Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-07-2021
Exécuté par cturc (18-07-2021 10:49:23)
Exécuté depuis C:\Users\cturc\Desktop
Windows 10 Home Version 20H2 19042.1110 (X64) (2021-03-17 02:18:08)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-445376762-1068536118-2178264129-500 - Administrator - Disabled)
cturc (S-1-5-21-445376762-1068536118-2178264129-1001 - Administrator - Enabled) => C:\Users\cturc
DefaultAccount (S-1-5-21-445376762-1068536118-2178264129-503 - Limited - Disabled)
Invité (S-1-5-21-445376762-1068536118-2178264129-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-445376762-1068536118-2178264129-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
FW: Avast Antivirus (Disabled) {D322394B-73F7-C65E-BBB0-3B81E063D6D4}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 21.005.20058 - Adobe Systems Incorporated)
Adobe Photoshop 2021 (HKLM-x32\...\PHSP_22_1_1) (Version: 22.1.1.138 - Adobe Inc.)
Antidote - Connectix 10 (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB4}) (Version: 10.6.317 - Druide informatique inc.)
Antidote 10 - Module français (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB2}) (Version: 10.6.317 - Druide informatique inc.)
Antidote 10 (HKLM-x32\...\{134E0741-C569-4E8C-A7FC-7F95B14CAAB1}) (Version: 10.6.317 - Druide informatique inc.)
Assistant de téléchargement (HKLM-x32\...\{93154A3C-9BB7-49D7-A571-4EB6373FA601}) (Version: 6.70.0 - Druide informatique inc.)
Battery Calibration (HKLM-x32\...\InstallShield_{634AC01E-49DB-4AD2-B87C-90D4DCC6AFA1}) (Version: 1.0.1807.0401 - Micro-Star International Co., Ltd.)
BitTorrent (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\BitTorrent) (Version: 7.10.5.46011 - BitTorrent Inc.)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.280.0.1022 - BlueStack Systems, Inc.)
BurnRecovery (HKLM-x32\...\{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1807.301 - Application) Hidden
BurnRecovery (HKLM-x32\...\InstallShield_{92A6B009-1343-4C44-AFB1-8849137CA3F0}) (Version: 5.0.1807.301 - Application)
CCleaner (HKLM\...\CCleaner) (Version: 5.80 - Piriform)
CLIP STUDIO 1.10.5 (HKLM-x32\...\{49274EB8-4598-47E6-8039-9BB7CE07627E}) (Version: 1.10.5 - CELSYS)
CLIP STUDIO PAINT 1.10.6 (HKLM-x32\...\{1E4572D2-28BC-4BC9-B743-13DC6CFD71DB}) (Version: 1.10.6 - CELSYS)
Core Temp 1.16 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.16 - ALCPU)
Discord (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Dragon Center (HKLM-x32\...\InstallShield_{C65B26BC-5A6F-4135-9678-55A877655471}) (Version: 2.3.1807.1701 - Micro-Star International Co., Ltd.)
Epic Games Launcher (HKLM-x32\...\{C83D4B4A-C7D0-4C01-995E-17081DAE5CEF}) (Version: 1.2.17.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{F9C5C994-F6B9-4D75-B3E7-AD01B84073E9}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Étude pour l'amélioration du produit HP OfficeJet 4650 series (HKLM\...\{DAD033BC-FEC5-42E0-BF38-BBC75B4BFED4}) (Version: 40.11.1122.1796 - HP Inc.)
FiveM (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\CitizenFX_FiveM) (Version: - Cfx.re)
FotoWorks XL 2021 (HKLM-x32\...\FotoWorks XL 2021_is1) (Version: Aktuelle Version - IN MEDIAKG TI)
GameInput Redistributable (HKLM-x32\...\{7E52156F-18FE-B953-BEA9-6BE6A77AFDFF}) (Version: 10.1.19041.3906 - Microsoft Corporation)
GOG GALAXY (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 91.0.4472.124 - Google LLC)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.2245.0 - Rockstar Games)
Help Desk (HKLM-x32\...\InstallShield_{7E8181AF-9679-49B3-B133-C265709B6927}) (Version: 2.0.1806.2501 - Micro-Star International Co., Ltd.)
HP Dropbox Plugin (HKLM-x32\...\{6401399A-F5DA-4C04-87AA-E8107DF00751}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM-x32\...\{63BCC696-0FB4-4E9C-8144-2DA4F248FC17}) (Version: 36.0.41.58587 - HP)
HP OfficeJet 4650 series Aide (HKLM-x32\...\{56300693-9E80-466C-B905-C2292C41877A}) (Version: 36.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HubSpot for Windows (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\9afbc8c9443d1363) (Version: 1.0.0.134 - Hubspot)
HubSpot Sales for Outlook (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\53945AAB78C7BE1D8B51DF62BA71EE58B9C07135) (Version: 3.0.1.249 - HubSpot, Inc.)
