Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 11-12-2021
Exécuté par lenom (15-12-2021 16:52:20)
Exécuté depuis C:\Users\lenom\Desktop
Microsoft Windows 10 Famille Version 20H2 19042.1348 (X64) (2020-11-28 10:24:00)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-2086829620-3113661109-3668723976-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2086829620-3113661109-3668723976-503 - Limited - Disabled)
Invité (S-1-5-21-2086829620-3113661109-3668723976-501 - Limited - Disabled)
lenom (S-1-5-21-2086829620-3113661109-3668723976-1001 - Administrator - Enabled) => C:\Users\lenom
WDAGUtilityAccount (S-1-5-21-2086829620-3113661109-3668723976-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Battle.net (HKLM-x32\...\Battle.net) (Version: - )
Biblio Manuels version 3.5.0 (HKLM-x32\...\24E53B05-258A-419A-B2FE-F3F059C85B4C_is1) (Version: 3.5.0 - Sejer)
CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1567 - Disc Soft Ltd)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.171.5063 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{f343b46a-1db8-46b4-ac1c-1d88c3f24d45}) (Version: 12.0.171.5063 - Electronic Arts)
Easy Interactive Tools Ver.5.02 (HKLM-x32\...\{E5D9ABD2-AD57-493E-BE1E-A8F4BA7BCE3D}) (Version: 5.0.2.0 - SEIKO EPSON CORPORATION)
FTL version 1.6.12 (HKLM-x32\...\{20E23A40-38E5-4DD6-B738-BC8097AE66B6}_is1) (Version: 1.6.12 - Subset Games)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Hotline Miami (HKLM-x32\...\1207659118_is1) (Version: gog-8(a) - GOG.com)
Jocastore 1.0.0 (HKLM-x32\...\3709003e-511d-51a2-b230-0d40c74869a8) (Version: 1.0.0 - Editions JOCATOP)
Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version: - )
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29914 (HKLM-x32\...\{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Miniconda3 py38_4.9.2 (Python 3.8.5 64-bit) (HKLM\...\Miniconda3 py38_4.9.2 (Python 3.8.5 64-bit)) (Version: py38_4.9.2 - Anaconda, Inc.)
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 95.0 (x64 fr)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 83.0 - Mozilla)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Pilote graphique 471.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.8 (HKLM-x32\...\{FDE124E1-6198-42CB-8A93-B383D9B9FD25}) (Version: 4.18.9803 - Apache Software Foundation)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.1201.111814 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8554 - Realtek Semiconductor Corp.)
RM Easiteach (HKLM-x32\...\{0EE2025A-5D5E-4E53-8BD6-AD7DB1B9E87F}) (Version: 3.42 - RM Education plc)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 116.2.10277 - Ubisoft)
UltraStar WorldParty (HKLM-x32\...\UltraStar WorldParty) (Version: 21.02 - UltraStar España)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Packages:
=========
Age of Empires IV -> C:\Program Files\WindowsApps\Microsoft.Cardinal_5.0.9369.0_x64__8wekyb3d8bbwe [2021-12-13] (Microsoft Studios)
Among Us -> C:\Program Files\WindowsApps\Innersloth.AmongUs_2021.11.11.0_x64__fw5x688tam7rm [2021-11-11] (InnerSloth)
Call of The Sea -> C:\Program Files\WindowsApps\RawFury.CallofTheSeaW10_1.5.15.0_x64__9s0pnehqffj7t [2021-08-25] (Raw Fury)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2021-12-07] (INTEL CORP) [Startup Task]
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-06] (Microsoft Corporation)
Doom Eternal - PC -> C:\Program Files\WindowsApps\BethesdaSoftworks.DOOMEternal-PC_1.0.15.0_x64__3275kfvn8vcwc [2021-12-12] (Bethesda Softworks)
DOOM Eternal: Campaign -> C:\Program Files\WindowsApps\BethesdaSoftworks.DOOMEternalCampaignPC_1.0.1.0_x64__3275kfvn8vcwc [2021-08-01] (Bethesda Softworks)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-08-06] (Microsoft Corporation)
Fallout 76 -> C:\Program Files\WindowsApps\Mutable\BethesdaSoftworks.Fallout76-PC_1.0.42.0_x64__3275kfvn8vcwc [2021-10-26] (0)
FINAL FANTASY VII WINDOWS EDITION -> C:\Program Files\WindowsApps\39EA002F.FINALFANTASYVII_1.0.2.0_x64__n746a19ndrrjg [2021-10-20] (0)
FINAL FANTASY VIII Remastered WINDOWS EDITION -> C:\Program Files\WindowsApps\39EA002F.FINALFANTASYVIIIRemastered_1.0.3.0_x64__n746a19ndrrjg [2021-10-20] (SQUARE ENIX CO. LTD.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-08-02] (NVIDIA Corp.)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.106.3544.2_x64__8wekyb3d8bbwe [2021-12-08] (ms-resource:PublisherDisplayName)
Slay The Spire -> C:\Program Files\WindowsApps\HumbleBundle.SlayTheSpire_2.4.0.0_x86__q2mcdwmzx4qja [2021-04-16] (Humble Bundle)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0 [2021-11-27] (Spotify AB) [Startup Task]
The Outer Worlds -> C:\Program Files\WindowsApps\PrivateDivision.TheOuterWorldsWindows10_1.5.696.0_x64__hv3d7yfbgr2rp [2021-03-17] (Private Division)
We Happy Few -> C:\Program Files\WindowsApps\CompulsionGamesInc.WeHappyFew_1.8.8987.2_x64__eae46zy90r9xg [2021-04-16] (Compulsion Games Inc)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-12-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_38266f492e428875\nvshext.dll [2021-07-13] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-12-13] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\lenom\Desktop\FaceSwap.lnk -> C:\Users\lenom\faceswap\faceswap_win_launcher.bat ()
==================== Modules chargés (Avec liste blanche) =============
2020-12-17 20:18 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
2021-06-11 19:38 - 2021-06-11 19:39 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\Control Panel\Desktop\\Wallpaper -> c:\users\lenom\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\page0001.jpg
DNS Servers: 192.168.74.198
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\StartupFolder: => "Easy Interactive Tools Ver.5.02.lnk"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "Synapse3"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "Discord"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{A3CE0BE3-1A78-4528-88B3-4D6FBB2D2961}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A3F9A7AB-CAC8-42D5-B44F-C5355EC2928E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9A197B22-1DDC-4408-8CBB-3081ACEDEB1F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0F27DF2C-B6CD-4658-814E-228421FACA2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{88C79064-90CB-4CED-8BDF-D753D33C57F3}C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{5335B9D7-957D-49A3-BD9B-DE8408BDFF27}C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd -> The Creative Assembly Ltd)
