31332 (HKLM\...\{3407B900-37F5-4CC2-B612-5CD5D580A163}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31332 (HKLM-x32\...\{8972AC25-452E-4FFE-945A-EB9E28C20322}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31332 (HKLM-x32\...\{AEAA18F7-9C96-4A43-BC07-8B88A4913EEB}) (Version: 14.32.31332 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 2.0 (HKLM-x32\...\{245F6C7A-0C22-4DE0-8202-2AAA620A1D3A}) (Version: 2.0.11128.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MSVCRT Redists (HKLM\...\{0B98B330-A098-11E8-B35C-00155D6302F2}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{29F417C0-AAA4-11E6-863F-8EDAE4BED5C9}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{52116C70-79F9-11E6-9541-BB95F5A309BD}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{6D0378B0-7D93-11EA-8D55-00155DCF731D}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{75AFFE51-DA39-11E9-842E-00155D6302F2}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{96C55300-3EAD-11EA-89F1-50E549394757}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{D3603F21-1337-11E9-BCA2-408D5CC672F4}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
MSVCRT Redists (HKLM\...\{E5637EB0-7FC4-11E7-B61D-95BE57594EAC}) (Version: 1.0 - MAGIX Computer Products Intl. Co.) Hidden
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.3.0.73 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 6.48.10.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NordVPN network TUN (HKLM\...\{BD0E4F38-D3F6-452D-A32E-B14D721839AC}) (Version: 1.0.1 - NordVPN)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 8.4.5 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.15601.20064 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.15601.20148 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.15601.20064 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenIV (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\OpenIV) (Version: 4.1.1502 - .black/OpenIV Team)
OpenOffice 4.1.11 (HKLM-x32\...\{D2F124FC-5373-4A4A-8C5A-61052A3D34CA}) (Version: 4.111.9808 - Apache Software Foundation)
Opera Stable 91.0.4516.20 (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\Opera 91.0.4516.20) (Version: 91.0.4516.20 - Opera Software)
Package de pilotes Windows - ASUS (ATP) Mouse (02/24/2016 1.0.0.262) (HKLM\...\62C40FA617FED5B2A080FDFA260932672C6B64D7) (Version: 02/24/2016 1.0.0.262 - ASUS)
Package de pilotes Windows - Microsoft USBDevice (02/19/2016 1.0.0.0) (HKLM\...\01D4AA89568B59E5941907D403E3B682EE413AB7) (Version: 02/19/2016 1.0.0.0 - Microsoft)
PhotoFiltre Studio X (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\PhotoFiltre Studio X) (Version: - )
Protected Folder (HKLM-x32\...\Protected Folder_is1) (Version: - IObit)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.18363.21333 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.9205.1 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.63.962 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.1.5.1 - Rockstar Games)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.43.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.21034.7 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.21034.7 - Samsung Electronics Co., Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.33.7 - TeamViewer)
TI Connect™ CE (HKLM-x32\...\{8B1F3A89-E195-48CD-8487-A37BA5308E76}) (Version: 5.3.0.384 - Texas Instruments Inc.)
TomTom MyDrive Connect 4.2.13.4365 (HKLM-x32\...\MyDriveConnect) (Version: 4.2.13.4365 - TomTom)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 113.0 - Ubisoft)
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VEGAS Pro 18.0 (HKLM\...\{FA787861-5788-11EB-B0A9-00155D51A912}) (Version: 18.0.434 - VEGAS)
VEGAS Pro 20.0 (HKLM\...\{A9855401-2159-448A-9AF2-CC0AA49E473B}) (Version: 20.0.139.0 - VEGAS) Hidden
VEGAS Pro 20.0 (HKLM\...\MX.{A9855401-2159-448A-9AF2-CC0AA49E473B}) (Version: 20.0.139.0 - VEGAS)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.17.4 - VideoLAN)
Wargaming.net Game Center (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\Wargaming.net Game Center) (Version: 21.4.0.5527 - Wargaming.net)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.12.577 - ASUS Cloud Corporation)
WhatsApp (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\WhatsApp) (Version: 2.2234.13 - WhatsApp)
Windows IP Over USB (HKLM-x32\...\{FF0EA481-42DB-A8AE-8356-48C09F7D953D}) (Version: 10.1.10586.15 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.9.0 - ASUSTeK COMPUTER INC.)
WinRAR 6.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.11.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{9755918A-CDF8-4F1E-8453-6359CF1A330A}) (Version: 1.1.12.1526 - Microsoft)
WinUSB Compatible ID Drivers (HKLM-x32\...\{A4A0B236-6046-4CAB-8177-1EAF61112C75}) (Version: 1.1.11.1526 - Microsoft)
WinUSB Drivers ext (HKLM-x32\...\{29BAAF65-09E5-4F52-8D15-2FAF2E23A8DC}) (Version: 1.1.24.1544 - Microsoft)
WPS Office (11.2.0.11306) (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\Kingsoft Office) (Version: 11.2.0.11306 - Kingsoft Corp.)
X-Opera (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\X-Opera) (Version: 00.00.01.00 - Opera Software)
Zoom (HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\ZoomUMX) (Version: 5.11.4 (7185) - Zoom Video Communications, Inc.)