I.R.I.S. OCR (HKLM-x32\...\{D5CFF630-2F9B-4EE5-8F2F-EFBDFCE413CC}) (Version: 12.3.7.0 - HP)
inPixio Photo Studio 11 Demo (HKLM\...\{12D62CD9-8A74-44f4-B18D-1C6DA3487190}) (Version: 11.00 - inPixio)
Intel(R) Chipset Device Software (HKLM-x32\...\{eb0d4a41-3065-42b0-a868-c60d42d3ea98}) (Version: 10.1.17695.8086 - Intel(R) Corporation) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1823.12.0.1137 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.5.0.1027 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{c700a043-5a4c-4d61-aa88-6c4191f25b64}) (Version: 1.50.295.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000060-0200-1033-84C8-B8D95FA3C8C3}) (Version: 20.60.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{b67c644b-bbfa-45cf-a1fa-2e1ef2f99be6}) (Version: 20.60.0 - Intel Corporation)
Java 8 Update 291 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180291F0}) (Version: 8.0.2910.10 - Oracle Corporation)
KB9X Radio Switch Driver (HKLM\...\7A70B8EDE77ED614C261B89A36D4C656443FD153) (Version: 1.1.8.0 - ENE TECHNOLOGY INC.)
Killer Performance Driver Suite UWD (HKLM\...\{EA96C191-90EF-45D3-A815-1557259B77F4}) (Version: 1.7.1030 - Rivet Networks)
Launcher Prerequisites (x64) (HKLM-x32\...\{43a03b9c-4770-409c-a999-587b60700b63}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logiciel de base du périphérique HP OfficeJet 4650 series (HKLM\...\{4FD855B3-716A-430A-B88A-8D3E2892488B}) (Version: 40.11.1122.1796 - HP Inc.)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft .NET Framework 4.8 SDK (Français) (HKLM-x32\...\{D5668CE0-1BC5-4B73-B435-707FDA9A614C}) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 Targeting Pack (Français) (HKLM-x32\...\{2FD45BD9-6FC8-4F28-BD8A-D111808667A2}) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET SDK 5.0.205 (x64) (HKLM-x32\...\{d00c9b22-44ae-4317-b4f8-0a1c76493317}) (Version: 5.2.521.32005 - Microsoft Corporation)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14131.20320 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 91.0.864.70 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 91.0.864.70 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\OneDriveSetup.exe) (Version: 21.119.0613.0001 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 x64 ENU (HKLM\...\{8424B163-D1E0-48B7-88A2-C7A61767B3D7}) (Version: 4.0.8482.1 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\Teams) (Version: 1.4.00.11161 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{E5A95BC5-81DF-4F0C-B910-B59DD012F037}) (Version: 2.81.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29334 (HKLM-x32\...\{b2d0f752-adc5-496e-8f70-8669de01f746}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60724 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
MSI App Player (HKLM-x32\...\BlueStacks_msi2) (Version: 4.3.10.3014 - BlueStack Systems, Inc.)
MSI Feature Navigator (HKLM-x32\...\InstallShield_{2BD90BC2-5B5C-4493-8633-66D0CADF8B33}) (Version: 1.0.1807.1701 - Micro-Star International Co., Ltd.)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 460.89 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 460.89 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.14131.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.14131.20320 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-040C-0000-0000000FF1CE}) (Version: 16.0.14131.20278 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PhotoWorks 9.15 (HKLM-x32\...\{56427331-F94A-4C86-9C96-C8928EB5478B}_is1) (Version: 9.15 - AMS Software)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.17134.31242 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8496 - Realtek Semiconductor Corp.)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.40.358 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.8.1 - Rockstar Games)
Snap Camera 1.13.0 (HKLM-x32\...\{024A6CF5-627D-497F-980B-B9A6EC5C40AF}_is1) (Version: 1.13.0 - Snap Inc.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Streamlabs Chatbot version 1.0.2.64 (HKLM-x32\...\{08D3C5BB-C492-4916-B111-725081845380}_is1) (Version: 1.0.2.64 - Streamlabs)
Streamlabs OBS 1.1.2 (HKLM\...\029c4619-0385-5543-9426-46f9987161d9) (Version: 1.1.2 - General Workings, Inc.)
