Publicité
Publicité
Format du document : text/plain
Prévisualisation
Résultats de l'Analyse supplémentaire de Farbar Recovery Scan Tool (x64) Version: 10-04-2022 02
Exécuté par Mr_GT (10-04-2022 17:11:58)
Exécuté depuis C:\Users\Mr_GT\Desktop
Microsoft Windows 10 Professionnel Version 21H1 19043.1586 (X64) (2020-11-01 12:17:02)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-3351771493-749409139-3151566472-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3351771493-749409139-3151566472-503 - Limited - Disabled)
Invité (S-1-5-21-3351771493-749409139-3151566472-501 - Limited - Disabled)
Mr_GT (S-1-5-21-3351771493-749409139-3151566472-1001 - Administrator - Enabled) => C:\Users\Mr_GT
postgres (S-1-5-21-3351771493-749409139-3151566472-1003 - Limited - Enabled) => C:\Users\postgres
WDAGUtilityAccount (S-1-5-21-3351771493-749409139-3151566472-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 22.001.20085 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated)
Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.3.1 - Advanced Micro Devices, Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.60.45171 - Electronic Arts)
Branding64 (HKLM\...\{2AF42320-5ECF-4BCA-B756-8F3677262D55}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1663 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2 - )
Étude pour l'amélioration du produit HP ENVY Photo 6200 series (HKLM\...\{A44E3541-DAF7-49F8-81B9-779BA388B1CE}) (Version: 44.4.2678.1977 - HP Inc.)
Evernote v. 6.24.2 (HKLM-x32\...\{A8B80634-6257-11EA-8C8E-005056951CAD}) (Version: 6.24.2.8919 - Evernote Corp.)
FileZilla Client 3.52.2 (HKLM-x32\...\FileZilla Client) (Version: 3.52.2 - Tim Kosse)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 100.0.4896.75 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Herramientas de corrección de Microsoft Office 2016: español (HKLM-x32\...\{90160000-001F-0C0A-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - )
Holdem Manager 2 (HKLM-x32\...\HoldemManager2) (Version: - )
Holdem Manager 3 (HKLM-x32\...\{F1A0512A-1DDC-4C61-887E-20A9F26AA03A}) (Version: 3.0.4980.0 - Max Value Software)
HP Dropbox Plugin (HKLM-x32\...\{C722A9DD-471B-4F25-9E7E-7DD112D1BC35}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{C3739212-3C21-4138-9607-C31F9EA8A514}) (Version: 43.0.0.0 - HP)
HP ENVY Photo 6200 series Aide (HKLM-x32\...\{42AD9949-096B-4D00-ADA9-E5B82327E225}) (Version: 44.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{FC93D1CC-102B-4B59-92DA-30E0DE232FF6}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{06505D9F-A3AD-4DC0-8119-8836BAD1938E}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM-x32\...\{6ECCAD1A-2BD7-489C-8D43-68B69A2AA879}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SharePoint Plugin (HKLM-x32\...\{0758DCDE-50A2-4D6D-B025-FBB2BF342743}) (Version: 43.0.0.0 - HP)
HP Webcam HD 2300 Software (HKLM-x32\...\{74E6771A-47B5-433E-A96F-15E29F70F920}) (Version: 1.00.0000 - Hewlett-Packard)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
K-Lite Mega Codec Pack 15.0.9 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.0.9 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Light Image Resizer 5.1.1.0 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.1.1.0 - ObviousIdea)
Logiciel de base du périphérique HP ENVY Photo 6200 series (HKLM\...\{2F03A175-09AE-429E-8E16-8619390EA508}) (Version: 44.4.2678.1977 - HP Inc.)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 100.0.1185.36 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\OneDriveSetup.exe) (Version: 22.055.0313.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Teams) (Version: 1.4.00.19572 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Movavi Video Converter 19 Premium (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Movavi Video Converter 19 Premium) (Version: 19.3.0 - Movavi)
Mozilla Firefox (x86 fr) (HKLM-x32\...\Mozilla Firefox 95.0 (x86 fr)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla)
MSI Afterburner 4.6.0 (HKLM-x32\...\Afterburner) (Version: 4.6.0 - MSI Co., LTD)
MT2 Mechanical Keyboard v1.6.6 (HKLM-x32\...\{24179D30-A470-49A2-AF40-3A317A8F8CF3}_is1) (Version: - )
Neon 0.0.9 (only current user) (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\211a501f-25dd-501b-8c98-509ac17aedfa) (Version: 0.0.9 - Ethan Fast)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.6 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project)
OpenIV (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\OpenIV) (Version: 3.1.1032 - .black/OpenIV Team)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM-x32\...\{90160000-001F-040C-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PokerStrategy.com Equilab (HKLM-x32\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PostgreSQL 8.4 (HKLM-x32\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8454 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
serposcope version 2.11.0 (HKLM-x32\...\{F78D981C-E791-487D-820B-BCA5918FB388}_is1) (Version: 2.11.0 - SERP Hacker)
Skype version 8.78 (HKLM-x32\...\Skype_is1) (Version: 8.78 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM-x32\...\{90160000-001F-0413-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.21.8 - TeamViewer)
Telegram Desktop version 3.1.8 (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.1.8 - Telegram FZ-LLC)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD91AC8F-5232-11E3-B420-F04DA23A5C58}) (Version: 12.0.770 - Sony)
VEGAS Pro 15.0 (HKLM\...\{E1892AB0-7FC4-11E7-9146-95BE57594EAC}) (Version: 15.0.177 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.2 - VideoLAN)
WhatsApp (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\WhatsApp) (Version: 2.2210.9 - WhatsApp)
Winamax Installer (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Winamax Installer 2.0) (Version: 2.0 - Winamax)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\ZoomUMX) (Version: 5.8.3 (1581) - Zoom Video Communications, Inc.)
Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.21.50009.0_x64__0a9344xs7nr4m [2022-04-09] (Advanced Micro Devices Inc.)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-29] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.12.419.0_x64__rz1tebttyb220 [2022-03-31] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_135.1.385.0_x64__v10z8vjag6ke6 [2022-03-31] (HP Inc.)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-03-31] (Microsoft Studios) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2021-03-25] (Adobe Systems Incorporated)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3351771493-749409139-3151566472-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Mr_GT\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21105.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Logiciels\Notepad++\NppShell_06.dll [2020-04-21] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\Logiciels\DAEMON Tools Lite\dtshl64.dll [2021-01-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\Logiciels\DAEMON Tools Lite\dtshl64.dll [2021-01-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Logiciels\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-03-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Logiciels\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => D:\Logiciels\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [311296 2018-01-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Fichier non signé]
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcacbjiofjgbnaknoojjboeiinempoa\4.1_0\_locales\aliexpress_search_by_image - Ярлык.lnk -> D:\site\lowcost2.ru\widget\chrome\aliexpress_search_by_image (Pas de fichier) <==== Cyrillic
ShortcutWithArgument: C:\Users\Mr_GT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Modules chargés (Avec liste blanche) =============
2017-12-14 17:44 - 2014-07-22 11:00 - 000172032 _____ () [Fichier non signé] c:\postgreSQL\bin\LIBPQ.dll
2017-12-14 17:45 - 2012-08-14 15:19 - 000999424 _____ () [Fichier non signé] c:\postgreSQL\bin\libxml2.dll
2018-07-09 01:50 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2018-07-09 01:50 - 2016-10-08 17:03 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2022-03-09 18:44 - 2022-03-09 18:44 - 018143744 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\avcodec-58.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000017920 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 003567616 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-03-17 02:34 - 2015-03-17 02:34 - 000013824 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2022-03-09 18:43 - 2022-03-09 18:43 - 001764864 _____ (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2017-12-14 17:45 - 2006-05-03 22:57 - 000888832 _____ (Free Software Foundation) [Fichier non signé] c:\postgreSQL\bin\iconv.dll
2017-12-14 17:45 - 2009-01-06 16:51 - 000968886 _____ (Free Software Foundation) [Fichier non signé] c:\postgreSQL\bin\libiconv-2.dll
2017-12-14 17:44 - 2009-01-06 16:51 - 000083906 _____ (Free Software Foundation) [Fichier non signé] c:\postgreSQL\bin\libintl-8.dll
2017-12-14 17:44 - 2009-04-13 14:23 - 000012288 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\comerr32.dll
2017-12-14 17:44 - 2009-04-13 14:23 - 000135168 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\gssapi32.dll
2017-12-14 17:44 - 2009-04-13 14:23 - 000019968 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\k5sprt32.dll
2017-12-14 17:45 - 2009-04-13 14:23 - 000634880 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\krb5_32.dll
2017-12-14 17:45 - 2008-04-08 16:13 - 000348160 _____ (Microsoft Corporation) [Fichier non signé] c:\postgreSQL\bin\MSVCR71.dll
2017-09-04 23:15 - 2017-09-04 23:15 - 004396032 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2017-12-14 17:45 - 2014-06-09 13:44 - 001163264 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] c:\postgreSQL\bin\LIBEAY32.dll
2017-12-14 17:45 - 2014-06-09 13:44 - 000286720 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] c:\postgreSQL\bin\SSLEAY32.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Jeux\Origin\LIBEAY32.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Jeux\Origin\ssleay32.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\platforms\qwindows.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Core.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Gui.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Network.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Widgets.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Xml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000057856 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000039424 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000415232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000023552 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000532992 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001455104 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001227776 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000135680 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 006270976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 006947328 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000740352 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000123392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 001110528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000326656 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 003798528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000440832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000054784 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 004255744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000171520 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 001128448 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000206336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000334336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000133120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000396800 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 102854656 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 005611008 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000463360 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000210432 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 002877440 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000056832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000059392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000267776 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017408 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017920 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000290816 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000336896 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000134144 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000106496 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000325120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000045568 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000093184 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
2018-07-09 01:50 - 2016-10-08 17:04 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSProducstInfo.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\Mr_GT\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Mr_GT\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2016-03-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Logiciels\Nouveau dossier\bin\ssv.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> D:\Logiciels\Evernote\EvernoteIE.dll [2020-03-09] (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Logiciels\Nouveau dossier\bin\jp2ssv.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-04-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-04-12] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 23:03 - 2019-01-04 17:28 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts
2018-01-16 01:55 - 2022-04-10 17:00 - 000000448 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.32.1 DESKTOP-RUT1CQG.mshome.net # 2027 4 5 9 15 0 21 286
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;D:\Logiciels\QuickTime\QTSystem\;C:\WINDOWS\System32\OpenSSH\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mr_GT\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-3351771493-749409139-3151566472-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: Le média n'est pas connecté à internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "EADM"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{198EA739-C724-47AD-9556-7C83CDA32E0F}C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F49D2E09-15DD-462A-AD90-6C709D9623FE}C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{8E5F66E7-3B0B-4719-A474-02A7179928AF}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6993C48F-4ACF-4A60-900E-866DA5963DEF}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{99633270-8085-42CA-AE88-96A0B282C68C}D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{927986DA-3DFC-45DE-BDBE-6AEA1A8A027D}D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{F25A5316-B2DE-4C52-9AC7-EF9C34C98684}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{C19D553D-4041-4C8C-9455-F1131C6EA8DB}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4B2E28AB-B315-4AFD-B7D4-82A29C091A99}] => (Allow) LPort=5432
FirewallRules: [{088CBE50-5BF4-46E9-B1A6-4FF77D2BA32F}] => (Allow) D:\Jeux\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{99875545-A11D-42E9-969F-AC7816DDA855}] => (Allow) D:\Jeux\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3F80A24C-C237-4AB3-8668-7A1D1A4FF49E}] => (Allow) D:\Jeux\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{1864270B-2F54-42A0-ACAD-88C0C1C6A2F9}] => (Allow) D:\Jeux\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [DNS Server Forward Rule - TCP - 6150bae6-61b5-425a-86be-1b6cb9b70c70 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - 6150bae6-61b5-425a-86be-1b6cb9b70c70 - 0] => (Allow) LPort=53
FirewallRules: [{5E670742-6E1B-4706-9BB7-6BDA7F09D5BD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E65FA72F-41EB-4012-968D-9BD5E138C6AE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF97CD71-BAD1-4097-9CA2-048A978A6B41}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{28DED86B-DB85-4F07-8B0A-EC361FF81531}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{6FFE2327-E587-4244-A980-A38CC4C43BE1}] => (Allow) D:\Jeux\GTA5\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{2B5388C6-50EF-4915-AE86-7C9C66156A92}] => (Allow) D:\Jeux\GTA5\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{49C035EC-8445-438C-9465-3A73317457B1}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{0766CCA9-0A0E-477F-AA7D-1F9431B026EC}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6FA6B7C8-5932-4758-A42B-2F25DC66CC3D}] => (Allow) D:\Jeux\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{088160CE-C623-49DF-8D32-6DFE754A3864}] => (Allow) D:\Jeux\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{A0122E8A-BA07-4156-BFFF-9520A7E96E0C}] => (Allow) D:\Jeux\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{6279E8B7-1F67-4BEB-9844-BE878A64680C}] => (Allow) D:\Jeux\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{A697431B-8FA6-439F-BB00-F7B9F8016381}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AAADF983-DCAE-469F-9371-38D1E9754976}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99F90228-6E16-450D-8DB2-9DB1A117EC6C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{09BD7715-C409-4999-8762-A037FBDECE55}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{993486C2-A059-4F51-A5BF-1C44BBC5AE79}] => (Allow) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\DeviceSetup.exe (HP Inc -> HP Inc.)