Packages:
=========
AdBlock -> C:\Program Files\WindowsApps\BetaFish.AdBlock_2.13.0.0_neutral__c1wakc4j0nefm [2022-05-13] (BetaFish)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-12-07] (Adobe Systems Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-23] (Autodesk Inc.)
Chronomètre + Compte à rebours -> C:\Program Files\WindowsApps\25342asdf3333.StoppuhrTimer_1.5.7.1000_x64__1xbryz0n7krfa [2018-09-11] (asdf3333)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-16] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.14.67.0_x64__rz1tebttyb220 [2022-07-13] (Dolby Laboratories)
Evernote Web Clipper -> C:\Program Files\WindowsApps\Evernote.EvernoteWebClipper_6.13.2.0_neutral__q4d96b2w5wcc2 [2022-05-13] (Evernote)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-16] (Microsoft Corporation)
Extension vidéo MPEG-2 -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.50901.0_x64__8wekyb3d8bbwe [2022-04-20] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_138.2.414.0_x64__v10z8vjag6ke6 [2022-09-09] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2022-05-13] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2022-05-13] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-01-23] (MAGIX)
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2018-04-27] (ASUSTeK COMPUTER INC.) [Startup Task]
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.15.163.0_x64__43tkc6nmykmb6 [2021-10-03] (Ookla)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2016-12-04] (TripAdvisor LLC)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.TWITTER_7.0.1.0_neutral__wgeqdkkx372wm [2022-05-13] (Twitter Inc.)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Serge\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20339.4\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{28A80003-18FD-411D-B0A3-3C81F618E22B}\InprocServer32 -> C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11306\office6\kwpsmenushellext64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{38626B40-64E1-4F8C-AEDA-CFF32F38602E}\localserver32 -> "C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\AgentAntidote.exe" -activex => Pas de fichier
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> "C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe" -activex => Pas de fichier
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> "C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe" -activex => Pas de fichier
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{7949EF92-AED3-43C8-B729-4D170D8F9C83} -> [MEGA] =>
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{7C360CF9-D475-44FC-8163-AD6C95CF5F5D}\InprocServer32 -> C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11306\office6\kmso2pdfplugins64.dll (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files\Druide\Connectix 11\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{A9694941-C924-4D17-8F67-80F4A27642BC}\InprocServer32 -> C:\Program Files\Druide\Connectix 11\Connect\PowerPoint\Bin\Antidote.PowerPoint.P500_64.dll (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-63988928-358538423-2880618334-1001_Classes\CLSID\{FEA8F8D1-3ADB-4B77-908F-C2E811EE12E1}\InprocServer32 -> C:\Program Files\Druide\Connectix 11\Connect\Word\Bin\Antidote.Word.P500_64.dll (Druide informatique inc. -> Druide informatique inc.)
ShellIconOverlayIdentifiers: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ShellIconOverlayIdentifiers: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ShellIconOverlayIdentifiers: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-06-29] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-06-29] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-06-29] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [Fichier non signé]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [Fichier non signé]
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSShellExt64.dll [2015-04-22] (ASUS Cloud Corporation.) [Fichier non signé]
ShellIconOverlayIdentifiers-x32: [
MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [
MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [
MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-06-29] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\PROGRAM FILES\NOTEPAD++\NppShell_06.dll [2022-09-03] (Notepad++ -> )
ContextMenuHandlers1: [Foxit_ConvertToPDF] -> {C5269811-4A29-4818-A4BB-111F9FC63A5F} => C:\Program Files (x86)\Foxit PhantomPDF\plugins\ConvertToPDFShellExtension_x64.dll [2015-12-10] (Foxit Software Incorporated -> Foxit Software Inc.)
ContextMenuHandlers1: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ContextMenuHandlers1: [PfMenu] -> {2F844462-7CB8-489C-828C-32A6422506AF} => C:\Program Files (x86)\IObit\Protected Folder\PfShellExtension.dll [2015-03-10] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2018-05-17] (IObit Information Technology -> IObit)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-07-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ContextMenuHandlers3: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers3: [BackupContextMenuExtension] -> {b1b96b20-da1d-4a3c-92c1-7229b32f2326} => C:\Program Files (x86)\Common Files\AWS\2.2.12.577\ASUSWSContextMenu.dll [2016-10-19] (ASUS Cloud Corporation -> ASUS Cloud Corporation)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-07-21] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-09-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers4: [Advanced SystemCare] -> {2803063F-4B8D-4dc6-8874-D1802487FE2D} => C:\Program Files (x86)\IObit\Advanced SystemCare\ASCExtMenu_64.dll -> Pas de fichier
ContextMenuHandlers4: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\Serge\AppData\Local\MEGAsync\ShellExtX64.dll [2021-07-05] (Mega Limited -> )
ContextMenuHandlers4: [PfMenu] -> {2F844462-7CB8-489C-828C-32A6422506AF} => C:\Program Files (x86)\IObit\Protected Folder\PfShellExtension.dll [2015-03-10] (IObit Information Technology -> IObit)
ContextMenuHandlers4: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2018-05-17] (IObit Information Technology -> IObit)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\21.230.1107.0003\FileSyncShell64.dll [2021-11-21] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-30] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2022-06-29] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [IObitUninstaller] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers6: [IObitUnstaler] -> {836AB26C-2DE4-41D3-AC24-4C6C2699B960} => C:\Program Files (x86)\IObit\IObit Uninstaller\IUMenuRight.dll [2021-12-14] (IObit CO., LTD -> IObit)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2022-09-20] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [PfMenu] -> {2F844462-7CB8-489C-828C-32A6422506AF} => C:\Program Files (x86)\IObit\Protected Folder\PfShellExtension.dll [2015-03-10] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [UnLockerMenu] -> {410BF280-86EF-4E0F-8279-EC5848546AD3} => C:\Program Files (x86)\IObit\IObit Unlocker\IObitUnlockerExtension.dll [2018-05-17] (IObit Information Technology -> IObit)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2022-03-03] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-63988928-358538423-2880618334-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11306\office6\kwpsmenushellext64.dll [2022-09-03] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)
ContextMenuHandlers4_S-1-5-21-63988928-358538423-2880618334-1001: [ kwpsshellext] -> {28A80003-18FD-411D-B0A3-3C81F618E22B} => C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11306\office6\kwpsmenushellext64.dll [2022-09-03] (Zhuhai Kingsoft Office Software Co., Ltd. -> Zhuhai Kingsoft Office Software Co.,Ltd)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.FICV] => C:\WINDOWS\system32\ficvdec_x64.dll [652288 2013-05-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\WINDOWS\system32\frapsv64.dll [71680 2011-10-22] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2011-10-22] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-10-19] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2014-10-19] (Electronic Arts -> On2.com)