FirewallRules: [{E7E68C97-EF7E-4511-91EA-88FF571AE831}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{47A97547-0A30-4E91-87F3-4A41EA6B831A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ED443FD9-63EF-4651-AB62-4794F206068F}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{0EB93309-B4EC-4E0E-A8E7-CE19540AE53A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{550FAE45-E031-47DB-AA90-9A4709D0F399}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4C89390A-4CE0-463C-A308-36A5354649A4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{BC7C71F4-AB72-461B-965C-4B89031B84EA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B0F55A6B-5FD8-4ABD-BDF8-93EEE907D55F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{04210DF9-94B7-44F4-81A3-B8F46C00DF67}C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{4AA54626-D8E0-4616-87BB-DADC1CB05035}C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{FCE9F14F-8CA5-460A-903B-D964B9DC0AD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Overcooked\Overcooked.exe () [Fichier non signé]
FirewallRules: [{BE2DDAC4-A043-4EC7-B9B7-B67F6FABC705}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Overcooked\Overcooked.exe () [Fichier non signé]
FirewallRules: [{800121EC-A293-43A0-8BDE-3F19A49C51E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Root\Root.exe (Dire Wolf Digital, LLC -> )
FirewallRules: [{F91C84FE-76AE-4E37-A29E-EAFBBD3DE225}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Root\Root.exe (Dire Wolf Digital, LLC -> )
FirewallRules: [TCP Query User{649B7A79-A39B-4DAB-8512-E0B147F6FF14}F:5\game\aoe2de.exe] => (Allow) F:5\game\aoe2de.exe => Pas de fichier
FirewallRules: [UDP Query User{F9419AAF-D2A7-477A-9FB6-6A012B0107F2}F:5\game\aoe2de.exe] => (Allow) F:5\game\aoe2de.exe => Pas de fichier
FirewallRules: [TCP Query User{F55460FE-EDB0-4D30-9238-220DAB671633}F:5\game\battleserver\battleserver.exe] => (Allow) F:5\game\battleserver\battleserver.exe => Pas de fichier
FirewallRules: [UDP Query User{9C1AAC5D-7E61-4B67-80B5-851EDB641A68}F:5\game\battleserver\battleserver.exe] => (Allow) F:5\game\battleserver\battleserver.exe => Pas de fichier
FirewallRules: [{35717987-843F-4784-B3BC-E28DC5019995}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraforming Mars\TerraformingMars.exe () [Fichier non signé]
FirewallRules: [{5189A934-484D-49F0-A32C-A93A241DA1F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraforming Mars\TerraformingMars.exe () [Fichier non signé]
FirewallRules: [{A51BC447-8181-4BA9-B0C4-F059C3B4979F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{B757A5C2-4C66-484C-9D7E-349FDC11476B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{4460BE0C-1033-423D-B73A-9D3F63B52670}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{588FEC39-CA28-4546-98D0-001E68FE7CF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{3ECAE687-0CB3-4561-AC6E-FEFF71C4B94B}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{D6E52113-F9CF-413C-8F00-6AB2854C77C7}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{84AD6410-5C38-4093-A2A9-CC076CB5ACFD}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé]
FirewallRules: [{E2F61C26-01FE-4356-9E79-5DE51538B869}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé]
FirewallRules: [TCP Query User{19A3C215-DAD6-459C-9A7B-A779978FE612}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{9601AC36-0F4E-4702-A9CB-AF5F3FDA98E2}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E2263BDC-DD69-4962-BCA2-D4A51FAE1A7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Escapists 2\TheEscapists2.exe () [Fichier non signé]
FirewallRules: [{B625E232-105B-494A-8AC8-226889C950CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Escapists 2\TheEscapists2.exe () [Fichier non signé]
FirewallRules: [{E5D99AA5-CB9C-40C8-A97D-75ECC558AC0E}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\swkotor\swkotor.exe (BioWare Corp.) [Fichier non signé]
FirewallRules: [{87183AFD-05D8-47D2-8885-C3D70C982677}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\swkotor\swkotor.exe (BioWare Corp.) [Fichier non signé]
FirewallRules: [{F7F58831-D54A-4398-BE2C-FD8477795889}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{E192A76B-0A4A-4D75-930A-8B8825D9E7A9}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B707B8C4-AFCA-4680-A708-61213B6B99E3}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7ED2C31A-4D04-452A-B709-EDA84DB8A0E9}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{1052590F-F591-476C-B4BF-C3D43BBF3E3F}F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{7BCCAA2A-9A82-4FE0-B4E3-DAD4B4B1E577}F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [{64CF80D7-1D12-4D90-BB1D-6600B1CD0B1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{7D0E4706-AF8F-413D-AFD4-64FFF0028164}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [TCP Query User{AE88EA9E-DBAB-4321-933C-318ABD4A0685}F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe => Pas de fichier
FirewallRules: [UDP Query User{89A7E55F-E5A2-47EC-A76F-0793A40D4FDD}F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe => Pas de fichier
FirewallRules: [{B665338E-3857-4FC0-8765-E9873684435E}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Trine 2\trine2_launcher.exe () [Fichier non signé]
FirewallRules: [{70BB6CD9-A8A8-41CB-9823-8759919E83F4}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Trine 2\trine2_launcher.exe () [Fichier non signé]
FirewallRules: [{9ABD6299-CEAC-4DE1-A76C-6C6F99D6F3B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{83273100-395C-450C-B96C-7902A31A7611}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{26D91939-91D3-4157-8333-DC5AC833E49F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{1BB142D8-30D0-4DEE-ACC0-8C0ACACB9D04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{1CC5E4B4-E614-4179-86A2-E99E0F9001F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{8A347B99-EBBA-41F5-860E-96645C3F667D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{07DA8A32-3D7A-46A5-A219-10F2FF8E92F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{8C12260E-6805-4FC0-9B69-60F86555314A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [TCP Query User{973295EE-2C91-400E-B219-1348FC5C5B9C}F:5\reliccardinal_ws.exe] => (Allow) F:5\reliccardinal_ws.exe => Pas de fichier
FirewallRules: [UDP Query User{7E8CFDB8-6EC4-4D0E-8E1F-EF965706BC88}F:5\reliccardinal_ws.exe] => (Allow) F:5\reliccardinal_ws.exe => Pas de fichier