FirewallRules: [{69269580-D994-4ABC-A83E-024BF88E0D49}] => (Allow) LPort=5357
FirewallRules: [{1CC41B60-ABCB-4F1D-9C9B-3C806D42CB68}] => (Allow) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc -> HP Inc.)
FirewallRules: [{61C2619E-DDBF-4368-AF94-1BD3BAFCB413}] => (Allow) D:\Logiciels\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{250C8DB0-283D-4330-8AFB-603D8E3B7602}] => (Allow) D:\Logiciels\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{5ED66307-57C5-46D9-B94C-ADCD4786BB87}] => (Allow) C:\Users\Mr_GT\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{DAA6421C-0C20-4F95-8741-B5065869E425}] => (Allow) C:\Users\Mr_GT\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{15718E18-AEC8-4239-979D-345A87E8C3C2}] => (Allow) C:\Users\Mr_GT\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{547DD530-2CC3-45DA-854B-A4B7983FCB1E}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{4455CA49-1B8B-4AF2-8EE1-EFA9213F89AA}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{3725F793-D545-483B-8481-7B4D4EA5F2E6}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{787C50E6-1051-40B9-99B6-EC0B460FFC3D}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{5CECC12B-3414-4576-B1EF-5F0CCDBCBC3F}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3E2E625-9D9E-4FF8-9981-6C76DDA5D1BA}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8C454CC1-65C6-42D5-B5B5-FB7D090171D9}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8AB1CEA8-CFFA-429D-A1A9-CA620BDDBE08}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FD27B1E1-A6F2-4222-89A6-2C92A83761D8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C6914DF-1E1D-4791-89DF-7219D3EAD4DC}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{EEFCCCC5-E6C4-41AD-B6F2-CC62A359B52A}C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [UDP Query User{95F840D0-4C9F-475A-937B-B13173265846}C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{4BD5B199-5FF0-4891-887F-D81BD95AF84A}] => (Block) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{1D8CE7F8-C587-4E14-AED0-640BFF37187E}] => (Block) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{7789E0A0-1A05-4521-AB31-BFC92F152085}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F3F11724-96DA-4E26-A377-F61DCA5342F7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{58422C5F-F566-4D32-AA7C-40EB43EE8AA4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F602E000-1879-43AF-B6EB-2C676D8F9005}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22DEBB05-BEFB-42DD-9041-A8F6A8F84DDF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Points de restauration =========================
29-03-2022 14:52:31 Programme d’installation pour les modules Windows
29-03-2022 14:53:34 Programme d’installation pour les modules Windows
01-04-2022 08:42:53 Programme d’installation pour les modules Windows
01-04-2022 08:46:40 Programme d’installation pour les modules Windows
01-04-2022 08:47:43 Programme d’installation pour les modules Windows
09-04-2022 16:48:25 Removed VEGAS Pro 15.0
09-04-2022 19:36:04 AMDCleanupUtility Restore Point
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (04/10/2022 05:00:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/10/2022 05:00:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (04/10/2022 05:00:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2694
Heure de début de l’application défaillante : 0x01d84cebbbe75e59
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : d3e14e63-6129-466f-a27d-dd700741cff1
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 05:00:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2694
Heure de début de l’application défaillante : 0x01d84cebbbe75e59
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 088efdf6-e475-4341-a3c3-40d2693e411c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 05:00:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2464
Heure de début de l’application défaillante : 0x01d84cebbb432863
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 9908e487-0ada-4cab-a89e-4fb175650892
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 05:00:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2464
Heure de début de l’application défaillante : 0x01d84cebbb432863
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : a977067c-7214-4dd8-98ac-ad346bdad720
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 04:29:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/10/2022 04:24:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (04/10/2022 05:00:09 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: AUTORITE NT)
Description: 03225747456
Error: (04/10/2022 05:00:09 PM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 41) (User: AUTORITE NT)
Description: Hypervisor launch failed; Either VMX not present or not enabled in BIOS.
Error: (04/10/2022 04:16:10 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: AUTORITE NT)
Description: 03225747456
Error: (04/10/2022 04:16:10 PM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 41) (User: AUTORITE NT)
Description: Hypervisor launch failed; Either VMX not present or not enabled in BIOS.
Error: (04/10/2022 04:15:49 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.
Error: (04/10/2022 04:13:58 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RUT1CQG)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (04/10/2022 04:10:57 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RUT1CQG)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (04/10/2022 04:03:28 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: AUTORITE NT)
Description: 03225747456
Windows Defender:
================
Date: 2022-04-10 09:46:23
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {42DA17D7-CEF4-4B62-804F-E012D6B503E7}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-09 10:26:00
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {679D309F-A1DB-4DCC-B807-5EF6CF2CCDED}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-08 18:19:38
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {74800A1C-1293-4A11-952E-FA7580425FA6}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-07 20:11:22
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C7A0911A-F9C4-4E61-9470-94E6C00CCB2F}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-06 17:58:40
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {67F8A305-783C-4CB9-9A60-8B5721D3D2B0}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
CodeIntegrity:
===============
Date: 2022-04-10 09:45:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-04-02 20:21:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-12-07 10:58:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender Antivirus Free\bdamsi\265665556623565599\antimalware_provider64.dll that did not meet the Windows signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 3504 06/30/2017
Carte mère: ASUSTeK COMPUTER INC. MAXIMUS VIII RANGER
Processeur: Intel(R) Core(TM) i5-7600K CPU @ 3.80GHz
Pourcentage de mémoire utilisée: 13%
Mémoire physique - RAM - totale: 32706.94 MB
Mémoire physique - RAM - disponible: 28297.88 MB
Mémoire virtuelle totale: 37570.94 MB
Mémoire virtuelle disponible: 30898.93 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:222.56 GB) (Free:43.1 GB) NTFS
