Addition.txt

Document joint : KHvfThYic8V_Addition.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 14-08-2021
Exécuté par PHEPHER (21-08-2021 07:23:17)
Exécuté depuis C:\Users\PHEPHER\Downloads
Windows 10 Home Version 21H1 19043.1165 (X64) (2021-03-09 23:00:55)
Mode d'amorçage: Normal
==========================================================

==================== Comptes: =============================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

Administrateur (S-1-5-21-226898909-1936610168-3599806186-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-226898909-1936610168-3599806186-503 - Limited - Disabled)
Invité (S-1-5-21-226898909-1936610168-3599806186-501 - Limited - Disabled)
PHEPHER (S-1-5-21-226898909-1936610168-3599806186-1001 - Administrator - Enabled) => C:\Users\PHEPHER
WDAGUtilityAccount (S-1-5-21-226898909-1936610168-3599806186-504 - Limited - Disabled)

==================== Centre de sécurité ========================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Programmes installés ======================

(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)

7+ Taskbar Tweaker v5.10 (HKU\S-1-5-21-226898909-1936610168-3599806186-1001\...\7 Taskbar Tweaker) (Version: 5.10 - RaMMicHaeL)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\InstallShield_{7622903F-BC29-458F-87C8-E8AFD51B87E6}) (Version: 20.21.401.14517 - Alcor Micro Corp.)
Ankama Launcher 3.3.16 (HKLM\...\{410fcd79-1be8-5bf1-986e-ea09c55f7edf}) (Version: 3.3.16 - Ankama)
Assassin's Creed Liberation HD (HKLM-x32\...\Uplay Install 625) (Version: - Ubisoft)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.1.7 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0049 - ASUS)
AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.1.8 - ICEpower a/s)
BitTorrent (HKU\S-1-5-21-226898909-1936610168-3599806186-1001\...\BitTorrent) (Version: 7.10.5.46011 - BitTorrent Inc.)
Cheat Engine 7.0 (HKLM\...\Cheat Engine 7.0_is1) (Version: - Cheat Engine)
Citra (HKU\S-1-5-21-226898909-1936610168-3599806186-1001\...\{60d79f12-5946-4e78-bd67-e1accdcca86f}) (Version: 1.0.0 - Citra Team)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.95.69 - Conexant)
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 92.0.4515.159 - Google LLC)
Grand Theft Auto: San Andreas (HKLM-x32\...\Grand Theft Auto: San Andreas) (Version: 1.0.0.22 - Rockstar Games)
Intel(R) Chipset Device Software (HKLM-x32\...\{61a0f1f5-c77e-4992-ba85-029f93cd8d18}) (Version: 10.1.1.27 - Intel(R) Corporation) Hidden
Intel(R) Dynamic Platform and Thermal Framework (HKLM-x32\...\{654EE65D-FAA4-4EA6-8C07-DC94E6A304D4}) (Version: 8.2.10900.330 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.5.0.1015 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1519.7 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{8B08DDA1-FDE7-4897-8EB6-E0B048A6D88B}) (Version: 1.0.1.618 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.4.3.125 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.4.3.125 - Malwarebytes)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.14228.20250 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 92.0.902.78 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 92.0.902.78 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{59E4543A-D49D-4489-B445-473D763C79AF}) (Version: 2.0.672.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{852D8FE5-BC66-4061-B1C4-CADF51E5B27D}) (Version: 2.82.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{f9b04b37-35d5-4a19-a51b-fcf4a8734851}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29325 (HKLM-x32\...\{33628a12-6787-4b9f-95a1-92449f69fae0}) (Version: 14.28.29325.2 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Nexus Mod Manager (HKLM\...\6af12c54-643b-4752-87d0-8335503010de_is1) (Version: 0.63.14 - Black Tree Gaming)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.23.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.23.0.74 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote graphique 471.68 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.68 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.14228.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.14228.20222 - Microsoft Corporation) Hidden
One Piece - Pirate Warriors 4 (HKLM-x32\...\One Piece - Pirate Warriors 4_is1) (Version: - )
One Piece Pirate Warriors 3: GOLD Edition (HKLM-x32\...\One Piece Pirate Warriors 3: GOLD Edition_is1) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 10.5.90.45798 - Electronic Arts, Inc.)
PhotoFiltre 7 (HKU\S-1-5-21-226898909-1936610168-3599806186-1001\...\PhotoFiltre 7) (Version: - )
PS Remote Play (HKLM-x32\...\{E536EB8F-03EF-4EBA-B3FF-C5A544604841}) (Version: 4.0.0.09240 - Nom de votre société)
Qualcomm Atheros 11ac Wireless LAN&Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.10375 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.9.422.2016 - Realtek)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.23.252 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.5.6 - Rockstar Games)
RomStation (HKLM-x32\...\{223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1) (Version: - RomStation)
RPG MAKER VX Ace RTP (HKLM-x32\...\RPGVXAce_RTP_is1) (Version: 1.00 - Enterbrain)
South Park: The Fractured... (HKLM-x32\...\South Park: The Fractured..._is1) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
The Sims 4 (HKLM-x32\...\The Sims 4_is1) (Version: - )
Ultracopier 2.2.4.7 (HKLM-x32\...\Ultracopier) (Version: 2.2.4.7 - Ultracopier)
UnHackMe 12.80 (HKLM-x32\...\UnHackMe_is1) (Version: - Greatis Software, LLC.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM-x32\...\{B7AFAF92-D1C8-49A0-B34A-B5DAF9C9D5C6}) (Version: 1.9.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 69.0 - Ubisoft)
ViGEm Bus Driver (HKLM\...\{4030BA52-E312-462E-B020-CCB5A2AC5497}) (Version: 1.16.116 - Nefarius Software Solutions e.U.)
VirusTotal Uploader 2.2 (HKLM-x32\...\VTUploader) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.12 - VideoLAN)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-226898909-1936610168-3599806186-1001\...\WhatsApp) (Version: 2.2047.11 - WhatsApp)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22334 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 3.2.2 - ASUSTeK COMPUTER INC.)
WinRAR 5.50 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)

Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2020-08-06] (Autodesk Inc.)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_7.7.46.0_x86__kgqvnymyfvs32 [2021-08-03] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.200.300.0_x86__kgqvnymyfvs32 [2021-08-18] (king.com)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-12-09] (Microsoft Corporation)
Disney Magic Kingdoms -> C:\Program Files\WindowsApps\A278AB0D.DisneyMagicKingdoms_6.1.13.0_x86__h6adky7gbf63m [2021-07-14] (Gameloft SE)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-03-14] (Microsoft Corporation)
GIF Viewer -> C:\Program Files\WindowsApps\600CCC33.GIFViewer_2.29.107.0_x64__npmv4c3p4dm00 [2021-07-21] (Biyee SciTech Inc.)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_129.1.234.0_x64__v10z8vjag6ke6 [2021-07-24] (HP Inc.)
iTunes -> C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa [2021-08-11] (Apple Inc.) [Startup Task]
March of Empires: War of Lords -> C:\Program Files\WindowsApps\A278AB0D.MarchofEmpires_5.8.7.0_x86__h6adky7gbf63m [2021-08-11] (Gameloft SE)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-08-06] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-08-06] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.10.7290.0_x64__8wekyb3d8bbwe [2021-08-05] (Microsoft Studios) [MS Ad]
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_21.10628.5716.0_x64__8wekyb3d8bbwe [2021-07-29] (Microsoft Corporation)
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-08-06] (MAGIX)
MyASUS-Service Center -> C:\Program Files\WindowsApps\B9ECED6F.MyASUS_3.3.11.0_x86__qmba6cd70vzyy [2020-08-06] (ASUSTeK COMPUTER INC.) [Startup Task]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2020-08-06] (Netflix, Inc.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-08-10] (NVIDIA Corp.)
Paket za lokalni interfejs za srpski -> C:\Program Files\WindowsApps\Microsoft.LanguageExperiencePacksr-Latn-RS_19041.25.72.0_neutral__8wekyb3d8bbwe [2021-08-11] (Microsoft Corporation)
TripAdvisor Hotels Flights Restaurants -> C:\Program Files\WindowsApps\TripAdvisorLLC.TripAdvisorHotelsFlightsRestaurants_1.5.10.0_x64__qj0v5chwq8f2g [2017-12-19] (TripAdvisor LLC)
Xbox One SmartGlass -> C:\Program Files\WindowsApps\Microsoft.XboxOneSmartGlass_2.2.1702.2004_x64__8wekyb3d8bbwe [2018-05-20] (Microsoft Corporation)

