Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 08-07-2020 01
Exécuté par Clevo (17-07-2020 12:01:49)
Exécuté depuis C:\Users\Clevo\Desktop
Windows 10 Home Version 2004 19041.388 (X64) (2020-06-26 12:46:10)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-390458480-2662358936-1068069586-500 - Administrator - Disabled)
Clevo (S-1-5-21-390458480-2662358936-1068069586-1000 - Administrator - Enabled) => C:\Users\Clevo
DefaultAccount (S-1-5-21-390458480-2662358936-1068069586-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-390458480-2662358936-1068069586-1003 - Limited - Enabled)
Invité (S-1-5-21-390458480-2662358936-1068069586-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-390458480-2662358936-1068069586-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
. . (HKLM\...\{5F4E8D94-3947-4019-9239-D2541C9A35F2}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{7A5E4942-A527-42E6-A5FC-95109B756CA8}) (Version: 3.5.1.7 - Intel) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{BE930E38-7BB3-45B6-85B2-5251F374F844}) (Version: 6.2.2 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.113 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.403 - Adobe)
Airplane Mode Hid Installer (HKLM-x32\...\{5E5B067F-52A4-447E-A3F1-D6DD10565E73}) (Version: 2.0.0.6 - ) Hidden
Airplane Mode Hid Installer (HKLM-x32\...\InstallShield_{5E5B067F-52A4-447E-A3F1-D6DD10565E73}) (Version: 2.0.0.6 - )
Analyseur et SDK MSXML 4.0 SP2 (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Black Mesa (HKLM-x32\...\{85813319-0556-40F4-8C1A-EAF8030E46FD}_is1) (Version: 1.1.0.0 - Crowbar Collective)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.00 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM-x32\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Cuphead (HKLM-x32\...\1963513391_is1) (Version: 20170929 - GOG.com)
Discord (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 425.31 - NVIDIA Corporation) Hidden
DSF-KitSetup (HKLM-x32\...\{BFBDD199-81A2-4BFA-9581-D2EA1716B546}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Enregistrement utilisateur de Canon MG3500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3500 series) (Version: - Canon Inc.)
Epic Games Launcher (HKLM-x32\...\{FA10E700-F142-40B6-BB21-B93C55E0EA24}) (Version: 1.1.267.0 - Epic Games, Inc.)
F1 2013 Update 6 (HKLM-x32\...\RjEyMDEz_is1) (Version: 1 - )
Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 9.4.9.5 - Sentelic)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\{5454083B-1308-4485-BF17-111000028701}) (Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Guitar Hero III (HKLM-x32\...\{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}) (Version: 1.3 - Activision)
Guitar Hero World Tour (HKLM-x32\...\{A126E617-63F0-4E57-BFA4-7190F5845C39}) (Version: 1.0 - Aspyr)
Guitar Hero: Aerosmith (HKLM-x32\...\{46F42615-BA31-45A0-BE10-2D2119749E95}) (Version: 1.0 - Aspyr)
Halo The Master Chief Collection MULTi12 - ElAmigos version 04.03.2020 (HKLM-x32\...\{6C8C2A62-BFB3-4F0E-BF00-090DD35A8E78}_is1) (Version: 04.03.2020 - Microsoft)
Hotkey 8.0153 (HKLM-x32\...\{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0153 - NoteBook) Hidden
Hotkey 8.0153 (HKLM-x32\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0153 - NoteBook)
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.4.0.2 - Insyde Corporation)
Intel(R) Computing Improvement Program (HKLM\...\{2C895850-899F-4E06-ADB6-28A654FFCF9D}) (Version: 2.2.04036 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.38.1036 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5058 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000070-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.70.0 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 17.1.1512.771) (HKLM\...\{302600C1-6BDF-4FD1-1501-148929CC1385}) (Version: 17.1.1501.0514 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{ef2ad7ab-dd41-48ed-ae53-f7fe3cd903d8}) (Version: 3.5.1.7 - Intel)
iTunes (HKLM\...\{C5B0926E-99B2-46A8-864F-ECDD2E9C5686}) (Version: 12.9.4.102 - Apple Inc.)
Just Cause 2 MULTi7 - ElAmigos version 1.0.0.2 (HKLM-x32\...\{13D541CF-53C3-452D-95AC-0A77731A70F0}_is1) (Version: 1.0.0.2 - Avalanche Studios)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{a914536c-bd41-479c-96aa-dee4a9639c22}) (Version: 21.10.1 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (ru-RU) (HKLM-x32\...\{9419B7EA-6A4B-4A57-8E2A-3BDD4676118F}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft)
Mises à jour NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Molotov (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\Molotov) (Version: 4.2.3 - Molotov)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (HKLM\...\{CE47BA54-78AC-409F-9151-BDF5BE15A804}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.18.67 (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.18.67 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.74.41754 - Electronic Arts, Inc.)
Package de pilotes Windows - Insyde (AirplaneModeHid) HIDClass (07/01/2013 1.3.0.0) (HKLM\...\E38E8D276444640BFCE21B5A73FD63C479B76259) (Version: 07/01/2013 1.3.0.0 - Insyde)
Panneau de configuration NVIDIA 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 425.31 - NVIDIA Corporation) Hidden
PC Building Simulator Overclockers UK Workshop (HKLM-x32\...\PC Building Simulator Overclockers UK Workshop_is1) (Version: - )
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.17134.21306 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0221 - REALTEK Semiconductor Corp.)
Revo Uninstaller Pro 4.0.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.1 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Shadow 5.0.544 (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\34af0e20-e907-597b-a5a8-fec54fe4de95) (Version: 5.0.544 - Blade)
Shadow Beta 5.0.545 (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\f3568a48-2dbf-5949-9055-99d9148dfd32) (Version: 5.0.545 - Blade)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.106 - Skype Technologies S.A.)
Sleeping Dogs - Definitive Edition (HKLM-x32\...\Sleeping Dogs - Definitive Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
SlimDX Redistributable (June 2010) (HKLM-x32\...\{354D00E0-C7C9-4BC1-BC12-08C4977AA827}) (Version: 2.0.10.43 - SlimDX Group)
Sonic Mania (HKLM-x32\...\{B01CBC6F-72DE-4658-95AD-2135F00A8695}_is1) (Version: - SEGA)
Sound Blaster EVO Zx/ZxR Extras (HKLM-x32\...\{D55BF3B9-AE2D-45BB-9E3D-2426EE92ED08}) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Street Fighter 30th Anniversary Collection (HKLM\...\SKIDROW - Street Fighter 30th Anniversary Collection) (Version: - SKIDROW)
System Requirements Lab Detection (HKLM-x32\...\{B505E7D6-E532-4290-ADF7-534011D743CE}) (Version: 6.1.6.0 - Husdawg, LLC)
Team Sonic Racing (HKLM-x32\...\Team Sonic Racing_is1) (Version: - )
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 23.0 - Ubisoft)
UsbDk Runtime Libraries (HKLM\...\{446D7CEA-0B07-44FF-8981-37985CA96C41}) (Version: - )
VALORANT (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.1 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
ZedTV version 4.2.8 (HKLM-x32\...\{7B4E06B9-2FA4-4F3E-85C5-1DCF1BA4B999}_is1) (Version: 4.2.8 - zedsoft)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-06] (Canon Inc.)