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2021-02-01 21:49 - 2021-02-01 21:49 - 000010240 _____ () [Fichier non signé] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\fr_fr\acrotray.fra
2022-09-20 20:44 - 2022-09-20 20:44 - 000334336 _____ () [Fichier non signé] C:\Users\Serge\AppData\Local\Microsoft\OneDrive\RMCLIENT.dll
2022-08-02 23:32 - 2022-08-02 23:32 - 000022016 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2015-11-19 22:03 - 2015-11-19 22:03 - 000247808 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files (x86)\Common Files\Microsoft Shared\Phone Tools\CoreCon\11.0\bin\IpOverUsbPc.DLL

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [3862]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-63988928-358538423-2880618334-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-63988928-358538423-2880618334-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-63988928-358538423-2880618334-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> Pas de fichier
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\Serge\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2021-12-31] (Dashlane USA, Inc. -> Dashlane, Inc.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: McAfee WebAdvisor -> {B164E929-A1B6-4A06-B104-2CD0E90A88FF} -> Pas de fichier
BHO-x32: IObit Surfing Protection -> {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} -> C:\PROGRA~2\IObit\Advanced SystemCare\Surfing Protection\BrowerProtect\ASCPlugin_Protection.dll => Pas de fichier
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\Serge\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2021-12-31] (Dashlane USA, Inc. -> Dashlane, Inc.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2022-08-02] (Adobe Inc. -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2022-09-22] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-04-10 11:55 - 2021-03-08 01:27 - 000002209 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 api.recommendedsw.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com

2020-06-15 19:36 - 2020-06-15 19:41 - 000000442 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-63988928-358538423-2880618334-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Serge\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\{fd1a22ed-e17a-405f-a754-879431016c8b}.jpg
HKU\S-1-5-21-63988928-358538423-2880618334-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 1.1.1.1 - 1.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Le Pare-feu est activé.

Network Binding:
=============
Ethernet 3: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet 2: NordVPN LightWeight Firewall -> NordLwf (enabled)
Wi-Fi: NordVPN LightWeight Firewall -> NordLwf (enabled)
Ethernet: NordVPN LightWeight Firewall -> NordLwf (enabled)

