Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 05-01-2021
Exécuté par Philippe (05-01-2021 13:37:56)
Exécuté depuis C:\Users\Philippe\Desktop
Windows 10 Home Version 2004 19041.685 (X64) (2020-06-18 16:58:20)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-140641448-3471451293-3027832417-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-140641448-3471451293-3027832417-503 - Limited - Disabled)
Invité (S-1-5-21-140641448-3471451293-3027832417-501 - Limited - Disabled)
Philippe (S-1-5-21-140641448-3471451293-3027832417-1001 - Administrator - Enabled) => C:\Users\Philippe
WDAGUtilityAccount (S-1-5-21-140641448-3471451293-3027832417-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Digital Editions 4.5 (HKLM-x32\...\Adobe Digital Editions 4.5) (Version: 4.5.7 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.465 - Adobe)
ALFA Wireless LAN Card (HKLM-x32\...\{28DA7D8B-F9A4-4F18-8AA0-551B1E084D0D}) (Version: 1.0.0.0 - ALFA)
ANT Drivers Installer x64 (HKLM\...\{C31D139A-5A4A-44A7-9B85-7775CEA60121}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Any Video Converter 6.3.0 (HKLM-x32\...\Any Video Converter) (Version: 6.3.0 - Anvsoft)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.6 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0041 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.126 - ICEpower a/s)
AxCrypt 2.1.1573.0 (HKLM\...\{902A739B-1DAE-6E68-81B1-674E343E1CF1}) (Version: 2.1.1573.0 - AxCrypt AB) Hidden
AxCrypt 2.1.1573.0 (HKLM-x32\...\{4802bd28-932d-4070-99e2-068ea74d872d}) (Version: 2.1.1573.0 - AxCrypt AB)
BankPerfect 8.0 (HKLM-x32\...\BankPerfect) (Version: 8.0 - Fabio Chelly)
calibre (HKLM-x32\...\{A9241EC4-62FD-47A2-B1C1-C339D893D274}) (Version: 4.18.0 - Kovid Goyal)
CCleaner (HKLM\...\CCleaner) (Version: 5.75 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5931 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 112.4.321 - Dropbox, Inc.)
Dropbox 25 GB (HKLM-x32\...\{597A58EC-42D6-4940-8739-FB94491B013C}) (Version: 1.0.8.0 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
Elevated Installer (HKLM-x32\...\{BC4FF911-2F33-4A79-9D59-7E21866C8A09}) (Version: 7.0.1.0 - Garmin Ltd or its subsidiaries) Hidden
Étude pour l'amélioration du produit HP ENVY 7640 series (HKLM\...\{D1F6FFD4-EE44-4D86-92E9-88C2B26E42AF}) (Version: 34.0.62.48840 - Hewlett-Packard Co.)
Étude pour l'amélioration du produit HP ENVY Photo 6200 series (HKLM\...\{A44E3541-DAF7-49F8-81B9-779BA388B1CE}) (Version: 44.4.2678.1977 - HP Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 9.5.0.20723 - Foxit Software Inc.)
Free YouTube To MP3 Converter (HKLM-x32\...\Free YouTube To MP3 Converter_is1) (Version: 4.3.32.1030 - Digital Wave Ltd)
Galerie de photos (HKLM-x32\...\{439B34FF-F74E-4807-B5E2-4B758551DA6B}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Garmin BaseCamp (HKLM-x32\...\{25931634-b363-4840-9e62-4c52abaeffc3}) (Version: 4.7.0.0 - Garmin Ltd or its subsidiaries)
Garmin BaseCamp (HKLM-x32\...\{B6A0787C-1CD0-4999-B585-677C20139BA5}) (Version: 4.7.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{414a0118-9b7e-484e-8079-a01bc6d069f8}) (Version: 7.0.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{630919DC-A490-4AFF-B2C9-C5FA69D3D742}) (Version: 7.0.1.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.88 - Google LLC)
GoPro (HKLM\...\{11994124-739A-42BB-A6D2-3AC95355BDC6}) (Version: 0.1.2371 - GoPro, Inc.) Hidden
GoPro for Desktop (HKLM-x32\...\{701bfbd9-f576-470f-8fd0-eca3e608bd97}) (Version: 0.1.0.2371 - GoPro, Inc.)
GoPro Studio (HKLM-x32\...\{BCBF5E75-C1AD-4169-A70C-3A0BD9A7F9CF}) (Version: 5.8.2371 - GoPro, Inc.) Hidden
HP Dropbox Plugin (HKLM-x32\...\{C722A9DD-471B-4F25-9E7E-7DD112D1BC35}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{C3739212-3C21-4138-9607-C31F9EA8A514}) (Version: 43.0.0.0 - HP)
HP ENVY Photo 6200 series Aide (HKLM-x32\...\{42AD9949-096B-4D00-ADA9-E5B82327E225}) (Version: 44.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{FC93D1CC-102B-4B59-92DA-30E0DE232FF6}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{06505D9F-A3AD-4DC0-8119-8836BAD1938E}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM-x32\...\{6ECCAD1A-2BD7-489C-8D43-68B69A2AA879}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP SharePoint Plugin (HKLM-x32\...\{0758DCDE-50A2-4D6D-B025-FBB2BF342743}) (Version: 43.0.0.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Hugin (HKLM\...\{4F3E5995-7C21-4F79-816C-AA45E86B8A76}) (Version: 20.19.2 - Hugin developer team)
Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation)
Intel(R) Chipset Device Software (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.1.10602.174 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1162 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5107 - Intel Corporation)
Java 8 Update 191 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{0BE9E708-5DC0-4963-9CFD-0AA519090E79}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Light Image Resizer 4.7.7.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.7.7.0 - ObviousIdea)
Light Image Resizer 5.1.4.1 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.1.4.1 - ObviousIdea)
Light Image Resizer 6.0.0.20 (HKLM-x32\...\{4AC2BB90-D86E-4E4A-84E7-62ED7D564488}_is1) (Version: 6.0.0.20 - ObviousIdea)
Logiciel de base du périphérique HP ENVY 7640 series (HKLM\...\{2F52B343-DCDF-4B39-A793-2383CE87CAC7}) (Version: 34.0.62.48840 - Hewlett-Packard Co.)
Logiciel de base du périphérique HP ENVY Photo 6200 series (HKLM\...\{2F03A175-09AE-429E-8E16-8619390EA508}) (Version: 44.4.2678.1977 - HP Inc.)
Malwarebytes version 4.2.3.96 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.3.96 - Malwarebytes)
Microsoft Access database engine 2010 (English) (HKLM-x32\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 87.0.664.66 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.59 - )
Microsoft Office Professionnel Plus 2016 - fr-fr (HKLM\...\ProplusRetail - fr-fr) (Version: 16.0.13530.20316 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\OneDriveSetup.exe) (Version: 20.219.1029.0005 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{21764A96-6748-4B83-89E7-7A5063BF156C}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.2 - Nikon)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.13530.20218 - Microsoft Corporation) Hidden
OpenVPN 2.4.6-I602  (HKLM\...\OpenVPN) (Version: 2.4.6-I602 - OpenVPN Technologies, Inc.)
OSM generic routable new(ARM) (HKLM-x32\...\OSM generic routable new(ARM)) (Version:  - )
OSM generic routable new(KAZ) (HKLM-x32\...\OSM generic routable new(KAZ)) (Version:  - )
OSM generic routable new(KGZ) (HKLM-x32\...\OSM generic routable new(KGZ)) (Version:  - )
OSM generic routable new(RUS) (HKLM-x32\...\OSM generic routable new(RUS)) (Version:  - )
OSM generic routable new(US-GA) (HKLM-x32\...\OSM generic routable new(US-GA)) (Version:  - )
OSM generic routable new(UZB) (HKLM-x32\...\OSM generic routable new(UZB)) (Version:  - )
OSM generic routable(TJK) (HKLM-x32\...\OSM generic routable(TJK)) (Version:  - )
Package de pilotes Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Package de pilotes Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
paint.net (HKLM\...\{7ADB1B05-39DE-4888-A72D-D1F3A791D45F}) (Version: 4.2.12 - dotPDN LLC)
Panneau de configuration NVIDIA 388.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 388.57 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.2.2 - pdfforge GmbH)
Picture Control Utility 2 (HKLM\...\{D4893C47-704F-4B84-8486-9DE4974ACA6F}) (Version: 2.0.2 - Nikon)
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.2.10 - Prolific Technology INC)
PoiEdit (HKLM-x32\...\PoiEdit) (Version:  - )
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.2 - Qualcomm Atheros)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10143.21278 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.2.703.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7673 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0269 - REALTEK Semiconductor Corp.)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.5.3 - TeamViewer)
TrayStatus 4.4 (HKLM-x32\...\d6b74f60-2e9d-4c60-a8b7-b7d737c44ad4_is1) (Version: 4.4.0.0 - Binary Fortress Software)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2}) (Version: 2.58.0.0 - Microsoft Corporation)
VFW_Codec32 (HKLM-x32\...\{32223B55-ECE6-4093-971B-D176C4A4C89A}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VFW_Codec64 (HKLM\...\{C75FFC1A-4578-4D11-BC60-188BDD72A668}) (Version: 0.1.160.0 - GoPro, Inc.) Hidden
VideoPad - Logiciel de montage vidéo (HKLM-x32\...\VideoPad) (Version: 8.52 - NCH Software)
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.10.3 - Nikon)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows Movie Maker 2.6 (HKLM-x32\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.0.1 - ASUS)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