Cube Genius -> C:\Program Files\WindowsApps\11017RJStudios.CubeGenius_1.1.0.21_neutral__hdz5xv59cgzat [2018-08-29] (RJ Studios)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-22] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Studios) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
myCANAL -> C:\Program Files\WindowsApps\CANALGroupe.CANALTOUCH_3.8.0.0_x64__4d0jsvmsaqz2m [2020-06-16] (Groupe Canal +)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-16] (Netflix, Inc.)
Traducteur -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-14] (Microsoft Corporation)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-11-13] (Microsoft Corporation)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-08-21] (Microsoft Corporation)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Fichier non signé]
==================== Raccourcis & WMI ========================
==================== Modules chargés (Avec liste blanche) =============
2009-05-14 16:49 - 2009-05-14 16:49 - 000071680 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzinw12.dll
2009-05-14 16:49 - 2009-05-14 16:49 - 000089600 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzipm12.dll
2014-12-10 02:01 - 2014-12-10 02:01 - 000285696 _____ (Intel Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-12-10 02:01 - 2014-12-10 02:01 - 000541696 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-09-19 15:24 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll
2015-09-19 15:24 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll
2015-09-19 15:24 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer sites de confiance/sensibles ==========
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-05-29 15:51 - 2020-07-14 18:17 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2015-07-31 11:54 - 2020-02-03 19:56 - 000000437 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Intel\iCLS Client;C:\Program Files\Intel\iCLS Client;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin;C:\Program Files\Common Files\Intel\WirelessCommon;C:\Program Files (x86)\Skype\Phone;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\StartupFolder: => "Hotkey.lnk"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "fspuip"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "dlccmon.exe"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "DLCCCATS"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "HDAudDeck"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "USB3MON"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "Aimersoft Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Razer Imperator Driver"
HKLM\...\StartupApproved\Run32: => "Creative SB Monitoring Utility Launcher"
HKLM\...\StartupApproved\Run32: => "fspuip"
HKLM\...\StartupApproved\Run32: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "Sound Blaster EVO Control Panel"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "AgentMonitor"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Comrade.exe"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "DivoAirMouse Server"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Dxtory Update Checker 2.0"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{57EC29E0-CD06-492A-B56B-F8F60FBD28AE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{49E5C3C8-599D-48E4-8D33-833E03F8EC23}D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe] => (Allow) D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe () [Fichier non signé]
FirewallRules: [TCP Query User{3B1DE1BA-72B0-4736-AF2B-6BF19686BCBE}D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe] => (Allow) D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe () [Fichier non signé]
FirewallRules: [UDP Query User{0F0BC665-A0CF-4C9F-8ABE-7FD9F561D5ED}D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{7CEC5B1D-00E8-460C-9F47-8BDA92FC12A9}D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) [Fichier non signé]
FirewallRules: [{D826A81E-CB85-4D1B-B183-10E2232DBC4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E72DB85F-D74F-4C48-9936-A7BDE9CCF534}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B5BF5C87-D4E7-493F-BC02-09CF0E3D2986}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A081E835-4D76-4980-B957-78801CF33FA3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A3750CEC-A037-4828-B84F-A11099E31E2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AD417C7A-A8CA-4EFF-8315-F43838B018F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{3F409DDF-CAF3-452B-9E06-3AA443AF1A86}D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [TCP Query User{4A90B55E-8B6C-4067-A157-64D310C8E800}D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [UDP Query User{D9C18C7C-0513-4634-B232-2034CD80ADC3}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{6D235D1E-23E3-45AE-A3B9-11B3000D50E5}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{3828AFED-2DFB-499F-B864-8C0B7C4A04EE}C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A47FFD89-60A2-46FF-BC14-6E4778A81D14}C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{37614AAD-0357-4ED6-8CD6-20A7FE4F45D5}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Shift Happens Demo\Shift Happens Demo.exe () [Fichier non signé]
FirewallRules: [{D4F389C0-BFF3-49B2-BAA0-581EE4D94AAA}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Shift Happens Demo\Shift Happens Demo.exe () [Fichier non signé]
FirewallRules: [{1656B283-2A5A-4C2E-BDB1-1DAEC82926B3}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{7C805918-E8C1-4545-9F8E-76958D3E96D8}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{F942D2D8-9F1F-4569-9931-5351E94B45C2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{28D2E4EE-7711-491E-A5FE-6E9085349515}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{D69ECB67-866B-49E6-868B-1993CAE325BE}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{41B700EC-9994-4F00-A11F-AD1D5754593B}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{C2D27C55-85C3-4C00-BDE7-0EBC75982C45}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Pinball FX3\Pinball FX3.exe () [Fichier non signé]
FirewallRules: [{5B709CB5-D9F4-4171-85D8-C1DC6A5221C7}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Pinball FX3\Pinball FX3.exe () [Fichier non signé]