==================== Personnalisé CLSID (Avec liste blanche): ==============

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

CustomCLSID: HKU\S-1-5-21-226898909-1936610168-3599806186-1001_Classes\CLSID\{1BF42E4C-4AF4-4CFD-A1A0-CF2960B8F63E}\InprocServer32 -> C:\Users\PHEPHER\AppData\Local\Microsoft\OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-226898909-1936610168-3599806186-1001_Classes\CLSID\{68D44A27-FFB6-4B89-A3E5-7B0E50A7AB33}\InprocServer32 -> C:\Program Files\Ultracopier\PluginLoader\catchcopy-v0002\catchcopy32all.dll () [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-226898909-1936610168-3599806186-1001_Classes\CLSID\{68FF37C4-51BC-4C2A-A992-7E39BC0E706F}\InprocServer32 -> C:\Program Files\Ultracopier\PluginLoader\catchcopy-v0002\catchcopy64all.dll () [Fichier non signé]
CustomCLSID: HKU\S-1-5-21-226898909-1936610168-3599806186-1001_Classes\CLSID\{7AFDFDDB-F914-11E4-8377-6C3BE50D980C}\InprocServer32 -> C:\Users\PHEPHER\AppData\Local\Microsoft\OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll => Pas de fichier
CustomCLSID: HKU\S-1-5-21-226898909-1936610168-3599806186-1001_Classes\CLSID\{82CA8DE3-01AD-4CEA-9D75-BE4C51810A9E}\InprocServer32 -> C:\Users\PHEPHER\AppData\Local\Microsoft\OneDrive\20.084.0426.0007\amd64\FileSyncShell64.dll => Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Pending)] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Synced)] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ MEGA (Syncing)] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Pas de fichier
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Pas de fichier
ContextMenuHandlers1: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers4: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\PHEPHER\AppData\Local\MEGAsync\ShellExtX64.dll -> Pas de fichier
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Pas de fichier
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_baab50003164cdd5\igfxDTCM.dll [2020-08-12] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\System32\DriverStore\FileRepository\nvami.inf_amd64_72035dd8d03aecee\nvshext.dll [2021-08-06] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Avec liste blanche) ====================

==================== Raccourcis & WMI ========================

(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)

ShortcutWithArgument: C:\Users\PHEPHER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\iGVault.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kodndogomnfgmbapagempdcobhmjfbho
ShortcutWithArgument: C:\Users\PHEPHER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Applications Chrome\Vysor.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default --app-id=gidgenkbbabolejbgbpnhbimgjbffefm

==================== Modules chargés (Avec liste blanche) =============

2021-08-09 01:06 - 2021-08-09 01:06 - 000372736 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxHef9fb4ae#\75c8962a5cc357f6eceb44e45ece6b66\Interop.CxHDAudioAPILib.ni.dll
2021-08-09 01:06 - 2021-08-09 01:06 - 000018944 _____ () [Fichier non signé] C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\Interop.CxUtilSvcLib\c342143aec05307d2cad94c37a74318a\Interop.CxUtilSvcLib.ni.dll
2016-10-31 19:38 - 2018-03-13 11:21 - 001173504 _____ (Conexant Systems, Inc.) [Fichier non signé] [Fichier en cours d'utilisation] C:\Program Files\Conexant\SAII\CxHDAudioAPI.dll

==================== Alternate Data Streams (Avec liste blanche) ========

==================== Mode sans échec (Avec liste blanche) ==================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Avec liste blanche) =================

==================== Internet Explorer (Avec liste blanche) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-226898909-1936610168-3599806186-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://asus15.msn.com/?pc=ASTE
HKU\S-1-5-21-226898909-1936610168-3599806186-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus15.msn.com/?pc=ASTE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-226898909-1936610168-3599806186-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-226898909-1936610168-3599806186-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2021-06-23] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2021-07-30] (Microsoft Corporation -> Microsoft Corporation)

==================== Hosts contenu: =========================

(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)