FirewallRules: [{B0FB6E4C-9E24-481D-9E97-9AD84F714872}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{47D2326A-378C-4AA6-9B49-19B6408A0534}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B1408F98-9B8B-4A5C-9D1B-FF84E95CBA37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D597205D-C394-47E0-8C09-11F535D1B152}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BDD4C361-B64B-407E-97A9-D2B9DE6D8296}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{F92E20BF-3444-4120-BE55-AA83023F7902}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{5FA2E406-7BAB-4857-9AA5-69F8361B9D9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{303E3228-C456-42FC-9DDB-A4EC8BE432F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{76215433-EE1F-4EF3-8DA9-55D2BE20A34D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{9D86DE6D-AFB8-451C-B687-2CD5BB9FC4EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{65D51663-F595-4494-8D7F-8A40577BD686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{673D1EF7-6E07-4CF9-8A5E-A86164F46939}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{71262496-88D7-4649-B5B9-5D91C465F3D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{7A013F1E-9CA4-4519-A9BF-5EA17688E8EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{543950E2-8685-4720-A7E6-D4BD46053077}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Barotrauma\Barotrauma.exe (FakeFish, Undertow Games) [Fichier non signé]
FirewallRules: [{C422F7B6-E61E-4EDB-9547-54E9FA79D382}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Barotrauma\Barotrauma.exe (FakeFish, Undertow Games) [Fichier non signé]
FirewallRules: [{DEA8D35D-240C-4AA3-9F6B-5D795597058B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AC9C9FE8-C307-4103-A0AE-2A1B4840E3BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FAE1338C-9238-4794-A3BE-8E0391117D8C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D1FD038A-9AA9-4625-80B1-310DC1F2AB0F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F18CB36F-0102-487D-97A8-E48755D918AA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A8A17EEB-8615-4BE8-A1E8-F1727FE52292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3983489D-EFD8-4C65-9A6E-A39307AA7885}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{17C1BEB3-829B-446B-A54A-E01520162205}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BB28EA0A-557D-4A66-9664-3A47649E3459}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Points de restauration =========================
13-12-2021 21:46:31 Fin de désinfection
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Contrôleur de mémoire PCI
Description: Contrôleur de mémoire PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Contrôleur de bus SM
Description: Contrôleur de bus SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Acquisition de données PCI et contrôleur de traitement du signal
Description: Acquisition de données PCI et contrôleur de traitement du signal
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Périphérique PCI
Description: Périphérique PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (12/15/2021 04:50:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MBAMService.exe, version : 3.2.0.1009, horodatage : 0x61854cd8
Nom du module défaillant : ntdll.dll, version : 10.0.19041.1288, horodatage : 0xa280d1d6
Code d’exception : 0xc0000374
Décalage d’erreur : 0x00000000000ff199
ID du processus défaillant : 0xcb0
Heure de début de l’application défaillante : 0x01d7f0faa66aff93
Chemin d’accès de l’application défaillante : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : 9a8a28bc-2a3b-49bf-81b3-c784dea52437
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/15/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007
Error: (12/15/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/14/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007
Error: (12/14/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/13/2021 09:50:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbamtray.exe, version : 4.0.0.1190, horodatage : 0x61aa6c91
Nom du module défaillant : Qt5Core.dll, version : 5.14.1.0, horodatage : 0x603971ce
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000219dc5
ID du processus défaillant : 0x1d00
Heure de début de l’application défaillante : 0x01d7f062c5786dac
Chemin d’accès de l’application défaillante : C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Chemin d’accès du module défaillant: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID de rapport : e928d576-71b6-49d7-86ab-76ff6e4b6338
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/13/2021 09:34:24 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Error: (12/13/2021 09:17:53 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Erreurs système:
=============
Error: (12/15/2021 02:11:25 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Error: (12/14/2021 03:55:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service EABackgroundService n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (12/14/2021 03:55:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service EABackgroundService.
Error: (12/13/2021 09:48:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service EABackgroundService n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (12/13/2021 09:48:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service EABackgroundService.
Error: (12/13/2021 06:47:09 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Error: (12/13/2021 05:06:04 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Error: (12/13/2021 04:43:16 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Windows Defender:
================
Date: 2021-12-13 09:14:49
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {43FA831E-DC13-4D91-8042-465D2EE3CC07}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2021-12-13 04:23:49
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C38D57B7-CEC1-46EC-A42D-3EC2F1FE37BD}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-L4G7L49\lenom
Date: 2021-12-13 04:15:13
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {E89D264E-3DAE-4D56-BB9C-CECF3606D23E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-L4G7L49\lenom
Date: 2021-12-08 20:05:14
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {A04AEC00-8A60-47A5-99CB-3821204817FE}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2021-12-07 14:08:37
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {B7437BE8-BCB3-4244-BA32-5D394BED9A8E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]:
Date: 2021-11-29 10:38:15
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.353.1712.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.18700.4
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.
Date: 2021-11-29 10:38:15
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.353.1712.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.18700.4
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.