FirewallRules: [UDP Query User{D252B09A-976A-4D22-9D8E-D3E0688F0B48}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{9A831F61-05BB-4E7F-BDD4-23AD948F0DA5}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{CFDEDAC5-30EA-434A-A9FF-F3B9465AAAC9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1F1806E3-78EB-4BF5-91F7-4EF6450C0E18}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6B269DCE-9E4D-4E23-BE81-335D00F2A7DA}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{97CADD35-EE19-4F0F-B6D2-A1A6B867D41D}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [TCP Query User{85BE46D4-D67C-4616-BDF2-7D83346B18AD}D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe] => (Allow) D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [UDP Query User{D82768C5-36FB-4F8E-9081-8B9ACE55B623}D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe] => (Allow) D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [TCP Query User{EFBA7130-798F-4C95-B9E0-EAA2BF7E6576}D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe] => (Allow) D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [UDP Query User{9E5E06B0-AFBB-473B-AD56-7FB5B35DEE06}D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe] => (Allow) D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [TCP Query User{D8D9EC25-2B78-43E3-955B-11B8C4BDF346}C:\program files (x86)\aspyr\guitar hero iii\gh3.exe] => (Block) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{FC2B716D-1698-420D-A38B-A09D6BD387F1}C:\program files (x86)\aspyr\guitar hero iii\gh3.exe] => (Block) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{9AA713CC-EE4D-4839-9CFC-425AE5A9F303}C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe] => (Allow) C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{8B84D6A2-D5C0-4D15-8B86-EE0483500C9F}C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe] => (Allow) C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{739084E2-3EE2-4FBF-94EA-BB94F07FD4D3}D:\jeux video\guitar hero world tour\ghwt.exe] => (Allow) D:\jeux video\guitar hero world tour\ghwt.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{EBA330CB-7C8B-427E-B92C-7B988AAB1677}D:\jeux video\guitar hero world tour\ghwt.exe] => (Allow) D:\jeux video\guitar hero world tour\ghwt.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [{67C636AD-DBC5-492C-854B-1BBF1A6350E7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B23B55AF-DABC-427C-B0F9-A880AFDAF3EB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{82171530-E220-4FAB-856B-88D54493C124}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{734C28CF-8442-43CF-8C22-415FEE9ADE3E}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{995B5FD7-EA2C-4952-BC8E-503E56AE8B69}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1FEEEFB7-1C51-4678-B0E3-4A89A7F45389}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{783FC35B-8FD7-4176-94E8-7B08B7177E2D}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{6A69B6BA-FE3E-4F44-8D42-D8C991827965}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{96501EA1-F133-4BF5-B842-22CFC420572A}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{4D4FA3D8-BB6E-483D-969F-B3C85D9F3F54}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{5B70B525-A7FE-418A-AE74-0604E3C9C645}] => (Allow) D:\Jeux Video\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{86EEE88F-F0FD-43B9-9C70-A21F0E269C6F}] => (Allow) D:\Jeux Video\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{BBCCA78D-9766-4881-8193-A12F8D142896}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru LLC -> )
FirewallRules: [{071227B3-0056-4573-A6CD-033ADB5F4770}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{133C88A0-C18F-46E6-9872-6DB6CF1EABFD}D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [UDP Query User{CDD4AB53-F3B8-4B81-93A5-87B9F3424498}D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{C5A173AF-1A6D-498F-B36A-07993230C993}D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [UDP Query User{A629DE21-E4A1-4D24-B1F7-E6B449F92603}D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [TCP Query User{4791858A-E46D-49FA-B96C-22F4E600E5A7}D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe] => (Allow) D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [UDP Query User{5FCECE4B-67E3-45CE-8431-E58A62428974}D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe] => (Allow) D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{BC430893-9D78-453A-8499-D2B9139DAB6C}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{D08A5BE1-56F5-42E8-AE1D-F724BC984F14}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{C20EC14F-29D5-4ECC-8331-90AB8CB2C574}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\WOG\disasm.exe () [Fichier non signé]
FirewallRules: [{514C2F88-9573-4DED-B36A-8812FCDA878A}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\WOG\disasm.exe () [Fichier non signé]
FirewallRules: [{17F7DDF6-E1C1-480B-9E66-3323A208793D}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Source SDK Base 2007\hl2.exe () [Fichier non signé]
FirewallRules: [{E6C6DEF5-FA4C-4316-AE32-3FCE2ABC2950}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Source SDK Base 2007\hl2.exe () [Fichier non signé]
==================== Points de restauration =========================
07-07-2020 15:00:30 Point de contrôle planifié
10-07-2020 19:07:03 AdwCleaner_BeforeCleaning_10/07/2020_19:07:03
10-07-2020 19:21:01 JRT Pre-Junkware Removal
11-07-2020 20:41:43 Revo Uninstaller Pro's restore point - Brave
13-07-2020 00:36:47 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
13-07-2020 10:14:43 Revo Uninstaller Pro's restore point - GoldenEye: Source
14-07-2020 15:55:36 Revo Uninstaller Pro's restore point - µTorrent
15-07-2020 09:39:02 Programme d’installation pour les modules Windows
15-07-2020 09:47:05 Programme d’installation pour les modules Windows
15-07-2020 09:47:36 Programme d’installation pour les modules Windows
15-07-2020 10:06:23 Revo Uninstaller Pro's restore point - Tweaking.com - Windows Repair
17-07-2020 11:46:13 Removed Apple Application Support (32 bits)
17-07-2020 11:46:53 Removed Apple Application Support (64 bits)
17-07-2020 11:47:31 Removed Apple Mobile Device Support
17-07-2020 11:47:56 Removed Apple Software Update
17-07-2020 11:48:22 Removed Bonjour
17-07-2020 11:49:33 Removed Java 8 Update 181 (64-bit)
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Périphérique USB inconnu (échec de demande de descripteur de périphérique)
Description: Périphérique USB inconnu (échec de demande de descripteur de périphérique)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Contrôleur hôte USB standard)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (07/17/2020 11:53:31 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (07/16/2020 03:45:37 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (07/16/2020 03:45:17 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {5a844b2f-cc04-459a-9844-3a73143ec718}
Error: (07/15/2020 11:29:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Le service Services de chiffrement n’a pas réussi à initialiser la base de données du catalogue. L’erreur ESENT était : -1409.