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "AgentConnectix64"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "DAEMON Tools Lite Automount"
HKLM\...\StartupApproved\Run32: => "ut"
HKLM\...\StartupApproved\Run32: => "GoogleChromeAutoLaunch_1D5AB8A929A112220C649D276A2F30EC"
HKLM\...\StartupApproved\Run32: => "MicrosoftEdgeAutoLaunch_660BC00B9DE12718807758626F4698E3"
HKLM\...\StartupApproved\Run32: => "com.squirrel.Teams.Teams"
HKLM\...\StartupApproved\Run32: => "NordVPN"
HKLM\...\StartupApproved\Run32: => "Steam"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\StartupFolder: => "Envoyer * OneNote.lnk<*>"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "Dashlane"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "DashlanePlugin"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "HP OfficeJet 4650 series (NET)"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "Opera Browser Assistant"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "Wargaming.net Game Center"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-63988928-358538423-2880618334-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_660BC00B9DE12718807758626F4698E3"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{ED323EAF-2B9C-49E4-AA2B-A4D1EC0F6602}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{F9C36B85-B574-4F11-8A7D-04F67B320E45}C:\users\serge\appdata\local\x-opera\appdata\opera.exe] => (Block) C:\users\serge\appdata\local\x-opera\appdata\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [TCP Query User{9312BCC7-A45E-4B73-8BEE-59AB6E2C7801}C:\users\serge\appdata\local\x-opera\appdata\opera.exe] => (Block) C:\users\serge\appdata\local\x-opera\appdata\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{94077367-24F6-4E3A-9FF3-8ECB6E3AE37C}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{4A60D27D-F2B9-48F2-BE32-FE10F48800B5}F:\programmes\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) F:\programmes\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [TCP Query User{16AF1CA4-6284-4C0F-BE9A-4CD747A646E4}F:\programmes\epic games\launcher\engine\binaries\win64\epicwebhelper.exe] => (Allow) F:\programmes\epic games\launcher\engine\binaries\win64\epicwebhelper.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{1C5F7B24-7C93-47CF-B7B6-46131B989624}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{C40162B4-22FB-486F-B634-4AC6DA344F00}F:\programmes\gtav\gta5.exe] => (Allow) F:\programmes\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{3C8CBFD0-7B94-4E5A-B1F3-495342CE482A}F:\programmes\gtav\gta5.exe] => (Allow) F:\programmes\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{217362F8-7B1D-4EE8-AA3B-A59B9BC747FA}F:\programmes\gtav\gta5.exe] => (Allow) F:\programmes\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{F7C2D997-2870-4E72-BE0E-FA3222C545AC}F:\programmes\gtav\gta5.exe] => (Allow) F:\programmes\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{C310893A-17E7-4A11-8D1C-27FCD968D724}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{90BAFCC1-80FA-4D89-857D-3619350F1B6C}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{886AC959-40FD-40EC-9B9F-1ECBFE25BDC4}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{57564B5E-1904-47A9-A8EA-08E750A0EE19}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{DADB859F-2524-4307-B741-9352684097A2}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0A0F8865-2AB4-461E-87E9-977982D04CAC}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{81621869-0ACB-4943-BA40-0840834E1D01}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{F250DA7B-87D0-4794-881F-748A793DD7DC}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{E5A3A473-639A-4D9A-9AE8-18EDFF51B7EC}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{3A096B98-5C8D-40A2-A045-5A186FB5B03F}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0033E618-5F4C-47D0-8070-2E26E640F246}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D431DD7A-94C3-4AEC-8461-8F982066D082}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{03A60F1D-9D29-4BED-AE74-6481A0945E4E}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{8CCC19C5-F56B-454B-9BDE-3B209B1A2E0A}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [TCP Query User{153A84C0-46CD-41E2-A621-721C15FC65F3}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [UDP Query User{792AE0B2-85C7-4DAD-B733-A262BBB4B414}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [TCP Query User{9FB94E5D-6805-474F-B413-A533DC8E7C7A}C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe] => (Allow) C:\program files (x86)\asus\asus smart gesture\astpcenter\x64\asussgplusbtserver64.exe (ASUSTek Computer Inc. -> ASUSTeK Computer Inc.)