Packages:
=========
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-01-04] (Microsoft Corporation)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2021-01-04] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_122.1.778.0_x64__v10z8vjag6ke6 [2021-01-04] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-01-04] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-01-04] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.10142.0_x64__8wekyb3d8bbwe [2021-01-04] (Microsoft Studios) [MS Ad]
park4night - camping car et van -> C:\Program Files\WindowsApps\37959AppMobilEdition.park4night-campingcaretvan_2018.621.730.0_x64__gyyg5hv5ejn6c [2021-01-04] (AppMobilEdition)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\AxCrypt\AxCrypt\ShellExt.dll [2018-11-07] (AxCrypt AB -> AxCrypt AB)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2017-10-19] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2020-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\AxCrypt\AxCrypt\ShellExt.dll [2018-11-07] (AxCrypt AB -> AxCrypt AB)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll [2019-04-13] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-04-09] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\system32\CFHD.dll [1334784 2016-04-13] (CineForm Inc.) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.CFHD] => C:\Windows\SysWOW64\CFHD.dll [1119744 2016-04-13] (CineForm Inc.) [Fichier non signé]

==================== Raccourcis & WMI ========================

==================== Modules chargés (Avec liste blanche) =============

2020-06-26 14:26 - 2019-08-15 17:13 - 001265664 _____ () [Fichier non signé] C:\Program Files (x86)\TrayStatus\runtimes\win-x64\native\e_sqlite3.dll
2018-10-03 10:47 - 2018-10-03 10:47 - 000117248 _____ (pdfforge GmbH) [Fichier non signé] C:\WINDOWS\System32\pdfcmon.dll
2018-07-06 16:14 - 2012-08-09 10:07 - 000524288 _____ (Ralink Technology, Inc.) [Fichier non signé] C:\Program Files (x86)\ALFA\Common\ICSDHCP.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\S-1-5-21-140641448-3471451293-3027832417-1001 -> {2211d4a5-48d0-47f5-a7cd-81e861470f7f} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_191\bin\ssv.dll [2018-11-18] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-11-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-01-04] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-07-10 12:04 - 2019-03-28 19:32 - 000000029 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1       localhost

2016-10-12 18:21 - 2020-12-13 16:40 - 000000447 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Windows Live\Shared;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Calibre2\
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\Control Panel\Desktop\\Wallpaper -> c:\users\philippe\pictures\photo tancrez\dscn0100.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