Drive d: (Disque local) (Fixed) (Total:3726.01 GB) (Free:3361.9 GB) NTFS
Drive e: () (Fixed) (Total:596.17 GB) (Free:107.02 GB) NTFS
Drive g: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:385.23 GB) NTFS
\\?\Volume{f9b426dc-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{f9b426dc-0000-0000-0000-60c337000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: F9B426DC)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=528 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 5A4BEDBA)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 99287B7B)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================
Exécuté par Mr_GT (10-04-2022 17:11:58)
Exécuté depuis C:\Users\Mr_GT\Desktop
Microsoft Windows 10 Professionnel Version 21H1 19043.1586 (X64) (2020-11-01 12:17:02)
Mode d'amorçage: Normal
==========================================================
==================== Comptes: =============================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
Administrateur (S-1-5-21-3351771493-749409139-3151566472-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3351771493-749409139-3151566472-503 - Limited - Disabled)
Invité (S-1-5-21-3351771493-749409139-3151566472-501 - Limited - Disabled)
Mr_GT (S-1-5-21-3351771493-749409139-3151566472-1001 - Administrator - Enabled) => C:\Users\Mr_GT
postgres (S-1-5-21-3351771493-749409139-3151566472-1003 - Limited - Enabled) => C:\Users\postgres
WDAGUtilityAccount (S-1-5-21-3351771493-749409139-3151566472-504 - Limited - Disabled)
==================== Centre de sécurité ========================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Programmes installés ======================
(Seuls les logiciels publicitaires ('adware') avec la marque 'caché' ('Hidden') sont susceptibles d'être ajoutés au fichier fixlist.txt pour qu'ils ne soient plus masqués. Les programmes publicitaires devront être désinstallés manuellement.)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 22.001.20085 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated)
Aimersoft Helper Compact 2.5.2 (HKLM-x32\...\{405147F7-FCC5-499B-A27E-EA6BD4A80435}_is1) (Version: 2.5.2 - Aimersoft)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 22.3.1 - Advanced Micro Devices, Inc.)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.26.1 - Asmedia Technology)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield™ V (HKLM-x32\...\{e26b382f-e945-4f70-9318-121b683f1d61}) (Version: 1.0.60.45171 - Electronic Arts)
Branding64 (HKLM\...\{2AF42320-5ECF-4BCA-B756-8F3677262D55}) (Version: 1.00.0009 - Advanced Micro Devices, Inc.) Hidden
Contrôle d’intégrité du PC Windows (HKLM\...\{0150BDB3-AFFD-47A1-ADB8-DE06658EB3B2}) (Version: 3.2.2110.14001 - Microsoft Corporation)
CPUID CPU-Z 1.94 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.94 - CPUID, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.14.0.1663 - Disc Soft Ltd)
Discord (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Discord) (Version: 0.0.309 - Discord Inc.)
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2 - )
Étude pour l'amélioration du produit HP ENVY Photo 6200 series (HKLM\...\{A44E3541-DAF7-49F8-81B9-779BA388B1CE}) (Version: 44.4.2678.1977 - HP Inc.)
Evernote v. 6.24.2 (HKLM-x32\...\{A8B80634-6257-11EA-8C8E-005056951CAD}) (Version: 6.24.2.8919 - Evernote Corp.)
FileZilla Client 3.52.2 (HKLM-x32\...\FileZilla Client) (Version: 3.52.2 - Tim Kosse)
GenArts Sapphire Plug-ins 6.10 for OFX (HKLM\...\GenArts Sapphire Plug-ins for OFX_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 100.0.4896.75 - Google LLC)
GoTo Opener (HKLM-x32\...\{C0F33C38-345C-4C02-B161-11389350C2A5}) (Version: 1.0.533 - LogMeIn, Inc.)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Herramientas de corrección de Microsoft Office 2016: español (HKLM-x32\...\{90160000-001F-0C0A-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
HiSuite (HKLM-x32\...\Hi Suite) (Version: 10.0.1.100 - )
Holdem Manager 2 (HKLM-x32\...\HoldemManager2) (Version: - )
Holdem Manager 3 (HKLM-x32\...\{F1A0512A-1DDC-4C61-887E-20A9F26AA03A}) (Version: 3.0.4980.0 - Max Value Software)
HP Dropbox Plugin (HKLM-x32\...\{C722A9DD-471B-4F25-9E7E-7DD112D1BC35}) (Version: 36.0.102.68541 - HP)
HP EmailSMTP Plugin (HKLM-x32\...\{C3739212-3C21-4138-9607-C31F9EA8A514}) (Version: 43.0.0.0 - HP)
HP ENVY Photo 6200 series Aide (HKLM-x32\...\{42AD9949-096B-4D00-ADA9-E5B82327E225}) (Version: 44.0.0 - HP)
HP FTP Plugin (HKLM-x32\...\{FC93D1CC-102B-4B59-92DA-30E0DE232FF6}) (Version: 43.0.0.0 - HP)
HP Google Drive Plugin (HKLM-x32\...\{06505D9F-A3AD-4DC0-8119-8836BAD1938E}) (Version: 36.0.102.68541 - HP)
HP OneDrive Plugin (HKLM-x32\...\{6ECCAD1A-2BD7-489C-8D43-68B69A2AA879}) (Version: 36.0.0.0 - HP)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
HP SharePoint Plugin (HKLM-x32\...\{0758DCDE-50A2-4D6D-B025-FBB2BF342743}) (Version: 43.0.0.0 - HP)
HP Webcam HD 2300 Software (HKLM-x32\...\{74E6771A-47B5-433E-A96F-15E29F70F920}) (Version: 1.00.0000 - Hewlett-Packard)
Intel(R) Network Connections 20.2.4001.0 (HKLM\...\PROSetDX) (Version: 20.2.4001.0 - Intel)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
K-Lite Mega Codec Pack 15.0.9 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.0.9 - KLCP)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Light Image Resizer 5.1.1.0 (HKLM-x32\...\{D5C093E0-D3DF-42D3-AFD6-CAAFB6985CBC}_is1) (Version: 5.1.1.0 - ObviousIdea)
Logiciel de base du périphérique HP ENVY Photo 6200 series (HKLM\...\{2F03A175-09AE-429E-8E16-8619390EA508}) (Version: 44.4.2678.1977 - HP Inc.)
Logiciel pour périphérique à chipset Intel® (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 100.0.1185.36 - Microsoft Corporation)
Microsoft Office Professionnel Plus 2016 (HKLM-x32\...\Office16.PROPLUS) (Version: 16.0.4266.1001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\OneDriveSetup.exe) (Version: 22.055.0313.0001 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Teams) (Version: 1.4.00.19572 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{7B1FCD52-8F6B-4F12-A143-361EA39F5E7C}) (Version: 3.67.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.28.29913 (HKLM-x32\...\{855e31d2-9031-46e1-b06d-c9d7777deefb}) (Version: 14.28.29913.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Movavi Video Converter 19 Premium (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Movavi Video Converter 19 Premium) (Version: 19.3.0 - Movavi)
Mozilla Firefox (x86 fr) (HKLM-x32\...\Mozilla Firefox 95.0 (x86 fr)) (Version: 95.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 60.0.1 - Mozilla)
MSI Afterburner 4.6.0 (HKLM-x32\...\Afterburner) (Version: 4.6.0 - MSI Co., LTD)
MT2 Mechanical Keyboard v1.6.6 (HKLM-x32\...\{24179D30-A470-49A2-AF40-3A317A8F8CF3}_is1) (Version: - )
Neon 0.0.9 (only current user) (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\211a501f-25dd-501b-8c98-509ac17aedfa) (Version: 0.0.9 - Ethan Fast)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.8.6 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 27.2.4 - OBS Project)
OpenIV (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\OpenIV) (Version: 3.1.1032 - .black/OpenIV Team)
Origin (HKLM-x32\...\Origin) (Version: 10.5.59.36848 - Electronic Arts, Inc.)