FirewallRules: [{E8446B1C-7DCB-4201-86B1-7DCA1425F3D5}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{3773DF41-5517-4352-A385-1621C3DE6F71}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{7E28958C-76F5-409B-84D9-54765BA9A47D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B0ABEC5F-DC4F-4EB4-B97C-2F3D22235A98}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{42B7BA9C-24FC-40B0-9CD9-FD4024AB7CD3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A04C1D44-6D2E-4D6A-B544-50B404C6D9E7}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{37E3452C-D614-4402-BAB5-5A129238AACE}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [UDP Query User{ED24D172-8551-430D-B2E9-981465EF746E}C:\users\serge\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\serge\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{95DB38EF-13B4-463E-AA5A-91C65AD705FD}C:\users\serge\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\serge\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{070B0551-900D-4B60-84D1-9513DEE86FB5}C:\users\serge\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\serge\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{C5474FAB-5E76-4C43-86E7-44A4A3F55E6F}C:\users\serge\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\serge\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FBB012D3-1441-48F8-B18E-90B8446535E6}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{19C8E9A6-F12B-4B9B-BA49-4E7A24514D94}] => (Allow) LPort=5357
FirewallRules: [{487ADC6A-CDED-40FA-804C-C33F881603C8}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{5957B592-4C03-4606-8832-C5C6D322E2AA}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{09EE654B-B968-4AEF-BBB1-B3A710318461}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{32E45EAF-9749-4C0D-AEEC-5A82DBCF5E8E}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{F39F0B44-E8A9-4FC7-8D0B-E673E2381352}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{12DB8E6A-9290-4745-BB05-9F350707E0E6}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{4E54ECCF-AF7E-4A88-A5A1-A53AB5A509F8}] => (Allow) C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11251\office6\wpscloudsvr.exe => Pas de fichier
FirewallRules: [{C435D55B-B9D1-4C50-BFC7-980AACC3FDEA}] => (Allow) C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11251\office6\wps.exe => Pas de fichier
FirewallRules: [{FA98C68C-8E51-4B63-ADB0-C25C25056C4A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{52815207-D64A-4CF3-9FB2-E951C2DE3FAC}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [UDP Query User{36130E34-1B30-4E49-B60A-C9712748C0A9}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [TCP Query User{99B7E8B3-9E92-48CD-B133-E7A94AF2822B}C:\programdata\wargaming.net\gamecenter\wgc.exe] => (Allow) C:\programdata\wargaming.net\gamecenter\wgc.exe (Wargaming.net Limited -> Wargaming.net)
FirewallRules: [{BBD318A1-3DE4-47F1-9826-A2E4C58D162F}] => (Allow) C:\Program Files (x86)\MyDrive Connect\TomTom MyDrive Connect.exe (TomTom International B.V. -> TomTom)
FirewallRules: [{0C3A30AB-E8BB-4518-B7FC-AB0C4F1EAD2E}] => (Allow) C:\Program Files (x86)\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{5A225ED9-FC16-40E9-8B90-03096451D53C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe => Pas de fichier
FirewallRules: [{98ED41EB-4C96-45A4-BFDE-DB1E4A192EE3}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe => Pas de fichier