MSCONFIG\Services: ASLDRService => 2
MSCONFIG\Services: GamesAppIntegrationService => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
HKLM\...\StartupApproved\StartupFolder: => "ALFA Wireless Utility.lnk"
HKLM\...\StartupApproved\Run: => "GoPro Tray App"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "Nikon Message Center 2"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\StartupFolder: => "Envoyer * OneNote.lnk<*>"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\Run: => "HP ENVY 7640 series (NET)"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\Run: => "GarminExpress"
HKU\S-1-5-21-140641448-3471451293-3027832417-1001\...\StartupApproved\Run: => "OPENVPN-GUI"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [{8BFE9ECE-9DE0-4FB8-B3CE-914CD1F71C00}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{1CF47564-2935-436E-864A-1FA46324B64F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{95F20B6A-E85C-405B-AF27-82A7BCDDCB26}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A0E6D97F-B276-4570-94B6-EA224F3E2A5A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [TCP Query User{31289D10-2DA8-4E46-9942-A7C93DF7BC45}C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [UDP Query User{B4E63D6E-0A96-4907-A22B-BFD0A9D6062F}C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{5448AD8A-21D8-4BE8-BAEB-0168AD42EB9F}] => (Allow) C:\Program Files (x86)\ALFA\Common\RaMediaServer.exe (Ralink) [Fichier non signé]
FirewallRules: [{F44407AE-5412-4627-8687-FF5FA72A0C91}] => (Allow) C:\Program Files (x86)\ALFA\Common\RaMediaServer.exe (Ralink) [Fichier non signé]
FirewallRules: [TCP Query User{44E471B7-C808-4879-B750-4A0D1C53FC42}C:\program files\hp\hp envy photo 6200 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy photo 6200 series\bin\hpnetworkcommunicatorcom.exe (HP Inc -> HP Inc.)
FirewallRules: [UDP Query User{FDCCB38E-1468-4BD2-B736-41570017799B}C:\program files\hp\hp envy photo 6200 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy photo 6200 series\bin\hpnetworkcommunicatorcom.exe (HP Inc -> HP Inc.)
FirewallRules: [TCP Query User{5AF5CD3F-C01D-4A75-AB00-8CB56DC408A6}C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [UDP Query User{AE8DB9AA-FA36-4D8B-9D40-A40ADA6897D2}C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe] => (Block) C:\program files\hp\hp envy 7640 series\bin\hpnetworkcommunicatorcom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{DF6AFAA7-85F2-4D8C-A41F-CD0332E5577B}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.) [Fichier non signé]
FirewallRules: [{842F2240-7CAD-473A-92E9-A4D4A4C0A9E4}] => (Allow) LPort=1542
FirewallRules: [{BC8F1A1F-CAF1-4A13-B266-8A6836F9B059}] => (Allow) LPort=1542
FirewallRules: [{858E1E11-6EE9-4CA9-8E7E-2E787A59B18B}] => (Allow) LPort=53
FirewallRules: [{D1B795A7-D783-4C5B-AC0C-8F34D503DE39}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{D6E31756-F64A-4AE6-B348-B775E98C6750}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{374AD520-C7C6-41F2-B54F-843EB69FFAE4}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{244DE07E-A44D-4F5E-A395-51EB44DF0585}] => (Allow) LPort=53
FirewallRules: [{DB769C8D-E443-45B1-81B3-C1C7F0412784}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{462A5065-C94A-44A5-AEF2-E9C13C2C2A89}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{B346210D-4C51-49FD-A0C0-9FCA057CBAC8}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{5DC189DB-9365-4601-8572-17C0F489E8AC}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{6B9342E2-B8EB-40F9-BCEC-2F6EC71BA654}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{ED57B056-81DC-4F9E-86B2-5C2AD0696E31}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [TCP Query User{73029A51-1BAE-4BFA-9A19-51E8FABA394F}C:\program files\gopro\gopro desktop app\gopromsgbus.exe] => (Block) C:\program files\gopro\gopro desktop app\gopromsgbus.exe (GoPro, Inc. -> )
FirewallRules: [UDP Query User{36848978-B620-4BC0-AB94-0097D0C75F65}C:\program files\gopro\gopro desktop app\gopromsgbus.exe] => (Block) C:\program files\gopro\gopro desktop app\gopromsgbus.exe (GoPro, Inc. -> )
FirewallRules: [{8A88475F-E970-4539-8BC8-F2E7FCF3128C}] => (Allow) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\DeviceSetup.exe (HP Inc -> HP Inc.)
FirewallRules: [{2693E833-4790-40F0-9339-C98B4D3650C9}] => (Allow) LPort=5357
FirewallRules: [{93E3471B-5FAE-4FB7-B562-C6B6025B306C}] => (Allow) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc -> HP Inc.)
FirewallRules: [{FFAED495-BAC4-43FC-BB0B-44CC4F18AEA3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{E180C46E-ED66-4A3A-90C4-9FD8E5C73A2C}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E512E02D-B826-47FA-83CD-027BDC01B01D}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{A1EE3301-AFDB-40DB-9580-534046CA47F1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{7FEE9C64-AB65-470C-8289-1B30244B46E3}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1DE340D7-C26B-49A7-85E9-DC926A799388}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{E8502BFC-5506-4F8B-AF6B-B0BC0967D0CE}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

==================== Points de restauration =========================

21-12-2020 13:21:35 ZHPcleaner
22-12-2020 18:31:59 ZHPcleaner
26-12-2020 11:32:10 Garmin Express
29-12-2020 07:49:47 ZHPcleaner
31-12-2020 12:22:15 ZHPcleaner
04-01-2021 17:07:35 Sauvegarde avant restauration 1 semaine en avant
04-01-2021 17:12:10 Opération de restauration