TeamSpeak 3 Client (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\TeamSpeak 3 Client) (Version: 3.5.6 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.0.8397 - TeamViewer)
Ultima Online: Mondain's Legacy (HKLM-x32\...\{DF7B213D-2065-41ED-BB51-7A3EED31EA7B}) (Version: 1.00.0000 - EA Games)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{C3ACFCEA-240F-4DCC-A0C3-DD55FEE6C3C2}) (Version: 2.58.0.0 - Microsoft Corporation)
Voxal Modificateur de voix (HKLM-x32\...\Voxal) (Version: 6.11 - NCH Software)
WinRAR 6.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 6.00.0 - win.rar GmbH)
Zoho Assist (HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\Zoho Assist) (Version: 111.0.2.311 - Zoho Corporation)
Packages:
=========
Bureau à distance Microsoft -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.2.1810.0_x64__8wekyb3d8bbwe [2021-03-06] (Microsoft Corporation)
Candy Crush Friends -> C:\Program Files\WindowsApps\king.com.CandyCrushFriends_1.61.6.0_x86__kgqvnymyfvs32 [2021-07-14] (king.com)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3325.0_x64__8j3eq9eme6ctt [2021-05-08] (INTEL CORP) [Startup Task]
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-10-11] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.8.1151.0_x64__rz1tebttyb220 [2021-07-13] (Dolby Laboratories)
Evernote -> C:\Program Files\WindowsApps\Evernote.Evernote_10.17.6.0_x86__q4d96b2w5wcc2 [2021-07-11] (Evernote)
extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-13] (Microsoft Corporation)
Fitbit Coach -> C:\Program Files\WindowsApps\Fitbit.FitbitCoach_4.4.133.0_x64__6mqt6hf9g46tw [2019-02-27] (Fitbit)
Grounded -> C:\Program Files\WindowsApps\Microsoft.Maine_1.10.6.0_x64__8wekyb3d8bbwe [2021-07-13] (Microsoft Studios)
Intel® Graphics Control Panel -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsControlPanel_3.3.0.0_x64__8j3eq9eme6ctt [2021-05-01] (INTEL CORP)
Killer Control Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_1.6.2131.0_x64__rh07ty8m5nkag [2019-02-26] (Rivet Networks LLC)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-02-27] (LinkedIn)
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1809.1.0_x64__8wekyb3d8bbwe [2021-03-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for JavaScript -> C:\Program Files\WindowsApps\Microsoft.Advertising.JavaScript_10.1809.1.0_x86__8wekyb3d8bbwe [2021-03-16] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-02-27] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-02-27] (Microsoft Corporation) [MS Ad]
Microsoft Jigsaw -> C:\Program Files\WindowsApps\Microsoft.MicrosoftJigsaw_2.3.6081.0_x86__8wekyb3d8bbwe [2021-06-17] (Microsoft Studios)
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.11030.0_x64__8wekyb3d8bbwe [2020-11-25] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.1.9160.0_x86__8wekyb3d8bbwe [2020-10-08] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.6151.0_x64__8wekyb3d8bbwe [2021-06-19] (Microsoft Studios) [MS Ad]
Microsoft Sudoku -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSudoku_2.4.4261.0_x64__8wekyb3d8bbwe [2021-05-23] (Microsoft Studios)
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Studios) [MS Ad]
Mount & Blade: Warband PC -> C:\Program Files\WindowsApps\Mutable\TaleWorldsEntertainment.4434B9962F96_1.0.27.0_x64__mk53pm3ay0384 [2021-07-04] (TaleWorlds Entertainment)
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-01-14] (MAGIX)
Nahimic -> C:\Program Files\WindowsApps\A-Volute.Nahimic_1.7.2.0_x64__w2gh52qy24etm [2021-06-13] (A-Volute)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-05-27] (NVIDIA Corp.)
PhotoDirector8 for MSI -> C:\Program Files\WindowsApps\CyberLink.PhotoDirector8forMSI_8.0.4020.0_x64__jtmmp2jxy9gb6 [2018-08-04] (CyberLink)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_3.27.1.0_x64__nfy108tqq3p12 [2021-02-21] (Thumbmunkeys Ltd)
PowerDirector for MSI -> C:\Program Files\WindowsApps\CyberLink.PowerDirectorforMSI_15.0.4024.0_x64__jtmmp2jxy9gb6 [2018-08-04] (CyberLink)
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2019-05-24] (Adobe Systems Incorporated)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj [2021-06-30] (Realtek Semiconductor Corp)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.103.2791.2_x64__8wekyb3d8bbwe [2021-07-13] (ms-resource:PublisherDisplayName)
SynMsiDApp -> C:\Program Files\WindowsApps\SynapticsIncorporated.SynMsiDApp_19005.31005.0.0_x64__807d65c4rvak2 [2019-02-26] (Synaptics Incorporated)
Traducteur -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\cturc\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21063.3\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{38626B40-64E1-4F8C-AEDA-CFF32F38602E}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\AgentAntidote.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{5563940C-ABF0-47B4-BB0E-B5D8680B570A}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{5563940D-49FD-4F1A-96AA-147B474290EE}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\MoteurIntegration.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{60349223-D450-4318-A9C7-63C42F5DA6A4}\InprocServer32 -> D:\PhotoWorks modif\PhotoWorks\ShellMenu64.dll (AMS Software -> )
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{80172dde-4e20-4df0-81a2-0a48553e80bb}\localserver32 -> C:\Users\cturc\AppData\Local\NhNotifSys\nahimic\nahimicNotifSys.exe (A-Volute SAS -> A-Volute)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8E}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{A12A9CAB-1C75-4AA3-A980-74F25AB94C8F}\localserver32 -> C:\Program Files (x86)\Druide\Connectix 10\Application\Bin64\AgentConnectix.exe (Druide informatique inc. -> Druide informatique inc.)
