cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 23-06-2020
Exécuté par ameno (24-06-2020 08:43:38)
Exécuté depuis C:\Users\ameno\Desktop
Windows 10 Home Version 1903 18362.900 (X64) (2019-08-14 02:56:26)
Mode d'amorçage: Normal
==========================================================


==================== Comptes: =============================

Administrateur (S-1-5-21-3304223374-1357417736-805463502-500 - Administrator - Disabled)
ameno (S-1-5-21-3304223374-1357417736-805463502-1001 - Administrator - Enabled) => C:\Users\ameno
DefaultAccount (S-1-5-21-3304223374-1357417736-805463502-503 - Limited - Disabled)
Invité (S-1-5-21-3304223374-1357417736-805463502-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-3304223374-1357417736-805463502-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

. . (HKLM\...\{5F4E8D94-3947-4019-9239-D2541C9A35F2}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{7A5E4942-A527-42E6-A5FC-95109B756CA8}) (Version: 3.5.1.7 - Intel) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 20.009.20067 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.387 - Adobe)
AnalogX Vocal Remover (HKLM-x32\...\AnalogX Vocal Remover) (Version: - AnalogX)
Anno 2070 Complete Edition version 2.0.7780.0 (HKLM-x32\...\Anno 2070 Complete Edition_is1) (Version: 2.0.7780.0 - UBISoft)
Apple Application Support (32 bits) (HKLM-x32\...\{FD52A2FF-4D16-49C4-A2CD-DAC752C18BA2}) (Version: 8.0 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{9B061D60-4E2C-4987-BFFD-423E3D477660}) (Version: 8.0 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Assassin's Creed Unity (HKLM-x32\...\Uplay Install 720) (Version: - Ubisoft)
ASUS PTP Driver (HKLM-x32\...\{7618E419-9124-4E6C-9AF4-487A6DDEC1C5}) (Version: 11.0.14 - ASUS)
Audacity 2.3.1 (HKLM-x32\...\Audacity_is1) (Version: 2.3.1 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Belgium e-ID middleware 4.3.2 (build 3551) (HKLM\...\{DB942AEA-93D6-4FE4-8862-180D35A73551}) (Version: 4.3.3551 - Belgian Government)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CamStudio 2.7.4 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.4 - CamStudio Open Source)
CamStudio Lossless Codec v1.5 (HKLM-x32\...\camcodec) (Version: 1.5 - CamStudio)
Camtasia 9 (HKLM\...\{33E08945-3D7B-40BB-B34F-1A3C8B9650DE}) (Version: 9.1.2.3011 - TechSmith Corporation) Hidden
Camtasia 9 (HKLM-x32\...\{34ab05ac-3089-417f-828e-c2da3d5b4e09}) (Version: 9.1.2.3011 - TechSmith Corporation)
Citra (HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\{1cd8634d-cb4a-429d-a3ff-c888fb6d1966}) (Version: 1.0.0 - Citra Team)
Crash Bandicoot N. Sane Trilogy (HKLM-x32\...\Crash Bandicoot N. Sane Trilogy_is1) (Version: - )
Deluge 1.3.15 (HKLM-x32\...\Deluge) (Version: - )
Diablo III (HKLM-x32\...\Diablo III) (Version: - Blizzard Entertainment)
Dungeons 3 Evil of the Caribbean (HKLM-x32\...\Dungeons 3 Evil of the Caribbean_is1) (Version: - )
Emperor - Rise of the Middle Kingdom (HKLM-x32\...\1598055675_is1) (Version: 2.0.0.2 - GOG.com)
Emperor: Rise of the Middle Kingdom (HKLM-x32\...\{821DABD6-26F2-49E5-AE55-40A589ADBE6D}) (Version: - )
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 2.22.00 - Seiko Epson Corporation)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version: - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
Epson Software Updater (HKLM-x32\...\{B55DB65D-EF6E-4E04-89D5-B03603BF681B}) (Version: 4.4.5 - SEIKO EPSON CORPORATION)
EPSON WF-2630 Series Printer Uninstall (HKLM\...\EPSON WF-2630 Series) (Version: - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{96ED1D58-440C-4345-8FEE-C4781366C67F}) (Version: 3.1.4.0 - SEIKO EPSON Corporation)
FINAL FANTASY VII (HKLM-x32\...\{141B8BA9-BFFD-4635-AF64-078E31010EC3}_is1) (Version: 1.0 - Square Enix)
FoneLab pour Android 3.0.8 (HKLM-x32\...\{7A7ACBDD-FED6-4ec5-BD26-5549FEB5B968}_is1) (Version: 3.0.8 - Aiseesoft Studio)
FonePaw pour Android 2.6.0 (HKLM-x32\...\{10E7BD57-C5FE-484f-A3F2-A1755286C0A7}_is1) (Version: 2.6.0 - FonePaw)
From Dust (HKLM-x32\...\From Dust_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Ghost of a Tale (HKLM\...\Z2hvc3RvZmF0YWxl_is1) (Version: 1 - )
GIMP 2.10.12 (HKLM\...\GIMP-2_is1) (Version: 2.10.12 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 9.1.0.300 - Huawei Technologies Co.,Ltd)
House Flipper (HKLM-x32\...\House Flipper_is1) (Version: - )
iCloud (HKLM\...\{E3597C85-5970-4166-BE96-ED1D18CD1088}) (Version: 7.14.0.29 - Apple Inc.)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Computing Improvement Program (HKLM\...\{58FBAE3A-E602-47E6-9F32-AE25D48B378A}) (Version: 2.4.04140 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4599 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1633.3 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{ef2ad7ab-dd41-48ed-ae53-f7fe3cd903d8}) (Version: 3.5.1.7 - Intel)