==================== Éléments en erreur du Gestionnaire de périphériques ============

Name: ASUS Wireless Radio Control
Description: ASUS Wireless Radio Control
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: ASUS
Service: HIDSwitch
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (01/05/2021 01:35:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 10.0.19041.662, horodatage : 0xbbe81701
Nom du module défaillant : ICEsoundAPO64.dll, version : 1.0.0.18, horodatage : 0x564db767
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000003b262
ID du processus défaillant : 0x2fd0
Heure de début de l’application défaillante : 0x01d6e35e754b3133
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\WINDOWS\system32\ICEsoundAPO64.dll
ID de rapport : 0c666177-a8fe-49b7-a299-8ed37174dc59
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (01/05/2021 09:06:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 10.0.19041.662, horodatage : 0xbbe81701
Nom du module défaillant : ICEsoundAPO64.dll, version : 1.0.0.18, horodatage : 0x564db767
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000003af1c
ID du processus défaillant : 0x1c94
Heure de début de l’application défaillante : 0x01d6e3246e530710
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\WINDOWS\system32\ICEsoundAPO64.dll
ID de rapport : 10b7edbd-fa83-4492-bc9a-dc37804c61a7
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (01/05/2021 05:46:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 10.0.19041.662, horodatage : 0xbbe81701
Nom du module défaillant : ICEsoundAPO64.dll, version : 1.0.0.18, horodatage : 0x564db767
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000003b262
ID du processus défaillant : 0x1de0
Heure de début de l’application défaillante : 0x01d6e2f1318eb90b
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\WINDOWS\system32\ICEsoundAPO64.dll
ID de rapport : 4608a11e-ef39-47df-bcd3-6288098210c4
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (01/05/2021 05:46:33 AM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10602.174) TYPE: ERROR

DPTF Build Version:  8.1.10602.174
DPTF Build Date:  Jul 23 2015 11:24:10
Source File:  ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function:  DptfEvent
Message:  Received unexpected event
Framework Event:  DptfResume [3]

Error: (01/04/2021 10:57:01 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel(R) Dynamic Platform and Thermal Framework : ESIF(8.1.10602.174) TYPE: ERROR

DPTF Build Version:  8.1.10602.174
DPTF Build Date:  Jul 23 2015 11:24:10
Source File:  ..\..\..\Sources\Manager\EsifApplicationInterface.cpp @ line 737
Executing Function:  DptfEvent
Message:  Received unexpected event
Framework Event:  DptfResume [3]

Error: (01/04/2021 05:48:16 PM) (Source: MsiInstaller) (EventID: 11704) (User: AUTORITE NT)
Description: Produit : Office 16 Click-to-Run Extensibility Component -- Erreur 1704. Une installation de ASUS Smart Gesture est actuellement interrompue. Vous devez annuler les modifications apportées par cette installation pour continuer. Voulez-vous annuler les modifications ?

Error: (01/04/2021 05:30:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AUDIODG.EXE, version : 10.0.19041.662, horodatage : 0xbbe81701
Nom du module défaillant : ICEsoundAPO64.dll, version : 1.0.0.18, horodatage : 0x564db767
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000003af1c
ID du processus défaillant : 0x1dfc
Heure de début de l’application défaillante : 0x01d6e2b5632627f9
Chemin d’accès de l’application défaillante : C:\WINDOWS\system32\AUDIODG.EXE
Chemin d’accès du module défaillant: C:\WINDOWS\system32\ICEsoundAPO64.dll
ID de rapport : 362f0cb6-eb15-4015-afd1-67faff8d9771
Nom complet du package défaillant : 
ID de l’application relative au package défaillant :

Error: (01/04/2021 05:28:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante SecHealthUI.exe, version : 10.0.19041.662, horodatage : 0x7e7ca492
Nom du module défaillant : SecHealthUIDataModel.dll, version : 10.0.19041.662, horodatage : 0x7ddc7244
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000041844
ID du processus défaillant : 0x2558
Heure de début de l’application défaillante : 0x01d6e2b69fbf34e2
Chemin d’accès de l’application défaillante : C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
Chemin d’accès du module défaillant: C:\WINDOWS\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUIDataModel.dll
ID de rapport : 99dbbf00-edac-40e4-a465-9198cfe28a0c
Nom complet du package défaillant : Microsoft.Windows.SecHealthUI_10.0.19041.423_neutral__cw5n1h2txyewy
ID de l’application relative au package défaillant : SecHealthUI


Erreurs système:
=============
Error: (01/04/2021 05:19:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/04/2021 05:19:13 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L’arrêt système précédant à 18:08:43 le ‎22/‎12/‎2020 n’était pas prévu.