CustomCLSID: HKU\S-1-5-21-445376762-1068536118-2178264129-1001_Classes\CLSID\{AD630E0F-BF29-4791-AD3B-A289E884E37D}\localserver32 -> C:\Program Files (x86)\Druide\Antidote 10\Application\Bin64\Antidote.exe (Druide informatique inc. -> Druide informatique inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-02-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-02-28] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-02-28] (Adobe Inc. -> )
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-02-28] (Adobe Inc. -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvmii.inf_amd64_bd367893e1ff9b5c\nvshext.dll [2020-12-12] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2021-02-28] (Adobe Inc. -> )
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-12-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-445376762-1068536118-2178264129-1001: [!PhotoWorks] -> {60349223-D450-4318-A9C7-63C42F5DA6A4} => D:\PhotoWorks modif\PhotoWorks\ShellMenu64.dll [2019-02-21] (AMS Software -> )
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\cturc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Razor\Visit Razor's Website.lnk -> hxxp://www.runuo.com/razor
ShortcutWithArgument: C:\Users\cturc\Desktop\DnD\Aide\5etools.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 4" --app-id=piiajooamgiicjdgbnhppfimmjnmjllk
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\5etools.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory="Profile 4" --app-id=piiajooamgiicjdgbnhppfimmjnmjllk
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\ff13ca23fee04978\Candidatures (CandidatureMJ) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 5"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\f64d3603c29a95a7\Dompe (Dompte) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 15"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d755e1040e5d38ac\Mélanie Lussier - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 8"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9c5f1dad405065f1\Terra (Terra 2.0) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 12"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\69639df789022856\Chantal - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 1"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\603d61d7b578f489\Elena - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 11"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\48499db33039e897\Chatou - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 4"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\411761930c433448\Gumps - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 14"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\2b054a3d8e89c41e\Malvin (nowhere) - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 13"
ShortcutWithArgument: C:\Users\cturc\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\225bb61db2f318c1\Derick - Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 3"
==================== Modules chargés (Avec liste blanche) =============
2017-12-27 14:00 - 2017-12-27 14:00 - 000105984 _____ (A-Volute) [Fichier non signé] C:\Program Files (x86)\MSI\Dragon Center\YooMixCOM.dll
2020-09-23 21:14 - 2019-02-21 12:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
2015-06-11 22:35 - 2015-06-11 22:35 - 000047816 _____ (MICRO-STAR INTERNATIONAL CO., LTD -> www.internals.com) [Fichier non signé] C:\Program Files (x86)\MSI\Dragon Center\WinIo64.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://oem17win10.msn.com/?pc=NMTE
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://oem17win10.msn.com/?pc=NMTE
SearchScopes: HKU\S-1-5-21-445376762-1068536118-2178264129-1001 -> DefaultScope {88856714-A077-4633-8FE5-2DCA1B51AE97} URL =
SearchScopes: HKU\S-1-5-21-445376762-1068536118-2178264129-1001 -> {88856714-A077-4633-8FE5-2DCA1B51AE97} URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2021-05-26] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_291\bin\ssv.dll [2021-04-23] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_291\bin\jp2ssv.dll [2021-04-23] (Oracle America, Inc. -> Oracle Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-07] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2018-04-11 19:38 - 2018-04-11 19:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
2020-04-10 20:15 - 2020-07-22 13:29 - 000000433 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files\Le Robert Correcteur\wow64\Libs\;C:\Program Files\Le Robert Correcteur\Libs\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files\dotnet\
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 24.200.241.37 - 24.202.72.13
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "IAStorIcon"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "Snap Camera"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "HubSpot for Windows"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "ZoomInfo Contact Contributor"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "EpicGamesLauncher"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "CCleaner"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "B34026131FA449C4E534D041C31DEC604FC5E301._service_run"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "com.squirrel.Teams.Teams"
HKU\S-1-5-21-445376762-1068536118-2178264129-1001\...\StartupApproved\Run: => "Steam"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{5E236445-67F5-4643-AD93-7EFB2D5A21C9}C:\users\cturc\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\cturc\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{1EED66B1-6AD2-47FC-AC14-EEAA5C095A09}C:\users\cturc\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\cturc\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6B50F843-AD24-48EF-BFFA-747011AE8328}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{9B9694E0-09F1-4D34-89CE-422D0C3ABD79}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [{CBC7366D-B7D0-4388-9B67-ED235FEEA322}] => (Allow) C:\WINDOWS\system32\alg.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{AD02A4A7-BD42-4E78-8661-967E8F81E8C5}C:\program files (x86)\bluestacks_msi2\hd-player.exe] => (Allow) C:\program files (x86)\bluestacks_msi2\hd-player.exe (BlueStack Systems, Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{57AADBC9-B9D4-4D96-B692-239C80C3E4C5}C:\program files (x86)\bluestacks_msi2\hd-player.exe] => (Allow) C:\program files (x86)\bluestacks_msi2\hd-player.exe (BlueStack Systems, Inc.) [Fichier non signé]
FirewallRules: [{915E2391-1884-4538-8BAB-953CB2484910}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{EB2BE0E3-5F39-42D7-A928-698074CE11FF}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B37C9530-B81D-439F-8229-4626C6968278}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{4C447F95-D02B-4FD1-8835-E04F5E96B620}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{05592214-561B-4B8F-87E5-5636C2D8DA7C}] => (Allow) C:\Users\cturc\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{31A4E61C-BFFE-452D-A004-285B8BE870B6}] => (Allow) C:\Users\cturc\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{4E5962BD-5581-4175-8D0B-21AC0C192235}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B636574B-9DFB-4772-88AA-1C151665B728}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9FF8C743-8A4B-4E37-BCB1-2A2EECB6CE54}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )
FirewallRules: [TCP Query User{750452C3-CB28-4796-819A-9C5494769B42}C:\program files (x86)\ea games\ultima online mondain's legacy\terra.exe] => (Allow) C:\program files (x86)\ea games\ultima online mondain's legacy\terra.exe () [Fichier non signé]
FirewallRules: [UDP Query User{817E70AA-CB38-47D3-834D-DD195F44D1BD}C:\program files (x86)\ea games\ultima online mondain's legacy\terra.exe] => (Allow) C:\program files (x86)\ea games\ultima online mondain's legacy\terra.exe () [Fichier non signé]
FirewallRules: [{9C80C12E-5D24-4DFF-B87F-6FB1CF425134}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\FaxPrinterUtility.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{0C4D5C61-85DF-40ED-87F2-5FAF5C0E78AF}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\FaxApplications.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{7CDE6DF6-F067-4FDC-9E41-9C047B9D5F7C}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\DigitalWizards.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{5B4CCA1B-5622-4E5C-9D48-A30012AEE4BB}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\bin\SendAFax.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{41F29C48-964E-4C11-9F0F-FD8A90D5481F}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\Bin\DeviceSetup.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [{2EEB44E6-A7B2-4CDC-92CC-2036499523E4}] => (Allow) LPort=5357
FirewallRules: [{60796E51-70E5-4426-AFB8-E7706C6A184A}] => (Allow) C:\Program Files\HP\HP OfficeJet 4650 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> HP Inc.)