CodeIntegrity:
===============
Date: 2021-12-15 16:50:15
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2021-12-15 14:53:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-06-24 14:35:03
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\oobe\UserOOBEBroker.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-06-24 14:34:41
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\WinBioPlugIns\FaceDriver\amd64\FaceRecognitionSensorAdapterVsm.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
BIOS: Insyde F.14 02/23/2018
Carte mère: HP 836B
Processeur: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 64%
Mémoire physique - RAM - totale: 8077.22 MB
Mémoire physique - RAM - disponible: 2837.63 MB
Mémoire virtuelle totale: 17805.22 MB
Mémoire virtuelle disponible: 10191.2 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:465.15 GB) (Free:33.97 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:16.36 GB) (Free:1.94 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive f: (Windows) (Fixed) (Total:913.92 GB) (Free:154.36 GB) NTFS
\\?\Volume{0c0747a3-2f32-4d91-bdb2-899bbb783ee5}\ () (Fixed) (Total:0.96 GB) (Free:0.42 GB) NTFS
\\?\Volume{1ec18656-201f-4703-82fd-c26137f238ff}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{d377576a-532a-7386-a5cf-44954297d1ac}\ () (Fixed) (Total:2.67 GB) (Free:0 GB) NTFS
\\?\Volume{4ee3a62c-82b4-4f42-4e08-79cb7607af36}\ () (Fixed) (Total:3.43 GB) (Free:0 GB) NTFS
\\?\Volume{01a559b6-22f3-078c-27fe-8ad5a150967d}\ () (Fixed) (Total:87.6 GB) (Free:0 GB) NTFS
\\?\Volume{20af4153-6165-f2c6-b7d0-0c6f65a43426}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS
\\?\Volume{1bb2bd44-62cc-9873-4d1f-e34680276f40}\ () (Fixed) (Total:0.51 GB) (Free:0 GB) NTFS
\\?\Volume{3b44abf6-4192-f404-65ca-fd8f774f3d28}\ () (Fixed) (Total:0.43 GB) (Free:0 GB) NTFS
\\?\Volume{ec8cf840-c504-2383-47b5-12d05e12034b}\ () (Fixed) (Total:85.68 GB) (Free:0 GB) NTFS
\\?\Volume{2132be11-e903-22fc-6da2-e43b59b94feb}\ () (Fixed) (Total:54.98 GB) (Free:0 GB) NTFS
\\?\Volume{7315615c-ffe3-7221-f856-5e20ae353d35}\ () (Fixed) (Total:37.54 GB) (Free:0 GB) NTFS
\\?\Volume{6eee964c-9329-490d-985f-010e7fd75849}\ () (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32
\\?\Volume{022fb186-a70e-4738-8f80-62d27b3bad95}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9F86779F)
Partition: GPT.
==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: E483113A)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 4.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 5.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 6.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 7.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 8.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 9.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 10.
==================== Fin de Addition.txt =======================
Exécuté par lenom (15-12-2021 16:52:20)
Exécuté depuis C:\Users\lenom\Desktop
Microsoft Windows 10 Famille Version 20H2 19042.1348 (X64) (2020-11-28 10:24:00)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-2086829620-3113661109-3668723976-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2086829620-3113661109-3668723976-503 - Limited - Disabled)
Invité (S-1-5-21-2086829620-3113661109-3668723976-501 - Limited - Disabled)
lenom (S-1-5-21-2086829620-3113661109-3668723976-1001 - Administrator - Enabled) => C:\Users\lenom
WDAGUtilityAccount (S-1-5-21-2086829620-3113661109-3668723976-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
7-Zip 19.00 (x64) (HKLM\...\7-Zip) (Version: 19.00 - Igor Pavlov)
Battle.net (HKLM-x32\...\Battle.net) (Version: - )
Biblio Manuels version 3.5.0 (HKLM-x32\...\24E53B05-258A-419A-B2FE-F3F059C85B4C_is1) (Version: 3.5.0 - Sejer)
CCleaner (HKLM\...\CCleaner) (Version: 5.87 - Piriform)
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1567 - Disc Soft Ltd)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 12.0.171.5063 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{f343b46a-1db8-46b4-ac1c-1d88c3f24d45}) (Version: 12.0.171.5063 - Electronic Arts)
Easy Interactive Tools Ver.5.02 (HKLM-x32\...\{E5D9ABD2-AD57-493E-BE1E-A8F4BA7BCE3D}) (Version: 5.0.2.0 - SEIKO EPSON CORPORATION)
FTL version 1.6.12 (HKLM-x32\...\{20E23A40-38E5-4DD6-B738-BC8097AE66B6}_is1) (Version: 1.6.12 - Subset Games)
GIMP 2.10.24 (HKLM\...\GIMP-2_is1) (Version: 2.10.24 - The GIMP Team)
Hotline Miami (HKLM-x32\...\1207659118_is1) (Version: gog-8(a) - GOG.com)
Jocastore 1.0.0 (HKLM-x32\...\3709003e-511d-51a2-b230-0d40c74869a8) (Version: 1.0.0 - Editions JOCATOP)
Malwarebytes version 4.5.0.152 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.5.0.152 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft Edge WebView2 Runtime (HKLM-x32\...\Microsoft EdgeWebView) (Version: 96.0.1054.53 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\OneDriveSetup.exe) (Version: 21.230.1107.0004 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version: - )
Microsoft Update Health Tools (HKLM\...\{29B15818-E79F-4AB0-8938-9410C807AD76}) (Version: 2.84.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29334 (HKLM-x32\...\{a9cfe9c7-e54f-46cd-9c5c-542ff8e3e8c4}) (Version: 14.28.29334.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.28.29914 (HKLM-x32\...\{1b5476d9-ab8e-4b0d-b004-059a1bd5568b}) (Version: 14.28.29914.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Miniconda3 py38_4.9.2 (Python 3.8.5 64-bit) (HKLM\...\Miniconda3 py38_4.9.2 (Python 3.8.5 64-bit)) (Version: py38_4.9.2 - Anaconda, Inc.)