Erreurs système:
=============
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Error: (07/17/2020 11:54:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:54:56 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Windows Defender:
===================================
Date: 2020-07-14 15:56:14.8330000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/CandyOpen&threatid=213956&enterprise=0
Nom : PUA:Win32/CandyOpen
ID : 213956
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\Clevo\AppData\Roaming\uTorrent\updates\3.5.3_44494.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : W230ST\Clevo
Nom du processus : C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
Version de la veille de sécurité : AV: 1.319.1442.0, AS: 1.319.1442.0, NIS: 1.319.1442.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-14 15:37:05.2960000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.DB!ml&threatid=2147757790&enterprise=0
Nom : Trojan:Win32/Wacatac.DB!ml
ID : 2147757790
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Clevo\Desktop\FRST.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : W230ST\Clevo
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.1430.0, AS: 1.319.1430.0, NIS: 1.319.1430.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-14 15:34:35.6690000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.DB!ml&threatid=2147757790&enterprise=0
Nom : Trojan:Win32/Wacatac.DB!ml
ID : 2147757790
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Clevo\Desktop\FRST.exe; webfile:_C:\Users\Clevo\Desktop\FRST.exe|https://download.bleepingcomputer.com/dl/3fd10b411f89a4f2b0c939a294433b5e/5f0db45f/windows/security/security-utilities/f/farbar-recovery-scan-tool/FRST.exe|pid:10464,ProcessStart:132392070130184949
Origine de la détection : Internet
Type de détection : Chemin rapide
Source de détection : Téléchargements et pièces jointes
Utilisateur : W230ST\Clevo
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.319.1430.0, AS: 1.319.1430.0, NIS: 1.319.1430.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-12 11:09:11.6190000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:AutoIt/Injector.J!rfn&threatid=2147746306&enterprise=0
Nom : Trojan:AutoIt/Injector.J!rfn
ID : 2147746306
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Clevo\Desktop\QuickDiag.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : W230ST\Clevo
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.1263.0, AS: 1.319.1263.0, NIS: 1.319.1263.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-11 22:28:24.8300000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:AutoIt/Injector.J!rfn&threatid=2147746306&enterprise=0
Nom : Trojan:AutoIt/Injector.J!rfn
ID : 2147746306
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_D:\Téléchargement\QuickDiag.exe; webfile:_D:\Téléchargement\QuickDiag.exe|https://sd-g1.archive-host.com/membres/up/ecd939269bcc7cdfed2d2e726c22709a32db3067/bfkndtbsrbrtddtyybd/QuickDiag.exe|pid:1592,ProcessStart:132389619861099028
Origine de la détection : Internet
Type de détection : Concret
Source de détection : Téléchargements et pièces jointes
Utilisateur : W230ST\Clevo
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.319.1263.0, AS: 1.319.1263.0, NIS: 1.319.1263.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-14 18:20:33.4240000Z
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.319.1442.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17200.2
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Date: 2020-07-14 18:10:31.6750000Z
Description:
La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
Date: 2020-07-07 01:09:43.3690000Z
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.319.897.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17200.2
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 4.6.5 09/12/2013
Carte mère: Notebook W230ST
Processeur: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 45%
Mémoire physique - RAM - totale: 8112.11 MB
Mémoire physique - RAM - disponible: 4430.77 MB
Mémoire virtuelle totale: 16304.11 MB
Mémoire virtuelle disponible: 11852.14 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:446.1 GB) (Free:85.8 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:120.13 GB) NTFS
\\?\Volume{39938dad-c966-11e4-b442-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{70fd7347-0000-0000-0000-808c6f000000}\ () (Fixed) (Total:0.9 GB) (Free:0.4 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 70FD7347)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=446.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=925 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: AF98A9AD)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================
Exécuté par Clevo (17-07-2020 12:01:49)
Exécuté depuis C:\Users\Clevo\Desktop
Windows 10 Home Version 2004 19041.388 (X64) (2020-06-26 12:46:10)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
Administrateur (S-1-5-21-390458480-2662358936-1068069586-500 - Administrator - Disabled)
Clevo (S-1-5-21-390458480-2662358936-1068069586-1000 - Administrator - Enabled) => C:\Users\Clevo
DefaultAccount (S-1-5-21-390458480-2662358936-1068069586-503 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-390458480-2662358936-1068069586-1003 - Limited - Enabled)
Invité (S-1-5-21-390458480-2662358936-1068069586-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-390458480-2662358936-1068069586-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
. . (HKLM\...\{5F4E8D94-3947-4019-9239-D2541C9A35F2}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{7A5E4942-A527-42E6-A5FC-95109B756CA8}) (Version: 3.5.1.7 - Intel) Hidden
64 Bit HP CIO Components Installer (HKLM\...\{BE930E38-7BB3-45B6-85B2-5251F374F844}) (Version: 6.2.2 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 18.011.20038 - Adobe Systems Incorporated)
Adobe Flash Player 29 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 29.0.0.113 - Adobe Systems Incorporated)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.403 - Adobe)
Airplane Mode Hid Installer (HKLM-x32\...\{5E5B067F-52A4-447E-A3F1-D6DD10565E73}) (Version: 2.0.0.6 - ) Hidden
Airplane Mode Hid Installer (HKLM-x32\...\InstallShield_{5E5B067F-52A4-447E-A3F1-D6DD10565E73}) (Version: 2.0.0.6 - )
Analyseur et SDK MSXML 4.0 SP2 (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.6.2 - EA Digital Illusions CE AB)
Black Mesa (HKLM-x32\...\{85813319-0556-40F4-8C1A-EAF8030E46FD}_is1) (Version: 1.1.0.0 - Crowbar Collective)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.6.0.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version: - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version: - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: 4.1.0 - Canon Inc.)
Canon MG3500 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG3500_series) (Version: 1.00 - Canon Inc.)
Canon MG3500 series On-screen Manual (HKLM-x32\...\Canon MG3500 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 2.0.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 2.0.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.2.0 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.68 - Piriform)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
Cuphead (HKLM-x32\...\1963513391_is1) (Version: 20170929 - GOG.com)
Discord (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 425.31 - NVIDIA Corporation) Hidden
DSF-KitSetup (HKLM-x32\...\{BFBDD199-81A2-4BFA-9581-D2EA1716B546}) (Version: 1.1.6001.0 - Microsoft Corporation) Hidden
Enregistrement utilisateur de Canon MG3500 series (HKLM-x32\...\Enregistrement utilisateur de Canon MG3500 series) (Version: - Canon Inc.)
Epic Games Launcher (HKLM-x32\...\{FA10E700-F142-40B6-BB21-B93C55E0EA24}) (Version: 1.1.267.0 - Epic Games, Inc.)
F1 2013 Update 6 (HKLM-x32\...\RjEyMDEz_is1) (Version: 1 - )
Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 9.4.9.5 - Sentelic)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.116 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Grand Theft Auto: Episodes from Liberty City (HKLM-x32\...\{5454083B-1308-4485-BF17-111000028701}) (Version: 1.0.0002.135 - Rockstar Games Inc.) Hidden
Guitar Hero III (HKLM-x32\...\{0CE1A6C0-F3F7-49E6-8F9D-2431F9827441}) (Version: 1.3 - Activision)
Guitar Hero World Tour (HKLM-x32\...\{A126E617-63F0-4E57-BFA4-7190F5845C39}) (Version: 1.0 - Aspyr)
Guitar Hero: Aerosmith (HKLM-x32\...\{46F42615-BA31-45A0-BE10-2D2119749E95}) (Version: 1.0 - Aspyr)
Halo The Master Chief Collection MULTi12 - ElAmigos version 04.03.2020 (HKLM-x32\...\{6C8C2A62-BFB3-4F0E-BF00-090DD35A8E78}_is1) (Version: 04.03.2020 - Microsoft)
Hotkey 8.0153 (HKLM-x32\...\{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0153 - NoteBook) Hidden
Hotkey 8.0153 (HKLM-x32\...\InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}) (Version: 8.0153 - NoteBook)
Insyde Airplane Mode HID Mini-Driver (HKLM\...\AirplaneModeHid) (Version: 1.4.0.2 - Insyde Corporation)
Intel(R) Computing Improvement Program (HKLM\...\{2C895850-899F-4E06-ADB6-28A654FFCF9D}) (Version: 2.2.04036 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.38.1036 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5058 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.6.0.1002 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.5.69 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000070-0200-1036-84C8-B8D95FA3C8C3}) (Version: 20.70.0 - Intel Corporation)
Intel(R) Wireless Bluetooth(R)(patch version 17.1.1512.771) (HKLM\...\{302600C1-6BDF-4FD1-1501-148929CC1385}) (Version: 17.1.1501.0514 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{ef2ad7ab-dd41-48ed-ae53-f7fe3cd903d8}) (Version: 3.5.1.7 - Intel)
iTunes (HKLM\...\{C5B0926E-99B2-46A8-864F-ECDD2E9C5686}) (Version: 12.9.4.102 - Apple Inc.)