FirewallRules: [{18916D22-65CC-4A6F-B0FF-5E30108DD116}] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A175027A-0D73-4BE1-A4DC-54438A12D428}] => (Block) C:\program files (x86)\microsoft\edge\application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EFEEA0DE-2AA5-41D9-A4E8-B2A5C3296905}] => (Block) C:\program files (x86)\sony\ps4 remote play\remoteplay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [{5C6646BA-F7D8-4FA6-A7C7-440DEA9F9F2A}] => (Block) C:\program files (x86)\sony\ps4 remote play\remoteplay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{DD7DE0BE-234D-4DDA-BA52-EA665614A01D}C:\program files (x86)\sony\ps4 remote play\remoteplay.exe] => (Allow) C:\program files (x86)\sony\ps4 remote play\remoteplay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [TCP Query User{593AEA00-ABC2-4DB3-93D1-91E6BC1D37D9}C:\program files (x86)\sony\ps4 remote play\remoteplay.exe] => (Allow) C:\program files (x86)\sony\ps4 remote play\remoteplay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{798D02BF-DDFE-4FE0-9D77-9D7F5AA5DCE2}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{7E81715F-69CA-405D-8E62-B36457076638}C:\program files (x86)\google\chrome\application\chrome.exe] => (Block) C:\program files (x86)\google\chrome\application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{EED8BBE0-A09C-4A96-A8C3-0444736C358C}] => (Allow) C:\Users\Serge\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{D99119B8-767B-443E-AA4D-EEB3EFB031B5}] => (Allow) C:\Users\Serge\AppData\Roaming\uTorrent\uTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [TCP Query User{A5CBD02B-9B10-44A7-8AF3-AB2FF325DE34}C:\program files\hp\hp officejet 4650 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet 4650 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [UDP Query User{5B82164E-AC05-4E21-A769-47BC8068225F}C:\program files\hp\hp officejet 4650 series\bin\hpnetworkcommunicatorcom.exe] => (Allow) C:\program files\hp\hp officejet 4650 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{BC9129EC-2504-441D-8582-0AF6024FB2D8}] => (Block) C:\program files\hp\hp officejet 4650 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{FABA7A83-9E9D-46F7-BAD9-32218D02EE95}] => (Block) C:\program files\hp\hp officejet 4650 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{3DC5DC2A-209B-49C4-B420-3005917C598D}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{86917BBF-1D16-4ABC-9E99-FF0E9E2FEC56}] => (Allow) C:\Users\Serge\AppData\Local\Kingsoft\WPS Office\11.2.0.11251\office6\promecefpluginhost.exe => Pas de fichier
FirewallRules: [{F21E2532-EC55-4E9F-B368-DD3D8E21364F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{AF727C3E-03C5-4C5B-8877-59103D395164}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{5DC5D44B-635D-4ADF-A6C1-1561117F7BF3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F214D62C-8985-4864-9E17-B13525E61B4D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8D9D5D71-D3FE-4790-AE8B-A903FDB8B753}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{685028FF-A8DF-4609-931F-4CBB0DF69099}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{0366686C-87F9-4507-B1A0-B8F9BBC2F6E4}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{0CE3FDF9-2A4C-452B-A709-506BF7AC0B75}] => (Allow) C:\Users\Serge\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{0C95D0CB-C1FF-4976-A618-109B3D2F301A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{25360C29-62B3-4C45-BF52-5ACAECA11AA4}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{72367E4A-A1ED-49EE-9998-603001EAD2E7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{2718F66C-727D-4DBC-9A61-CD373F6CE54E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{F9A608BD-FEF2-47E5-BB07-6D1B0017562F}] => (Allow) C:\Users\Serge\AppData\Local\Programs\Opera\91.0.4516.16\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{72BD87F9-4E8F-4A51-B7E5-6A3AF7211E56}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{144A4010-A853-40B4-8E79-5B380DCFF803}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\105.0.1343.42\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B81CE67-ED90-47AF-B060-0ABFFF20600E}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1BED4C0E-37DC-4FC1-9E4E-6C8FF059552C}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{0B10BC44-38B0-4486-BCA7-7A6448780DA6}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FDAC7A21-6A03-41BA-9F6A-FDCE59E7D632}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.88.3401.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{42715FA1-CFAD-48F6-8DC9-74EE4C0BA412}] => (Allow) C:\Users\Serge\AppData\Local\Programs\Opera\91.0.4516.20\opera.exe (Opera Norway AS -> Opera Software)