2015-10-30 09:24 - 2021-04-02 16:09 - 000002077 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 checkhost.local
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirlpack.site # Fake FitGirl site
109.94.209.70 www.fitgirlpack.site # Fake FitGirl site
109.94.209.70 fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 fitgirl-repack.com # Fake FitGirl site
109.94.209.70 fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 www.fitgirlrepacks.co # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.cc # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.com # Fake FitGirl site
109.94.209.70 www.fitgirl-repacks.website # Fake FitGirl site
109.94.209.70 ww9.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 *.fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repacks.xyz # Fake FitGirl site
109.94.209.70 fitgirl-repack.net # Fake FitGirl site
109.94.209.70 www.fitgirl-repack.net # Fake FitGirl site

2017-12-24 20:30 - 2017-12-24 20:31 - 000000446 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics

==================== Autres zones ===========================

(Actuellement, il n'y a pas de correction automatique pour cette section.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-226898909-1936610168-3599806186-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\PHEPHER\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.254
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Le Pare-feu est activé.

==================== MSCONFIG/TASK MANAGER éléments désactivés ==

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)

HKLM\...\StartupApproved\Run: => "SecurityHealth"

==================== RèglesPare-feu (Avec liste blanche) ================

(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)

FirewallRules: [UDP Query User{5F46287D-530B-4DE2-A8F6-F58758092A00}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{7E6C9D3B-3135-4553-9E69-166F89484878}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{4C432958-70AC-4280-B87F-A206DE00F198}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe => Pas de fichier
FirewallRules: [{DAFEB8E6-6605-4E7A-A8B9-B2D7586F37DF}] => (Allow) C:\Program Files (x86)\Apowersoft\ApowerMirror\ApowerMirror.exe => Pas de fichier
FirewallRules: [{C3E1979A-F00F-469A-ADF6-9E8C985276C2}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier
FirewallRules: [{4841B421-C018-4C42-8413-989F8A92DAFC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe => Pas de fichier
FirewallRules: [{319F6BF8-3090-474C-B1EA-6F73F68B1289}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Pas de fichier
FirewallRules: [{C305F599-5B0C-4AC4-AA78-2C401F3487D6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe => Pas de fichier
FirewallRules: [UDP Query User{08B3E0EC-65FD-4D1E-9CE8-8B0850F64BF1}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{0F76D947-DD85-4536-8D5D-927E232449A8}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{6FE84CF0-86F4-4C70-87C8-C29F7789A5B8}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe => Pas de fichier
FirewallRules: [{5E24C881-3FA3-4FF9-8BED-32971A2C5C29}] => (Allow) C:\Program Files (x86)\Origin Games\FIFA 17\FIFASetup\fifaconfig.exe => Pas de fichier
FirewallRules: [UDP Query User{1E151DC4-DC00-441A-9390-8718698E39B0}C:\users\phepher\downloads\futa.fix.dick.dine.and.dash\futa fix dick dine and dash\game.exe] => (Allow) C:\users\phepher\downloads\futa.fix.dick.dine.and.dash\futa fix dick dine and dash\game.exe => Pas de fichier
FirewallRules: [TCP Query User{EE4BE8B7-861E-4972-985A-2B9CCB54BB99}C:\users\phepher\downloads\futa.fix.dick.dine.and.dash\futa fix dick dine and dash\game.exe] => (Allow) C:\users\phepher\downloads\futa.fix.dick.dine.and.dash\futa fix dick dine and dash\game.exe => Pas de fichier
FirewallRules: [UDP Query User{44DA0B4E-F555-4361-93A5-665781716476}C:\users\phepher\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe] => (Allow) C:\users\phepher\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe => Pas de fichier
FirewallRules: [TCP Query User{782D8DCD-70D7-47DF-8C6B-D507D7ED523A}C:\users\phepher\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe] => (Allow) C:\users\phepher\appdata\roaming\usbhelperlauncher\wiiu_usb_helper_.exe => Pas de fichier