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{5853172b-5520-4089-9ef4-e26c594382b3}) (Version: 19.30.0 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
McAfee WebAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 4.1.1.57 - McAfee, LLC.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 83.0.478.54 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.129.31 - )
Microsoft OneDrive (HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\OneDriveSetup.exe) (Version: 20.064.0329.0008 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Minecraft Launcher (HKLM-x32\...\{810F1419-7760-402E-8772-B4054FAA2B72}) (Version: 1.0.0.0 - Mojang)
Mises à jour NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Molotov (HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\Molotov) (Version: 4.2.1 - Molotov)
Mozilla Firefox 77.0.1 (x64 fr) (HKLM\...\Mozilla Firefox 77.0.1 (x64 fr)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0.2 - Mozilla)
MyEpson Portal (HKLM-x32\...\{3361D415-BA35-4143-B301-661991BA6219}) (Version: 1.1.2.2 - SEIKO EPSON CORPORATION) Hidden
MyEpson Portal (HKLM-x32\...\MyEpson Portal) (Version: - SEIKO EPSON Corporation)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 441.93 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.93 - NVIDIA Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{155C4F2E-7381-4B80-B258-FD0600C9C46B}) (Version: 4.15.9789 - Apache Software Foundation)
Oxygen Not Included (HKLM-x32\...\Oxygen Not Included_is1) (Version: - )
Panneau de configuration NVIDIA 441.93 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 441.93 - NVIDIA Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.1 - Power Software Ltd)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.29093 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8564 - Realtek Semiconductor Corp.)
Spotify (HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\Spotify) (Version: 1.1.33.569.gced9e0f5 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Surviving Mars (HKLM-x32\...\Surviving Mars_is1) (Version: - )
Tropico 5 (HKLM-x32\...\1436885062_is1) (Version: 2.0.0.4 - GOG.com)
Tropico 5 Complete Collection Upgrade (HKLM-x32\...\Tropico 5 Complete Collection Upgrade_is1) (Version: 2.0.0.4 - GOG.com)
Tropico 6 (HKLM-x32\...\Tropico 6_is1) (Version: - )
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.2 - VideoLAN)
vs2015_redist x86 (HKLM-x32\...\{BD46163A-0331-4A61-B65A-7B66D7C93F8E}) (Version: 1.0.0.0 - Realnetworks) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-2) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-3) (Version: 1.0.33.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-4) (Version: 1.0.33.0 - LunarG, Inc.)
War for the Overworld Heart of Gold (HKLM-x32\...\War for the Overworld Heart of Gold_is1) (Version: - )
WBFS to ISO (HKLM-x32\...\{55F0E086-2E1C-4478-B52E-DA6025A46434}_is1) (Version: - wbfstoiso.com)
WinRAR 5.50 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
Xilisoft YouTube en MP3 Convertisseur (HKLM-x32\...\Xilisoft YouTube en MP3 Convertisseur) (Version: 5.6.7.20170216 - Xilisoft)
Zoo Tycoon Complete Collection version 1 (HKLM-x32\...\9A737FD1-4029-4812-80EE-AF932171146B_is1) (Version: 1 - Abandonware-France)
Zoo Tycoon: Ultimate Animal Collection [FULL REMOVAL] (HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\{4A0FF863-48CC-4955-A063-1D2B26A1B4A2}_is1) (Version: 1.1711.52116 - Microsoft Studios)
Zoom (HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\ZoomUMX) (Version: 4.6 - Zoom Video Communications, Inc.)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_5.1.0.10_x86__h6adky7gbf63m [2020-06-03] (Gameloft SE)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-19] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa [2020-05-22] (Apple Inc.) [Startup Task]
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_4.8.1.1_x86__h6adky7gbf63m [2020-05-21] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-03] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.14.6005.0_x64__8wekyb3d8bbwe [2020-04-16] (Microsoft Studios)
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Plex -> C:\Program Files\WindowsApps\CAF9E577.Plex_3.2.20.0_x64__aam28m9va5cke [2017-12-07] (Plex)
Zoo Tycoon: Ultimate Animal Collection -> C:\Users\ameno\UniversalApps\Zoo Tycoon Ultimate Animal Collection [2018-04-27] (Microsoft Studios)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-10-01] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2018-02-28] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2018-02-28] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_2cd0802aadb1c6f8\igfxDTCM.dll [2017-03-14] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2020-01-02] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-12-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2018-02-28] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)