Outils de vérification linguistique 2016 de Microsoft Office - Français (HKLM-x32\...\{90160000-001F-040C-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
PokerStrategy.com Equilab (HKLM-x32\...\{86D09F48-CDAB-4B4C-8806-F6C16F17935A}) (Version: 1.2.8.0 - PokerStrategy.com)
PostgreSQL 8.4 (HKLM-x32\...\PostgreSQL 8.4) (Version: 8.4 - PostgreSQL Global Development Group)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8454 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
serposcope version 2.11.0 (HKLM-x32\...\{F78D981C-E791-487D-820B-BCA5918FB388}_is1) (Version: 2.11.0 - SERP Hacker)
Skype version 8.78 (HKLM-x32\...\Skype_is1) (Version: 8.78 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Taalprogramma's voor Microsoft Office 2016 - Nederlands (HKLM-x32\...\{90160000-001F-0413-0000-0000000FF1CE}) (Version: 16.0.4266.1001 - Microsoft Corporation) Hidden
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.21.8 - TeamViewer)
Telegram Desktop version 3.1.8 (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 3.1.8 - Telegram FZ-LLC)
UE4 Prerequisites (x64) (HKLM\...\{36EAD5CF-44EF-4FCF-8BE1-D96C4835D7A4}) (Version: 1.0.11.0 - Epic Games, Inc.) Hidden
UE4 Prerequisites (x64) (HKLM-x32\...\{2890ae6b-90e9-448d-b3e6-97e43c21e2fd}) (Version: 1.0.13.0 - Epic Games, Inc.) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD91AC8F-5232-11E3-B420-F04DA23A5C58}) (Version: 12.0.770 - Sony)
VEGAS Pro 15.0 (HKLM\...\{E1892AB0-7FC4-11E7-9146-95BE57594EAC}) (Version: 15.0.177 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.2 - VideoLAN)
WhatsApp (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\WhatsApp) (Version: 2.2210.9 - WhatsApp)
Winamax Installer (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\Winamax Installer 2.0) (Version: 2.0 - Winamax)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\ZoomUMX) (Version: 5.8.3 (1581) - Zoom Video Communications, Inc.)
Packages:
=========
AMD Link -> C:\Program Files\WindowsApps\AdvancedMicroDevicesInc-2.AMDLink_10.21.50009.0_x64__0a9344xs7nr4m [2022-04-09] (Advanced Micro Devices Inc.)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Composant additionnel Photos Media Engine -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-04-29] (Microsoft Corporation)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.12.419.0_x64__rz1tebttyb220 [2022-03-31] (Dolby Laboratories)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_135.1.385.0_x64__v10z8vjag6ke6 [2022-03-31] (HP Inc.)
Keeper - Password Manager & Secure File Storage -> C:\Program Files\WindowsApps\KeeperSecurityInc.Keeper_14.0.33.0_x64__kejf07qmg0jnm [2019-07-30] (Keeper Security Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2020-11-01] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-26] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.12.3171.0_x64__8wekyb3d8bbwe [2022-03-31] (Microsoft Studios) [MS Ad]
Reader Notification Client -> C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2021-03-25] (Adobe Systems Incorporated)
==================== Personnalisé CLSID (Avec liste blanche): ==============
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
CustomCLSID: HKU\S-1-5-21-3351771493-749409139-3151566472-1001_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Mr_GT\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.21105.1\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Logiciels\Notepad++\NppShell_06.dll [2020-04-21] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [DaemonShellExtDriveLite] -> {C06369D6-E77D-4626-9656-1256312BD576} => D:\Logiciels\DAEMON Tools Lite\dtshl64.dll [2021-01-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [DaemonShellExtImageLite] -> {1D1B5D7B-0FC9-452E-902C-12BACD4FBC20} => D:\Logiciels\DAEMON Tools Lite\dtshl64.dll [2021-01-13] (AVB Disc Soft, SIA -> Disc Soft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Logiciels\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\WINDOWS\System32\atiacm64.dll [2022-03-16] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => D:\Logiciels\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => D:\Logiciels\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Avec liste blanche) ====================
(Si un élément est inclus dans le fichier fixlist.txt, l'élément de Registre sera restauré à la valeur par défaut ou supprimé. Le fichier ne sera pas déplacé.)
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.X264] => C:\Windows\system32\x264vfw64.dll [3799552 2017-07-30] (x264vfw project) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.LAGS] => C:\Windows\system32\lagarith.dll [148992 2011-12-07] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.XVID] => C:\Windows\system32\xvidvfw.dll [311296 2018-01-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [71680 2013-02-26] (Beepa P/L) [Fichier non signé]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Fichier non signé]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [65536 2013-02-26] (Beepa P/L) [Fichier non signé]
==================== Raccourcis & WMI ========================
(Les éléments sont susceptibles d'être inscrits dans le fichier fixlist.txt afin d'être supprimés ou restaurés.)