Just Cause 2 MULTi7 - ElAmigos version 1.0.0.2 (HKLM-x32\...\{13D541CF-53C3-452D-95AC-0A77731A70F0}_is1) (Version: 1.0.0.2 - Avalanche Studios)
Kinect for Windows Speech Recognition Language Pack (fr-FR) (HKLM-x32\...\{4CC174AA-25BC-46FF-B1E2-13B24AFB6142}) (Version: 11.0.7400.336 - Microsoft Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{a914536c-bd41-479c-96aa-dee4a9639c22}) (Version: 21.10.1 - Intel Corporation)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden
Logitech Gaming Software 5.10 (HKLM\...\{1444D2EE-C7AD-44A8-844F-2634B49353D1}) (Version: 5.10.127 - Logitech)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\OneDriveSetup.exe) (Version: 20.084.0426.0007 - Microsoft Corporation)
Microsoft Server Speech Platform Runtime (x64) (HKLM\...\{3B433087-E62E-4BF5-97F9-4AF6E1C2409C}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (en-IN) (HKLM-x32\...\{3B06AC90-DE68-44A9-95EB-0A3C1AF1514F}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (pl-PL) (HKLM-x32\...\{BEFB9378-5E88-4266-8EB1-C92869449885}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (pt-BR) (HKLM-x32\...\{F6B5EB21-0ABF-487C-B9A9-D9DB259C4403}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (ru-RU) (HKLM-x32\...\{9419B7EA-6A4B-4A57-8E2A-3BDD4676118F}) (Version: - )
Microsoft Server Speech Recognition Language - TELE (zh-CN) (HKLM-x32\...\{BAD2A75A-1708-47BA-A498-20890D2C78A7}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - )
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{45CD67FD-3218-4207-A0A2-BC41245189E3}) (Version: 1.20.146.0 - Microsoft)
Mises à jour NVIDIA 36.0.0.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 36.0.0.0 - NVIDIA Corporation) Hidden
Molotov (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\Molotov) (Version: 4.2.3 - Molotov)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Network64 (HKLM\...\{CE47BA54-78AC-409F-9151-BDF5BE15A804}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA GeForce NOW 2.0.18.67 (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GeforceNOW) (Version: 2.0.18.67 - NVIDIA Corporation)
NVIDIA Install Application (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer) (Version: 2.1002.344.0 - NVIDIA Corporation) Hidden
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.74.41754 - Electronic Arts, Inc.)
Package de pilotes Windows - Insyde (AirplaneModeHid) HIDClass (07/01/2013 1.3.0.0) (HKLM\...\E38E8D276444640BFCE21B5A73FD63C479B76259) (Version: 07/01/2013 1.3.0.0 - Insyde)
Panneau de configuration NVIDIA 425.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 425.31 - NVIDIA Corporation) Hidden
PC Building Simulator Overclockers UK Workshop (HKLM-x32\...\PC Building Simulator Overclockers UK Workshop_is1) (Version: - )
Platform (HKLM-x32\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.17134.21306 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0221 - REALTEK Semiconductor Corp.)
Revo Uninstaller Pro 4.0.1 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.1 - VS Revo Group, Ltd.)
Riot Vanguard (HKLM\...\Riot Vanguard) (Version: - Riot Games, Inc.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
Shadow 5.0.544 (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\34af0e20-e907-597b-a5a8-fec54fe4de95) (Version: 5.0.544 - Blade)
Shadow Beta 5.0.545 (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\f3568a48-2dbf-5949-9055-99d9148dfd32) (Version: 5.0.545 - Blade)
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.106 - Skype Technologies S.A.)
Sleeping Dogs - Definitive Edition (HKLM-x32\...\Sleeping Dogs - Definitive Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
SlimDX Redistributable (June 2010) (HKLM-x32\...\{354D00E0-C7C9-4BC1-BC12-08C4977AA827}) (Version: 2.0.10.43 - SlimDX Group)
Sonic Mania (HKLM-x32\...\{B01CBC6F-72DE-4658-95AD-2135F00A8695}_is1) (Version: - SEGA)
Sound Blaster EVO Zx/ZxR Extras (HKLM-x32\...\{D55BF3B9-AE2D-45BB-9E3D-2426EE92ED08}) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Street Fighter 30th Anniversary Collection (HKLM\...\SKIDROW - Street Fighter 30th Anniversary Collection) (Version: - SKIDROW)
System Requirements Lab Detection (HKLM-x32\...\{B505E7D6-E532-4290-ADF7-534011D743CE}) (Version: 6.1.6.0 - Husdawg, LLC)
Team Sonic Racing (HKLM-x32\...\Team Sonic Racing_is1) (Version: - )
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 23.0 - Ubisoft)
UsbDk Runtime Libraries (HKLM\...\{446D7CEA-0B07-44FF-8981-37985CA96C41}) (Version: - )
VALORANT (HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\Riot Game valorant.live) (Version: - Riot Games, Inc)
VIA Gestionnaire de périphériques de plate-forme (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.42 - VIA Technologies, Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.1 - VideoLAN)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
ZedTV version 4.2.8 (HKLM-x32\...\{7B4E06B9-2FA4-4F3E-85C5-1DCF1BA4B999}_is1) (Version: 4.2.8 - zedsoft)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-07] (Autodesk Inc.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-06] (Canon Inc.)
Cube Genius -> C:\Program Files\WindowsApps\11017RJStudios.CubeGenius_1.1.0.21_neutral__hdz5xv59cgzat [2018-08-29] (RJ Studios)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.2.169.0_x64__rz1tebttyb220 [2020-04-22] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_115.1.152.0_x64__v10z8vjag6ke6 [2020-05-28] (HP Inc.)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-15] (Microsoft Studios) [MS Ad]
MSN Finance -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Météo -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
myCANAL -> C:\Program Files\WindowsApps\CANALGroupe.CANALTOUCH_3.8.0.0_x64__4d0jsvmsaqz2m [2020-06-16] (Groupe Canal +)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-07-16] (Netflix, Inc.)