HKLM\...\Drivers32: [VIDC.CSCD] => C:\Windows\SysWOW64\camcodec.dll [49664 2010-10-24] (CamStudio Group) [Fichier non signé]

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\ameno\AppData\Local\Microsoft\Edge\User Data\Default\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default

==================== Modules chargés (Avec liste blanche) =============

2018-01-02 11:40 - 2017-07-20 02:00 - 000096768 _____ (Seiko Epson Corporation) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\EbpD4Fax.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000278528 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\FULEPP.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000339968 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\FUSVCCLT.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000065536 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\FUUSBHLP.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000069632 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDEVCOM.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000135168 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUDRVUTL.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000339968 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUPRBDEV.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000286720 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\FUSNMPUT.dll
2018-01-02 11:40 - 2017-07-19 18:00 - 000086016 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUCMNMSG.dll
2018-01-02 11:40 - 2017-07-19 18:00 - 000245760 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUFAXRCV.dll
2018-01-02 11:40 - 2017-07-19 18:00 - 000022016 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FULEPPRes.dll
2018-01-02 11:40 - 2017-07-19 18:00 - 000077824 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Resource\FUPRBDEVRes.dll
2016-09-14 15:31 - 2016-09-14 15:31 - 000500736 _____ (SEIKO EPSON CORPORATION) [Fichier non signé] C:\WINDOWS\System32\enppmon.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000786432 _____ (SEIKO EPSON) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENCM.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000278528 _____ (SEIKO EPSON) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENNW.dll
2018-01-02 11:40 - 2017-07-20 02:00 - 000299008 _____ (SEIKO EPSON) [Fichier non signé] C:\Program Files (x86)\Epson Software\FAX Utility\Library\ENUTIL.dll

==================== Alternate Data Streams (Avec liste blanche) ========

(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)

AlternateDataStreams: C:\Users\ameno\Desktop\ordodo.jpeg:3or4kl4x13tuuug3Byamue2s4b [93]
AlternateDataStreams: C:\Users\ameno\Desktop\ordodo.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\ameno\Desktop\ordodo2.jpeg:3or4kl4x13tuuug3Byamue2s4b [93]
AlternateDataStreams: C:\Users\ameno\Desktop\ordodo2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer sites de confiance/sensibles ==========