Shortcut: C:\Users\Mr_GT\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkcacbjiofjgbnaknoojjboeiinempoa\4.1_0\_locales\aliexpress_search_by_image - Ярлык.lnk -> D:\site\lowcost2.ru\widget\chrome\aliexpress_search_by_image (Pas de fichier) <==== Cyrillic
ShortcutWithArgument: C:\Users\Mr_GT\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d249d9ddd424b688\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory=Default
==================== Modules chargés (Avec liste blanche) =============
2017-12-14 17:44 - 2014-07-22 11:00 - 000172032 _____ () [Fichier non signé] c:\postgreSQL\bin\LIBPQ.dll
2017-12-14 17:45 - 2012-08-14 15:19 - 000999424 _____ () [Fichier non signé] c:\postgreSQL\bin\libxml2.dll
2018-07-09 01:50 - 2016-07-21 10:54 - 000137728 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSCreateVC.dll
2018-07-09 01:50 - 2016-10-08 17:03 - 001506304 _____ () [Fichier non signé] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\DAQExp.dll
2022-03-09 18:44 - 2022-03-09 18:44 - 018143744 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\avcodec-58.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000017920 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libEGL.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 003567616 _____ () [Fichier non signé] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-03-17 02:34 - 2015-03-17 02:34 - 000013824 _____ (Adobe Systems Inc.) [Fichier non signé] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\locale\fr_fr\Acrobat Elements\ContextMenuShim64.fra
2022-03-09 18:43 - 2022-03-09 18:43 - 001764864 _____ (Advanced Micro Devices, Inc.) [Fichier non signé] C:\Program Files\AMD\WVR\OpenVR\bin\win64\driver_amdwvr.dll
2017-12-14 17:45 - 2006-05-03 22:57 - 000888832 _____ (Free Software Foundation) [Fichier non signé] c:\postgreSQL\bin\iconv.dll
2017-12-14 17:45 - 2009-01-06 16:51 - 000968886 _____ (Free Software Foundation) [Fichier non signé] c:\postgreSQL\bin\libiconv-2.dll
2017-12-14 17:44 - 2009-01-06 16:51 - 000083906 _____ (Free Software Foundation) [Fichier non signé] c:\postgreSQL\bin\libintl-8.dll
2017-12-14 17:44 - 2009-04-13 14:23 - 000012288 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\comerr32.dll
2017-12-14 17:44 - 2009-04-13 14:23 - 000135168 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\gssapi32.dll
2017-12-14 17:44 - 2009-04-13 14:23 - 000019968 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\k5sprt32.dll
2017-12-14 17:45 - 2009-04-13 14:23 - 000634880 _____ (Massachusetts Institute of Technology.) [Fichier non signé] c:\postgreSQL\bin\krb5_32.dll
2017-12-14 17:45 - 2008-04-08 16:13 - 000348160 _____ (Microsoft Corporation) [Fichier non signé] c:\postgreSQL\bin\MSVCR71.dll
2017-09-04 23:15 - 2017-09-04 23:15 - 004396032 _____ (Microsoft Corporation) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\D3DCOMPILER_47.dll
2017-12-14 17:45 - 2014-06-09 13:44 - 001163264 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] c:\postgreSQL\bin\LIBEAY32.dll
2017-12-14 17:45 - 2014-06-09 13:44 - 000286720 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] c:\postgreSQL\bin\SSLEAY32.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 001277440 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Jeux\Origin\LIBEAY32.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Fichier non signé] D:\Jeux\Origin\ssleay32.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 001611264 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\platforms\qwindows.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 005487104 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Core.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 005841920 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Gui.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 001179136 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Network.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 005089792 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Widgets.dll
2020-01-16 02:19 - 2020-01-11 00:32 - 000184832 _____ (The Qt Company Ltd) [Fichier non signé] D:\Jeux\Origin\Qt5Xml.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000057856 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\audio\qtaudio_windows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qgif.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000039424 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qicns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000031232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qico.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000415232 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qjpeg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qsvg.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000025088 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qtga.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000023552 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwbmp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000532992 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\imageformats\qwebp.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001455104 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\platforms\qwindows.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 001227776 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\sqldrivers\qsqlite.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000135680 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\plugins\styles\qwindowsvistastyle.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 006270976 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 006947328 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000740352 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Multimedia.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000123392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5MultimediaQuick.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 001110528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000326656 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 003798528 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000440832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QmlModels.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000054784 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QmlWorkerScript.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 004255744 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000171520 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickControls2.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 001128448 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5QuickTemplates2.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000206336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Sql.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000334336 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000133120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000396800 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 102854656 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 005611008 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000463360 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 000210432 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll
2021-04-21 02:29 - 2021-04-21 02:29 - 002877440 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000056832 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000059392 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000267776 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtMultimedia\declarative_multimedia.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017408 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQml\qmlplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000017920 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000290816 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls.2\qtquickcontrols2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000336896 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000134144 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Dialogs\dialogplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000106496 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000325120 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Templates.2\qtquicktemplates2plugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000045568 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
2021-04-21 02:30 - 2021-04-21 02:30 - 000093184 _____ (The Qt Company Ltd.) [Fichier non signé] C:\Program Files\AMD\CNext\CNext\QtWebEngine\qtwebengineplugin.dll
2018-07-09 01:50 - 2016-10-08 17:04 - 000708608 _____ (Wondershare) [Fichier non signé] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\CBSProducstInfo.dll
==================== Alternate Data Streams (Avec liste blanche) ========
(Si un élément est inclus dans le fichier fixlist.txt, seul le flux de données additionnel (ADS - Alternate Data Stream) sera supprimé.)
AlternateDataStreams: C:\Users\Mr_GT\Application Data:00e481b5e22dbe1f649fcddd505d3eb7 [394]
AlternateDataStreams: C:\Users\Mr_GT\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [394]
==================== Mode sans échec (Avec liste blanche) ==================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le "AlternateShell" sera restauré.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Avec liste blanche) =================
==================== Internet Explorer (Avec liste blanche) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office16\OCHelper.dll [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office16\GROOVEEX.DLL [2016-04-13] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office16\OCHelper.dll [2016-03-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> D:\Logiciels\Nouveau dossier\bin\ssv.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> D:\Logiciels\Evernote\EvernoteIE.dll [2020-03-09] (Evernote Corporation -> Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> D:\Logiciels\Nouveau dossier\bin\jp2ssv.dll [2020-05-21] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-02-26] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb.16 - {3459B272-CC19-4448-86C9-DDC3B4B2FAD3} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-04-12] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\Office16\MSOSB.DLL [2016-04-12] (Microsoft Corporation -> Microsoft Corporation)
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre.)
IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\.DEFAULT\...\webcompanion.com -> hxxp://webcompanion.com
==================== Hosts contenu: =========================
(Si nécessaire, la commande Hosts: peut être incluse dans le fichier fixlist.txt afin de réinitialiser le fichier hosts.)
2017-03-18 23:03 - 2019-01-04 17:28 - 000000825 _____ C:\WINDOWS\system32\drivers\etc\hosts
2018-01-16 01:55 - 2022-04-10 17:00 - 000000448 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
192.168.32.1 DESKTOP-RUT1CQG.mshome.net # 2027 4 5 9 15 0 21 286
==================== Autres zones ===========================
(Actuellement, il n'y a pas de correction automatique pour cette section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;D:\Logiciels\QuickTime\QTSystem\;C:\WINDOWS\System32\OpenSSH\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Mr_GT\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\img0.jpg
HKU\S-1-5-21-3351771493-749409139-3151566472-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
DNS Servers: Le média n'est pas connecté à internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
Le Pare-feu est activé.
==================== MSCONFIG/TASK MANAGER éléments désactivés ==
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé.)
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-3351771493-749409139-3151566472-1001\...\StartupApproved\Run: => "EADM"
==================== RèglesPare-feu (Avec liste blanche) ================
(Si un élément est inclus dans le fichier fixlist.txt, il sera supprimé du Registre. Le fichier ne sera pas déplacé, sauf s'il est inscrit séparément.)