Traducteur -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-14] (Microsoft Corporation)
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-10] (Twitter Inc.)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2015-11-13] (Microsoft Corporation)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2019-08-21] (Microsoft Corporation)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-09-13] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-02-15] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\system32\vorbis.acm [1562432 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [msacm.vorbis] => C:\Windows\SysWOW64\vorbis.acm [1456448 2017-03-01] (Image Line -> HMS hxxp://hp.vector.co.jp/authors/VA012897/) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Fichier non signé]
==================== Raccourcis & WMI ========================
==================== Modules chargés (Avec liste blanche) =============
2009-05-14 16:49 - 2009-05-14 16:49 - 000071680 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzinw12.dll
2009-05-14 16:49 - 2009-05-14 16:49 - 000089600 _____ (Hewlett-Packard) [Fichier non signé] c:\windows\system32\hpzipm12.dll
2014-12-10 02:01 - 2014-12-10 02:01 - 000285696 _____ (Intel Corporation) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-12-10 02:01 - 2014-12-10 02:01 - 000541696 _____ (Intel Corporation) [Fichier non signé] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2015-09-19 15:24 - 2020-03-16 14:05 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\LIBEAY32.dll
2015-09-19 15:24 - 2020-03-16 14:06 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] C:\Program Files (x86)\Origin\ssleay32.dll
2015-09-19 15:24 - 2019-07-12 09:23 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Core.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Gui.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Network.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 000146432 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2020-07-15 11:43 - 2019-07-12 09:23 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] C:\Program Files (x86)\Origin\Qt5Xml.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BFE => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MpsSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WSService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppXSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\camsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ClipSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\lfsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SamSs => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\semgrsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\shellhwdetection => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srv2 => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\srvnet => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TokenBroker => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TweakingRemoveSafeBoot => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WSService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer sites de confiance/sensibles ==========
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2015-05-29 15:51 - 2020-07-14 18:17 - 000000855 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
2015-07-31 11:54 - 2020-02-03 19:56 - 000000437 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live;C:\Program Files (x86)\Intel\iCLS Client;C:\Program Files\Intel\iCLS Client;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin;C:\Program Files\Common Files\Intel\WirelessCommon;C:\Program Files (x86)\Skype\Phone;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Pas de fichier)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\StartupFolder: => "Hotkey.lnk"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "fspuip"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "dlccmon.exe"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "DLCCCATS"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"
HKLM\...\StartupApproved\Run: => "HDAudDeck"
HKLM\...\StartupApproved\Run: => "EvtMgr6"
HKLM\...\StartupApproved\Run: => "Start WingMan Profiler"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run: => "Riot Vanguard"
HKLM\...\StartupApproved\Run32: => "USB3MON"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "Aimersoft Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Razer Imperator Driver"
HKLM\...\StartupApproved\Run32: => "Creative SB Monitoring Utility Launcher"
HKLM\...\StartupApproved\Run32: => "fspuip"
HKLM\...\StartupApproved\Run32: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "Sound Blaster EVO Control Panel"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "DSATray"
HKLM\...\StartupApproved\Run32: => "AgentMonitor"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Comrade.exe"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "DivoAirMouse Server"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Dxtory Update Checker 2.0"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-390458480-2662358936-1068069586-1000\...\StartupApproved\Run: => "EpicGamesLauncher"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{57EC29E0-CD06-492A-B56B-F8F60FBD28AE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [UDP Query User{49E5C3C8-599D-48E4-8D33-833E03F8EC23}D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe] => (Allow) D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe () [Fichier non signé]
FirewallRules: [TCP Query User{3B1DE1BA-72B0-4736-AF2B-6BF19686BCBE}D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe] => (Allow) D:\jeux video\team sonic racing\gameapp_pcdx11_x64final.exe () [Fichier non signé]
FirewallRules: [UDP Query User{0F0BC665-A0CF-4C9F-8ABE-7FD9F561D5ED}D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{7CEC5B1D-00E8-460C-9F47-8BDA92FC12A9}D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe] => (Allow) D:\jeux video\borderlandsthepresequel\binaries\win32\borderlandspresequel.exe (Take-Two Interactive Software, Inc. -> Take-Two Interactive Software, Inc.) [Fichier non signé]
FirewallRules: [{D826A81E-CB85-4D1B-B183-10E2232DBC4E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E72DB85F-D74F-4C48-9936-A7BDE9CCF534}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B5BF5C87-D4E7-493F-BC02-09CF0E3D2986}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A081E835-4D76-4980-B957-78801CF33FA3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A3750CEC-A037-4828-B84F-A11099E31E2B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{AD417C7A-A8CA-4EFF-8315-F43838B018F7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{3F409DDF-CAF3-452B-9E06-3AA443AF1A86}D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [TCP Query User{4A90B55E-8B6C-4067-A157-64D310C8E800}D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\rocketleague\binaries\win64\rocketleague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [UDP Query User{D9C18C7C-0513-4634-B232-2034CD80ADC3}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{6D235D1E-23E3-45AE-A3B9-11B3000D50E5}C:\program files\epic games\gtav\gta5.exe] => (Allow) C:\program files\epic games\gtav\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{3828AFED-2DFB-499F-B864-8C0B7C4A04EE}C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{A47FFD89-60A2-46FF-BC14-6E4778A81D14}C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe] => (Allow) C:\users\clevo\appdata\local\nvidia corporation\geforcenow\cef\geforcenowstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{37614AAD-0357-4ED6-8CD6-20A7FE4F45D5}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Shift Happens Demo\Shift Happens Demo.exe () [Fichier non signé]
FirewallRules: [{D4F389C0-BFF3-49B2-BAA0-581EE4D94AAA}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Shift Happens Demo\Shift Happens Demo.exe () [Fichier non signé]