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

2018-01-07 21:21 - 2019-09-15 10:38 - 000000444 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-3304223374-1357417736-805463502-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\ameno\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\hebus_1366x768_1431790002_8665.jpg
DNS Servers: 192.168.1.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKU\S-1-5-21-3304223374-1357417736-805463502-1001\...\StartupApproved\Run: => "Steam"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{434C3F99-DFD3-4FC7-A54C-66C7D5D70636}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{DCBCE500-7EF3-4910-AC56-24647719A2E1}C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe] => (Allow) C:\program files (x86)\world of warcraft\_retail_\utils\wowvoiceproxy.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{8E289077-CFD7-487E-8848-C3779DB0A830}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{A347EF08-FA61-443E-8AA5-6D390AB6F96A}] => (Allow) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{89A00C69-E6E5-4548-9849-F406228BBE0E}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{2FA89889-C13F-4244-8478-8FB67977731D}] => (Block) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe (Intel(R) Software Development Products -> )
FirewallRules: [{A51CF431-F8F3-44FE-88E3-D81608363F02}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B81F6311-A544-4C5B-A91C-D1B91F5EFDFD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6C685D47-6594-4CC1-892B-42735B9E517B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Megaquarium\Megaquarium.exe (Twice Circled Limited -> )
FirewallRules: [{B5BDDAE9-4453-44A9-9196-3657B1C52F71}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Megaquarium\Megaquarium.exe (Twice Circled Limited -> )
FirewallRules: [{ABB7E484-A83F-48F4-9F41-0F324C693AFF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé]
FirewallRules: [{46092EC6-3F31-4C6B-BE01-7891ED00F623}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Business Tour\BusinessTour.exe () [Fichier non signé]
FirewallRules: [UDP Query User{1B53D0E9-809E-4720-8E32-3F77E64C3215}C:\games\crash bandicoot n. sane trilogy\crashbandicootnsanetrilogy.exe] => (Allow) C:\games\crash bandicoot n. sane trilogy\crashbandicootnsanetrilogy.exe (Activision Publishing Inc -> ) [Fichier non signé]
FirewallRules: [TCP Query User{9282A14C-11E1-40DF-B75E-71CD85483BB2}C:\games\crash bandicoot n. sane trilogy\crashbandicootnsanetrilogy.exe] => (Allow) C:\games\crash bandicoot n. sane trilogy\crashbandicootnsanetrilogy.exe (Activision Publishing Inc -> ) [Fichier non signé]
FirewallRules: [{083FEBD3-9559-4D78-8364-A15F2D4F42F6}] => (Allow) LPort=8318
FirewallRules: [{65ABD59A-0DE4-4C5D-884A-78095EE88178}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Settlers 6 Gold\Play Settlers 6 - The Eastern Realm.exe (Blue Byte GmbH) [Fichier non signé]
FirewallRules: [{2EA85B06-8383-4517-8C32-1552148DF44B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Settlers 6 Gold\Play Settlers 6 - The Eastern Realm.exe (Blue Byte GmbH) [Fichier non signé]
FirewallRules: [{969741A6-6586-4E88-8C0C-9354709BCE7B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Settlers 6 Gold\Play Settlers 6.exe (Blue Byte GmbH) [Fichier non signé]
FirewallRules: [{C26A7F6A-56B0-4C9F-9565-9F6403CCDD99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Settlers 6 Gold\Play Settlers 6.exe (Blue Byte GmbH) [Fichier non signé]
FirewallRules: [{BCE67D98-18A4-4137-B20D-98036F9C58F2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{AE2D7977-7005-46FE-B208-30A79F9990DB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F859B6A7-CE86-4732-BB9D-2E3C54BA4944}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{37860D87-0B88-46C9-BC6F-60FE8FA3ABAE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F2F84043-66DB-4887-BF1B-B0DF59F2B32F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{027D3325-5419-476B-B684-E21329CA3A7B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{4705414A-4E25-4AB2-8BC4-27134CED00B5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{00FF76A9-12AE-47C3-967F-A4DAA0437151}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{2EBFB74A-E0CF-4CC9-95E1-D5CC5FF2EACB}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe (Ubisoft Entertainment Sweden AB -> Ubisoft)