FirewallRules: [TCP Query User{CE2E3BF3-D0D8-4269-99D1-B23684BFB238}C:\program files (x86)\msi\dragon center\dragon center.exe] => (Allow) C:\program files (x86)\msi\dragon center\dragon center.exe (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé]
FirewallRules: [UDP Query User{36022C02-8E77-401D-A2AE-1F30AE3E089A}C:\program files (x86)\msi\dragon center\dragon center.exe] => (Allow) C:\program files (x86)\msi\dragon center\dragon center.exe (Micro-Star International CO., LTD. -> Micro-Star International Co., Ltd.) [Fichier non signé]
FirewallRules: [{E44382FB-F5D1-4F4F-A81D-04A4FE934B35}] => (Allow) D:\Jeux\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E4A1153C-7012-46EB-9CDE-B3F8DE5AB1F4}] => (Allow) D:\Jeux\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{A96C75DD-1AD6-4A0A-8E66-B24DB0B7D7AC}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E5603D2A-9DCA-4F21-9ABA-7465984AA05B}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{67DCE959-013A-4277-B551-6888459F285B}] => (Allow) D:\Jeux\Steam\steamapps\common\Catan Universe\CatanUniverse.exe () [Fichier non signé]
FirewallRules: [{6F486FB0-4D4E-4855-8603-F1B8BF6C47E1}] => (Allow) D:\Jeux\Steam\steamapps\common\Catan Universe\CatanUniverse.exe () [Fichier non signé]
FirewallRules: [{25EB7D05-938E-4E6F-97E9-45320339D5EB}] => (Allow) D:\Jeux\Steam\steamapps\common\Clue\Cluedo.exe () [Fichier non signé]
FirewallRules: [{4F68B927-52F2-439D-99BA-B6A3F2806D4F}] => (Allow) D:\Jeux\Steam\steamapps\common\Clue\Cluedo.exe () [Fichier non signé]
FirewallRules: [{055FE221-2753-4A4D-9041-007151080BFD}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{7F1EBB7D-A840-4A7D-BAD0-34693D3F1A02}] => (Allow) D:\Jeux\Steam\steamapps\common\Ultimate Sudoku Collection\UltimateSudoku.exe () [Fichier non signé]
FirewallRules: [{B7603B26-13C2-462F-9BB8-D04327E4AA6F}] => (Allow) D:\Jeux\Steam\steamapps\common\Ultimate Sudoku Collection\UltimateSudoku.exe () [Fichier non signé]
FirewallRules: [{E7F885AA-C024-4F09-A01D-80F0C43CEA58}] => (Allow) D:\Jeux\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [Fichier non signé]
FirewallRules: [{51DC8019-3BFA-4DFD-A4ED-CBAAEC457AA4}] => (Allow) D:\Jeux\Steam\steamapps\common\7 Days To Die\7dLauncher.exe () [Fichier non signé]
FirewallRules: [TCP Query User{B2163C51-B4F6-4741-88D2-5B02BF551D10}D:\jeux\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\jeux\steam\steamapps\common\7 days to die\7daystodie.exe () [Fichier non signé]
FirewallRules: [UDP Query User{8EDAD28E-9A31-4E0C-8B8B-658BFC489F41}D:\jeux\steam\steamapps\common\7 days to die\7daystodie.exe] => (Allow) D:\jeux\steam\steamapps\common\7 days to die\7daystodie.exe () [Fichier non signé]
FirewallRules: [{DDA2447C-AAC6-4EF5-8472-810AC751EE67}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{2D82B81F-F3E9-4015-9E70-821733CF54B1}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{C23386B6-D032-4215-A2CE-310AA1224639}] => (Allow) D:\Jeux\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Fichier non signé]
FirewallRules: [{CED69185-A9C6-4435-B6D5-F862040A6735}] => (Allow) D:\Jeux\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Fichier non signé]
FirewallRules: [{75D69D4B-0CEC-433F-9E2E-F6DA56048B15}] => (Allow) D:\Jeux\Steam\steamapps\common\Gloomhaven\GH.exe () [Fichier non signé]
FirewallRules: [{D7ECAEDA-4283-45C2-9782-90D758614BDA}] => (Allow) D:\Jeux\Steam\steamapps\common\Gloomhaven\GH.exe () [Fichier non signé]
FirewallRules: [TCP Query User{2C53FAC2-0C9C-49CA-9324-16BE8AC3CE5A}D:\jeux\rockstar\grand theft auto v\gta5.exe] => (Allow) D:\jeux\rockstar\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [UDP Query User{881ED260-4775-4E50-AC78-22DFE0264405}D:\jeux\rockstar\grand theft auto v\gta5.exe] => (Allow) D:\jeux\rockstar\grand theft auto v\gta5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [TCP Query User{58650082-F032-485D-B26F-355F2E6D3EEC}C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{48B61AF1-1702-46AA-A36E-83C6BDEB1530}C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe] => (Allow) C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_gtaprocess.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [TCP Query User{7335B28C-879D-4DCA-B8F9-D1C4ED0D1FF2}C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [UDP Query User{A43B0CC2-34BF-4C3D-BD5D-8C8C97F23328}C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe] => (Allow) C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2060_gtaprocess.exe (TASKS ME - IT DEVELOPMENT (AILENE BULALACAO TAGOLGOL) -> Cfx.re)