FirewallRules: [UDP Query User{198EA739-C724-47AD-9556-7C83CDA32E0F}C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{F49D2E09-15DD-462A-AD90-6C709D9623FE}C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe] => (Allow) C:\users\mr_gt\appdata\local\microsoft\teams\current\teams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [UDP Query User{8E5F66E7-3B0B-4719-A474-02A7179928AF}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{6993C48F-4ACF-4A60-900E-866DA5963DEF}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{99633270-8085-42CA-AE88-96A0B282C68C}D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [TCP Query User{927986DA-3DFC-45DE-BDBE-6AEA1A8A027D}D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) D:\jeux\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (PUBG CORPORATION -> Bluehole GinnoGames, Inc.)
FirewallRules: [{F25A5316-B2DE-4C52-9AC7-EF9C34C98684}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{C19D553D-4041-4C8C-9455-F1131C6EA8DB}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{4B2E28AB-B315-4AFD-B7D4-82A29C091A99}] => (Allow) LPort=5432
FirewallRules: [{088CBE50-5BF4-46E9-B1A6-4FF77D2BA32F}] => (Allow) D:\Jeux\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{99875545-A11D-42E9-969F-AC7816DDA855}] => (Allow) D:\Jeux\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{3F80A24C-C237-4AB3-8668-7A1D1A4FF49E}] => (Allow) D:\Jeux\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{1864270B-2F54-42A0-ACAD-88C0C1C6A2F9}] => (Allow) D:\Jeux\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [DNS Server Forward Rule - TCP - 6150bae6-61b5-425a-86be-1b6cb9b70c70 - 0] => (Allow) LPort=53
FirewallRules: [DNS Server Forward Rule - UDP - 6150bae6-61b5-425a-86be-1b6cb9b70c70 - 0] => (Allow) LPort=53
FirewallRules: [{5E670742-6E1B-4706-9BB7-6BDA7F09D5BD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E65FA72F-41EB-4012-968D-9BD5E138C6AE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{CF97CD71-BAD1-4097-9CA2-048A978A6B41}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{28DED86B-DB85-4F07-8B0A-EC361FF81531}] => (Allow) D:\Jeux\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG CORPORATION -> PUBG Corporation)
FirewallRules: [{6FFE2327-E587-4244-A980-A38CC4C43BE1}] => (Allow) D:\Jeux\GTA5\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{2B5388C6-50EF-4915-AE86-7C9C66156A92}] => (Allow) D:\Jeux\GTA5\GTA5.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{49C035EC-8445-438C-9465-3A73317457B1}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{0766CCA9-0A0E-477F-AA7D-1F9431B026EC}] => (Allow) D:\Jeux\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{6FA6B7C8-5932-4758-A42B-2F25DC66CC3D}] => (Allow) D:\Jeux\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{088160CE-C623-49DF-8D32-6DFE754A3864}] => (Allow) D:\Jeux\Battlefield V\bfvTrial.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{A0122E8A-BA07-4156-BFFF-9520A7E96E0C}] => (Allow) D:\Jeux\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{6279E8B7-1F67-4BEB-9844-BE878A64680C}] => (Allow) D:\Jeux\Battlefield V\bfv.exe (Electronic Arts, Inc. -> EA Digital Illusions CE AB)
FirewallRules: [{A697431B-8FA6-439F-BB00-F7B9F8016381}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AAADF983-DCAE-469F-9371-38D1E9754976}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99F90228-6E16-450D-8DB2-9DB1A117EC6C}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{09BD7715-C409-4999-8762-A037FBDECE55}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{993486C2-A059-4F51-A5BF-1C44BBC5AE79}] => (Allow) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\DeviceSetup.exe (HP Inc -> HP Inc.)
FirewallRules: [{69269580-D994-4ABC-A83E-024BF88E0D49}] => (Allow) LPort=5357
FirewallRules: [{1CC41B60-ABCB-4F1D-9C9B-3C806D42CB68}] => (Allow) C:\Program Files\HP\HP ENVY Photo 6200 series\Bin\HPNetworkCommunicatorCom.exe (HP Inc -> HP Inc.)
FirewallRules: [{61C2619E-DDBF-4368-AF94-1BD3BAFCB413}] => (Allow) D:\Logiciels\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{250C8DB0-283D-4330-8AFB-603D8E3B7602}] => (Allow) D:\Logiciels\DAEMON Tools Lite\DiscSoftBusServiceLite.exe (AVB Disc Soft, SIA -> Disc Soft Ltd)
FirewallRules: [{5ED66307-57C5-46D9-B94C-ADCD4786BB87}] => (Allow) C:\Users\Mr_GT\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{DAA6421C-0C20-4F95-8741-B5065869E425}] => (Allow) C:\Users\Mr_GT\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{15718E18-AEC8-4239-979D-345A87E8C3C2}] => (Allow) C:\Users\Mr_GT\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{547DD530-2CC3-45DA-854B-A4B7983FCB1E}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{4455CA49-1B8B-4AF2-8EE1-EFA9213F89AA}] => (Allow) C:\Program Files (x86)\HP\Diagnostics\PSDR\SoftPaq\Binaries\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{3725F793-D545-483B-8481-7B4D4EA5F2E6}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{787C50E6-1051-40B9-99B6-EC0B460FFC3D}] => (Allow) C:\HP\Diagnostics\PSDR\HPDiagnosticCoreUI.exe (HP Inc. -> HP Development Company, L.P.)
FirewallRules: [{5CECC12B-3414-4576-B1EF-5F0CCDBCBC3F}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{E3E2E625-9D9E-4FF8-9981-6C76DDA5D1BA}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8C454CC1-65C6-42D5-B5B5-FB7D090171D9}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8AB1CEA8-CFFA-429D-A1A9-CA620BDDBE08}] => (Allow) D:\Logiciels\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{FD27B1E1-A6F2-4222-89A6-2C92A83761D8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{4C6914DF-1E1D-4791-89DF-7219D3EAD4DC}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{EEFCCCC5-E6C4-41AD-B6F2-CC62A359B52A}C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [UDP Query User{95F840D0-4C9F-475A-937B-B13173265846}C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe] => (Allow) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{4BD5B199-5FF0-4891-887F-D81BD95AF84A}] => (Block) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{1D8CE7F8-C587-4E14-AED0-640BFF37187E}] => (Block) C:\users\mr_gt\appdata\local\discord\app-1.0.9004\discord.exe (Discord Inc. -> Discord Inc.)