Mozilla Firefox (x64 fr) (HKLM\...\Mozilla Firefox 95.0 (x64 fr)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 83.0 - Mozilla)
NVIDIA FrameView SDK 1.1.4923.29968894 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29968894 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.3.38.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.60 - NVIDIA Corporation)
NVIDIA Pilote graphique 471.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 471.41 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
OpenOffice 4.1.8 (HKLM-x32\...\{FDE124E1-6198-42CB-8A93-B383D9B9FD25}) (Version: 4.18.9803 - Apache Software Foundation)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.6.1201.111814 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8554 - Realtek Semiconductor Corp.)
RM Easiteach (HKLM-x32\...\{0EE2025A-5D5E-4E53-8BD6-AD7DB1B9E87F}) (Version: 3.42 - RM Education plc)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version: - Ubisoft Montreal)
Ubisoft Connect (HKLM-x32\...\Uplay) (Version: 116.2.10277 - Ubisoft)
UltraStar WorldParty (HKLM-x32\...\UltraStar WorldParty) (Version: 21.02 - UltraStar España)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.16 - VideoLAN)
Packages:
=========
Age of Empires IV -> C:\Program Files\WindowsApps\Microsoft.Cardinal_5.0.9369.0_x64__8wekyb3d8bbwe [2021-12-13] (Microsoft Studios)
Among Us -> C:\Program Files\WindowsApps\Innersloth.AmongUs_2021.11.11.0_x64__fw5x688tam7rm [2021-11-11] (InnerSloth)
Call of The Sea -> C:\Program Files\WindowsApps\RawFury.CallofTheSeaW10_1.5.15.0_x64__9s0pnehqffj7t [2021-08-25] (Raw Fury)
Centre de configuration des graphiques Intel® -> C:\Program Files\WindowsApps\AppUp.IntelGraphicsExperience_1.100.3407.0_x64__8j3eq9eme6ctt [2021-12-07] (INTEL CORP) [Startup Task]
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2021-08-06] (Microsoft Corporation)
Doom Eternal - PC -> C:\Program Files\WindowsApps\BethesdaSoftworks.DOOMEternal-PC_1.0.15.0_x64__3275kfvn8vcwc [2021-12-12] (Bethesda Softworks)
DOOM Eternal: Campaign -> C:\Program Files\WindowsApps\BethesdaSoftworks.DOOMEternalCampaignPC_1.0.1.0_x64__3275kfvn8vcwc [2021-08-01] (Bethesda Softworks)
Extension Photos -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2021.39122.10110.0_x64__8wekyb3d8bbwe [2021-08-06] (Microsoft Corporation)
Fallout 76 -> C:\Program Files\WindowsApps\Mutable\BethesdaSoftworks.Fallout76-PC_1.0.42.0_x64__3275kfvn8vcwc [2021-10-26] (0)
FINAL FANTASY VII WINDOWS EDITION -> C:\Program Files\WindowsApps\39EA002F.FINALFANTASYVII_1.0.2.0_x64__n746a19ndrrjg [2021-10-20] (0)
FINAL FANTASY VIII Remastered WINDOWS EDITION -> C:\Program Files\WindowsApps\39EA002F.FINALFANTASYVIIIRemastered_1.0.3.0_x64__n746a19ndrrjg [2021-10-20] (SQUARE ENIX CO. LTD.)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.961.0_x64__56jybvy8sckqj [2021-08-02] (NVIDIA Corp.)
Sea of Thieves -> C:\Program Files\WindowsApps\Microsoft.SeaofThieves_2.106.3544.2_x64__8wekyb3d8bbwe [2021-12-08] (ms-resource:PublisherDisplayName)
Slay The Spire -> C:\Program Files\WindowsApps\HumbleBundle.SlayTheSpire_2.4.0.0_x86__q2mcdwmzx4qja [2021-04-16] (Humble Bundle)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0 [2021-11-27] (Spotify AB) [Startup Task]
The Outer Worlds -> C:\Program Files\WindowsApps\PrivateDivision.TheOuterWorldsWindows10_1.5.696.0_x64__hv3d7yfbgr2rp [2021-03-17] (Private Division)
We Happy Few -> C:\Program Files\WindowsApps\CompulsionGamesInc.WeHappyFew_1.8.8987.2_x64__eae46zy90r9xg [2021-04-16] (Compulsion Games Inc)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => C:\Program Files\DAEMON Tools Lite\dtshl64.dll [2020-12-17] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-12-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvhmi.inf_amd64_38266f492e428875\nvshext.dll [2021-07-13] (Nvidia Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Fichier non signé]
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-12-13] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Avec liste blanche) ====================
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\lenom\Desktop\FaceSwap.lnk -> C:\Users\lenom\faceswap\faceswap_win_launcher.bat ()
==================== Modules chargés (Avec liste blanche) =============
2020-12-17 20:18 - 2019-02-21 17:00 - 000078336 _____ (Igor Pavlov) [Fichier non signé] C:\Program Files\7-Zip\7-zip.dll
==================== Alternate Data Streams (Avec liste blanche) ========
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://hp17win10.msn.com/?pc=HCTE
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2019-12-07 10:14 - 2019-12-07 10:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
2021-06-11 19:38 - 2021-06-11 19:39 - 000000375 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\Control Panel\Desktop\\Wallpaper -> c:\users\lenom\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\page0001.jpg
DNS Servers: 192.168.74.198
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Warn)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKLM\...\StartupApproved\StartupFolder: => "Easy Interactive Tools Ver.5.02.lnk"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "Synapse3"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-2086829620-3113661109-3668723976-1001\...\StartupApproved\Run: => "Discord"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [{A3CE0BE3-1A78-4528-88B3-4D6FBB2D2961}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A3F9A7AB-CAC8-42D5-B44F-C5355EC2928E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9A197B22-1DDC-4408-8CBB-3081ACEDEB1F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{0F27DF2C-B6CD-4658-814E-228421FACA2F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{88C79064-90CB-4CED-8BDF-D753D33C57F3}C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd -> The Creative Assembly Ltd)
FirewallRules: [UDP Query User{5335B9D7-957D-49A3-BD9B-DE8408BDFF27}C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\total war warhammer ii\warhammer2.exe (The Creative Assembly Ltd -> The Creative Assembly Ltd)