FirewallRules: [TCP Query User{51699046-0A1C-4184-A4E5-4941B6A9152B}C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [UDP Query User{6632CF31-DC37-4F6C-AF54-F1C2E52512D8}C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe] => (Allow) C:\users\cturc\appdata\local\fivem\fivem.app\data\cache\subprocess\fivem_b2189_gtaprocess.exe (Intricus Software Limited -> Cfx.re)
FirewallRules: [{B2606E35-32AC-4087-983D-83ABFBCB7B88}] => (Allow) D:\Jeux\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BA7577C7-BEF6-4770-9827-24A48A9FBEEB}] => (Allow) D:\Jeux\Steam\steamapps\common\AoE2DE\AoE2DE_s.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{39155A6F-7DB8-45C3-8E65-5F6E261D25DA}D:\jeux\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => (Allow) D:\jeux\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe => Pas de fichier
FirewallRules: [UDP Query User{D9EB931E-2AEF-4F0F-9BAB-7AF18927C745}D:\jeux\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe] => (Allow) D:\jeux\steam\steamapps\common\life is feudal your own\server\cm_yo_server.exe => Pas de fichier
FirewallRules: [{00A5B232-5A22-44F5-B5F4-8CE3C6311709}] => (Allow) C:\Users\cturc\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{34AFE8E1-40BF-4A5B-B7F8-34B3980013CB}] => (Allow) C:\Users\cturc\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{833D1210-A7A0-42EF-9EC2-7C6A871750A5}] => (Allow) C:\Users\cturc\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{35BC5D95-0E73-4D00-AC6A-8CD1EA893509}] => (Allow) C:\Users\cturc\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{55E14377-FD70-4BAC-906F-B7DF99144CBF}] => (Allow) C:\Users\cturc\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{EF39B421-C36B-4CE4-857D-AA38A08F826C}] => (Allow) C:\Users\cturc\AppData\Roaming\Streamlabs\Streamlabs Chatbot\Streamlabs Chatbot.exe (General Workings, Inc. -> hxxps://www.Streamlabs.com)
FirewallRules: [{21997519-9E99-46F1-B836-65C0AD49CD79}] => (Allow) D:\Jeux\Steam\steamapps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{CCB1365D-18A7-4DF2-AF77-00B18F819FD6}] => (Allow) D:\Jeux\Steam\steamapps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{1EDBEB3D-790E-4A89-8625-C0B57C1FE11A}] => (Allow) D:\Jeux\Steam\steamapps\common\Raft\Raft.exe () [Fichier non signé]
FirewallRules: [{D4734DC8-1917-450A-801A-CADD20B41456}] => (Allow) D:\Jeux\Steam\steamapps\common\Raft\Raft.exe () [Fichier non signé]
FirewallRules: [{E2074FC3-BA74-46C1-BF3D-0501C6747C09}] => (Allow) D:\Jeux\Steam\steamapps\common\RuneScape\bin\win64\RuneScape.exe => Pas de fichier
FirewallRules: [{4DFCFAD4-D823-48D7-B5BC-CCDFAEBE6E40}] => (Allow) D:\Jeux\Steam\steamapps\common\RuneScape\bin\win64\RuneScape.exe => Pas de fichier
FirewallRules: [{CA9181F3-5508-40DA-892B-82B7E9D86770}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{EE814433-CCCE-4AE1-8C41-ACB229DE75D7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3B282994-4FB0-43AA-B497-C2AF066AC886}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{A5C3B440-5EBD-4CCE-A96F-E71674CB7EDE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{FC8C5B42-8BC1-4B32-AF44-BEECA9703724}C:\program files\avast software\avast\avastui.exe] => (Allow) C:\program files\avast software\avast\avastui.exe => Pas de fichier
FirewallRules: [UDP Query User{B666BF66-103C-456D-8EDD-701F06FD4995}C:\program files\avast software\avast\avastui.exe] => (Allow) C:\program files\avast software\avast\avastui.exe => Pas de fichier
FirewallRules: [{8DCC0779-1E1A-4205-9A1C-AAACC71018A8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{FB8F80CD-2E3B-439D-8D1F-52B01C5B4837}] => (Allow) D:\Jeux\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [Fichier non signé]