FirewallRules: [{4402829F-FFF2-4F22-B7ED-4BDE2086BA45}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe (Blue Byte GmbH -> Blue Byte GmbH)
FirewallRules: [{43520A30-DFFE-4FF9-AE8E-3E7F3F4320D2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Settlers 7 Gold\Data\Base\_Dbg\Bin\Release\Settlers7R.exe (Blue Byte GmbH -> Blue Byte GmbH)
FirewallRules: [{3DE610D6-D630-4B89-AE9F-FB03B7867BE4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B452662A-5D47-4C29-821E-FBF1275FA753}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E38E8C5C-047F-4A7F-A8D6-FE28360FF936}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{644DE81C-7CAD-4AD3-951D-4FA2426923F2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{AEEB9FDA-6427-4AD3-8DC4-5EA5887BB12A}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé]
FirewallRules: [TCP Query User{63F992EA-D980-4CC9-A804-4F707BB7DA99}C:\program files (x86)\deluge\deluge.exe] => (Allow) C:\program files (x86)\deluge\deluge.exe (Deluge Team) [Fichier non signé]
FirewallRules: [{F6D7FD0E-8EDF-4683-9229-C1662DF7D996}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [TCP Query User{804EAABE-CCAE-4617-8E22-43D50FD2C5DE}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{FC02B991-FE5E-4AEB-B55F-0FBF417BBB02}C:\program files (x86)\diablo iii\x64\diablo iii64.exe] => (Allow) C:\program files (x86)\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{EAAAC2FA-A000-4E96-BB65-67EF29EBB32A}C:\program files (x86)\war for the overworld heart of gold\wftogame.exe] => (Allow) C:\program files (x86)\war for the overworld heart of gold\wftogame.exe () [Fichier non signé]
FirewallRules: [UDP Query User{9098E9C9-719B-4600-B003-B8690EDCF09C}C:\program files (x86)\war for the overworld heart of gold\wftogame.exe] => (Allow) C:\program files (x86)\war for the overworld heart of gold\wftogame.exe () [Fichier non signé]
FirewallRules: [{C5D302E6-BA0A-4380-BC1E-61CCA6FDE845}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wildlife Park 3\WLP3-Steam.exe () [Fichier non signé]
FirewallRules: [{A9172E3C-6E1B-469E-8E0F-BE0DCE291F86}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Wildlife Park 3\WLP3-Steam.exe () [Fichier non signé]
FirewallRules: [{7D1FDC52-28D1-4917-8FA7-F029624014D7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3A148ADB-1592-486B-A736-72D8F9EFF6F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{BE7B821C-4D18-45E8-B62A-534D3E2EB33F}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{4B4F9154-3BB5-4473-ADB3-E45788D83EC7}C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe] => (Allow) C:\program files (x86)\minecraft launcher\runtime\jre-x64\bin\javaw.exe
FirewallRules: [{45AF239A-6C2A-4F9E-AE6B-E1CCC956F0B7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sword Legacy Omen\SLO.exe () [Fichier non signé]
FirewallRules: [{FE413FD8-D659-4376-BDE7-47AC04B44DBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Sword Legacy Omen\SLO.exe () [Fichier non signé]
FirewallRules: [{CC76D20A-1B1B-4548-88A0-9A79F20F9DDD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{584F1BFC-E585-4E47-93FF-530D30D11B55}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9C7D5C61-3E39-4B5A-88BE-5CB6643610C3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{16335F22-2DA1-48A6-8FD9-71B41C062289}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{1D916F78-D8A7-4B8D-AC8F-3234F1CD84E5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Fichier non signé]
FirewallRules: [{91FFD414-51C2-4831-AAEB-2309D7E52686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Fichier non signé]
FirewallRules: [{054A90E3-C4B1-4EF6-B0AB-4A0193C2D035}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Raft\Raft.exe () [Fichier non signé]