FirewallRules: [{E7E68C97-EF7E-4511-91EA-88FF571AE831}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{47A97547-0A30-4E91-87F3-4A41EA6B831A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{ED443FD9-63EF-4651-AB62-4794F206068F}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{0EB93309-B4EC-4E0E-A8E7-CE19540AE53A}] => (Allow) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{550FAE45-E031-47DB-AA90-9A4709D0F399}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4C89390A-4CE0-463C-A308-36A5354649A4}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\rainbowsix_be.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{BC7C71F4-AB72-461B-965C-4B89031B84EA}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{B0F55A6B-5FD8-4ABD-BDF8-93EEE907D55F}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [TCP Query User{04210DF9-94B7-44F4-81A3-B8F46C00DF67}C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [UDP Query User{4AA54626-D8E0-4616-87BB-DADC1CB05035}C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe] => (Allow) C:\program files (x86)\ubisoft\ubisoft game launcher\games\tom clancy's rainbow six siege\rainbowsix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{FCE9F14F-8CA5-460A-903B-D964B9DC0AD1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Overcooked\Overcooked.exe () [Fichier non signé]
FirewallRules: [{BE2DDAC4-A043-4EC7-B9B7-B67F6FABC705}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Overcooked\Overcooked.exe () [Fichier non signé]
FirewallRules: [{800121EC-A293-43A0-8BDE-3F19A49C51E1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Root\Root.exe (Dire Wolf Digital, LLC -> )
FirewallRules: [{F91C84FE-76AE-4E37-A29E-EAFBBD3DE225}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Root\Root.exe (Dire Wolf Digital, LLC -> )
FirewallRules: [TCP Query User{649B7A79-A39B-4DAB-8512-E0B147F6FF14}F:5\game\aoe2de.exe] => (Allow) F:5\game\aoe2de.exe => Pas de fichier
FirewallRules: [UDP Query User{F9419AAF-D2A7-477A-9FB6-6A012B0107F2}F:5\game\aoe2de.exe] => (Allow) F:5\game\aoe2de.exe => Pas de fichier
FirewallRules: [TCP Query User{F55460FE-EDB0-4D30-9238-220DAB671633}F:5\game\battleserver\battleserver.exe] => (Allow) F:5\game\battleserver\battleserver.exe => Pas de fichier
FirewallRules: [UDP Query User{9C1AAC5D-7E61-4B67-80B5-851EDB641A68}F:5\game\battleserver\battleserver.exe] => (Allow) F:5\game\battleserver\battleserver.exe => Pas de fichier
FirewallRules: [{35717987-843F-4784-B3BC-E28DC5019995}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraforming Mars\TerraformingMars.exe () [Fichier non signé]
FirewallRules: [{5189A934-484D-49F0-A32C-A93A241DA1F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Terraforming Mars\TerraformingMars.exe () [Fichier non signé]
FirewallRules: [{A51BC447-8181-4BA9-B0C4-F059C3B4979F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{B757A5C2-4C66-484C-9D7E-349FDC11476B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForest.exe () [Fichier non signé]
FirewallRules: [{4460BE0C-1033-423D-B73A-9D3F63B52670}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{588FEC39-CA28-4546-98D0-001E68FE7CF8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Forest\TheForestVR.exe () [Fichier non signé]
FirewallRules: [{3ECAE687-0CB3-4561-AC6E-FEFF71C4B94B}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{D6E52113-F9CF-413C-8F00-6AB2854C77C7}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Warhammer Vermintide 2\launcher\Launcher.exe (Fatshark AB -> Fatshark AB)
FirewallRules: [{84AD6410-5C38-4093-A2A9-CC076CB5ACFD}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé]
FirewallRules: [{E2F61C26-01FE-4356-9E79-5DE51538B869}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Stardew Valley\Stardew Valley.exe (ConcernedApe) [Fichier non signé]
FirewallRules: [TCP Query User{19A3C215-DAD6-459C-9A7B-A779978FE612}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{9601AC36-0F4E-4702-A9CB-AF5F3FDA98E2}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E2263BDC-DD69-4962-BCA2-D4A51FAE1A7C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Escapists 2\TheEscapists2.exe () [Fichier non signé]
FirewallRules: [{B625E232-105B-494A-8AC8-226889C950CE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\The Escapists 2\TheEscapists2.exe () [Fichier non signé]
FirewallRules: [{E5D99AA5-CB9C-40C8-A97D-75ECC558AC0E}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\swkotor\swkotor.exe (BioWare Corp.) [Fichier non signé]
FirewallRules: [{87183AFD-05D8-47D2-8885-C3D70C982677}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\swkotor\swkotor.exe (BioWare Corp.) [Fichier non signé]
FirewallRules: [{F7F58831-D54A-4398-BE2C-FD8477795889}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{E192A76B-0A4A-4D75-930A-8B8825D9E7A9}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win64\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B707B8C4-AFCA-4680-A708-61213B6B99E3}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{7ED2C31A-4D04-452A-B709-EDA84DB8A0E9}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\SMITE\Binaries\Win32\SmiteEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{1052590F-F591-476C-B4BF-C3D43BBF3E3F}F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [UDP Query User{7BCCAA2A-9A82-4FE0-B4E3-DAD4B4B1E577}F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\smite\binaries\win64\smite.exe (Hirez Studios, Inc.) [Fichier non signé]
FirewallRules: [{64CF80D7-1D12-4D90-BB1D-6600B1CD0B1D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{7D0E4706-AF8F-413D-AFD4-64FFF0028164}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [TCP Query User{AE88EA9E-DBAB-4321-933C-318ABD4A0685}F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe => Pas de fichier
FirewallRules: [UDP Query User{89A7E55F-E5A2-47EC-A76F-0793A40D4FDD}F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\trine\_enchanted_edition_\trine1_32bit.exe => Pas de fichier
FirewallRules: [{B665338E-3857-4FC0-8765-E9873684435E}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Trine 2\trine2_launcher.exe () [Fichier non signé]
FirewallRules: [{70BB6CD9-A8A8-41CB-9823-8759919E83F4}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Trine 2\trine2_launcher.exe () [Fichier non signé]