==================== Points de restauration =========================

20-09-2022 23:35:34 Installed Assistant de téléchargement.
21-09-2022 15:40:55 Removed Adobe Acrobat DC.
22-09-2022 16:39:49 IObit Software Updater restore point

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (09/22/2022 08:53:16 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme mbuns.exe version 4.5.14.292 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 19814

Heure de début : 01d8cead30b449bd

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : C:\Program Files\Malwarebytes\Anti-Malware\mbuns.exe

ID de rapport : c9e7d15d-a9a8-4309-b070-20844e32bf11

Nom complet du package défectueux :

ID de l'application relative à un package défectueux :

Type de blocage : Top level window is idle

Error: (09/22/2022 08:18:34 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: 1PC-ASUS-SCS)
Description: Impossible de fermer l’application ou le service « Microsoft Office SDX Helper ».

Error: (09/22/2022 08:00:31 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.

Error: (09/22/2022 04:39:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.

Details:
AddWin32ServiceFiles: Unable to back up image of service Advanced SystemCare Service 15 since QueryServiceConfig API failed

System Error:
Le fichier spécifié est introuvable.
.

Error: (09/22/2022 04:17:08 PM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhostw (18572,R,98) WebCacheLocal: La récupération/restauration de la base de données a échoué en raison d’une erreur inattendue -1018.

Error: (09/22/2022 04:17:08 PM) (Source: ESENT) (EventID: 481) (User: )
Description: taskhostw (18572,R,98) WebCacheLocal: Une tentative de lecture à partir du fichier « C:\Users\Serge\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat » à l’adresse relative 65536 (0x0000000000010000) de 65536 (0x00010000) octets a échoué après 0.000 secondes en indiquant l’erreur système 5 (0x00000005) : « Accès refusé.  ». L’opération de lecture échouera en indiquant l’erreur -1032 (0xfffffbf8). Si le problème persiste, ceci signifie que le fichier est sans doute endommagé et qu’il faut le restaurer à partir d’une version de sauvegarde antérieure.

Error: (09/22/2022 04:17:08 PM) (Source: ESENT) (EventID: 481) (User: )
Description: taskhostw (18572,R,98) WebCacheLocal: Une tentative de lecture à partir du fichier « C:\Users\Serge\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat » à l’adresse relative 0 (0x0000000000000000) de 65536 (0x00010000) octets a échoué après 0.000 secondes en indiquant l’erreur système 5 (0x00000005) : « Accès refusé.  ». L’opération de lecture échouera en indiquant l’erreur -1032 (0xfffffbf8). Si le problème persiste, ceci signifie que le fichier est sans doute endommagé et qu’il faut le restaurer à partir d’une version de sauvegarde antérieure.

Error: (09/22/2022 04:17:08 PM) (Source: ESENT) (EventID: 481) (User: )
Description: taskhostw (18572,R,98) WebCacheLocal: Une tentative de lecture à partir du fichier « C:\Users\Serge\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat » à l’adresse relative 32768 (0x0000000000008000) de 32768 (0x00008000) octets a échoué après 0.000 secondes en indiquant l’erreur système 5 (0x00000005) : « Accès refusé.  ». L’opération de lecture échouera en indiquant l’erreur -1032 (0xfffffbf8). Si le problème persiste, ceci signifie que le fichier est sans doute endommagé et qu’il faut le restaurer à partir d’une version de sauvegarde antérieure.


Erreurs système:
=============
Error: (09/22/2022 09:35:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 09:23:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 09:20:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 09:02:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 08:50:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 08:47:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 08:35:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.

Error: (09/22/2022 08:32:00 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.


Windows Defender:
================
Date: 2022-09-22 21:14:48
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/Keygen&threatid=2147593794&enterprise=0
Nom : HackTool:Win32/Keygen
ID : 2147593794
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\Users\Serge\AppData\Roaming\uTorrent\msimg32.dll
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : 1PC-ASUS-SCS\Serge
Nom du processus : C:\Users\Serge\AppData\Roaming\ZHP\ZHPSuite.exe
Version de la veille de sécurité : AV: 1.375.815.0, AS: 1.375.815.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19600.3, NIS: 0.0.0.0