FirewallRules: [{2392118B-6D27-47CD-B9DF-78EF1301D636}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Raft\Raft.exe () [Fichier non signé]
FirewallRules: [{8BDF660D-6440-415D-8460-A984F618DBD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons 3\Dungeons3.exe () [Fichier non signé]
FirewallRules: [{41FFF669-447F-4482-AB4C-8F9E8C093172}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons 3\Dungeons3.exe () [Fichier non signé]
FirewallRules: [TCP Query User{9C0BCE6C-1D80-4FA9-ACF1-3BB16B81E503}C:\program files (x86)\steam\steamapps\common\dungeons 3\dungeons3bin.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeons 3\dungeons3bin.exe () [Fichier non signé]
FirewallRules: [UDP Query User{BC29C43D-C30A-4752-97C5-BFFA636243BF}C:\program files (x86)\steam\steamapps\common\dungeons 3\dungeons3bin.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\dungeons 3\dungeons3bin.exe () [Fichier non signé]
FirewallRules: [{5537AB7A-6773-4043-A1BE-CCB6E39C8136}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Fichier non signé]
FirewallRules: [{2E2D98A5-BF63-4D11-B642-BBCB18806955}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Planet Zoo\PlanetZoo.exe (Frontier Developments) [Fichier non signé]
FirewallRules: [{33C7CA29-E75A-4DF2-B757-9A5996382A3F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons2\Dungeons2.exe () [Fichier non signé]
FirewallRules: [{088EB984-2FD1-474A-A10D-6103FAF94B1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons2\Dungeons2.exe () [Fichier non signé]
FirewallRules: [{DDE12BF1-EDBD-4DC1-9770-31B16A5BE29F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons - The Dark Lord\DungeonsTheDarkLord.exe (Realmforge Studios GmbH) [Fichier non signé]
FirewallRules: [{A5BFE0BF-4217-4635-92E6-F46533A116FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons - The Dark Lord\DungeonsTheDarkLord.exe (Realmforge Studios GmbH) [Fichier non signé]
FirewallRules: [{D1E06A12-00C6-44B4-9FE8-102439A56F4A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons\DungeonsStarter.exe (Kalypso Media -> Realmforge Studios GmbH)
FirewallRules: [{AA6E831A-61E1-46BF-A636-A067AEC4666D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dungeons\DungeonsStarter.exe (Kalypso Media -> Realmforge Studios GmbH)
FirewallRules: [TCP Query User{A9973148-4BD7-4F9D-981E-9989580D7F03}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{C723A48D-56F4-4D0F-880C-4B349FA66C9E}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{B427AD2B-F2E3-4069-A7D7-2C13FDEA1B69}] => (Allow) C:\Users\ameno\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{D83B5D4C-24DA-4493-8A04-416DB2683A9D}] => (Allow) C:\Users\ameno\AppData\Roaming\Zoom\bin\airhost.exe => Pas de fichier
FirewallRules: [{F06A5DDE-07CD-4E3A-9DF0-00C093154A38}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Builders of Egypt Prologue\BoE.exe (Epic Games, Inc.) [Fichier non signé]
FirewallRules: [{F96B32F4-FC29-4E49-8C43-5B2FCEA05BCC}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Builders of Egypt Prologue\BoE.exe (Epic Games, Inc.) [Fichier non signé]
FirewallRules: [{3E34C961-12DD-4BA2-A13B-415CA9DA99E5}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2C9C7E5D-7FA3-479D-800A-93D0E052783A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5C02C0E9-9A98-44D3-991B-F5B0A1A6C8FB}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FB774815-0ADD-4D9D-B7A2-73CD7238572E}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9E8832DB-B242-4EBA-9A24-CD2D9E13D9AA}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{FDA11B15-1BB4-4525-B719-AC07D1333296}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{37FC68C0-3A87-43CC-A7E1-226433BB0480}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{47812417-4E13-4114-ADB6-5B060D3E2183}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12107.3.48019.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5C60E271-5E70-4BFC-864D-3D3E1728E09F}] => (Allow) C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{8D7E6339-5567-4FF7-98E1-2E060AE6254C}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)