FirewallRules: [{52DE1D1F-71ED-4BE1-88C8-3240D571CE29}] => (Allow) D:\Jeux\Steam\steamapps\common\Baldur's Gate II Enhanced Edition\Baldur.exe (Overhaul Games™) [Fichier non signé]
FirewallRules: [{673FD6F8-EEDA-4621-9215-3E20B7C93A16}] => (Allow) D:\Jeux\Steam\steamapps\common\Baldur's Gate Enhanced Edition\Baldur.exe (Overhaul Games™) [Fichier non signé]
FirewallRules: [{D84AE196-DBA4-4C02-BA72-5437A63947A4}] => (Allow) D:\Jeux\Steam\steamapps\common\Baldur's Gate Enhanced Edition\Baldur.exe (Overhaul Games™) [Fichier non signé]
FirewallRules: [{03D767DD-5ED5-4BDD-99BE-5AD9372DC931}] => (Allow) D:\Jeux\Steam\steamapps\common\RuneScape\bin\win64\RuneScape.exe => Pas de fichier
FirewallRules: [{AD4C67A0-4449-4F43-BC38-D49DC1FEA71E}] => (Allow) D:\Jeux\Steam\steamapps\common\RuneScape\bin\win64\RuneScape.exe => Pas de fichier
FirewallRules: [{CB4CEBB2-A1E8-47C0-B2F0-E66080C914BD}] => (Allow) D:\Jeux\Steam\steamapps\common\Black Desert Online\BlackDesertLauncher.exe (Pearl abyss Corp -> Pearlabyss)
FirewallRules: [{B03AC9D9-585B-4321-9BC5-D659AE94373D}] => (Allow) D:\Jeux\Steam\steamapps\common\Black Desert Online\BlackDesertLauncher.exe (Pearl abyss Corp -> Pearlabyss)
FirewallRules: [{681F702F-CED3-4ACF-8460-1315541BED26}] => (Allow) D:\Jeux\Steam\steamapps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{92600F30-81ED-4803-8AE8-D9F17711E8D4}] => (Allow) D:\Jeux\Steam\steamapps\common\Albion Online\launcher\AlbionLauncher.exe (Sandbox Interactive GmbH -> Sandbox Interactive GmbH)
FirewallRules: [{720FAC23-2C6E-4D87-BB66-5A9120CAE8A2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{C785F46B-275B-46FA-A653-69896112E578}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A51E5087-FCF8-4148-9FDF-BAB0AA338D8D}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{085C45C8-CAD5-4138-A6F8-0EBBE76E97BA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8C66620F-8B0D-4365-A461-784359260686}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.73.124.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{18F8831B-1821-486C-B23C-FE96DC722247}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\91.0.864.70\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Points de restauration =========================
28-06-2021 13:56:32 Point de contrôle planifié
04-07-2021 14:34:04 DirectX est installé
09-07-2021 08:31:12 Programme d’installation pour les modules Windows
09-07-2021 08:33:35 Programme d’installation pour les modules Windows
15-07-2021 10:03:24 Programme d’installation pour les modules Windows
15-07-2021 10:03:57 Programme d’installation pour les modules Windows
18-07-2021 10:49:43 Programme d’installation pour les modules Windows
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (07/18/2021 10:49:54 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Les services de chiffrement ont échoué lors du traitement de l’appel OnIdentity() dans l’objet System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary MsQuic.
System Error:
Le chargeur de ressources n’a pas pu trouver le fichier MUI.
.
Error: (07/18/2021 10:42:33 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (07/18/2021 10:14:03 AM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1552) (User: NT AUTHORITY)
Description: La ruche utilisateur est chargée par un autre processus (verrouillage de Registre) Nom du processus : C:\Program Files\AVAST Software\Cleanup\TuneupSvc.exe, PID : 4580, PID ProfSvc : 1892.
Error: (07/18/2021 10:09:10 AM) (Source: VSS) (EventID: 13) (User: )
Description: Informations du service de cliché instantané de volumes : impossible de démarrer le serveur COM de CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} et de nom CEventSystem. [0x8007045b, Un arrêt système est en cours.
]
Error: (07/18/2021 10:00:32 AM) (Source: ESENT) (EventID: 455) (User: )
Description: taskhostw (5476,R,98) WebCacheLocal: L’erreur -1811 (0xfffff8ed) s’est produite lors de l’ouverture d’un fichier journal C:\Users\cturc\AppData\Local\Microsoft\Windows\WebCache\V010001B.log.