Date: 2022-09-22 20:37:15
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKms&threatid=2147711767&enterprise=0
Nom : HackTool:MSIL/AutoKms
ID : 2147711767
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip; file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000000); file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000003); file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000004)
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : 1PC-ASUS-SCS\Serge
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.375.815.0, AS: 1.375.815.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19600.3, NIS: 0.0.0.0

Date: 2022-09-22 20:37:15
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip; containerfile:_C:\Users\Serge\Desktop\O-fc-e MS-21v- 6-0-14 464.rar; file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000006); file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000360); file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000361); file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe->(inno#000366); file:_C:\Users\Serge\Desktop\O-fc-e MS-21v- 6-0-14 464.rar->O-f-c- e - 21 v- 6-
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : 1PC-ASUS-SCS\Serge
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.375.815.0, AS: 1.375.815.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19600.3, NIS: 0.0.0.0

Date: 2022-09-22 20:27:18
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS!rfn&threatid=2147692752&enterprise=0
Nom : HackTool:Win32/AutoKMS!rfn
ID : 2147692752
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip; file:_C:\Users\Serge\Desktop\KMSpico 10.1.5 Final [Windows And Office Activator].zip->KMSpico 10.1.5 Final [Windows And Office Activator]/KMSpico 10.1.5 Install/KMSpico_setup.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : 1PC-ASUS-SCS\Serge
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.375.815.0, AS: 1.375.815.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19600.3, NIS: 0.0.0.0

Date: 2022-09-22 20:27:17
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:Win32/AutoKMS&threatid=2147685180&enterprise=0
Nom : HackTool:Win32/AutoKMS
ID : 2147685180
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\Users\Serge\Desktop\O-fc-e MS-21v- 6-0-14 464.rar; file:_C:\Users\Serge\Desktop\O-fc-e MS-21v- 6-0-14 464.rar->O-f-c- e - 21 v- 6-0-14 4x64 .ISO.iso->\KMS_VL_ALL_AIO-44.iso->KMS_VL_ALL_AIO.cmd; file:_C:\Users\Serge\Desktop\O-fc-e MS-21v- 6-0-14 464.rar->O-f-c- e - 21 v- 6-0-14 4x64 .ISO.iso->\OInstallLite.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Utilisateur
Utilisateur : 1PC-ASUS-SCS\Serge
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.375.815.0, AS: 1.375.815.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.19600.3, NIS: 0.0.0.0

CodeIntegrity:
===============
Date: 2022-09-22 20:33:19
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume8\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2022-09-22 19:58:57
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files (x86)\Google\Chrome\Application\chrome.exe) attempted to load \Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.


==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. X751LAB.603 09/04/2018
Carte mère: ASUSTeK COMPUTER INC. X751LAB
Processeur: Intel(R) Core(TM) i3-4005U CPU @ 1.70GHz
Pourcentage de mémoire utilisée: 72%
Mémoire physique - RAM - totale: 8099.45 MB
Mémoire physique - RAM - disponible: 2263.04 MB
Mémoire virtuelle totale: 20557.54 MB
Mémoire virtuelle disponible: 2482.65 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:446.29 GB) (Free:211.12 GB) (Model: CT480BX500SSD1) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (SERGE) (Fixed) (Total:500 GB) (Free:258.68 GB) (Model: TOSHIBA MQ01ABD100) NTFS
Drive e: () (Fixed) (Total:0.49 GB) (Free:0.32 GB) (Model: TOSHIBA MQ01ABD100) NTFS
Drive f: (Programmes) (Fixed) (Total:430.18 GB) (Free:175.21 GB) (Model: TOSHIBA MQ01ABD100) NTFS

\\?\Volume{b6513101-9177-4dbc-8311-a7d03c2ee48c}\ () (Fixed) (Total:0.57 GB) (Free:0.11 GB) NTFS
\\?\Volume{2ecbb5e9-7d76-4ff7-a2ea-0d473f32607a}\ () (Fixed) (Total:0.58 GB) (Free:0.08 GB) NTFS
\\?\Volume{76b774e5-c1d9-4427-913a-5fa3884d1608}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32
\\?\Volume{ebaa1509-4118-4bf8-ab03-542175c10e9f}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.23 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 7D14CB71)

Partition: GPT.

==========================================================
Disk: 1 (Size: 447.1 GB) (Disk ID: 61A68D11)

Partition: GPT.

==================== Fin de Addition.txt =======================