FirewallRules: [UDP Query User{5813B136-831E-4FA8-857A-E94173422553}C:\users\phepher\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe] => (Allow) C:\users\phepher\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe => Pas de fichier
FirewallRules: [TCP Query User{6EA23503-2DFD-430E-993F-B2013DFFE3D9}C:\users\phepher\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe] => (Allow) C:\users\phepher\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe => Pas de fichier
FirewallRules: [{989BA47E-D4C7-4F3E-9E31-321CBA1E9226}] => (Allow) C:\Program Files (x86)\Sony\PS Remote Play\RemotePlay.exe (Sony Interactive Entertainment Inc. -> Sony Interactive Entertainment Inc.)
FirewallRules: [UDP Query User{7554A661-2159-407A-8D91-951678FD9C7D}C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe] => (Allow) C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe () [Fichier non signé]
FirewallRules: [TCP Query User{683C9270-F0DC-4106-8464-997797419A19}C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe] => (Allow) C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe () [Fichier non signé]
FirewallRules: [UDP Query User{6B9FC2C8-B833-46C3-A454-B67E58C7AEDF}C:\program files (x86)\mortal kombat xl\binaries\retail\mk10.exe] => (Allow) C:\program files (x86)\mortal kombat xl\binaries\retail\mk10.exe => Pas de fichier
FirewallRules: [TCP Query User{FB44E1BD-0B60-401F-9205-EA88F24E9601}C:\program files (x86)\mortal kombat xl\binaries\retail\mk10.exe] => (Allow) C:\program files (x86)\mortal kombat xl\binaries\retail\mk10.exe => Pas de fichier
FirewallRules: [{F8D5864A-2289-459C-A092-64B1CF154780}] => (Allow) C:\Users\PHEPHER\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [{8A026E3F-B554-4853-BBCD-BF74AE039365}] => (Allow) C:\Users\PHEPHER\AppData\Roaming\BitTorrent\BitTorrent.exe (BitTorrent Inc -> BitTorrent Inc.)
FirewallRules: [UDP Query User{93E4861A-A828-48CE-8D6C-45C417012559}C:\program files (x86)\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe (Warner Bros. Interactive Entertainment, Inc. -> Rocksteady Studios Ltd.)
FirewallRules: [TCP Query User{52B2F1F7-C13B-478B-BA18-CC39B4E54432}C:\program files (x86)\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\batman arkham city goty\binaries\win32\batmanac.exe (Warner Bros. Interactive Entertainment, Inc. -> Rocksteady Studios Ltd.)
FirewallRules: [UDP Query User{03784147-7A00-427F-9F13-D9ED11D4C74C}C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe] => (Block) C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe => Pas de fichier
FirewallRules: [TCP Query User{31F340A4-32B9-4ED6-8C4E-CB96A6552ED4}C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe] => (Block) C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4m.exe => Pas de fichier
FirewallRules: [UDP Query User{8E465D31-9869-493C-B7E3-2D7F030EA8C8}C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4sp.exe] => (Allow) C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4sp.exe => Pas de fichier
FirewallRules: [TCP Query User{F2EF312C-2D42-43C7-845F-BCA7EEAA40FA}C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4sp.exe] => (Allow) C:\users\phepher\downloads\call of duty modern warfare 2 react mp-sp ^^nosteam^^\call of duty modern warfare 2\iw4sp.exe => Pas de fichier
FirewallRules: [UDP Query User{8791EF1F-6041-4DDF-9D6B-FAAF6236FADD}C:\users\phepher\appdata\local\citra\nightly-mingw\citra-qt.exe] => (Allow) C:\users\phepher\appdata\local\citra\nightly-mingw\citra-qt.exe () [Fichier non signé]
FirewallRules: [TCP Query User{B142DEA4-0268-4E51-BD00-9811C2CAFE7F}C:\users\phepher\appdata\local\citra\nightly-mingw\citra-qt.exe] => (Allow) C:\users\phepher\appdata\local\citra\nightly-mingw\citra-qt.exe () [Fichier non signé]
FirewallRules: [UDP Query User{B13F47D3-4389-4501-B5BE-09E56F459C9E}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [TCP Query User{9F65C3CB-E1FF-4E86-AF9C-A7E9DDCD54E7}C:\games\the sims 4\game\bin\ts4_x64.exe] => (Allow) C:\games\the sims 4\game\bin\ts4_x64.exe (Electronic Arts Inc.) [Fichier non signé]