Error: (01/04/2021 08:15:08 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/04/2021 07:25:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/02/2021 02:43:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/02/2021 11:57:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/02/2021 08:38:17 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (01/02/2021 07:32:16 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Realtek DHCP Service s’est terminé de façon inattendue pour la 1ème fois.


Windows Defender:
===================================
Date: 2021-01-05 06:12:35.3430000Z
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {4E3AE66D-C8F1-4E52-9D53-26D96140B43A}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-01-04 17:35:56.7970000Z
Description: 
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {0F059F8B-7267-4427-B7D1-FF5FC3B3794D}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-01-04 17:28:19.5990000Z
Description: 
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS.I!MTB&threatid=2147743522&enterprise=0
Nom : HackTool:MSIL/AutoKMS.I!MTB
ID : 2147743522
Gravité : Élevée
Catégorie : Outil
Chemin : containerfile:_C:\ProgramData\KMSAutoS\bin.dat; file:_C:\ProgramData\KMSAutoS\bin.dat->(7zSfx)->bin/TunMirror.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-EEUN360\Philippe
Nom du processus : C:\ProgramData\KMSAutoS\bin.dat
Version de la veille de sécurité : AV: 1.329.1628.0, AS: 1.329.1628.0, NIS: 1.329.1628.0
Version du moteur : AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-04 17:28:18.2160000Z
Description: 
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS.I!MTB&threatid=2147743522&enterprise=0
Nom : HackTool:MSIL/AutoKMS.I!MTB
ID : 2147743522
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\ProgramData\KMSAutoS\bin\TunMirror.exe; file:_C:\ProgramData\KMSAutoS\bin\TunMirror2.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-EEUN360\Philippe
Nom du processus : C:\ProgramData\KMSAutoS\bin.dat
Version de la veille de sécurité : AV: 1.329.1628.0, AS: 1.329.1628.0, NIS: 1.329.1628.0
Version du moteur : AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-04 17:28:17.6720000Z
Description: 
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=HackTool:MSIL/AutoKMS.I!MTB&threatid=2147743522&enterprise=0
Nom : HackTool:MSIL/AutoKMS.I!MTB
ID : 2147743522
Gravité : Élevée
Catégorie : Outil
Chemin : file:_C:\ProgramData\KMSAutoS\bin\TunMirror.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-EEUN360\Philippe
Nom du processus : C:\ProgramData\KMSAutoS\bin.dat
Version de la veille de sécurité : AV: 1.329.1628.0, AS: 1.329.1628.0, NIS: 1.329.1628.0
Version du moteur : AM: 1.1.17700.4, NIS: 1.1.17700.4

Date: 2021-01-04 17:19:19.3950000Z
Description: 
Antivirus Microsoft Defender a rencontré une erreur lors du chargement de la veille de sécurité et va tenter de rétablir une version approprié.
Veille de sécurité tentée : Actuelle
Code d’erreur : 0x80070003
Description de l’erreur : Le chemin d’accès spécifié est introuvable. 
Version de la veille de sécurité : 0.0.0.0;0.0.0.0
Version du moteur : 0.0.0.0

==================== Infos Mémoire =========================== 

BIOS: American Megatrends Inc. X751LJ.706 12/07/2015
Carte mère: ASUSTeK COMPUTER INC. X751LJ
Processeur: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz
Pourcentage de mémoire utilisée: 46%
Mémoire physique - RAM - totale: 8062.7 MB
Mémoire physique - RAM - disponible: 4347.52 MB
Mémoire virtuelle totale: 23062.7 MB
Mémoire virtuelle disponible: 18437.35 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:371.8 GB) (Free:76.87 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive d: (DATA) (Fixed) (Total:74.52 GB) (Free:72.03 GB) NTFS

\\?\Volume{81ee7c30-fe9e-4005-90f2-3a6f7ae55885}\ () (Fixed) (Total:0.54 GB) (Free:0.05 GB) NTFS
\\?\Volume{f79bf067-4cee-4be2-3bc0-fc2a2336b495}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 447.1 GB) (Disk ID: 24AAFF05)

Partition: GPT.

==================== Fin de Addition.txt =======================