==================== Points de restauration =========================

03-06-2020 01:13:45 Point de contrôle planifié
10-06-2020 00:00:36 Windows Update
19-06-2020 23:14:26 Point de contrôle planifié
21-06-2020 22:47:12 Programme d’installation pour les modules Windows

==================== Éléments en erreur du Gestionnaire de périphériques ============


==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (06/24/2020 08:39:26 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (20152,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/24/2020 08:29:27 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme LockApp.exe version 10.0.18362.752 a cessé d'interagir avec Windows et a été fermé. Pour voir si plus d'informations sur le problème sont disponibles, vérifiez l'historique des problèmes dans le Panneau de configuration Sécurité et maintenance.

ID de processus : 1f84

Heure de début : 01d649b4da92d7b1

Heure d'arrêt : 4294967295

Chemin d'accès à l'application : C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe

ID de rapport : 8dbd1738-3635-457d-81c1-f7dfed0033ac

Nom complet du package défectueux : Microsoft.LockApp_10.0.18362.449_neutral__cw5n1h2txyewy

ID de l'application relative à un package défectueux : WindowsDefaultLockScreen

Type de blocage : Quiesce

Error: (06/24/2020 12:52:14 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17084,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/24/2020 12:40:30 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (20912,R,98) TILEREPOSITORYS-1-5-18: L’erreur -1023 (0xfffffc01) s’est produite lors de l’ouverture d’un fichier journal C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (06/23/2020 09:24:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 31344

Error: (06/23/2020 09:24:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 31344

Error: (06/23/2020 09:24:05 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (06/23/2020 09:23:50 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15719


Erreurs système:
=============
Error: (06/24/2020 01:05:02 AM) (Source: Netwtw04) (EventID: 5035) (User: )
Description: 5035 - Driver OSC Pending OID watchdog

Error: (06/21/2020 10:21:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Steam Client Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (06/21/2020 10:21:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Steam Client Service.

Error: (06/18/2020 12:59:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2NC4UIM)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/18/2020 12:59:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2NC4UIM)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/18/2020 12:59:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2NC4UIM)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/18/2020 12:59:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2NC4UIM)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.

Error: (06/18/2020 12:59:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-2NC4UIM)
Description: Le serveur {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} ne s’est pas enregistré sur DCOM avant la fin du temps imparti.


Windows Defender:
===================================
Date: 2020-06-24 08:33:32.699
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ameno\AppData\Roaming\ZHP\ZHPSuite.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-2NC4UIM\ameno
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.68.0, AS: 1.319.68.0, NIS: 1.319.68.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 08:33:31.434
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ameno\AppData\Roaming\ZHP\ZHPSuite.exe; file:_C:\Users\ameno\Desktop\ZHPSuite.lnk
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-2NC4UIM\ameno
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.68.0, AS: 1.319.68.0, NIS: 1.319.68.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 08:32:44.798
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ameno\AppData\Roaming\ZHP\ZHPSuite.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-2NC4UIM\ameno
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.68.0, AS: 1.319.68.0, NIS: 1.319.68.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 08:32:35.740
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ameno\AppData\Roaming\ZHP\ZHPSuite.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : DESKTOP-2NC4UIM\ameno
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.68.0, AS: 1.319.68.0, NIS: 1.319.68.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2

Date: 2020-06-24 00:45:37.582
Description:
Antivirus Windows Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Azden.B!cl&threatid=2147723291&enterprise=0
Nom : Trojan:Win32/Azden.B!cl
ID : 2147723291
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\ameno\Downloads\ZHPSuite.exe; process:_pid:7468,ProcessStart:132374255305488761
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Système
Utilisateur : AUTORITE NT\Système
Nom du processus : C:\Users\ameno\Downloads\ZHPSuite.exe
Version de la veille de sécurité : AV: 1.319.68.0, AS: 1.319.68.0, NIS: 0.0.0.0
Version du moteur : AM: 1.1.17200.2, NIS: 0.0.0.0

CodeIntegrity:
===================================

Date: 2019-11-06 19:12:40.892
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.

Date: 2019-11-02 07:15:20.788
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.

Date: 2019-10-31 01:32:51.225
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\browser_broker.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll that did not meet the Microsoft signing level requirements.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. GL753VD.308 04/29/2019
Carte mère: ASUSTeK COMPUTER INC. GL753VD
Processeur: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 85%
Mémoire physique - RAM - totale: 8077.02 MB
Mémoire physique - RAM - disponible: 1152.39 MB
Mémoire virtuelle totale: 17261.48 MB
Mémoire virtuelle disponible: 7575.34 MB

==================== Lecteurs ================================

Drive c: () (Fixed) (Total:926.84 GB) (Free:54.18 GB) NTFS

\\?\Volume{9b6e1260-d298-4c95-95bb-77e1992d999d}\ () (Fixed) (Total:0.59 GB) (Free:0.08 GB) NTFS
\\?\Volume{9faf8694-30cd-4366-aaad-70ec5fcd8e02}\ () (Fixed) (Total:0.06 GB) (Free:0.03 GB) FAT

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Fin de Addition.txt =======================

Publicité


Signaler le contenu de ce document

Publicité