FirewallRules: [{005BF477-FE60-4708-B194-5D4E356219D9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{89E9F46D-FFC1-4CCA-A10A-2387D6EBC417}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{307FB0A8-5457-4F07-AD30-0365320DF7A8}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B63C3454-B607-4E92-8AF9-56B1536401E4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{E7EE1C60-9180-4E76-9672-89B13382F307}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{DA78F14C-EA3B-4606-90EE-DEC902361538}C:\program files (x86)\steam\steam.exe] => (Allow) C:\program files (x86)\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{00B4701A-2320-4ADF-B328-931D081A70F2}C:\program files (x86)\sony\ps4 remote play\remoteplay.exe] => (Allow) C:\program files (x86)\sony\ps4 remote play\remoteplay.exe => Pas de fichier
FirewallRules: [TCP Query User{33DAD971-F628-485C-BC03-FCA7BD00B369}C:\program files (x86)\sony\ps4 remote play\remoteplay.exe] => (Allow) C:\program files (x86)\sony\ps4 remote play\remoteplay.exe => Pas de fichier
FirewallRules: [UDP Query User{87040766-C218-4001-BFB3-3AA8820421D9}C:\program files (x86)\origin games\fifa 16\fifa16.exe] => (Allow) C:\program files (x86)\origin games\fifa 16\fifa16.exe => Pas de fichier
FirewallRules: [TCP Query User{D58F1E15-76EB-4A10-BC2B-216E804F2F96}C:\users\phepher\downloads\cookies\sensual adventures - episode 5\sensual adventures - episode 5\episode 5.exe] => (Allow) C:\users\phepher\downloads\cookies\sensual adventures - episode 5\sensual adventures - episode 5\episode 5.exe => Pas de fichier
FirewallRules: [UDP Query User{04C91A06-9F3A-4313-992D-D0FD1D1E7234}C:\users\phepher\downloads\cookies\sensual adventures - episode 5\sensual adventures - episode 5\episode 5.exe] => (Allow) C:\users\phepher\downloads\cookies\sensual adventures - episode 5\sensual adventures - episode 5\episode 5.exe => Pas de fichier
FirewallRules: [TCP Query User{A38AF93B-87EF-4FB2-A306-F737EF57E1AC}C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe] => (Allow) C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe () [Fichier non signé]
FirewallRules: [UDP Query User{96FD8E40-8D15-4DBE-B389-B513732CF511}C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe] => (Allow) C:\users\phepher\downloads\cookies\man of the house v1.0.2c (extra)\man of the house.exe () [Fichier non signé]
FirewallRules: [{156ACFE8-3C36-44F6-9342-75B91D250E91}] => (Allow) C:\Program Files\BlueStacks_nxt\HD-Player.exe => Pas de fichier
FirewallRules: [{6770825C-ABDF-4F20-89A9-5F27B72CB4F4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{84099924-E109-4CF5-991C-9A6412F77FCA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{0FB84C02-5527-4812-96C9-50C0E0000C6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4678B596-7A26-4333-BC99-4F8387F52AE7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9A89A3DB-F9AA-4168-9F92-5CF30996C8BD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4D295326-55B9-4485-B77B-93838C2CDA6A}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{5600276D-0260-41C0-93ED-02A70C5340F0}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0E76C4D5-AE9F-4AC1-B1CC-18AB81654CA3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0F60583E-C0C7-4ACD-BD3C-761481621415}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{81EB1156-6CF1-4E94-B84E-AAA8E311D579}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7B471D6D-D7E7-4150-B2A8-C8C7A2E42FB3}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8CD91C1C-50AF-4849-9A01-AEE4E10B82D2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DC90ED16-E5E3-49B0-8288-45EFB133EAE2}] => (Allow) C:\Program Files\WindowsApps\AppleInc.iTunes_12114.15.53119.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{93236CE7-5440-4EC0-A713-F769D34E8EE1}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6957EABA-6125-469F-965E-E92DCE374EDC}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{04E04CBE-2A8C-4674-A2D9-A42AF17A9C19}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{70A824E4-CFC0-43E2-A1EF-310BA03829F0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.75.140.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{1042BEC9-F435-4053-BEA4-8F13464EDBF8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{344F219D-5F0A-4F9E-A687-18E55A3167D4}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\92.0.902.78\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Points de restauration =========================