FirewallRules: [{7789E0A0-1A05-4521-AB31-BFC92F152085}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F3F11724-96DA-4E26-A377-F61DCA5342F7}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{58422C5F-F566-4D32-AA7C-40EB43EE8AA4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{F602E000-1879-43AF-B6EB-2C676D8F9005}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.82.404.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{22DEBB05-BEFB-42DD-9041-A8F6A8F84DDF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Points de restauration =========================
29-03-2022 14:52:31 Programme d’installation pour les modules Windows
29-03-2022 14:53:34 Programme d’installation pour les modules Windows
01-04-2022 08:42:53 Programme d’installation pour les modules Windows
01-04-2022 08:46:40 Programme d’installation pour les modules Windows
01-04-2022 08:47:43 Programme d’installation pour les modules Windows
09-04-2022 16:48:25 Removed VEGAS Pro 15.0
09-04-2022 19:36:04 AMDCleanupUtility Restore Point
==================== Éléments en erreur du Gestionnaire de périphériques ============
==================== Erreurs du Journal des événements: ========================
Erreurs Application:
==================
Error: (04/10/2022 05:00:54 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/10/2022 05:00:45 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=UserLogon;SessionId=1
Error: (04/10/2022 05:00:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2694
Heure de début de l’application défaillante : 0x01d84cebbbe75e59
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : d3e14e63-6129-466f-a27d-dd700741cff1
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 05:00:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2694
Heure de début de l’application défaillante : 0x01d84cebbbe75e59
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 088efdf6-e475-4341-a3c3-40d2693e411c
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 05:00:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2464
Heure de début de l’application défaillante : 0x01d84cebbb432863
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : 9908e487-0ada-4cab-a89e-4fb175650892
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 05:00:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante ATKEX_cmd.exe, version : 0.0.0.0, horodatage : 0x00000000
Nom du module défaillant : KERNELBASE.dll, version : 10.0.19041.1586, horodatage : 0xe89e47cc
Code d’exception : 0x0eedfade
Décalage d’erreur : 0x0012b922
ID du processus défaillant : 0x2464
Heure de début de l’application défaillante : 0x01d84cebbb432863
Chemin d’accès de l’application défaillante : C:\Program Files\Realtek\Audio\HDA\ATKEX_cmd.exe
Chemin d’accès du module défaillant: C:\WINDOWS\System32\KERNELBASE.dll
ID de rapport : a977067c-7214-4dd8-98ac-ad346bdad720
Nom complet du package défaillant :
ID de l’application relative au package défaillant :
Error: (04/10/2022 04:29:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Error: (04/10/2022 04:24:07 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Échec de l’activation des licences (slui.exe) avec le code d’erreur suivant :
hr=0xC004F074
Arguments de la ligne de commande :
RuleId=eeba1977-569e-4571-b639-7623d8bfecc0;Action=AutoActivate;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=2de67392-b7a7-462a-b1ca-108dd189f588;NotificationInterval=1440;Trigger=NetworkAvailable
Erreurs système:
=============
Error: (04/10/2022 05:00:09 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: AUTORITE NT)
Description: 03225747456
Error: (04/10/2022 05:00:09 PM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 41) (User: AUTORITE NT)
Description: Hypervisor launch failed; Either VMX not present or not enabled in BIOS.
Error: (04/10/2022 04:16:10 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: AUTORITE NT)
Description: 03225747456
Error: (04/10/2022 04:16:10 PM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 41) (User: AUTORITE NT)
Description: Hypervisor launch failed; Either VMX not present or not enabled in BIOS.
Error: (04/10/2022 04:15:49 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.
Error: (04/10/2022 04:13:58 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RUT1CQG)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (04/10/2022 04:10:57 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-RUT1CQG)
Description: Impossible de démarrer un serveur DCOM : {0358B920-0AC7-461F-98F4-58E32CD89148}. L’erreur
« 2147942767 »
s’est produite lors du démarrage de la commande :
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (04/10/2022 04:03:28 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: AUTORITE NT)
Description: 03225747456
Windows Defender:
================
Date: 2022-04-10 09:46:23
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {42DA17D7-CEF4-4B62-804F-E012D6B503E7}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-09 10:26:00
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {679D309F-A1DB-4DCC-B807-5EF6CF2CCDED}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-08 18:19:38
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {74800A1C-1293-4A11-952E-FA7580425FA6}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-07 20:11:22
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {C7A0911A-F9C4-4E61-9470-94E6C00CCB2F}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
Date: 2022-04-06 17:58:40
Description:
L’analyse Antivirus Microsoft Defender a été arrêtée avant la fin.
ID de l’analyse : {67F8A305-783C-4CB9-9A60-8B5721D3D2B0}
Type de l’analyse : Logiciel anti-programme malveillant
Paramètres de l’analyse : Analyse rapide
Utilisateur : AUTORITE NT\Système
CodeIntegrity:
===============
Date: 2022-04-10 09:45:49
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2203.5-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2022-04-02 20:21:47
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\ProgramData\Microsoft\Windows Defender\Platform\4.18.2202.4-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-12-07 10:58:17
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bitdefender Antivirus Free\bdamsi\265665556623565599\antimalware_provider64.dll that did not meet the Windows signing level requirements.
==================== Infos Mémoire ===========================
BIOS: American Megatrends Inc. 3504 06/30/2017
Carte mère: ASUSTeK COMPUTER INC. MAXIMUS VIII RANGER
Processeur: Intel(R) Core(TM) i5-7600K CPU @ 3.80GHz
Pourcentage de mémoire utilisée: 13%
Mémoire physique - RAM - totale: 32706.94 MB
Mémoire physique - RAM - disponible: 28297.88 MB
Mémoire virtuelle totale: 37570.94 MB
Mémoire virtuelle disponible: 30898.93 MB
==================== Lecteurs ================================
Drive c: () (Fixed) (Total:222.56 GB) (Free:43.1 GB) NTFS
Drive d: (Disque local) (Fixed) (Total:3726.01 GB) (Free:3361.9 GB) NTFS
Drive e: () (Fixed) (Total:596.17 GB) (Free:107.02 GB) NTFS
Drive g: (TOSHIBA EXT) (Fixed) (Total:465.76 GB) (Free:385.23 GB) NTFS
\\?\Volume{f9b426dc-0000-0000-0000-100000000000}\ (Réservé au système) (Fixed) (Total:0.49 GB) (Free:0.46 GB) NTFS
\\?\Volume{f9b426dc-0000-0000-0000-60c337000000}\ () (Fixed) (Total:0.52 GB) (Free:0.08 GB) NTFS
==================== MBR & Table des partitions ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: F9B426DC)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=528 MB) - (Type=27)
==========================================================
Disk: 1 (Protective MBR) (Size: 3726 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 596.2 GB) (Disk ID: 5A4BEDBA)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 99287B7B)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Fin de Addition.txt =======================