FirewallRules: [{9ABD6299-CEAC-4DE1-A76C-6C6F99D6F3B8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{83273100-395C-450C-B96C-7902A31A7611}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{26D91939-91D3-4157-8333-DC5AC833E49F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{1BB142D8-30D0-4DEE-ACC0-8C0ACACB9D04}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{1CC5E4B4-E614-4179-86A2-E99E0F9001F0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{8A347B99-EBBA-41F5-860E-96645C3F667D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{07DA8A32-3D7A-46A5-A219-10F2FF8E92F9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{8C12260E-6805-4FC0-9B69-60F86555314A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [TCP Query User{973295EE-2C91-400E-B219-1348FC5C5B9C}F:5\reliccardinal_ws.exe] => (Allow) F:5\reliccardinal_ws.exe => Pas de fichier
FirewallRules: [UDP Query User{7E8CFDB8-6EC4-4D0E-8E1F-EF965706BC88}F:5\reliccardinal_ws.exe] => (Allow) F:5\reliccardinal_ws.exe => Pas de fichier
FirewallRules: [{B0FB6E4C-9E24-481D-9E97-9AD84F714872}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{47D2326A-378C-4AA6-9B49-19B6408A0534}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{B1408F98-9B8B-4A5C-9D1B-FF84E95CBA37}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D597205D-C394-47E0-8C09-11F535D1B152}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.78.159.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{BDD4C361-B64B-407E-97A9-D2B9DE6D8296}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{F92E20BF-3444-4120-BE55-AA83023F7902}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win64\RocketLeague.exe (Psyonix, LLC) [Fichier non signé]
FirewallRules: [{5FA2E406-7BAB-4857-9AA5-69F8361B9D9B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{303E3228-C456-42FC-9DDB-A4EC8BE432F5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin64\dontstarve_steam_x64.exe () [Fichier non signé]
FirewallRules: [{76215433-EE1F-4EF3-8DA9-55D2BE20A34D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{9D86DE6D-AFB8-451C-B687-2CD5BB9FC4EB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe () [Fichier non signé]
FirewallRules: [{65D51663-F595-4494-8D7F-8A40577BD686}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{673D1EF7-6E07-4CF9-8A5E-A86164F46939}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Mount & Blade II Bannerlord\bin\Win64_Shipping_Client\TaleWorlds.MountAndBlade.Launcher.exe (TaleWorlds Entertainment -> TaleWorlds Entertainment) [Fichier non signé]
FirewallRules: [{71262496-88D7-4649-B5B9-5D91C465F3D1}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{7A013F1E-9CA4-4519-A9BF-5EA17688E8EE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Total War WARHAMMER II\launcher\launcher.exe (The Creative Assembly Ltd -> Creative Assembly Ltd)
FirewallRules: [{543950E2-8685-4720-A7E6-D4BD46053077}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Barotrauma\Barotrauma.exe (FakeFish, Undertow Games) [Fichier non signé]
FirewallRules: [{C422F7B6-E61E-4EDB-9547-54E9FA79D382}] => (Allow) F:\Program Files (x86)\Steam\steamapps\common\Barotrauma\Barotrauma.exe (FakeFish, Undertow Games) [Fichier non signé]
FirewallRules: [{DEA8D35D-240C-4AA3-9F6B-5D795597058B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{AC9C9FE8-C307-4103-A0AE-2A1B4840E3BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{FAE1338C-9238-4794-A3BE-8E0391117D8C}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D1FD038A-9AA9-4625-80B1-310DC1F2AB0F}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F18CB36F-0102-487D-97A8-E48755D918AA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A8A17EEB-8615-4BE8-A1E8-F1727FE52292}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{3983489D-EFD8-4C65-9A6E-A39307AA7885}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{17C1BEB3-829B-446B-A54A-E01520162205}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.173.517.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{BB28EA0A-557D-4A66-9664-3A47649E3459}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\96.0.1054.53\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Points de restauration =========================
13-12-2021 21:46:31 Fin de désinfection
==================== Éléments en erreur du Gestionnaire de périphériques ============
Name: Contrôleur de mémoire PCI
Description: Contrôleur de mémoire PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Contrôleur de bus SM
Description: Contrôleur de bus SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Acquisition de données PCI et contrôleur de traitement du signal
Description: Acquisition de données PCI et contrôleur de traitement du signal
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Périphérique PCI
Description: Périphérique PCI
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (12/15/2021 04:50:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MBAMService.exe, version : 3.2.0.1009, horodatage : 0x61854cd8
Nom du module défaillant : ntdll.dll, version : 10.0.19041.1288, horodatage : 0xa280d1d6
Code d’exception : 0xc0000374
Décalage d’erreur : 0x00000000000ff199
ID du processus défaillant : 0xcb0
Heure de début de l’application défaillante : 0x01d7f0faa66aff93
Chemin d’accès de l’application défaillante : C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
Chemin d’accès du module défaillant: C:\Windows\SYSTEM32\ntdll.dll
ID de rapport : 9a8a28bc-2a3b-49bf-81b3-c784dea52437
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/15/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007
Error: (12/15/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/14/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 12007) (User: )
Description: Event-ID 12007
Error: (12/14/2021 01:34:07 PM) (Source: Firefox Default Browser Agent) (EventID: 0) (User: )
Description: Event-ID 0
Error: (12/13/2021 09:50:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante mbamtray.exe, version : 4.0.0.1190, horodatage : 0x61aa6c91
Nom du module défaillant : Qt5Core.dll, version : 5.14.1.0, horodatage : 0x603971ce
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000000219dc5
ID du processus défaillant : 0x1d00
Heure de début de l’application défaillante : 0x01d7f062c5786dac
Chemin d’accès de l’application défaillante : C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Chemin d’accès du module défaillant: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
ID de rapport : e928d576-71b6-49d7-86ab-76ff6e4b6338
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (12/13/2021 09:34:24 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Error: (12/13/2021 09:17:53 PM) (Source: SecurityCenter) (EventID: 17) (User: )
Description: Security Center n'a pas pu valider l'appelant. Erreur %1.