Error: (07/17/2021 06:26:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante : RtkUWP.exe, version : 1.26.251.0, horodatage : 0x60ac8f4b
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1110, horodatage : 0x4809adf2
Code d’exception : 0xc000027b
Décalage du défaut : 0x000000000010bd3e
ID processus défaillant : 0x30fc
Heure de démarrage de l’application défaillante : 0x01d77b0e5f2e0dbd
Chemin de l’application défaillante : C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj\RtkUWP.exe
Chemin du module défaillant : C:\WINDOWS\System32\KERNELBASE.dll
Code de rapport : f732856d-e712-4f32-aa7f-21d3753b1b04
Nom complet de l’ensemble défaillant : RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj
ID de l’application relative à l’ensemble défaillant : App
Error: (07/16/2021 06:48:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante : RtkUWP.exe, version : 1.26.251.0, horodatage : 0x60ac8f4b
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1110, horodatage : 0x4809adf2
Code d’exception : 0xc000027b
Décalage du défaut : 0x000000000010bd3e
ID processus défaillant : 0x2524
Heure de démarrage de l’application défaillante : 0x01d77a94aa0290e1
Chemin de l’application défaillante : C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj\RtkUWP.exe
Chemin du module défaillant : C:\WINDOWS\System32\KERNELBASE.dll
Code de rapport : de2faa61-8b39-4352-a44a-06e053c85aff
Nom complet de l’ensemble défaillant : RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj
ID de l’application relative à l’ensemble défaillant : App
Error: (07/16/2021 06:48:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante : RtkUWP.exe, version : 1.26.251.0, horodatage : 0x60ac8f4b
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1110, horodatage : 0x4809adf2
Code d’exception : 0xc000027b
Décalage du défaut : 0x000000000010bd3e
ID processus défaillant : 0x374
Heure de démarrage de l’application défaillante : 0x01d77a91a305aeb5
Chemin de l’application défaillante : C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj\RtkUWP.exe
Chemin du module défaillant : C:\WINDOWS\System32\KERNELBASE.dll
Code de rapport : a3ff0ec9-9241-45ef-9b1c-7e647c4b7052
Nom complet de l’ensemble défaillant : RealtekSemiconductorCorp.RealtekAudioControl_1.26.251.0_x64__dt26b99r8h8gj
ID de l’application relative à l’ensemble défaillant : App
Erreurs système:
=============
Error: (07/18/2021 10:13:35 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (07/18/2021 10:13:35 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
Error: (07/18/2021 10:13:32 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (07/18/2021 10:13:07 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{9E175B68-F52A-11D8-B9A5-505054503030}
Error: (07/18/2021 10:11:39 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (07/18/2021 10:10:58 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service ShellHWDetection avec les arguments « Non disponible » pour exécuter le serveur :
{DD522ACC-F821-461A-A407-50B198B896DC}
Error: (07/18/2021 10:10:58 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{9E175B6D-F52A-11D8-B9A5-505054503030}
Error: (07/18/2021 10:10:58 AM) (Source: DCOM) (EventID: 10005) (User: MSI)
Description: DCOM a reçu l’erreur « 1084 » lors de la tentative de démarrage du service WSearch avec les arguments « Non disponible » pour exécuter le serveur :
{9E175B6D-F52A-11D8-B9A5-505054503030}
Windows Defender:
================
Date: 2021-07-18 10:49:48
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {F939330E-BD01-414C-9984-DFDEF96712B8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : NT AUTHORITY\SYSTEM
CodeIntegrity:
===============
Date: 2021-07-18 10:02:34
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2021-07-18 10:01:53
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.1910.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2021-07-18 10:01:52
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MpCmdRun.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. E17C6IMS.107 09/05/2018
Carte mère: Micro-Star International Co., Ltd. MS-17C6
Processeur: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Pourcentage de mémoire utilisée: 44%
Mémoire physique - RAM - totale: 16230.21 MB
Mémoire physique - RAM - disponible: 8934.27 MB
Mémoire virtuelle totale: 20582.21 MB
Mémoire virtuelle disponible: 11647.56 MB
==================== Lecteurs ================================
Drive c: (Windows) (Fixed) (Total:237.18 GB) (Free:78.58 GB) NTFS
Drive d: (Data) (Fixed) (Total:910.84 GB) (Free:395.32 GB) NTFS
\\?\Volume{010a143a-3bae-4992-8a4b-b5c92ed62f05}\ (WinRE tools) (Fixed) (Total:0.88 GB) (Free:0.41 GB) NTFS
\\?\Volume{d32fe22b-649a-4fe7-b38e-65c91f063040}\ (BIOS_RVY) (Fixed) (Total:20.67 GB) (Free:0.21 GB) NTFS
\\?\Volume{226526b1-b4af-08da-3a1b-5b1a21a0b378}\ () (Fixed) (Total:1.54 GB) (Free:0 GB) NTFS
\\?\Volume{4ab53fff-4ef1-b61c-cca0-4aee347de2e9}\ () (Fixed) (Total:4.24 GB) (Free:0 GB) NTFS
\\?\Volume{db10f151-80c6-479a-85d4-c8849f9315a7}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.26 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: C23FF74E)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: C23FF774)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.
==================== Fin de Addition.txt =======================