FirewallRules: [{1656B283-2A5A-4C2E-BDB1-1DAEC82926B3}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{7C805918-E8C1-4545-9F8E-76958D3E96D8}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{F942D2D8-9F1F-4569-9931-5351E94B45C2}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{28D2E4EE-7711-491E-A5FE-6E9085349515}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{D69ECB67-866B-49E6-868B-1993CAE325BE}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{41B700EC-9994-4F00-A11F-AD1D5754593B}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{C2D27C55-85C3-4C00-BDE7-0EBC75982C45}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Pinball FX3\Pinball FX3.exe () [Fichier non signé]
FirewallRules: [{5B709CB5-D9F4-4171-85D8-C1DC6A5221C7}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Pinball FX3\Pinball FX3.exe () [Fichier non signé]
FirewallRules: [UDP Query User{D252B09A-976A-4D22-9D8E-D3E0688F0B48}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{9A831F61-05BB-4E7F-BDD4-23AD948F0DA5}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{CFDEDAC5-30EA-434A-A9FF-F3B9465AAAC9}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{1F1806E3-78EB-4BF5-91F7-4EF6450C0E18}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{6B269DCE-9E4D-4E23-BE81-335D00F2A7DA}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{97CADD35-EE19-4F0F-B6D2-A1A6B867D41D}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [TCP Query User{85BE46D4-D67C-4616-BDF2-7D83346B18AD}D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe] => (Allow) D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [UDP Query User{D82768C5-36FB-4F8E-9081-8B9ACE55B623}D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe] => (Allow) D:\téléchargement\sonic.&.all-stars.racing.transofrmed.build.532043.steam-rip\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [TCP Query User{EFBA7130-798F-4C95-B9E0-EAA2BF7E6576}D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe] => (Allow) D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [UDP Query User{9E5E06B0-AFBB-473B-AD56-7FB5B35DEE06}D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe] => (Allow) D:\jeux video\sonic & all-stars racing transofrmed\asn_app_pcdx9_final.exe (SEGA EUROPE LIMITED -> ) [Fichier non signé]
FirewallRules: [TCP Query User{D8D9EC25-2B78-43E3-955B-11B8C4BDF346}C:\program files (x86)\aspyr\guitar hero iii\gh3.exe] => (Block) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{FC2B716D-1698-420D-A38B-A09D6BD387F1}C:\program files (x86)\aspyr\guitar hero iii\gh3.exe] => (Block) C:\program files (x86)\aspyr\guitar hero iii\gh3.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{9AA713CC-EE4D-4839-9CFC-425AE5A9F303}C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe] => (Allow) C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{8B84D6A2-D5C0-4D15-8B86-EE0483500C9F}C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe] => (Allow) C:\program files (x86)\aspyr\guitar hero aerosmith\guitar hero aerosmith.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{739084E2-3EE2-4FBF-94EA-BB94F07FD4D3}D:\jeux video\guitar hero world tour\ghwt.exe] => (Allow) D:\jeux video\guitar hero world tour\ghwt.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{EBA330CB-7C8B-427E-B92C-7B988AAB1677}D:\jeux video\guitar hero world tour\ghwt.exe] => (Allow) D:\jeux video\guitar hero world tour\ghwt.exe (Aspyr Media, Inc.) [Fichier non signé]
FirewallRules: [{67C636AD-DBC5-492C-854B-1BBF1A6350E7}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B23B55AF-DABC-427C-B0F9-A880AFDAF3EB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{82171530-E220-4FAB-856B-88D54493C124}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{734C28CF-8442-43CF-8C22-415FEE9ADE3E}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{995B5FD7-EA2C-4952-BC8E-503E56AE8B69}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{1FEEEFB7-1C51-4678-B0E3-4A89A7F45389}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{783FC35B-8FD7-4176-94E8-7B08B7177E2D}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT Rally\drt.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{6A69B6BA-FE3E-4F44-8D42-D8C991827965}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{96501EA1-F133-4BF5-B842-22CFC420572A}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\DiRT 3 Complete Edition\dirt3_game.exe (Codemasters Software Company Limited) [Fichier non signé]
FirewallRules: [{4D4FA3D8-BB6E-483D-969F-B3C85D9F3F54}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [{5B70B525-A7FE-418A-AE74-0604E3C9C645}] => (Allow) D:\Jeux Video\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{86EEE88F-F0FD-43B9-9C70-A21F0E269C6F}] => (Allow) D:\Jeux Video\WatchDogs\bin\Watch_Dogs.exe (Ubisoft Entertainment -> Ubisoft Entertainment)
FirewallRules: [{BBCCA78D-9766-4881-8193-A12F8D142896}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru LLC -> )
FirewallRules: [{071227B3-0056-4573-A6CD-033ADB5F4770}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{133C88A0-C18F-46E6-9872-6DB6CF1EABFD}D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [UDP Query User{CDD4AB53-F3B8-4B81-93A5-87B9F3424498}D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\gamecenter\gamecenter.exe (Mail.Ru LLC -> )
FirewallRules: [TCP Query User{C5A173AF-1A6D-498F-B36A-07993230C993}D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [UDP Query User{A629DE21-E4A1-4D24-B1F7-E6B449F92603}D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe] => (Allow) D:\jeux video\steamlibrary\steamapps\common\warface\13_2000076\bin64release\game.exe (warface -> Crytek GmbH)
FirewallRules: [TCP Query User{4791858A-E46D-49FA-B96C-22F4E600E5A7}D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe] => (Allow) D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [UDP Query User{5FCECE4B-67E3-45CE-8431-E58A62428974}D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe] => (Allow) D:\jeux video\halo the master chief collection\mcc\binaries\win64\mcc-win64-shipping.exe (343 Industries (Microsoft Corporation) -> Microsoft Corporation)
FirewallRules: [{BC430893-9D78-453A-8499-D2B9139DAB6C}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{D08A5BE1-56F5-42E8-AE1D-F724BC984F14}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\rocketleague\Binaries\RocketLeague.exe (Psyonix, LLC -> Psyonix LLC)
FirewallRules: [{C20EC14F-29D5-4ECC-8331-90AB8CB2C574}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\WOG\disasm.exe () [Fichier non signé]
FirewallRules: [{514C2F88-9573-4DED-B36A-8812FCDA878A}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\WOG\disasm.exe () [Fichier non signé]
FirewallRules: [{17F7DDF6-E1C1-480B-9E66-3323A208793D}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Source SDK Base 2007\hl2.exe () [Fichier non signé]
FirewallRules: [{E6C6DEF5-FA4C-4316-AE32-3FCE2ABC2950}] => (Allow) D:\Jeux Video\SteamLibrary\steamapps\common\Source SDK Base 2007\hl2.exe () [Fichier non signé]
==================== Points de restauration =========================
07-07-2020 15:00:30 Point de contrôle planifié
10-07-2020 19:07:03 AdwCleaner_BeforeCleaning_10/07/2020_19:07:03
10-07-2020 19:21:01 JRT Pre-Junkware Removal
11-07-2020 20:41:43 Revo Uninstaller Pro's restore point - Brave
13-07-2020 00:36:47 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
13-07-2020 10:14:43 Revo Uninstaller Pro's restore point - GoldenEye: Source
14-07-2020 15:55:36 Revo Uninstaller Pro's restore point - µTorrent
15-07-2020 09:39:02 Programme d’installation pour les modules Windows
15-07-2020 09:47:05 Programme d’installation pour les modules Windows
15-07-2020 09:47:36 Programme d’installation pour les modules Windows
15-07-2020 10:06:23 Revo Uninstaller Pro's restore point - Tweaking.com - Windows Repair
17-07-2020 11:46:13 Removed Apple Application Support (32 bits)
17-07-2020 11:46:53 Removed Apple Application Support (64 bits)
17-07-2020 11:47:31 Removed Apple Mobile Device Support
17-07-2020 11:47:56 Removed Apple Software Update
17-07-2020 11:48:22 Removed Bonjour
17-07-2020 11:49:33 Removed Java 8 Update 181 (64-bit)
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Périphérique USB inconnu (échec de demande de descripteur de périphérique)
Description: Périphérique USB inconnu (échec de demande de descripteur de périphérique)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Contrôleur hôte USB standard)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine CoCreateInstance. hr = 0x8007045b, Un arrêt système est en cours.