Erreurs système:
=============
Error: (12/15/2021 02:11:25 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Error: (12/14/2021 03:55:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service EABackgroundService n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (12/14/2021 03:55:44 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service EABackgroundService.
Error: (12/13/2021 09:48:25 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service EABackgroundService n’a pas pu démarrer en raison de l’erreur :
Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle.
Error: (12/13/2021 09:48:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (45000 millisecondes) a été atteint lors de l’attente de la connexion du service EABackgroundService.
Error: (12/13/2021 06:47:09 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Error: (12/13/2021 05:06:04 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Error: (12/13/2021 04:43:16 PM) (Source: Schannel) (EventID: 4103) (User: AUTORITE NT)
Description: Une erreur irrécupérable s'est produite lors de la création des informations d'identification client pour TLS. État d'erreur interne : 10013.
Windows Defender:
================
Date: 2021-12-13 09:14:49
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {43FA831E-DC13-4D91-8042-465D2EE3CC07}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2021-12-13 04:23:49
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C38D57B7-CEC1-46EC-A42D-3EC2F1FE37BD}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-L4G7L49\lenom
Date: 2021-12-13 04:15:13
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {E89D264E-3DAE-4D56-BB9C-CECF3606D23E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse complète
Utilisateur : DESKTOP-L4G7L49\lenom
Date: 2021-12-08 20:05:14
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {A04AEC00-8A60-47A5-99CB-3821204817FE}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2021-12-07 14:08:37
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {B7437BE8-BCB3-4244-BA32-5D394BED9A8E}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Event[0]:
Date: 2021-11-29 10:38:15
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.353.1712.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.18700.4
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.
Date: 2021-11-29 10:38:15
Description:
Antivirus Microsoft Defender a rencontré une erreur lors de la mise à jour de la veille de sécurité.
Nouvelle version de la veille de sécurité :
Version précédente de la veille de sécurité : 1.353.1712.0
Source de mise à jour : Serveur Microsoft Update
Type de veille de sécurité : Anti-virus
Type de mise à jour : Complet
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur :
Version précédente du moteur : 1.1.18700.4
Code d’erreur : 0x80240022
Description de l’erreur : Le programme ne peut pas rechercher les mises à jour de définitions.
CodeIntegrity:
===============
Date: 2021-12-15 16:50:15
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume8\Windows\System32\aepic.dll because the set of per-page image hashes could not be found on the system.
Date: 2021-12-15 14:53:54
Description:
Code Integrity determined that a process (\Device\HarddiskVolume8\Program Files\Mozilla Firefox\firefox.exe) attempted to load \Device\HarddiskVolume8\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Microsoft signing level requirements.
Date: 2021-06-24 14:35:03
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\oobe\UserOOBEBroker.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2021-06-24 14:34:41
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\WINDOWS\System32\WinBioPlugIns\FaceDriver\amd64\FaceRecognitionSensorAdapterVsm.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Infos Mémoire ===========================
BIOS: Insyde F.14 02/23/2018
Carte mère: HP 836B
Processeur: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Pourcentage de mémoire utilisée: 64%
Mémoire physique - RAM - totale: 8077.22 MB
Mémoire physique - RAM - disponible: 2837.63 MB
Mémoire virtuelle totale: 17805.22 MB
Mémoire virtuelle disponible: 10191.2 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:465.15 GB) (Free:33.97 GB) NTFS
Drive e: (RECOVERY) (Fixed) (Total:16.36 GB) (Free:1.94 GB) NTFS ==>[système avec composants d'amorçage (obtenu depuis lecteur)]
Drive f: (Windows) (Fixed) (Total:913.92 GB) (Free:154.36 GB) NTFS
\\?\Volume{0c0747a3-2f32-4d91-bdb2-899bbb783ee5}\ () (Fixed) (Total:0.96 GB) (Free:0.42 GB) NTFS
\\?\Volume{1ec18656-201f-4703-82fd-c26137f238ff}\ () (Fixed) (Total:0.5 GB) (Free:0.08 GB) NTFS
\\?\Volume{d377576a-532a-7386-a5cf-44954297d1ac}\ () (Fixed) (Total:2.67 GB) (Free:0 GB) NTFS
\\?\Volume{4ee3a62c-82b4-4f42-4e08-79cb7607af36}\ () (Fixed) (Total:3.43 GB) (Free:0 GB) NTFS
\\?\Volume{01a559b6-22f3-078c-27fe-8ad5a150967d}\ () (Fixed) (Total:87.6 GB) (Free:0 GB) NTFS
\\?\Volume{20af4153-6165-f2c6-b7d0-0c6f65a43426}\ () (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS
\\?\Volume{1bb2bd44-62cc-9873-4d1f-e34680276f40}\ () (Fixed) (Total:0.51 GB) (Free:0 GB) NTFS
\\?\Volume{3b44abf6-4192-f404-65ca-fd8f774f3d28}\ () (Fixed) (Total:0.43 GB) (Free:0 GB) NTFS
\\?\Volume{ec8cf840-c504-2383-47b5-12d05e12034b}\ () (Fixed) (Total:85.68 GB) (Free:0 GB) NTFS
\\?\Volume{2132be11-e903-22fc-6da2-e43b59b94feb}\ () (Fixed) (Total:54.98 GB) (Free:0 GB) NTFS
\\?\Volume{7315615c-ffe3-7221-f856-5e20ae353d35}\ () (Fixed) (Total:37.54 GB) (Free:0 GB) NTFS
\\?\Volume{6eee964c-9329-490d-985f-010e7fd75849}\ () (Fixed) (Total:0.25 GB) (Free:0.18 GB) FAT32
\\?\Volume{022fb186-a70e-4738-8f80-62d27b3bad95}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 9F86779F)
Partition: GPT.
==========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: E483113A)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 2.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 3.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 4.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 5.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 6.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 7.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 8.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 9.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 10.
==================== Fin de Addition.txt =======================