19-08-2021 03:29:21 Point de contrôle planifié

==================== Éléments en erreur du Gestionnaire de périphériques ============

==================== Erreurs du Journal des événements: ========================

Erreurs Application:
==================
Error: (08/21/2021 06:14:45 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: DESKTOP-E4H5NSL)
Description: Impossible de fermer l’application ou le service « RegRun Start Control ».

Error: (08/21/2021 05:43:50 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (08/21/2021 05:42:42 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’appel de la routine QueryFullProcessImageNameW. hr = 0x80070006, Descripteur non valide
.

Opération :
Opération asynchrone en cours d’exécution

Contexte :
État actuel: DoSnapshotSet

Error: (08/20/2021 09:51:09 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: L’optimiseur de stockage n’a pas pu terminer réoptimisation sur OS (C:) car : L’opération demandée n’est pas prise en charge par le matériel sous-jacent au volume. (0x8900002A)

Error: (08/20/2021 04:57:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbamtray.exe, version : 4.0.0.1055, horodatage : 0x60e6f01b
Nom du module défaillant : Qt5Core.dll, version : 5.14.1.0, horodatage : 0x603971ce
Code d’exception : 0xc0000409
Décalage d’erreur : 0x000000000002a678
ID du processus défaillant : 0xafc
Heure de début de l’application défaillante : 0x01d795ae71f539d1
Chemin d’accès de l’application défaillante : C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Chemin d’accès du module défaillant: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID de rapport : 0f3a48e1-9ecf-45d8-8a7d-c7b2f47d0e6f
Nom complet du package défaillant :
ID de l’application relative au package défaillant :

Error: (08/20/2021 05:44:38 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (08/19/2021 05:43:49 AM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (08/18/2021 10:27:05 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Erreurs système:
=============
Error: (08/21/2021 07:19:58 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Gestionnaire d’installation de périphérique n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/21/2021 07:19:58 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Gestionnaire d’installation de périphérique.

Error: (08/21/2021 07:06:46 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service WSearch.

Error: (08/21/2021 06:04:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/21/2021 06:04:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Cache de police de Windows Presentation Foundation 3.0.0.0.

Error: (08/21/2021 06:03:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Origin Web Helper Service n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.

Error: (08/21/2021 06:03:50 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service Origin Web Helper Service.

Error: (08/21/2021 06:01:12 AM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la réponse transactionnelle du service ClickToRunSvc.

Windows Defender:
================
Date: 2021-08-20 18:27:12
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {040B193A-8B35-4ABE-8362-663A02263DA7}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-E4H5NSL\PHEPHER

Date: 2021-08-20 14:11:38
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {68768BFA-ED66-49BE-A0B6-7C9365E35BC3}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-08-19 15:13:07
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {7C1EB71A-56E0-45CE-92D3-36FF464726DE}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-08-18 23:40:51
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {EED0DF6A-B58A-4DA1-8C54-D4AB4C53A8A8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

Date: 2021-08-17 15:38:01
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {59C4CFDE-98F8-428C-AC03-B7D9AF0841C8}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système

CodeIntegrity:
===============
Date: 2021-07-10 04:14:06
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.

==================== Infos Mémoire ===========================

BIOS: American Megatrends Inc. X756UQK.301 09/08/2016
Carte mère: ASUSTeK COMPUTER INC. X756UQK
Processeur: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Pourcentage de mémoire utilisée: 44%
Mémoire physique - RAM - totale: 8074.98 MB
Mémoire physique - RAM - disponible: 4503.07 MB
Mémoire virtuelle totale: 9354.98 MB
Mémoire virtuelle disponible: 5034.46 MB

==================== Lecteurs ================================

Drive c: (OS) (Fixed) (Total:930.67 GB) (Free:261.07 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]

\\?\Volume{3adbaca0-deed-4107-bda1-e7131eb21040}\ () (Fixed) (Total:0.57 GB) (Free:0.07 GB) NTFS
\\?\Volume{ac2e4dd6-6eb6-4357-a172-0ad6dce8f366}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.22 GB) FAT32

==================== MBR & Table des partitions ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 988827DD)

Partition: GPT.

==================== Fin de Addition.txt =======================

Signaler le contenu de ce document