.
Error: (07/17/2020 11:53:53 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (07/17/2020 11:53:31 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (07/16/2020 03:45:37 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.
Opération :
Opération asynchrone en cours d’exécution
Contexte :
État actuel: DoSnapshotSet
Error: (07/16/2020 03:45:17 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.
Opération :
Données du rédacteur en cours de collecte
Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {5a844b2f-cc04-459a-9844-3a73143ec718}
Error: (07/15/2020 11:29:36 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 257) (User: )
Description: Le service Services de chiffrement n’a pas réussi à initialiser la base de données du catalogue. L’erreur ESENT était : -1409.
Erreurs système:
=============
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:56:49 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Error: (07/17/2020 11:54:56 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Browser n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (07/17/2020 11:54:56 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Browser.
Windows Defender:
===================================
Date: 2020-07-14 15:56:14.8330000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=PUA:Win32/CandyOpen&threatid=213956&enterprise=0
Nom : PUA:Win32/CandyOpen
ID : 213956
Gravité : Faible
Catégorie : Logiciel potentiellement non désiré
Chemin : file:_C:\Users\Clevo\AppData\Roaming\uTorrent\updates\3.5.3_44494.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : W230ST\Clevo
Nom du processus : C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe
Version de la veille de sécurité : AV: 1.319.1442.0, AS: 1.319.1442.0, NIS: 1.319.1442.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-14 15:37:05.2960000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.DB!ml&threatid=2147757790&enterprise=0
Nom : Trojan:Win32/Wacatac.DB!ml
ID : 2147757790
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Clevo\Desktop\FRST.exe
Origine de la détection : Ordinateur local
Type de détection : Chemin rapide
Source de détection : Protection en temps réel
Utilisateur : W230ST\Clevo
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.1430.0, AS: 1.319.1430.0, NIS: 1.319.1430.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-14 15:34:35.6690000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.DB!ml&threatid=2147757790&enterprise=0
Nom : Trojan:Win32/Wacatac.DB!ml
ID : 2147757790
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Clevo\Desktop\FRST.exe; webfile:_C:\Users\Clevo\Desktop\FRST.exe|https://download.bleepingcomputer.com/dl/3fd10b411f89a4f2b0c939a294433b5e/5f0db45f/windows/security/security-utilities/f/farbar-recovery-scan-tool/FRST.exe|pid:10464,ProcessStart:132392070130184949
Origine de la détection : Internet
Type de détection : Chemin rapide
Source de détection : Téléchargements et pièces jointes
Utilisateur : W230ST\Clevo
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.319.1430.0, AS: 1.319.1430.0, NIS: 1.319.1430.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-12 11:09:11.6190000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:AutoIt/Injector.J!rfn&threatid=2147746306&enterprise=0
Nom : Trojan:AutoIt/Injector.J!rfn
ID : 2147746306
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_C:\Users\Clevo\Desktop\QuickDiag.exe
Origine de la détection : Ordinateur local
Type de détection : Concret
Source de détection : Protection en temps réel
Utilisateur : W230ST\Clevo
Nom du processus : C:\Windows\explorer.exe
Version de la veille de sécurité : AV: 1.319.1263.0, AS: 1.319.1263.0, NIS: 1.319.1263.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-11 22:28:24.8300000Z
Description:
Antivirus Microsoft Defender a détecté un logiciel malveillant ou potentiellement indésirable.
Pour plus d’informations, reportez-vous aux éléments suivants :
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:AutoIt/Injector.J!rfn&threatid=2147746306&enterprise=0
Nom : Trojan:AutoIt/Injector.J!rfn
ID : 2147746306
Gravité : Grave
Catégorie : Cheval de Troie
Chemin : file:_D:\Téléchargement\QuickDiag.exe; webfile:_D:\Téléchargement\QuickDiag.exe|https://sd-g1.archive-host.com/membres/up/ecd939269bcc7cdfed2d2e726c22709a32db3067/bfkndtbsrbrtddtyybd/QuickDiag.exe|pid:1592,ProcessStart:132389619861099028
Origine de la détection : Internet
Type de détection : Concret
Source de détection : Téléchargements et pièces jointes
Utilisateur : W230ST\Clevo
Nom du processus : Unknown
Version de la veille de sécurité : AV: 1.319.1263.0, AS: 1.319.1263.0, NIS: 1.319.1263.0
Version du moteur : AM: 1.1.17200.2, NIS: 1.1.17200.2
Date: 2020-07-14 18:20:33.4240000Z
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.319.1442.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17200.2
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Date: 2020-07-14 18:10:31.6750000Z
Description:
La fonctionnalité de protection en temps réel Antivirus Microsoft Defender a rencontré une erreur et échoué.
Fonctionnalité : Sur accès
Code d’erreur : 0x8007043c
Description de l’erreur : Ce service ne peut pas être démarré en mode sans échec
Raison : La veille de sécurité contre les logiciels malveillants a cessé de fonctionner pour une raison inconnue. Dans certains cas, le redémarrage du service peut résoudre le problème.
Date: 2020-07-07 01:09:43.3690000Z
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.319.897.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.17200.2
Code d’erreur : 0x80240438
Description de l’erreur : Un problème inattendu s’est produit lors de la vérification des mises à jour. Pour plus d’informations sur l’installation ou la résolution des problèmes de mise à jour, voir Aide et support.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 4.6.5 09/12/2013
Carte mère: Notebook W230ST
Processeur: Intel(R) Core(TM) i7-4702MQ CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 45%
Mémoire physique - RAM - totale: 8112.11 MB
Mémoire physique - RAM - disponible: 4430.77 MB
Mémoire virtuelle totale: 16304.11 MB
Mémoire virtuelle disponible: 11852.14 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:446.1 GB) (Free:85.8 GB) NTFS
Drive d: () (Fixed) (Total:931.51 GB) (Free:120.13 GB) NTFS
\\?\Volume{39938dad-c966-11e4-b442-806e6f6e6963}\ (Réservé au système) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
\\?\Volume{70fd7347-0000-0000-0000-808c6f000000}\ () (Fixed) (Total:0.9 GB) (Free:0.4 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 447.1 GB) (Disk ID: 70FD7347)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=446.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=925 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: AF98A9AD)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================